| View previous topic :: View next topic |
| Author |
Message |
kittonkicker
I post too much
 Reputation: 1
Joined: 19 Apr 2006
Posts: 2171
|
 Posted: Sun Aug 19, 2007 5:18 am Post subject: [HELP] Calling an "inprogram" function with an inj |
 |
|
EDIT: Title should read: [HELP] Calling an "inprogram" function with an injected DLL.
Ok, I know of a few function locations in a game I play (move, use skill, start quest, use item, gethp/mp, etc), but I'm not sure how exactly I'd go about calling them.
The GetHP/GetMP are simple to call, because they don't take any parameters (they just return an integer value), so I can simply typedef them in, and then do .
But anything which takes any parameters, I always get access violations when I try to call them.
I understand some sort of register preparation is needed before it'll work, but would anyone care to explain how I can acheive this? Is it best to set a BP on the function, and then trace back through the stack and find out which parameters are used/registers it uses? |
|
| Back to top |
|
 |
Robotex
Master Cheater
 Reputation: 0
Joined: 05 Sep 2006
Posts: 378
Location: The pizza country!
|
| Posted: Sun Aug 19, 2007 6:39 am Post subject: |
|
|
if they are class methods you have to use inline assembly
example
class test
{
public:
void func1(int);
}
test testinst;
you have to get testinst and then
__asm
{
push myint
mov ecx, testinst
call func1
}
_________________
ASM/C++ Coder
Project Speranza lead developer |
|
| Back to top |
|
|
nog_lorp
Grandmaster Cheater
 Reputation: 0
Joined: 26 Feb 2006
Posts: 743
|
| Posted: Sun Aug 19, 2007 8:18 am Post subject: |
|
|
Read up on Calling Conventions, http://www.codeproject.com/cpp/calling_conventions_demystified.asp
Then check the code for there functions, and figure out what the calling convention is. Then prototype the functions with the proper macro.
~nog_lorp
_________________
Mutilated lips give a kiss on the wrist of the worm-like tips of tentacles expanding in my mind
I'm fine accepting only fresh brine you can get another drop of this yeah you wish |
|
| Back to top |
|
|
kittonkicker
I post too much
Reputation: 1
Joined: 19 Apr 2006
Posts: 2171
|
| Posted: Sun Aug 19, 2007 9:31 am Post subject: |
|
|
Aww thanks nog!! I was looking for something just like that!
Hopefully I'll be able to get it to work now ^_^. |
|
| Back to top |
|
|
nog_lorp
Grandmaster Cheater
Reputation: 0
Joined: 26 Feb 2006
Posts: 743
|
|
| Back to top |
|
|
kittonkicker
I post too much
Reputation: 1
Joined: 19 Apr 2006
Posts: 2171
|
| Posted: Sun Aug 19, 2007 3:03 pm Post subject: |
|
|
It's for FlyFF.
When nForce released his trainer ages ago, I was able to decrypt the .offs files he used (which contained addresses/pointers his trainer used), and update them. |
|
| Back to top |
|
|
ups2000ups
I post too much
![]() Reputation: 0
Joined: 31 Jul 2006
Posts: 2471
|
| Posted: Mon Aug 20, 2007 10:48 am Post subject: |
|
|
| kittonkicker wrote: | It's for FlyFF.
When nForce released his trainer ages ago, I was able to decrypt the .offs files he used (which contained addresses/pointers his trainer used), and update them. |
do you know if Nforce making new stuff now ? (for any games)
_________________
dont complain about my english...
1*1 = 2? |
|
| Back to top |
|
|
kittonkicker
I post too much
Reputation: 1
Joined: 19 Apr 2006
Posts: 2171
|
| Posted: Mon Aug 20, 2007 11:50 am Post subject: |
|
|
I doubt it.
He's been threatened with two lawsuits now I think! It's not worth the risk for him. |
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
