Results 1 to 10 of 10
  1. #1
    seaplusplus's Avatar
    Join Date
    Jan 2011
    Gender
    male
    Posts
    107
    Reputation
    4
    Thanks
    49
    My Mood
    Drunk

    [Looking for Info] I'm new at BO...

    Okay, so I recently have gotten into hacking Black Ops. I used to code for Combat Arms, which was based of of FEAR SDK. It uses CShell.dll to store most of it's addresses. Now, could someone tell me the file I will need to dump to find the addresses for Black Ops? Like the ones you guys have been posting. Also, what engine is Black Ops made with? Third, could someone give me a working Console Command function?

    Thanks, and I will do my best to contribute to the community!
    Last edited by seaplusplus; 01-23-2011 at 01:27 PM.

  2. #2
    rowan112's Avatar
    Join Date
    Mar 2010
    Gender
    male
    Posts
    623
    Reputation
    14
    Thanks
    460
    Quote Originally Posted by seaplusplus View Post
    Okay, so I recently have gotten into hacking Black Ops. I used to code for Combat Arms, which was based of of FEAR SDK. It uses CShell.dll to store most of it's addresses. Now, could someone tell me the file I will need to dump to find the addresses for Black Ops? Like the ones you guys have been posting. Also, what engine is Black Ops made with? Third, could someone give me a working Console Command function?

    Thanks, and I will do my best to contribute to the community!
    well black ops uses same engine as cod 5, and cod 5 is a modified version of cod 4 engine so it must be quake 3 engine

  3. #3
    seaplusplus's Avatar
    Join Date
    Jan 2011
    Gender
    male
    Posts
    107
    Reputation
    4
    Thanks
    49
    My Mood
    Drunk
    Quote Originally Posted by rowan112 View Post
    well black ops uses same engine as cod 5, and cod 5 is a modified version of cod 4 engine so it must be quake 3 engine
    k thanks man.

  4. #4
    lolbie's Avatar
    Join Date
    Apr 2010
    Gender
    male
    Location
    Netherlands
    Posts
    5,207
    Reputation
    288
    Thanks
    2,090
    My Mood
    Angelic
    uhm i want to tell you this
    but if you inject a hack or edit memory or something you are banned in 2 weeks to 2 months

    so you are making a detected hack already
    if I am right
    I love it when people keep their agreements /sarcasm ftw

  5. #5
    seaplusplus's Avatar
    Join Date
    Jan 2011
    Gender
    male
    Posts
    107
    Reputation
    4
    Thanks
    49
    My Mood
    Drunk
    Quote Originally Posted by lolbie View Post
    uhm i want to tell you this
    but if you inject a hack or edit memory or something you are banned in 2 weeks to 2 months

    so you are making a detected hack already
    if I am right
    then what are the hacks people have made?
    and will i still be banned if i'm playing solo?

  6. #6
    Skyline.'s Avatar
    Join Date
    Dec 2009
    Gender
    male
    Posts
    10,160
    Reputation
    403
    Thanks
    1,613
    solo hacks = no ban
    mp hacks = external overlays = no bans


  7. #7
    master131's Avatar
    Join Date
    Apr 2010
    Gender
    male
    Location
    Melbourne, Australia
    Posts
    8,802
    Reputation
    3165
    Thanks
    73,309
    My Mood
    Breezy
    Black Ops also uses CShell.dll to store its addresses.

    Quote Originally Posted by cardoow View Post
    the easiest method is using it like this
    Code:
    typedef void (*SendConsoleCommand_)(int a1, char *command);
    SendConsoleCommand_ SendConsoleCommand = (SendConsoleCommand_)0x457290;
    then call it in your renderer like this
    Code:
    SendConsoleCommand(0, "god\n");
    However, I believe 0x457290 is not the correct address.

    Here is how to find the correct address for most COD games (example from COD4):
    SendCommandToConsole:

    Search for string "stoprecord" or "screenshot silent" or "quit" or "pb_sv_guidrelax".

    Code:
    0046C90F   68 400E6D00    PUSH iw3mp.006D0E40  ; ASCII "screenshot silent"
    0046C914   6A 00                PUSH 0
    0046C916   6A 00                PUSH 0
    0046C918   E8 93D10800    CALL iw3mp.004F9AB0 '<<<--- SendCommandToConsole function offset'
    0046C91D   83C4 0C                ADD ESP,0C
    #define OFFSET_SENDCOMMAND 0x4F9AB0
    Last edited by master131; 01-23-2011 at 07:32 PM.
    Donate:
    BTC: 1GEny3y5tsYfw8E8A45upK6PKVAEcUDNv9


    Handy Tools/Hacks:
    Extreme Injector v3.6.1 *NEW* Windows 10 compatible!
    A powerful and advanced injector in a simple GUI.
    Can scramble DLLs on injection making them harder to detect and even make detected hacks work again!

    Minion Since: 13th January 2011
    Moderator Since: 6th May 2011
    Global Moderator Since: 29th April 2012
    Super User/Unknown Since: 23rd July 2013
    'Game Hacking' Team Since: 30th July 2013

    --My Art--
    [Roxas - Pixel Art, WIP]
    [Natsu - Drawn]
    [Natsu - Coloured]


    All drawings are coloured using Photoshop.

    --Gifts--
    [Kyle]

  8. #8
    seaplusplus's Avatar
    Join Date
    Jan 2011
    Gender
    male
    Posts
    107
    Reputation
    4
    Thanks
    49
    My Mood
    Drunk
    Quote Originally Posted by master131 View Post
    Black Ops also uses CShell.dll to store its addresses.



    However, I believe 0x457290 is not the correct address.

    Here is how to find the correct address for most COD games (example from COD4):


    directly from black ops
    Code:
    005BAAC0  |. E8 5BD4F9FF    |CALL BlackOps.00557F20
    005BAAC5  |. 8B14B5 2450060>|MOV EDX,DWORD PTR DS:[ESI*4+3065024]
    005BAACC  |. 52             |PUSH EDX
    005BAACD  |. 57             |PUSH EDI
    005BAACE  |. E8 4DD4F9FF    |CALL BlackOps.00557F20
    that gives me 0x5baac0...
    Last edited by seaplusplus; 01-23-2011 at 07:56 PM.

  9. #9
    master131's Avatar
    Join Date
    Apr 2010
    Gender
    male
    Location
    Melbourne, Australia
    Posts
    8,802
    Reputation
    3165
    Thanks
    73,309
    My Mood
    Breezy
    Wouldn't it be the address that is called, not the address that calls it?
    I think it's 0x557F20 since I believe that is where the function resides according to your assembly output....

    Quote Originally Posted by seaplusplus View Post
    directly from black ops
    Code:
    005BAAC0  |. E8 5BD4F9FF    |CALL BlackOps.00557F20
    005BAAC5  |. 8B14B5 2450060>|MOV EDX,DWORD PTR DS:[ESI*4+3065024]
    005BAACC  |. 52             |PUSH EDX
    005BAACD  |. 57             |PUSH EDI
    005BAACE  |. E8 4DD4F9FF    |CALL BlackOps.00557F20
    that gives me 0x5baac0...
    I don't think you looked at the example carefully.
    Probably have to ask Melodia, Hell_Demon, cardoow or King-Orgy to help as I don't know enough Reverse Engineering to call myself a 'pro'.
    Last edited by master131; 01-23-2011 at 08:10 PM.
    Donate:
    BTC: 1GEny3y5tsYfw8E8A45upK6PKVAEcUDNv9


    Handy Tools/Hacks:
    Extreme Injector v3.6.1 *NEW* Windows 10 compatible!
    A powerful and advanced injector in a simple GUI.
    Can scramble DLLs on injection making them harder to detect and even make detected hacks work again!

    Minion Since: 13th January 2011
    Moderator Since: 6th May 2011
    Global Moderator Since: 29th April 2012
    Super User/Unknown Since: 23rd July 2013
    'Game Hacking' Team Since: 30th July 2013

    --My Art--
    [Roxas - Pixel Art, WIP]
    [Natsu - Drawn]
    [Natsu - Coloured]


    All drawings are coloured using Photoshop.

    --Gifts--
    [Kyle]

  10. #10
    seaplusplus's Avatar
    Join Date
    Jan 2011
    Gender
    male
    Posts
    107
    Reputation
    4
    Thanks
    49
    My Mood
    Drunk
    Quote Originally Posted by master131 View Post
    Wouldn't it be the address that is called, not the address that calls it?
    I think it's 0x557F20 since I believe that is where the function resides according to your assembly output....



    I don't think you looked at the example carefully.
    Probably have to ask Melodia, Hell_Demon, cardoow or King-Orgy to help as I don't know enough Reverse Engineering to call myself a 'pro'.
    Well thanks anyway! cardoow and King-Orgy said 0x5baad0 was correct...

    ----------------------

    typedef void (*SendConsoleCommand_)(int a1, char *command);
    SendConsoleCommand_ SendConsoleCommand = (SendConsoleCommand_)TheAddy;

    what is a1 used for?
    SendConsoleCommand(?, "cg_drawFPS 1");
    Last edited by seaplusplus; 01-24-2011 at 01:44 PM.