Cshell.dll scanner bypass possiblities?

[blackm33k]

When/how often does it scan? just at loadup or ingame aswell?
if its just at loadup then why dont you delay the injection by (lets say) 10 seconds to bypass the scan?

[[MPGH]AVGN]

moved to discussion

[swatfx]

When/how often does it scan? just at loadup or ingame aswell?
if its just at loadup then why dont you delay the injection by (lets say) 10 seconds to bypass the scan?

read Gordon's thread. It scans the complete memory of Cshell.dll upon entering a game so delaying the injection would not work

[iShockYouuu]

What if you could somehow make it inject once your in-game! then just press insert and walaa

[neononxxx]

What if you could somehow make it inject once your in-game! then just press insert and walaa

that would not work.

You would have to either disable the scanner or bypass the scan.

[freedompeace]

When/how often does it scan? just at loadup or ingame aswell?
if its just at loadup then why dont you delay the injection by (lets say) 10 seconds to bypass the scan?

By 10 seconds, HackShield will have already deployed, making injection impossible.

[Gordon`]

By 10 seconds, HackShield will have already deployed, making injection impossible.

Impossible? On x86 just stop their driver from loading and on x64 the driver won't even load. So you can inject.

[vinay478]

Impossible? On x86 just stop their driver from loading and on x64 the driver won't even load. So you can inject.

Making a Bypass is pissing me off know. I had an idea what i was doing until GORDON!! said no.. that won't work >.<

[freedompeace]

Impossible? On x86 just stop their driver from loading and on x64 the driver won't even load. So you can inject.

I was talking about how he wanted to do it - he just wanted to wait 10 seconds.

[wainner3d]

The function of the scan is in csshell or engine? Make a jump in will solve?

[supercarz1991]

The function of the scan is in csshell or engine? Make a jump in will solve?

thats what i would think, couldn't we just make it so it skips the scan all together? add jump code to something before it to something after it?

[freedompeace]

thats what i would think, couldn't we just make it so it skips the scan all together? add jump code to something before it to something after it?

And you would think that they smarter than this.

[Anubiset]

Perhaps something like this would work?

Code:

#include <windows.h>
bool IsGameReadyForHook()
{
if( GetModuleHandleA( "d3d9.dll" ) != NULL 
&& GetModuleHandleA( "ClientFX.fxd" ) != NULL 
&& GetModuleHandleA( "CShell.dll" ) != NULL )
return true;
return false;
}
void __cdecl PushToConsole(const char* szCommand )
{
HMODULE hMod = GetModuleHandleA("CShell.dll");
if(hMod == NULL)
return;
int* ltClientAddr = (int*) 0x377C4450;

typedef int (*ptc_t)(const char *);
ptc_t ptc = *(ptc_t*) (*ltClientAddr + 0x208);
ptc(szCommand);
}	
void main()
{
while(true)
{
PushToConsole("SkelModelStencil 1");
PushToConsole("ShowFps 1");
PushToConsole("FogEnable 1" );
PushToConsole("FullBright 1" );
PushToConsole("KnockBack 0" );
PushToConsole("PerturbRotationEffect  0.000000" );
PushToConsole("PerturbIncreaseSpeed 0.000000" );
PushToConsole("PerturbWalkPercent 0.000000" );
PushToConsole("PerturbFiringIncreaseSpeed 0.000000" );
PushToConsole("PerturbRecoil 0.000000" );
PushToConsole("FireMovePerturb 0.000000" );
PushToConsole("ZoomedFireMoveDuckPerturb 0.000000" );
PushToConsole("ZoomedFireMovePerturb 0.000000" );
PushToConsole("ZoomedFireDuckPerturb 0.000000" );
}
}
DWORD WINAPI dwHackThread(LPVOID)
{
while( !IsGameReadyForHook() )
Sleep(100);
main();
return 0;
}
BOOL WINAPI DllMain ( HMODULE hDll, DWORD dwReason, LPVOID lpReserved )
{
DisableThreadLibraryCalls(hDll);
if ( dwReason == DLL_PROCESS_ATTACH )
{
CreateThread(NULL, NULL, dwHackThread, NULL, NULL, NULL);
}
return TRUE;
}

[Stephen]

Perhaps something like this would work?

Code:

#include <windows.h>
bool IsGameReadyForHook()
{
if( GetModuleHandleA( "d3d9.dll" ) != NULL 
&& GetModuleHandleA( "ClientFX.fxd" ) != NULL 
&& GetModuleHandleA( "CShell.dll" ) != NULL )
return true;
return false;
}
void __cdecl PushToConsole(const char* szCommand )
{
HMODULE hMod = GetModuleHandleA("CShell.dll");
if(hMod == NULL)
return;
int* ltClientAddr = (int*) 0x377C4450;

typedef int (*ptc_t)(const char *);
ptc_t ptc = *(ptc_t*) (*ltClientAddr + 0x208);
ptc(szCommand);
}	
void main()
{
while(true)
{
PushToConsole("SkelModelStencil 1");
PushToConsole("ShowFps 1");
PushToConsole("FogEnable 1" );
PushToConsole("FullBright 1" );
PushToConsole("KnockBack 0" );
PushToConsole("PerturbRotationEffect  0.000000" );
PushToConsole("PerturbIncreaseSpeed 0.000000" );
PushToConsole("PerturbWalkPercent 0.000000" );
PushToConsole("PerturbFiringIncreaseSpeed 0.000000" );
PushToConsole("PerturbRecoil 0.000000" );
PushToConsole("FireMovePerturb 0.000000" );
PushToConsole("ZoomedFireMoveDuckPerturb 0.000000" );
PushToConsole("ZoomedFireMovePerturb 0.000000" );
PushToConsole("ZoomedFireDuckPerturb 0.000000" );
}
}
DWORD WINAPI dwHackThread(LPVOID)
{
while( !IsGameReadyForHook() )
Sleep(100);
main();
return 0;
}
BOOL WINAPI DllMain ( HMODULE hDll, DWORD dwReason, LPVOID lpReserved )
{
DisableThreadLibraryCalls(hDll);
if ( dwReason == DLL_PROCESS_ATTACH )
{
CreateThread(NULL, NULL, dwHackThread, NULL, NULL, NULL);
}
return TRUE;
}

Are you fucking kidding me. /fp

[Anubiset]

Are you fucking kidding me. /fp

LOL, well I wasn't sure if the method posted in that source code would still potentially work if someone fixed it up a bit...

I apologize, I'm far from a good hack coder. I'm actually just learning this stuff. I wish I could just learn how to make a simple wallhack like the one that looks like permanent satellite scan where you can see the enemies through walls...

Anyone know how a simple wallhack can be made? Or does that require a bypass now as well?