TotalItem bypass code

**ongjx** · 11-17-2015

Currently ive only managed to do the coding section of changing the string of totalitem to totaliten.

but can anyone guide me on how to code the changing of opcode of the jne to je to bypass the file check?

this is my current code:

Code:

#include "stdafx.h"
#include <Windows.h>
#include <iostream> 
#include <stdio.h>

DWORD WINAPI LoopFunction(LPVOID lpParam)
{
	BYTE Bypass[9] = { 0x54, 0x6F, 0x74, 0x61, 0x6C, 0x49, 0x74, 0x65, 0x6E }; //Byte ON Bypass
	BYTE Bypass2[9] = { 0x54, 0x6F, 0x74, 0x61, 0x6C, 0x49, 0x74, 0x65, 0x6D }; //Byte OFF Bypass
	DWORD address = 0x874451; //BlackShot.exe+474451

	bool BypassAddy = false;

	HANDLE bs2015 = GetCurrentProcess();
	while (1){
		if (GetAsyncKeyState(VK_HOME)){
			WriteProcessMemory(bs2015, (void*)(address), &Bypass2, 9, 0);
			BypassAddy = false;
		}
		else if (BypassAddy == false){
			WriteProcessMemory(bs2015, (void*)(address), &Bypass, 9, 0);
			BypassAddy = true;
		}
	}
}

void Patch(void *adr, void *ptr, int size)
{
	DWORD NewProtection;
	VirtualProtect(adr, size, PAGE_EXECUTE_WRITECOPY, &NewProtection);
	memcpy(adr, ptr, size);
	VirtualProtect(adr, size, NewProtection, &NewProtection);
}


BOOL WINAPI DllMain(HINSTANCE hModule, DWORD dwAttached, LPVOID lpvReserved)
{
	if (dwAttached == DLL_PROCESS_ATTACH) {
		CreateThread(NULL, 0, &LoopFunction, NULL, 0, NULL);
	}
	return 1;
}

**COD3RIN** · 11-17-2015

how about this for short.
BYTE Bypass[1] = {0x6E }; //Byte ON Bypass
BYTE Bypass2[1] = {0x6D }; //Byte OFF Bypass

**ongjx** · 11-17-2015

Originally Posted by COD3RIN

how about this for short.
BYTE Bypass[1] = {0x6E }; //Byte ON Bypass
BYTE Bypass2[1] = {0x6D }; //Byte OFF Bypass

oh yea that makes things shorter. thx! But is there anyway to change the Jne to Je?
i know that jne is 0x75 and je is 0x74 but how do i write out the code at the address for the bypass?

**garenjoker** · 11-18-2015

anyone who can help this guy...sharing is caring

**COD3RIN** · 11-18-2015

Originally Posted by ongjx

oh yea that makes things shorter. thx! But is there anyway to change the Jne to Je?
i know that jne is 0x75 and je is 0x74 but how do i write out the code at the address for the bypass?

search for 75 use byte then change to 74 until you find the right address

**ongjx** · 11-18-2015

Originally Posted by COD3RIN

search for 75 use byte then change to 74 until you find the right address

Code:

BlackShot.exe+C1571 - 0F85 4A060000         - jne BlackShot.exe+C1BC1
BlackShot.exe+C1571 - 0F84 4A060000         - je BlackShot.exe+C1BC1

ive got this but idk how to change it to code. and using bytes to find the right address is way too long and tedious. is there any other way?

**franklinsi** · 11-23-2015

add skype please?

**ZetaReticuli** · 11-25-2015

Write with 4 bytes!

**ongjx** · 11-26-2015

Originally Posted by ZetaReticuli

Write with 4 bytes!

What do you mean? Can u be clearer? u mean jne code write in 4bytes?

do i have to use asm_ in c++ for the opcode?

Thread: TotalItem bypass code

Thread Tools

Display

TotalItem bypass code

The Following User Says Thank You to ongjx For This Useful Post:

The Following User Says Thank You to ongjx For This Useful Post:

Similar Threads

Run 1 PC on 2 CrossFire (With VMware Workstation X-Trap Bypass Code)

How to use bypass "code" to get old hacks.

[Source] Bypass Code

CA Bypass Code

[Help] Need a bypass code for c + +