Results 1 to 7 of 7
  1. #1
    D-Vid the DBag's Avatar
    Join Date
    Jan 2011
    Gender
    male
    Posts
    146
    Reputation
    10
    Thanks
    13
    My Mood
    Lurking

    Finding PTC commands

    Hey guys.
    I have CShell open in Olly.
    I am curious... How would I go about finding the PTC Commands?
    I want to know also, if the addy for the command can be manipulated to make the PTC command work, as an alternative to using the PTC commands, considering the fact that for SOME reason, the PTC methods that I have gotten ahold of are not working.

    I need PTC. :-/


  2. #2
    freedompeace's Avatar
    Join Date
    Jul 2010
    Gender
    female
    Posts
    3,035
    Reputation
    340
    Thanks
    2,784
    My Mood
    Sad
    Take the PTC function address. Look for commands that call that address.

  3. #3
    D-Vid the DBag's Avatar
    Join Date
    Jan 2011
    Gender
    male
    Posts
    146
    Reputation
    10
    Thanks
    13
    My Mood
    Lurking
    That doesn't exactly help. :-\
    I need like a tutorial or something on how to find certain addresses using olly.
    I don't wanna hear about sigscans etc.
    I just wanna know how I would go about taking an old address from last patch, and finding the new, updated one from this patch.

    Explain?

    That and I need a working PTC method too.


  4. #4
    whit's Avatar
    Join Date
    Jan 2010
    Gender
    male
    Posts
    7,170
    Reputation
    490
    Thanks
    2,252
    Right Click
    Search for all reference text strings

  5. #5
    D-Vid the DBag's Avatar
    Join Date
    Jan 2011
    Gender
    male
    Posts
    146
    Reputation
    10
    Thanks
    13
    My Mood
    Lurking
    Quote Originally Posted by whit View Post
    Right Click
    Search for all reference text strings
    Obviously... :P


  6. #6
    NOOB's Avatar
    Join Date
    Apr 2010
    Gender
    male
    Posts
    3,863
    Reputation
    425
    Thanks
    8,598
    Quote Originally Posted by D-Vid the DBag View Post


    Obviously... :P
    One of many ways to find the LTClient pointer.

    1. ) Search "drawguns 1"

    Code:
    371A7C97  |. 8B15 50BE8137  MOV EDX,DWORD PTR DS:[3781BE50]
    371A7C9D  |. 8B82 08020000  MOV EAX,DWORD PTR DS:[EDX+208]
    371A7CA3  |. 68 CC877137    PUSH CShell.377187CC                     ;  ASCII "drawguns 1"
    3. ) ???

    4. ) PROFITZZ

  7. #7
    Departure's Avatar
    Join Date
    Nov 2010
    Gender
    male
    Posts
    818
    Reputation
    125
    Thanks
    1,785
    My Mood
    Doh
    Heres a Sig I made using "Make Sig" Olly Debug plugin

    Pattern
    \xFA\x44\x24\x04\x50\x68\x00\x00\x00\x00\xE8\x00\x 00\x00\x00\x83\xC4\x08\xC3

    Mask
    xxxxxx????x????xxxx

    Base Address
    0x461000

    Scan Size
    0x4c0000