Results 1 to 15 of 15
  1. #1
    Avene's Avatar
    Join Date
    Jul 2012
    Gender
    male
    Posts
    134
    Reputation
    152
    Thanks
    2,052
    My Mood
    Relaxed

    Hook Present Engine 6/9/2012

    Code:
    #include <windows.h>
    #include <d3d9.h>
    #include <d3dx9.h>
    
    #pragma comment(lib, "d3d9.lib")
    #pragma comment(lib, "d3dx9.lib")
    
    #define PresentEngine 0x004C41AF
    DWORD retPresentEngine = ( PresentEngine + 0x5 );
    
    #define Red     D3DCOLOR_ARGB( 255, 255, 000, 000 )
    #define Green   D3DCOLOR_ARGB( 255, 000, 255, 000 )
    #define Blue    D3DCOLOR_ARGB( 255, 000, 000, 255 )
    #define Black   D3DCOLOR_ARGB( 255, 000, 000, 000 )
    
    LPD3DXFONT Font;
    
    VOID StartFont( LPDIRECT3DDEVICE9 pDevice )
    {
        if( Font )
        {
            Font->Release();
            Font = NULL;
        }
    
        if( !Font )
        {
            D3DXCreateFont( pDevice,
                            14,
                            0,
                            FW_BOLD,
                            1,
                            0,
                            DEFAULT_CHARSET,
                            OUT_DEFAULT_PRECIS,
                            DEFAULT_QUALITY,
                            DEFAULT_PITCH | FF_DONTCARE,
                            "Arial",
                            &Font );
        }
    }
    
    VOID WriteText( LPDIRECT3DDEVICE9 pDevice, INT x, INT y, DWORD color, CHAR *text )
    {    
        RECT rect;
        SetRect( &rect, x, y, x, y );
        Font->DrawText( NULL, text, -1, &rect, DT_NOCLIP | DT_LEFT, color );
    }
    
    __declspec( naked ) HRESULT WINAPI PresentMidfunction( )
    {
        static LPDIRECT3DDEVICE9 pDevice;
    
        __asm
        {
            MOV ECX, DWORD PTR DS:[EAX]
            MOV EDX, DWORD PTR DS:[ECX + 0x44]
            MOV DWORD PTR DS:[pDevice], EAX
            PUSH 0
            PUSHAD
        }
    
        StartFont( pDevice );
    
        if( Font )
            WriteText( pDevice, 300, 300, Red, "CrossFire: Hook Present Engine" );
    
        __asm
        {
            POPAD
            JMP retPresentEngine
        }
    }
    
    VOID *DetourCreate( BYTE *src, CONST BYTE *dst, CONST INT len )
    {
        BYTE *jmp =( BYTE * ) malloc( len + 5 );
        DWORD dwBack;
    
        VirtualProtect( src, len, PAGE_READWRITE, &dwBack );
        memcpy( jmp, src, len );    
        jmp += len;
        jmp[0] = 0xE9;
        *( DWORD * )( jmp + 1 ) = ( DWORD )( src + len - jmp ) - 5;
    
        src[0] = 0xE9;
        *( DWORD * )( src + 1 ) = ( DWORD )( dst - src ) - 5;
        for( INT i = 5; i < len; i++ )
            src[i] = 0x90;
        VirtualProtect( src, len, dwBack, &dwBack );
    
        return( jmp - len );
    }
    
    DWORD WINAPI StartRoutine( LPVOID )
    {
        while( TRUE )
        {
            if( memcmp( ( VOID * )PresentEngine, ( VOID * )( PBYTE )"\x8B\x51", 2 ) == 0 )
            {
                Sleep( 100 );
                DetourCreate( ( PBYTE )PresentEngine, ( PBYTE )PresentMidfunction, 5 );
            }
            Sleep( 50 );
        }
     
        return 0;
    }
    
    BOOL WINAPI DllMain( HMODULE hDll, DWORD dwReason, LPVOID lpReserved )
    { 
        if( dwReason == DLL_PROCESS_ATTACH )
        {
            DisableThreadLibraryCalls( hDll );
            MessageBox( 0, "Hook Present Engine", "Crossfire", 0 );
            CreateThread( 0, 0, (LPTHREAD_START_ROUTINE)StartRoutine, 0, 0, 0 );
        }
     
        return TRUE;
    }
    Code:
    Present:
    
    004C40C0   6A FF                    PUSH -1
    004C40C2   68 78DC6200              PUSH 62DC78
    004C40C7   64:A1 00000000           MOV EAX,DWORD PTR FS:[0]
    004C40CD   50                       PUSH EAX
    004C40CE   51                       PUSH ECX
    004C40CF   A1 40446A00              MOV EAX,DWORD PTR DS:[6A4440]
    004C40D4   33C4                     XOR EAX,ESP
    004C40D6   50                       PUSH EAX
    004C40D7   8D4424 08                LEA EAX,DWORD PTR SS:[ESP+8]
    004C40DB   64:A3 00000000           MOV DWORD PTR FS:[0],EAX
    004C40E1   68 F82F6C00              PUSH 6C2FF8
    004C40E6   8D4C24 08                LEA ECX,DWORD PTR SS:[ESP+8]
    004C40EA   E8 E12BF5FF              CALL 416CD0
    004C40EF   C74424 10 00000000       MOV DWORD PTR SS:[ESP+10],0
    004C40F7   A1 702E6C00              MOV EAX,DWORD PTR DS:[6C2E70]=> DeviceGame
    004C40FC   85C0                     TEST EAX,EAX
    004C40FE   0F84 CB000000            JE 4C41CF
    004C4104   F64424 18 04             TEST BYTE PTR SS:[ESP+18],4
    004C4109   74 0A                    JE SHORT 4C4115
    004C410B   E8 C0EAFFFF              CALL 4C2BD0
    004C4110   E9 A6000000              JMP 4C41BB
    004C4115   803D 1B536B00 00         CMP BYTE PTR DS:[6B531B],0
    004C411C   8B00                     MOV EAX,DWORD PTR DS:[EAX]
    004C411E   8B08                     MOV ECX,DWORD PTR DS:[EAX]
    004C4120   6A 00                    PUSH 0
    004C4122   0F84 87000000            JE 4C41AF
    004C4128   803D 40556B00 00         CMP BYTE PTR DS:[6B5540],0
    004C412F   74 7E                    JE SHORT 4C41AF
    004C4131   8B15 D04D6B00            MOV EDX,DWORD PTR DS:[6B4DD0]
    004C4137   52                       PUSH EDX
    004C4138   68 C04D6B00              PUSH 6B4DC0
    004C413D   68 C04D6B00              PUSH 6B4DC0
    004C4142   50                       PUSH EAX
    004C4143   8B41 44                  MOV EAX,DWORD PTR DS:[ECX+44]
    004C4146   FFD0                     CALL EAX
    004C4148   8B0D 702E6C00            MOV ECX,DWORD PTR DS:[6C2E70]
    004C414E   8B01                     MOV EAX,DWORD PTR DS:[ECX]
    004C4150   8B0D D04D6B00            MOV ECX,DWORD PTR DS:[6B4DD0]
    004C4156   8B10                     MOV EDX,DWORD PTR DS:[EAX]
    004C4158   8B52 44                  MOV EDX,DWORD PTR DS:[EDX+44]
    004C415B   6A 00                    PUSH 0
    004C415D   51                       PUSH ECX
    004C415E   68 E84D6B00              PUSH 6B4DE8
    004C4163   68 E84D6B00              PUSH 6B4DE8
    004C4168   50                       PUSH EAX
    004C4169   FFD2                     CALL EDX
    004C416B   8B15 D04D6B00            MOV EDX,DWORD PTR DS:[6B4DD0]
    004C4171   A1 702E6C00              MOV EAX,DWORD PTR DS:[6C2E70]
    004C4176   8B00                     MOV EAX,DWORD PTR DS:[EAX]
    004C4178   8B08                     MOV ECX,DWORD PTR DS:[EAX]
    004C417A   6A 00                    PUSH 0
    004C417C   52                       PUSH EDX
    004C417D   68 FC4D6B00              PUSH 6B4DFC
    004C4182   68 FC4D6B00              PUSH 6B4DFC
    004C4187   50                       PUSH EAX
    004C4188   8B41 44                  MOV EAX,DWORD PTR DS:[ECX+44]
    004C418B   FFD0                     CALL EAX
    004C418D   8B0D 702E6C00            MOV ECX,DWORD PTR DS:[6C2E70]
    004C4193   8B01                     MOV EAX,DWORD PTR DS:[ECX]
    004C4195   8B0D D04D6B00            MOV ECX,DWORD PTR DS:[6B4DD0]
    004C419B   8B10                     MOV EDX,DWORD PTR DS:[EAX]
    004C419D   8B52 44                  MOV EDX,DWORD PTR DS:[EDX+44]
    004C41A0   6A 00                    PUSH 0
    004C41A2   51                       PUSH ECX
    004C41A3   68 D84D6B00              PUSH 6B4DD8
    004C41A8   68 D84D6B00              PUSH 6B4DD8
    004C41AD   EB 09                    JMP SHORT 4C41B8
    004C41AF   8B51 44                  MOV EDX,DWORD PTR DS:[ECX+44]=> Present
    004C41B2   6A 00                    PUSH 0
    004C41B4   6A 00                    PUSH 0
    004C41B6   6A 00                    PUSH 0
    004C41B8   50                       PUSH EAX
    004C41B9   FFD2                     CALL EDX
    004C41BB   B8 702E6C00              MOV EAX,6C2E70
    004C41C0   E8 9B20F9FF              CALL 456260
    004C41C5   C705 54556B00 00000000   MOV DWORD PTR DS:[6B5554],0
    004C41CF   8D4C24 04                LEA ECX,DWORD PTR SS:[ESP+4]
    004C41D3   E8 182BF5FF              CALL 416CF0
    004C41D8   8B4C24 08                MOV ECX,DWORD PTR SS:[ESP+8]
    004C41DC   64:890D 00000000         MOV DWORD PTR FS:[0],ECX
    004C41E3   59                       POP ECX
    004C41E4   83C4 10                  ADD ESP,10
    004C41E7   C3                       RETN
    Code:
    Pattern Scan for to update adress PresentEngine:
    
    \x8B\x51\x00\x6A\x00\x6A\x00\x6A\x00\x50\xFF\xD2\xB8\x00\x00\x00\x00\xE8\x00\x00\x00\x00\xC7\x05\x00\x00\x00\x00
    xx?x?x?x?xxxx????x????xx????
    Code:
    Binary Scan for to update adress PresentEngine:
    
    8B 51 ?? 6A ?? 6A ?? 6A ?? 50 FF D2 B8 ?? ?? ?? ?? E8 ?? ?? ?? ?? C7 05 ?? ?? ?? ??
    IF YOU RELEASE HACK, GIVE CREDITS TO WE11ington

    Credits:
    Detour -> Azorbix
    Midfunction -> Shad0w_
    Me -> WE11ington

  2. The Following User Says Thank You to Avene For This Useful Post:

    6ixth (03-29-2013)

  3. #2
    Lightning's Avatar
    Join Date
    Feb 2012
    Gender
    male
    Location
    MPGH
    Posts
    4,767
    Reputation
    1653
    Thanks
    11,792
    My Mood
    Angelic
    Thank you

    MPGH member since 11 February 2012
    Ex - Contributor
    Ex - CF minion

  4. #3
    Avene's Avatar
    Join Date
    Jul 2012
    Gender
    male
    Posts
    134
    Reputation
    152
    Thanks
    2,052
    My Mood
    Relaxed


    You just need to build menu class & etc, or use other public d3d bases.

  5. #4
    pedbera's Avatar
    Join Date
    Feb 2011
    Gender
    male
    Posts
    261
    Reputation
    15
    Thanks
    43
    My Mood
    Happy
    Quote Originally Posted by Avene View Post


    You just need to build menu class & etc, or use other public d3d bases.

    THIS IS GOOD FUCKING WORK!!

    I wish i could do this by myself
    i have my own menu and stuff, but my problem is i dont know how to hook and stuff , it would be really really appreciated if you can teach me how to hook
    and stuff i know almost everything about C++ and D3D programming

  6. #5
    KerozHany's Avatar
    Join Date
    Apr 2011
    Gender
    male
    Posts
    297
    Reputation
    23
    Thanks
    3,574
    [IMG]https://i1062.photobucke*****m/albums/t485/KerozHany/Crossfire20120906_0001.jpg[/IMG]

  7. #6
    giniyat101's Avatar
    Join Date
    Sep 2011
    Gender
    male
    Location
    Not telling.
    Posts
    1,935
    Reputation
    130
    Thanks
    1,380
    My Mood
    Dead
    omg cant believe you did that again lol


     



    [img]https://i43.photobucke*****m/albums/e367/DeteSting/Steam-update.gif[/img]

  8. #7
    KerozHany's Avatar
    Join Date
    Apr 2011
    Gender
    male
    Posts
    297
    Reputation
    23
    Thanks
    3,574
    Quote Originally Posted by giniyat101 View Post
    omg cant believe you did that again lol
    I Made It , But IDK What to do next Lol

  9. #8
    asianism's Avatar
    Join Date
    Oct 2011
    Gender
    female
    Location
    mpgh.net
    Posts
    76
    Reputation
    10
    Thanks
    792
    My Mood
    Amazed
    nice copy pasta from other site
    skype: hajin.mil

  10. #9
    Glenox's Avatar
    Join Date
    Jun 2012
    Gender
    male
    Location
    C:\WINDOWS\system32\Glenox.exe
    Posts
    539
    Reputation
    10
    Thanks
    2,372
    My Mood
    Bored
    Leechers!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!
    Coming Soon,

  11. #10
    firefox800's Avatar
    Join Date
    Apr 2009
    Gender
    male
    Posts
    294
    Reputation
    10
    Thanks
    2,136
    My Mood
    Fine
    This was already patched while ago in other version...

  12. #11
    Ryuesi's Avatar
    Join Date
    Jun 2011
    Gender
    male
    Location
    Right here.
    Posts
    7,339
    Reputation
    413
    Thanks
    2,397
    My Mood
    Relaxed
    detected for CF NA , also what's the injector u use

  13. #12
    Avene's Avatar
    Join Date
    Jul 2012
    Gender
    male
    Posts
    134
    Reputation
    152
    Thanks
    2,052
    My Mood
    Relaxed
    Quote Originally Posted by Jutie View Post
    detected for CF NA , also what's the injector u use
    hack tool detected? or what error?

  14. #13
    Ryuesi's Avatar
    Join Date
    Jun 2011
    Gender
    male
    Location
    Right here.
    Posts
    7,339
    Reputation
    413
    Thanks
    2,397
    My Mood
    Relaxed
    Quote Originally Posted by Avene View Post
    hack tool detected? or what error?
    yes tool detected , i think maybe from injector

  15. #14
    boyrapitiw's Avatar
    Join Date
    Aug 2012
    Gender
    male
    Posts
    90
    Reputation
    10
    Thanks
    3
    LEECHED ONLY. . . .

  16. #15
    justinsswagga's Avatar
    Join Date
    Aug 2012
    Gender
    male
    Posts
    49
    Reputation
    10
    Thanks
    148
    My Mood
    Confused
    What detours work?

Similar Threads

  1. [Release] Hook Present Engine
    By Avene in forum CrossFire Hack Coding / Programming / Source Code
    Replies: 16
    Last Post: 09-05-2012, 06:14 PM
  2. [Release] Hook DIP Engine
    By Avene in forum CrossFire Hack Coding / Programming / Source Code
    Replies: 15
    Last Post: 08-29-2012, 03:49 PM
  3. [Request] Information about hooking present / reset
    By PgSQL in forum CrossFire Europe Hack Source Code
    Replies: 0
    Last Post: 08-14-2012, 05:13 PM
  4. [Release] Hook DIP Engine
    By PikaMucha_Itu in forum Combat Arms BR Hack Coding/Source Code
    Replies: 62
    Last Post: 06-07-2012, 11:10 AM
  5. [Help] client hook [source engine]
    By bluedog9 in forum C++/C Programming
    Replies: 0
    Last Post: 07-19-2011, 01:04 PM