Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - mesengr

Pages: [1]
1
OpenGL/Direct3D / D3DStarterKit On x64 Machine
« on: August 14, 2009, 06:51:02 pm »
I am trying to use DetourFunc() and RetourFunc() from the D3DStartKit on a Windows Server 2003 x64 machine. I have compiled my program (a .dll file) on a Windows XP 32-bit machine.

The DetourFunc() seems to work improperly. Is there any reason why it should function differently on an x64 machine?

2
General Modding & Programming / Other Games / Rename Process Image Name
« on: August 08, 2009, 08:40:27 am »
In Windows XP, does anyone know how to change the image name of a running process?

e.g., I have "notepad.exe" running. I want to change the image name of the process to "notepad2.exe" while it is still running.

3
From Visual Studio 2005/2008, is there a way to debug the DLL code that we have hooked onto a process using a loader? I want to be able to set breakpoints in my code, and step through them.

4
After I hook a certain function/interface in a process (e.g., vietcong.exe), I want to access its memory. I know the address of the memory I wish to access. I can obviously create a pointer that points to that address, and dereference it.

But is this safe? There are potential multi-threading issues. Should I use memcpy() or ReadProcessMemory() or ??? What other options are there?

5
Off Topic / phpbb vs smf vs ??
« on: October 01, 2008, 10:31:25 am »
Question for web admins: TKC used to use phpBB a long time ago. Now we use SMF. Why the change? Is phpBB no good? Is SMF the best free forum package? Are there any other forum packages that compare?

6
General Modding & Programming / Other Games / nProtect GameGuard
« on: May 27, 2008, 06:53:33 am »
http://eng.nprotect.com/nprotect_gameguard.htm

One person claims this is "the most advanced cheat/hack block detector." I've found one game that uses this protection: Project Torque.  Cool, realistic, free racing game, btw.

Just posted this for those who crave the challenge. I'm still struggling with Hradba, and have not even attempted PunkBuster. But one of these days...

7
General Modding & Programming / Other Games / SoftIce
« on: April 21, 2008, 10:29:17 pm »
Throughout this forum, Mullah Omar suggests using SoftIce. So I've spent hours trying to get SoftIce to work on my system (XP SP2, nVidia gfx) with no success.

Right now, I use OllyDbg with Cheat Engine and IDA Pro. For the purposes of game hacking, is SoftIce better than these tools in any way? i.e., Am I missing out?

If I were to hack something like PunkBuster, would I still be able to use something like Cheat Engine?

8
I'm writing a trainer in C++ (well, modifying a trainer-template).
When I use the function WriteProcessMemory() to write to a certain memory location, the function fails (returns 0, writes 0 bytes).
Namely, I'm trying to write to location 0x4004e7 in vietcong.exe (using it as a cave).
I am able to poke this location with other trainers such as Cheat Engine... so is there some other function to write to this "read-only" location?

9
General Modding & Programming / Other Games / Books
« on: April 11, 2008, 12:26:41 pm »
Does anyone know of any books to recommend that could help out game hackers?

It could be on C programming, Windows architecture, D3D, Graphics, Reverse engineering, ASM, Networking, etc.

I really hope people contribute to this, especially the more advanced hackers.


I'll start with a couple that's helped me out so far:

Assembly Language for Intel-Based Computers
by Kip Irvine
ISBN: 0132383101
Probably the best resource to learn assembly language, for beginners and experts alike.

Hacker Disassembling Uncovered
by Kris Kaspersky
ISBN: 1931769648
This book was recommended by Subsky last year. I have only read half of it so far, and it's already proven to be a great book on reverse coding. If you're trying to make sense of disassembled game code, this book will juice up your thinking process. Subsky credits this book for enabling him to create the Hradba Bypass... that's saying a lot!

10
In the D3D Starter Kit, if I want to read from/write to the game process's memory, do I need to go through the WriteProcessMemory API? Or could I just directly reference to the memory address I'm trying to poke/peek?

11
Vietcong 1 & 2 / Crosshairs
« on: October 27, 2007, 01:40:44 am »
I would like to have me a crosshair in the game, even when I am right-click-aiming or when I am using my binoculars. I tried the crosshairs in the Downloads sections, but that one keeps flickering, and also I cannot toggle it on/off. I know VCHook provides a crosshair, but I cannot ALT+Tab out of the game without it crashing.

I was searching in the game code memory for the instruction where the crosshair with the game-HUD is drawn, but I am having a hard time locating it. Does anyone know where this instruction is, or how to find it? Or does anyone know if there is a better way to get a stable, toggle-able crosshair?

12
Vietcong 1 & 2 / Ways to Get Around Hradba #138
« on: October 20, 2007, 09:12:56 am »
Over a year ago, Subsky posted about a few ways to get around Hradba #138:

There are a few ways to bypass HRADBA's memory scanning (eg. kicks for #138); directly patch the memory scanning detection algorithm it uses to aways say 'Status: OK'... or implement some kind of memory hiding element in your own custom built trainer (it's called 'rootkit' technology- read about it briefly here).

I'm currently implementing a user-mode version of a very new memory hiding method called Shadow Walking- which can be read about here.  When done correctly- all trainers, new and old will not be detected.

@Subsky (or anyone else working on this): Just out of curiosity, have you implemented the Shadow Walking yet?

My real question is: how do you find that "Status: OK" part of memory of the detection algorithm? So far, I have discovered that this algorithm is written into memory some time AFTER you join the server. I have not been able to find the instruction that gives the OK. Any hints on how to find it? Am I supposed to patch the Hradba DLL file?

13
General Modding & Programming / Other Games / Freeze Values
« on: October 19, 2007, 10:26:54 pm »
How do trainers (e.g., TSearch, CheatEngine, TMK) freeze/lock values in an address? There seems to be a timer, but no NOP'ng of instructions that write to the address. Does it constantly re-write to that address, or is there more to it?

Pages: [1]