Cheat Engine

homer_simpson

Im talking about maplestory. Which one(s) are(is) not hooked?

Heartless · Posted: Thu Mar 20, 2008 5:20 pm Post subject:

None.

Snootae · Posted: Thu Mar 20, 2008 9:09 pm Post subject:

i believe there are is only one memory writing api, why would they have two, and if there was too, gg would block em both

Ksbunker · Posted: Fri Mar 21, 2008 2:46 am Post subject: re:

Just to clear up; There's 1 usermode and 1 kernelmode API use to write memory. Hooking kernel renders usermode useless too, whereas merely hooking usermode only renders usermode api calls useless.

As for what hooks GG installs... could open a program in olly whilst GG is operating, look at the functions you want in the kernel32.dll to see if the function entry point (typically);

push ebp
mov ebp, esp

or

mov edi, edi
push ebp
mov ebp, esp

Has been changed to a call, jump, ret or other...

Snootae · Posted: Fri Mar 21, 2008 9:12 am Post subject:

wow bunker, quite knowledgable, will try, though im certain kernelmode is blocked, hence the old 5 byte jump wont work for the usermode

and from what i hear kernelmode hooks can be a bitch to get past

300 posts, hehehe

dnsi0 · Posted: Fri Mar 21, 2008 1:08 pm Post subject:

or you use a user mode pysodo hook or something like that. Its the same as PostMessageA Bypass.

sponge · Posted: Fri Mar 21, 2008 5:48 pm Post subject:

hcavolsdsadgadsg · Posted: Fri Mar 21, 2008 8:26 pm Post subject:

what the hell is a pysodo?

pseudo?