Push to console

**.::SCHiM::.** · 05-27-2011

I hear that for a console command to work you need to call from somewhere in engine.exe and you need to be in the correct thread.

Can someone tell me what the requirements are for calling console commands?

**whit** · 05-27-2011

Check if You are in game and Call them in Any hooked Directx Function ( Present, Endscene ect )

**.::SCHiM::.** · 05-27-2011

Originally Posted by whit

Check if You are in game and Call them in Any hooked Directx Function

it's that easy?
Because I heard some people say that you have to call form a specific function. But I'll try and see if it works.

**NOOB** · 05-27-2011

Originally Posted by whit

Check if You are in game and Call them in Any hooked Directx Function ( Present, Endscene ect )

You don't need an ingame check.

**whit** · 05-27-2011

Originally Posted by NOOB

You don't need an ingame check.

Damn thats good to know but it will work either way i guess

**.::SCHiM::.** · 05-27-2011

Any commands that are working surely working at the moment?

**NOOB** · 05-27-2011

Originally Posted by .::SCHiM::.

Any commands that are working surely working at the moment?

ShowFps 1

shows your FPS in the top left corner of you screen

**.::SCHiM::.** · 05-27-2011

Originally Posted by NOOB

ShowFps 1

shows your FPS in the top left corner of you screen

I'll try that one, chams for one, where not working "-_-

**Departure** · 05-27-2011

Nx Chams should be working....

Are you calling your PTC from a DirectX function?

**HellSpider** · 05-27-2011

You can do as others have told you, but it's possible to change the console commands without calling them from a D3D function.

There is a check for the thread ID and a check for the thread EP, it must be in range of Engine.exe code section.

To bypass the thread check, find the pointer where the real thread ID is stored and store the value, then change the DWORD to your thread ID before you change the console command, and then restore the real ID (just so that Engine.exe internal commands work again, otherwise only your DLL commands would work).

To bypass the range check you can change the EP located in the stack to a random address in the range of Engine.exe code section. To find the EP value:

Code:

mov eax,dword ptr fs:[18h]     // TEB
mov eax,dword ptr ds:[eax+4h]     // TEB.TopOfStack 
mov dword ptr ds:[eax-0Ch],SOME_ADDRESS     // TEB.TopOfStack.ThreadEP

**CAFlames** · 05-27-2011

Originally Posted by whit

Check if You are in game and Call them in Any hooked Directx Function ( Present, Endscene ect )

Why do you have to call them in present or endscene? I dont think you HAVE to.

**whit** · 05-27-2011

Originally Posted by CAFlames

Why do you have to call them in present or endscene? I dont think you HAVE to.

Thats what you & everybody else does

**CAFlames** · 05-27-2011

Originally Posted by whit

Thats what you & everybody else does

I call my telekill, ghostmode, and glitcher in a thread... not a d3d hook o.o

**whit** · 05-27-2011

Originally Posted by CAFlames

I call my telekill, ghostmode, and glitcher in a thread... not a d3d hook o.o

Are those Console Commands

**CAFlames** · 05-27-2011

Originally Posted by whit

Are those Console Commands

No. Im just stating i hook them there... so u can hook PTC there too

Thread: Push to console

Thread Tools

Display

Push to console