emanue (06-26-2010)
I'm no guru when it comes to programming, or reversing for that matter. I have a project I'm going to be working on in parallel with the python esp/aimbot. I need to get the client name and IP address of players in game. I'm wondering if HellDemon can provide some help in this area, I'm going to try olly, and see if i can figure something out, however I'm fairly certain my knowledge level is going to result in squat for info. So thanks if you can help, and I appreciate all information that is given, Archangel gave me some info previously and it wasn't exactly what I had in mind, but thanks anyway man. I wonder If I can get a ban from using Olly? well here goes nothing......
emanue (06-26-2010)
What version are you creating this for?
CoD Minion: Jan 13th 2011 to April 11 2011
MMORPG Minion Since: March 28th 2011 to April 11 2011
Don't be afraid to rep, you aren't loosing anything!
Don't forget your P&Q's. Press the thanks button if someone has helped.
jamesa1994@hotmail.com
Last edited by dheir; 06-27-2010 at 04:29 AM. Reason: Took out my frustration since his post was deleted
CoD Minion: Jan 13th 2011 to April 11 2011
MMORPG Minion Since: March 28th 2011 to April 11 2011
Don't be afraid to rep, you aren't loosing anything!
Don't forget your P&Q's. Press the thanks button if someone has helped.
jamesa1994@hotmail.com
dheir (06-27-2010)
clientinfo is located at 0x8EC2C8, the size of the struct is 0x52C.
Name can be found at 0xC, and is 16 bytes long.
not sure if IP is stored in clientinfo(haven't checked), if it is it's going to be at 0x0030(16 bytes unknown), or somewhere after 0x0180(only unknown after that ^^)
Ah we-a blaze the fyah, make it bun dem!
dheir (06-27-2010)
Only 4 bytes needed to store an IP...
dheir (06-27-2010)
Is this assuming the xxx.xxx.xxx.xxx convention is used? I mean do we even know how it is stored? I know this all sounds like I'm asking for the answer, it's because I am lol.
But I'd really like to learn how to find the answer. I've not come up with a comprehensive article or "guide" to understanding olly. Maybe I'm a dolt? Hell maybe I should just ask kidebr, maybe he will help me out, maybe not. Then again I'm probably over my head here too, but thanks for the input NiPiN.
Last edited by dheir; 06-27-2010 at 06:28 AM. Reason: Sp Errors.
I freshly installed an 32bit win7 system last weekend and still need to find some Olly skills, so no I'm of no help on that front.
But if you search for your own IP in mem, whilst running to machines running on this. If its stored in 4 bytes it could look like this (ip/norm4bytesashex/reversed4bytesashex) and should show up in CE:
- 127.0.0.1/7F000001/0100007f
- 192.168.1.13/C0A8010D/0D01A8C0
It's also possible they are stored in a string containing the hex notation of the 4*8bits...
Once found with CE, it should be possible to find the location where the address is written to and you could start reversing the struct as explained by H_D...
Last edited by NiPiN³; 06-27-2010 at 06:21 PM. Reason: Url to H_D tutorial.