Bunbunbunz (08-25-2015)
Basically skill injection with a skill all classes can use that does 50 million damage.
There are two parts, enable part 1 first and then enable part 2, disable part 2 first then part 1 (so you dont dc)
Just put script in cheat engine.
Part 1
[enable]
0099375D: // Block the mob knockback
db 90 E9
01229AC0: // Block the character sliding/stucking feature
db EB
[disable]
0099375D: // 80 BD ? ? 00 00 00 0F 85 ? ? 00 00 8B CD
db 0F 85
01229AC0: // 74 ? 83 BE ? ? 00 00 00 74 ? 81 BE
db 74
Part 2
define(TSingleton__CUserPool,0199B28C) // 8B ? ? ? ? ? ? E8 ? ? ? ? ? ? ? ? 0F 84 ? ? ? ? 39
define(TSingleton__CMobPool,0199B290) // 8B 0D ? ? ? ? ? E8 ? ? ? ? 8B ? 85 ? 74 ? 8B ? ? 8B
define(mob_limit,#0)
define(people_limit,#1)
define(skill_id, #80001593)
[enable]
alloc(skill_inject_check_hook,128)
label(skill_inject_check_skip)
label(skill_inject_check_return)
01246D7C: // Check if the skill-injection should be done
jmp skill_inject_check_hook
nop
skill_inject_check_return:
skill_inject_check_hook:
mov ebx,[TSingleton__CUserPool]
mov ebx,[ebx+18]
mov eax,people_limit
cmp ebx,eax
jge skill_inject_check_skip
mov eax,[TSingleton__CMobPool]
mov eax,[eax+10]
sub eax,ebx
mov ebx,mob_limit
cmp eax,ebx
jle skill_inject_check_skip
mov [esi++0000A49C],skill_id
jmp 01246E96 // Destination of 'je' below hook
skill_inject_check_skip:
jmp 01247051 // Original opcode
01246F58: // Skip default-case
db 90 90 90 90 90 90
01246F65: // Choose injection-function (melee)
jmp far 01246F9B
dw 9090
[disable]
01246D7C: // 0F 84 ? ? ? ? 2B 9E ? ? ? ? 0F 88
db 0F 84 CF 02 00 00
01246F58: // 'ja'-instruction at the switch-case (end)
db 0F 87 E9 00 00 00
01246F65: // switch-case at the end
jmp dword ptr [eax*4+0124705C]
dealloc(skill_inject_check_hook)
I didn't create this just share with this forum
Bunbunbunz (08-25-2015)
Thanks for release!
Np ////2short