| View previous topic :: View next topic |
| Author |
Message |
slippppppppp
Grandmaster Cheater
 Reputation: 0
Joined: 08 Aug 2006
Posts: 929
|
 Posted: Thu Feb 26, 2009 11:33 pm Post subject: GGCRC |
 |
|
| Since the CryptDecrypt Hook method of bypassing GGCRC is patched, Is there any other way besides driver programming?
|
|
| Back to top |
|
 |
HalfPrime
Grandmaster Cheater
![]() Reputation: 0
Joined: 12 Mar 2008
Posts: 532
Location: Right there...On your monitor
|
| Posted: Thu Feb 26, 2009 11:55 pm Post subject: |
|
|
Make a copy of any code regions and load up a copy of it. Make all calls and far jumps of the copied memory go to their new positions in the copied memory. detour execution to your copied memory.
_________________
|
|
| Back to top |
|
|
&Vage
Grandmaster Cheater Supreme
![]() Reputation: 0
Joined: 25 Jul 2008
Posts: 1053
|
| Posted: Fri Feb 27, 2009 6:29 pm Post subject: |
|
|
| HalfPrime wrote: | | Make a copy of any code regions and load up a copy of it. Make all calls and far jumps of the copied memory go to their new positions in the copied memory. detour execution to your copied memory. |
...Wtf are you talking about?...
|
|
| Back to top |
|
|
HalfPrime
Grandmaster Cheater
![]() Reputation: 0
Joined: 12 Mar 2008
Posts: 532
Location: Right there...On your monitor
|
| Posted: Fri Feb 27, 2009 10:12 pm Post subject: |
|
|
| _void_ wrote: | | HalfPrime wrote: | | Make a copy of any code regions and load up a copy of it. Make all calls and far jumps of the copied memory go to their new positions in the copied memory. detour execution to your copied memory. |
...Wtf are you talking about?... |
I'm talking about making a copy of any code regions and loading up a copy of it. Making all calls and far jumps of the copied memory go to their new positions in the copied memory. detouring execution to your copied memory.
_________________
|
|
| Back to top |
|
|
Zand
Master Cheater
![]() Reputation: 0
Joined: 21 Jul 2006
Posts: 424
|
| Posted: Fri Feb 27, 2009 10:54 pm Post subject: |
|
|
detouring execution to your copied memory.
How about that?
|
|
| Back to top |
|
|
HalfPrime
Grandmaster Cheater
![]() Reputation: 0
Joined: 12 Mar 2008
Posts: 532
Location: Right there...On your monitor
|
| Posted: Fri Feb 27, 2009 10:59 pm Post subject: |
|
|
change any code that's called before gg loads to jmp to the correct place in the copied memory then change it back before there's a check.
_________________
|
|
| Back to top |
|
|
slippppppppp
Grandmaster Cheater
Reputation: 0
Joined: 08 Aug 2006
Posts: 929
|
| Posted: Sat Feb 28, 2009 3:24 pm Post subject: |
|
|
| any other method?
|
|
| Back to top |
|
|
AlbanainRetard
Master Cheater
 Reputation: 0
Joined: 02 Nov 2008
Posts: 494
Location: Canada eh?
|
| Posted: Sat Feb 28, 2009 4:58 pm Post subject: |
|
|
| slippppppppp wrote: | | any other method? |
Well:
Find were it checks:
Skip or Hook and return a good value;
Change back, rinse and repeat.
_________________
|
|
| Back to top |
|
|
kitterz
Grandmaster Cheater Supreme
![]() Reputation: 0
Joined: 24 Dec 2007
Posts: 1268
|
| Posted: Sat Feb 28, 2009 4:59 pm Post subject: |
|
|
emulate the connection between maplestory and gameguard, then kill gg?
_________________
|
|
| Back to top |
|
|
Cheat Engine User
Something epic
![]() Reputation: 60
Joined: 22 Jun 2007
Posts: 2071
|
| Posted: Sat Feb 28, 2009 5:01 pm Post subject: |
|
|
| kitterz wrote: | | emulate the connection between maplestory and gameguard, then kill gg? |
Nope.
|
|
| Back to top |
|
|
&Vage
Grandmaster Cheater Supreme
![]() Reputation: 0
Joined: 25 Jul 2008
Posts: 1053
|
| Posted: Sat Feb 28, 2009 5:15 pm Post subject: |
|
|
| HalfPrime wrote: | | _void_ wrote: | | HalfPrime wrote: | | Make a copy of any code regions and load up a copy of it. Make all calls and far jumps of the copied memory go to their new positions in the copied memory. detour execution to your copied memory. |
...Wtf are you talking about?... |
I'm talking about making a copy of any code regions and loading up a copy of it. Making all calls and far jumps of the copied memory go to their new positions in the copied memory. detouring execution to your copied memory. |
That method is patched long ago...
|
|
| Back to top |
|
|
HalfPrime
Grandmaster Cheater
![]() Reputation: 0
Joined: 12 Mar 2008
Posts: 532
Location: Right there...On your monitor
|
| Posted: Sat Feb 28, 2009 9:13 pm Post subject: |
|
|
| _void_ wrote: | | HalfPrime wrote: | | _void_ wrote: | | HalfPrime wrote: | | Make a copy of any code regions and load up a copy of it. Make all calls and far jumps of the copied memory go to their new positions in the copied memory. detour execution to your copied memory. |
...Wtf are you talking about?... |
I'm talking about making a copy of any code regions and loading up a copy of it. Making all calls and far jumps of the copied memory go to their new positions in the copied memory. detouring execution to your copied memory. |
That method is patched long ago... |
I've never heard of anyone doing that. Are you sure you're not talking about the CEM/whatever files and then making gg crc those?
_________________
|
|
| Back to top |
|
|
pkedpker
Master Cheater
![]() Reputation: 1
Joined: 11 Oct 2006
Posts: 412
|
| Posted: Sun Mar 01, 2009 2:30 am Post subject: |
|
|
hes talking about copy/pasting the bytes that get loaded for the GG into your hack and calling it back to maplestory and using it as a packethack not a detection tool making it inactive.. but thats a shitload of work from the way i see it and no guarantees it will work next update.
_________________
|
|
| Back to top |
|
|
HalfPrime
Grandmaster Cheater
![]() Reputation: 0
Joined: 12 Mar 2008
Posts: 532
Location: Right there...On your monitor
|
| Posted: Sun Mar 01, 2009 3:52 am Post subject: |
|
|
Actually, it shoulnd't be that hard. open up ms, attach with olly and use ollyscript.
| Code: | VAR $RESULT
MOV $RESULT, 401000
START:
FINDOP $RESULT, #ea#
CMP $RESULT, 0
JE END
ADD $RESULT, 1
ADD [$RESULT], 20000000
JMP START
END: |
Do something like this for all calls and far jumps and save it. Load it at 20401000, detour execution and hope it works..
_________________
|
|
| Back to top |
|
|
tombana
Master Cheater
![]() Reputation: 2
Joined: 14 Jun 2007
Posts: 456
Location: The Netherlands
|
| Posted: Sun Mar 01, 2009 4:28 am Post subject: |
|
|
About the CryptDecrypt method: since what rev was it patched? I'm trying to create a ggcrc bypass for Flyff, which currently has gg rev 1209.
If it should work for that rev, I need to hook CryptDecrypt in GameMon.des (not in advapi32 but in GameMon's copy of it) and then just change GAMECRC=2 to GAMECRC=0 right?
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
