Python script to decrypt aoe2campaign.gpv files, and two methods of extracting the AES keys to do so.
Currently as of AoE2DE update Update 130746, only Memory Dump script 1 is working
Method 1 - Bruteforce [Requires pe-sieve]
- Unpack AoE2DE_s.exe
- For example with pe-sieve: start AoE2 and wait for the main menu, find the PID in Task Manager, and in command prompt / cmd / terminal run "pe-sieve.exe /pid AOE2PID" and copy the "140000000.AoE2DE_s.exe" to the \exe\ folder. The hex prefix may differ, but should still work
- Move the .gpv files into \in\
- Run bruteforce_keys.py
- Wait a few minutes
- Run gpv_decrypt.py with python 3 (only 3.10 tested)
- decrypted files are found in \out\
Method 2 - Memory Dump [Requires Cheat Engine]
- Load gpv_decrypt.CT with Cheat Engine 7.5 (older versions not tested)
- Edit the output directory variable outLoc (either in the main LUA script which should popup, or change the blue script and activate it)
- Start AoE2DE
- Attach method is easier with Return of Rome, as switching modes causes gpvs to be loaded into memory again
- [Return of Rome] Wait until the game has loaded
- [No RoR] Wait a few seconds for the exe to unpack into memory. Generally ~65MB Ram or when the small splash screen appears
- Activate one of the three scripts
- [Return of Rome] Switch modes. Only the gpv files for the mode you switch into will be loaded, so switch back again to load everything.
- [No RoR] The files will be loaded upon startup. There is a timeframe of several seconds between the exe being unpacked and the gpvs being loaded, if it doesn't work then retry steps 3-5 with different timing.
- The first of the three scripts will also dump the decrypted campaign files without the need of the following steps, although it is recommended to continue so the process doesn't need repeating for future versions
- Move the .key and .iv files now in the output directory (defined in step 2) to a \keys\ folder, and aoe2de.sbox next to gpv_decrypt.py
- Move the .gpv files into \in\
- Run gpv_decrypt.py with python 3 (only 3.10 tested)
- decrypted files are found in \out\
Either method should work
Method 1 is slower, with a hopefully low likelyhood to break with game updates (several assumptions are made about data that may no longer hold true with updates, as an attempt to improve speed)
Method 2 is more likely to break with game updates, though all 3 scripts worked on several tested versions (some assumptions are made about code structure that may no longer hold true with updates)
I have done my best to ensure that these tools do not contain cryptographic secrets. The TEA, AES keys and ivs are not prepackaged. The two methods above are intended to obtain those keys from your legally purchased copy of Age of Empires 2 Definitive Edition.
These tools are unable to dump AES keys or gpv files from unowned DLC. For the bruteforce method the gpv files must be supplied to test the keys, and the memory dump code is never run for unowned gpv files.
Decrypted aoe2campaign files can be extracted as normal in the Scenario editor / Campaign editor ingame. The only restriction is that scenarios using unowned civs cannot be edited - this should only affect cam0 and cam1 base game campaigns for people who do not own some of the DLCs.