Page 1 of 2 12 LastLast
Results 1 to 15 of 25
  1. #1
    Genesis's Avatar
    Join Date
    Nov 2012
    Gender
    male
    Location
    Terra Australis
    Posts
    4,106
    Reputation
    1315
    Thanks
    2,466

    Auto Finding GameStatus without Classes.

    Was looking to find a way to find GameStatus without classes about a month ago and i used my super leet math skills to figure out a ghetto sort of way.
    I'm feeling sort of nice so i'll post it to the public.

    Basically, LTClient Address + 0x18808 - 0x7c + 0x10 = GameStatus Address
    For the current patch it would be 0x378206B8 + 0x18808 - 0x7c + 0x10 = 0x37838E54

    Now you can use the LTClient sigscan to grab a working GameStatus.

    Code:
    dwLTClient= FindPattern(dwCShellEntry, dwCShellCodeSize,(PBYTE) "\x8B\x0D\x00\x00\x00\x00\xD9\x54\x24\x00\x53\xD9\x54\x[DONT COPY AND PASTE ME!]24\x00\x8D\x5C\x24\x00\xD9\x5C\x24\x00\x53\[NO COPY AND PASTING]xD9\xE8\x50", "xx????xxx?xxxx?xxx?xxx?xxx");
    If you've had any sort of experience with hacking CA you'd know the CShell Entry point and Code size, so just edit the sig scan, i don't want leechers all over this.

    Anyway, the final step.
    Find where you are calling your sig scans, and basically do this.

    dwGameStatus = dwLTClient + 0x18808 - 0x7c + 0x10;

    Bam, working gamestatus all the time without the use of a class or a gamestatus sig.

    Its a shame Gamestatus isn't primarily used anymore, but i hope people can still find it useful.
    helt ensam.

  2. #2
    R4v0r's Avatar
    Join Date
    Nov 2012
    Gender
    male
    Location
    London
    Posts
    234
    Reputation
    11
    Thanks
    141
    My Mood
    Amazed
    Why not simple use the GameStatus signature?

  3. #3
    5555satan's Avatar
    Join Date
    Sep 2012
    Gender
    male
    Location
    i dont remember where i live
    Posts
    297
    Reputation
    10
    Thanks
    238
    My Mood
    Paranoid
    Quote Originally Posted by R4v0r View Post
    Why not simple use the GameStatus signature?
    cuz this will auto update and wont get patched....
    Press Thanks if i helped you / if you liked my signature



    Add me on skype: ReFusioNN-

  4. #4
    Saltine's Avatar
    Join Date
    Jun 2011
    Gender
    male
    Posts
    494
    Reputation
    104
    Thanks
    625
    Quote Originally Posted by Redux View Post
    Was looking to find a way to find GameStatus without classes about a month ago and i used my super leet math skills to figure out a ghetto sort of way.
    I'm feeling sort of nice so i'll post it to the public.

    Basically, LTClient Address + 0x18808 - 0x7c + 0x10 = GameStatus Address
    For the current patch it would be 0x378206B8 + 0x18808 - 0x7c + 0x10 = 0x37838E54

    Now you can use the LTClient sigscan to grab a working GameStatus.

    Code:
    dwLTClient= FindPattern(dwCShellEntry, dwCShellCodeSize,(PBYTE) "\x8B\x0D\x00\x00\x00\x00\xD9\x54\x24\x00\x53\xD9\x54\x[DONT COPY AND PASTE ME!]24\x00\x8D\x5C\x24\x00\xD9\x5C\x24\x00\x53\[NO COPY AND PASTING]xD9\xE8\x50", "xx????xxx?xxxx?xxx?xxx?xxx");
    If you've had any sort of experience with hacking CA you'd know the CShell Entry point and Code size, so just edit the sig scan, i don't want leechers all over this.

    Anyway, the final step.
    Find where you are calling your sig scans, and basically do this.

    dwGameStatus = dwLTClient + 0x18808 - 0x7c + 0x10;

    Bam, working gamestatus all the time without the use of a class or a gamestatus sig.

    Its a shame Gamestatus isn't primarily used anymore, but i hope people can still find it useful.
    Nice job, but why not condense the addition into one constant haha?
    Code:
    dwGameStatus = dwLTClient + 0x1879C;

    Oh no! Vortex is gay!

  5. #5
    Shadow`'s Avatar
    Join Date
    Nov 2011
    Gender
    male
    Location
    MN
    Posts
    643
    Reputation
    74
    Thanks
    2,999
    My Mood
    Relaxed
    Nice job on this, it will be useful to members who still use Gamestatus.
    Last edited by Shadow`; 01-18-2013 at 11:00 AM.
    Currently coding applications in Java and C++.

    "It is change, continuing change, inevitable change, that is the dominant factor in society today. No sensible decision can be made any longer without taking into account not only the world as it is, but the world as it will be." -Isaac Asimov

  6. #6
    Genesis's Avatar
    Join Date
    Nov 2012
    Gender
    male
    Location
    Terra Australis
    Posts
    4,106
    Reputation
    1315
    Thanks
    2,466
    Quote Originally Posted by Saltine View Post

    Nice job, but why not condense the addition into one constant haha?
    Code:
    dwGameStatus = dwLTClient + 0x1879C;
    I said i was leet at math in the first post, truth is i'm terrible at math! It was more random guessing and me thinking i was good that deceived my mind into me figuring this out XD Thanks.
    helt ensam.

  7. The Following User Says Thank You to Genesis For This Useful Post:

    Saltine (01-18-2013)

  8. #7
    coderstrikeagain's Avatar
    Join Date
    Jan 2013
    Gender
    male
    Posts
    17
    Reputation
    10
    Thanks
    3
    Well if you do auto spamming on your hack you should use this if you don't use the class or anything else.

  9. #8
    Departure's Avatar
    Join Date
    Nov 2010
    Gender
    male
    Posts
    818
    Reputation
    125
    Thanks
    1,785
    My Mood
    Doh
    What if the "class" changes then this offset will change... there is no guessing involved here its the offset of the class to the game status, in this case you are jumping 0x1879C bytes from the start of the LTClient "class", Btw I am not even sure why people call these a class, I am sure C++ even call this a structure.

    Good work, and you can do this for any of the functions/Values of any class/Structure without the need to have the structure defined in your code.. ooops I mean "Class" Defined...
    DJector.Lite
    Get the advantages of new injection technology, with 1 click easy to use injector, work for all platforms x86/x64

    Download

    D-Jector
    Get the most advanced and full featured injector around, works for any game and any platform x86/x64, nothing comes even close.
    Download

  10. The Following User Says Thank You to Departure For This Useful Post:

    [MPGH]Genesis (01-18-2013)

  11. #9
    Flengo's Avatar
    Join Date
    May 2010
    Gender
    male
    Location
    Ontario, Canada
    Posts
    15,696
    Reputation
    3319
    Thanks
    11,111
    My Mood
    Happy
    I don't think this will last very long. A lot of things can be changed in between. Jumping 0x1879C bytes is pretty big.
    I Read All Of My PM's & VM's
    If you need help with anything, just let me know.
     
     
    VM | PM

    Publicist Since 04.04.2015
    Middleman Since Unknown - Unknown
    Global Moderator Since 08.01.2013
    Donator Since 05.29.2013

    Minion+ Since 04.18.2013

    District 187 Minion Since 04.04.2013
    Steam Minion Since 02.26.2013
    WarRock Minion Since 02.19.2013
    A.V.A Minion Since 02.13.2013
    DayZ Minion Since 01.21.2013
    Combat Arms Minion Since 12.26.2012
    Contributor Since 11.16.2012
    Member Since 05.11.2010


  12. #10
    Acea's Avatar
    Join Date
    Oct 2012
    Gender
    female
    Location
    Home of the elks
    Posts
    346
    Reputation
    80
    Thanks
    2,204
    My Mood
    Stressed
    Why not use class checks

  13. #11
    Genesis's Avatar
    Join Date
    Nov 2012
    Gender
    male
    Location
    Terra Australis
    Posts
    4,106
    Reputation
    1315
    Thanks
    2,466
    Quote Originally Posted by Flengo View Post
    I don't think this will last very long. A lot of things can be changed in between. Jumping 0x1879C bytes is pretty big.
    You may think that, but i've had this for 2 patches now
    helt ensam.

  14. #12
    Ch40zz-C0d3r's Avatar
    Join Date
    Apr 2011
    Gender
    male
    Posts
    839
    Reputation
    44
    Thanks
    400
    My Mood
    Twisted
    You guys...
    I think I should release my dynamic sfxmgr way LOL
    There is a virtual, simply hook it, grab ECX pointer + offset and youre done.

    Progress with my game - "Disbanded"
    • Fixed FPS lag on spawning entities due to the ent_preload buffer!
    • Edit the AI code to get some better pathfinding
    • Fixed the view bug within the sniper scope view. The mirror entity is invisible now!
    • Added a new silencer for ALL weapons. Also fixed the rotation bugs
    • Added a ton of new weapons and the choice to choose a silencer for every weapon
    • Created a simple AntiCheat, noobs will cry like hell xD
    • The name will be Disbanded, the alpha starts on the 18th august 2014



    Some new physics fun (Serversided, works on every client)



    My new AI
    http://www.youtube.com/watch?v=EMSB1GbBVl8

    And for sure my 8 months old gameplay with 2 friends
    http://www.youtube.com/watch?v=Na2kUdu4d_k

  15. The Following User Says Thank You to Ch40zz-C0d3r For This Useful Post:

    N3OH4X (02-04-2013)

  16. #13
    ZysorceN's Avatar
    Join Date
    Aug 2012
    Gender
    female
    Location
    California
    Posts
    68
    Reputation
    10
    Thanks
    912
    My Mood
    Aggressive
    Quote Originally Posted by Ch40zz-C0d3r View Post
    You guys...
    I think I should release my dynamic sfxmgr way LOL
    There is a virtual, simply hook it, grab ECX pointer + offset and youre done.
    There is many ways to do this virtuals that return the game status Static Global Variables Code caves. and i could keep mentioning method's so like i would tell anybody else. fucking stop asking for attention either make it open source or not. just do not ask if you should.

  17. The Following User Says Thank You to ZysorceN For This Useful Post:

    Acea (01-20-2013)

  18. #14
    Suernoep's Avatar
    Join Date
    Nov 2011
    Gender
    male
    Posts
    25
    Reputation
    10
    Thanks
    8
    nice job :0 amazing

  19. #15
    Departure's Avatar
    Join Date
    Nov 2010
    Gender
    male
    Posts
    818
    Reputation
    125
    Thanks
    1,785
    My Mood
    Doh
    Quote Originally Posted by Ch40zz-C0d3r View Post
    You guys...
    I think I should release my dynamic sfxmgr way LOL
    There is a virtual, simply hook it, grab ECX pointer + offset and youre done.
    Don't think about it just do it... I was thinking about releasing photos of my cock, but then realized the amount of envy from other members and the fags around here, It wouldn't be good for my pm box, Point being less talk and more action, if you say your going to do something just do it.....
    DJector.Lite
    Get the advantages of new injection technology, with 1 click easy to use injector, work for all platforms x86/x64

    Download

    D-Jector
    Get the most advanced and full featured injector around, works for any game and any platform x86/x64, nothing comes even close.
    Download

  20. The Following 7 Users Say Thank You to Departure For This Useful Post:

    arun823 (01-22-2013),Ch40zz-C0d3r (01-23-2013),[MPGH]Flengo (01-20-2013),[MPGH]Genesis (01-20-2013),Saltine (01-20-2013),Shadow` (01-20-2013),wraithkilla (01-25-2013)

Page 1 of 2 12 LastLast

Similar Threads

  1. Replies: 2
    Last Post: 04-09-2012, 11:32 AM
  2. [Help Request] Need auto build hack without full cheat client
    By anarki in forum Minecraft Help
    Replies: 4
    Last Post: 01-19-2012, 10:00 PM
  3. [Release] [source]D3D9: Finding the VirtualTable without signatures
    By .::SCHiM::. in forum C++/C Programming
    Replies: 11
    Last Post: 05-20-2011, 07:53 PM
  4. [Release] ddd555 pub working without auto install, + tut
    By mariofan901 in forum Combat Arms Hacks & Cheats
    Replies: 65
    Last Post: 09-18-2009, 11:37 PM
  5. [Tutorial]Change class without respawn
    By vir2000 in forum Game Hacking Tutorials
    Replies: 0
    Last Post: 01-04-2006, 02:47 PM