| View previous topic :: View next topic |
| Author |
Message |
KaMeR How do I cheat?
Reputation: 0
Joined: 11 Aug 2009 Posts: 6
|
Posted: Thu Aug 13, 2009 1:19 pm Post subject: Calling Game Process Function |
|
|
Hello.
I found these game function's: oCNpc::EV_PlayAni(oCMsgConversation *) and zCModel::StartAnimation(zSTRING const &) using IDA Pro, is there any abillity to run this functions with arguments and id's while game is running, using assembler, c++ or c#?
oCNpc and zCModel are the ID's i think.
|
|
| Back to top |
|
 |
Slugsnack Grandmaster Cheater Supreme
Reputation: 71
Joined: 24 Jan 2007 Posts: 1857
|
Posted: Thu Aug 13, 2009 1:42 pm Post subject: |
|
|
if those are exports of a library that the program uses, identify the library then you can get the address at runtime with getprocaddress/getmodulehandle/loadlibrary then you can call it as long as you debug correctly finding out what arguments it takes, etc.
i don't use ida pro much so i couldn't tell you whether those functions names are just made up by IDA pro or whether they are exported names. looking at them i would go with the latter though
if the function takes 1 parameter you can use createremotethread to call it externally. else, the easiest way for multi-parameter functions is to inject a DLL
|
|
| Back to top |
|
 |
smartz993 I post too much
Reputation: 2
Joined: 20 Jun 2006 Posts: 2013 Location: USA
|
Posted: Thu Aug 13, 2009 2:23 pm Post subject: |
|
|
You can find all the exports using Dependency Walker. You can load the .EXE if you need and find the DLL that exports those functions (if it does).
Anything there, you can use with GetProcAddress if you're within the process's memory.
|
|
| Back to top |
|
 |
Slugsnack Grandmaster Cheater Supreme
Reputation: 71
Joined: 24 Jan 2007 Posts: 1857
|
Posted: Thu Aug 13, 2009 2:26 pm Post subject: |
|
|
| CFF Explorer is also a nice one for finding exports
|
|
| Back to top |
|
 |
|