| View previous topic :: View next topic |
| Author |
Message |
lamafao
Expert Cheater
 Reputation: 1
Joined: 17 Apr 2013
Posts: 130
|
 Posted: Mon May 19, 2014 10:37 pm Post subject: [Olly]Getting Address from text strings |
 |
|
I'm trying to learn some reverse engineering stuff so i can find addresses/base for random stuff in Olly.
Trying to learn from this : http://thelegendofrandom.com/blog/sample-page currently on #7
I've learned how to 'crack' simple crackme's in 5 seconds but looking at the tutorials i am not sure if i will learn anything about what i actually want. (I'll keep doing these tutorials)
Is there a specific tutorial somewhere on how to get addresses for these things? Or just an easy explanation how to do it? All i know from a random Fleep's tutorial is that first push above the string is usually an offset for what you are looking for ( So in this case +9F8 from base = Ammo, or +20 +4 +9F8 from base = Ammo?). (That might be very wrong)
Example is from Counter Strike Source
|
|
| Back to top |
|
 |
atom0s
Moderator
 Reputation: 205
Joined: 25 Jan 2006
Posts: 8587
Location: 127.0.0.1
|
| Posted: Tue May 20, 2014 12:20 am Post subject: |
|
|
PUSH client.xxxxxxxx refers to 'client.dll'.
This means, you need to use the base address of client.dll
In this instance, you would do:
0x24FE7C4 - client.dll
This will give you the offset to the string.
Anytime client.dll loads afterward, like if you reload the game, it will more than likely not be in the space address space. That's where the offset comes in. After you reload the game you would do:
client.dll + offset = New Address of String
_________________
- Retired. |
|
| Back to top |
|
|
++METHOS
I post too much
![]() Reputation: 92
Joined: 29 Oct 2010
Posts: 4197
|
| Posted: Tue May 20, 2014 12:54 am Post subject: |
|
|
1. The link you posted contains trojan.
2. Refer to lena151 tutorials for RE with Olly.
|
|
| Back to top |
|
|
lamafao
Expert Cheater
Reputation: 1
Joined: 17 Apr 2013
Posts: 130
|
| Posted: Tue May 20, 2014 1:16 am Post subject: |
|
|
| atom0s wrote: | PUSH client.xxxxxxxx refers to 'client.dll'.
This means, you need to use the base address of client.dll
In this instance, you would do:
0x24FE7C4 - client.dll
This will give you the offset to the string.
Anytime client.dll loads afterward, like if you reload the game, it will more than likely not be in the space address space. That's where the offset comes in. After you reload the game you would do:
client.dll + offset = New Address of String |
Hmm, i understand this.
I probably asked wrong, is it possible (and is it easy) to get to the player base or in this case maybe a weapon base just with this stuff? Or at least get their offsets?
m_iAmmo or maybe something like m_iHealth should lead you to the actual ammo/health address? (Again, might be totally wrong)
I've used someones source netvar dumper(?) and i've got lot's of offsets with these names, but no base address. I could just find my player base and then use the offsets. But for some bases/addresses you can't just do that, or it just stores hard to find stuff.
Example:
(not from css)
| Code: | - DT_BaseGrenade, count 7
baseclass: +00000000
m_flDamage: +000012B0
m_DmgRadius: +000012A4
m_bIsLive: +000012A1
m_hThrower: +000012B8
m_vecVelocity: +00000108
m_fFlags: +000000F8 |
| ++METHOS wrote: | 1. The link you posted contains trojan.
2. Refer to lena151 tutorials for RE with Olly. |
Really? I think i found this tutorial in these forums, i might be wrong.
|
|
| Back to top |
|
|
atom0s
Moderator
Reputation: 205
Joined: 25 Jan 2006
Posts: 8587
Location: 127.0.0.1
|
| Posted: Tue May 20, 2014 3:01 pm Post subject: |
|
|
You can probably obtain the data somewhere in that mess but given that source engine games have SDKs you are better off going that route as well as using things like NetVars inside of the source engine for things. There are a ton more resources for going about things that way instead of trying to go in via memory. (Also going through memory will land up requiring you to hook and make caves etc to obtain dataa. That being said if you plan to play online, you will get VAC banned.)
_________________
- Retired. |
|
| Back to top |
|
|
lamafao
Expert Cheater
Reputation: 1
Joined: 17 Apr 2013
Posts: 130
|
| Posted: Tue May 20, 2014 4:08 pm Post subject: |
|
|
| atom0s wrote: | | You can probably obtain the data somewhere in that mess but given that source engine games have SDKs you are better off going that route as well as using things like NetVars inside of the source engine for things. There are a ton more resources for going about things that way instead of trying to go in via memory. (Also going through memory will land up requiring you to hook and make caves etc to obtain dataa. |
Thanks for the answer
| atom0s wrote: | | That being said if you plan to play online, you will get VAC banned.) |
Yeah i know, im not planning to do that, just trying to find a way to find addresses/offsets easier (for all the games not just source)
|
|
| Back to top |
|
|
atom0s
Moderator
Reputation: 205
Joined: 25 Jan 2006
Posts: 8587
Location: 127.0.0.1
|
| Posted: Tue May 20, 2014 8:15 pm Post subject: |
|
|
You can use the NetVars stuff to obtain the offsets to each entry as well. There are a ton of articles/tutorials covering the source engine on other forums. I can't link them here since it goes against the rules since most of those forums are for multiplayer hacking. But just look around, you should be able to find a lot of info for the source engine.
_________________
- Retired. |
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
