Hack not activating

[supercarz1991]

i'm not entirely new to this although i'm about a year out of practice. I took an old detected source, updated it and got it to not crash after being in game for an hour. Although the DIP Hook doesn't seem to let the hacks activate

i've tried message boxes on my hook, and DIP and they showed up fine, i know they work. But when i hit NUMPAD1 in game to activate something, it never seems to activate

Code:

#include <Windows.h>
#include <d3d9.h>
#include "XOR.h"
#include "main.h"

DWORD retMyDIP;



// Full Credits to Crash 
#define smPlayer (my_Stride == 44) 
#define smHeads (my_Stride == 36) 
#define smGuns (my_Stride == 32) 
#define Hands (my_Stride == 40 /*&& nNumVertices == 18 && nPrimitiveCount == 11)*/) 

void D3DDIP (LPDIRECT3DDEVICE9 pDevice)
{
	IDirect3DVertexBuffer9* my_StreamData = NULL; 
	UINT my_OffsetInBytes,my_Stride;  
	pDevice->GetStreamSource(0,&my_StreamData,&my_OffsetInBytes,&my_Stride); 

	if(GetAsyncKeyState(VK_NUMPAD1)&1) //does not seem to activate
	{
		if(smPlayer || smHeads || smGuns || Hands)
		{
			pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_FALSE);//WallHack
			//MessageBox(NULL, NULL, NULL, NULL);
		} else {
			pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_TRUE);
	}
	}
	pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_FALSE);
}

i'd rather not post my hook as its the first time i've made a hook that didn't crash me and i'm kind of proud of that... lol

[DisOwned]

i'm not entirely new to this although i'm about a year out of practice. I took an old detected source, updated it and got it to not crash after being in game for an hour. Although the DIP Hook doesn't seem to let the hacks activate

i've tried message boxes on my hook, and DIP and they showed up fine, i know they work. But when i hit NUMPAD1 in game to activate something, it never seems to activate

Code:

#include <Windows.h>
#include <d3d9.h>
#include "XOR.h"
#include "main.h"

DWORD retMyDIP;



// Full Credits to Crash 
#define smPlayer (my_Stride == 44) 
#define smHeads (my_Stride == 36) 
#define smGuns (my_Stride == 32) 
#define Hands (my_Stride == 40 /*&& nNumVertices == 18 && nPrimitiveCount == 11)*/) 

void D3DDIP (LPDIRECT3DDEVICE9 pDevice)
{
	IDirect3DVertexBuffer9* my_StreamData = NULL; 
	UINT my_OffsetInBytes,my_Stride;  
	pDevice->GetStreamSource(0,&my_StreamData,&my_OffsetInBytes,&my_Stride); 

	if(GetAsyncKeyState(VK_NUMPAD1)&1) //does not seem to activate
	{
		if(smPlayer || smHeads || smGuns || Hands)
		{
			pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_FALSE);//WallHack
			//MessageBox(NULL, NULL, NULL, NULL);
		} else {
			pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_TRUE);
	}
	}
	pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_FALSE);
}

i'd rather not post my hook as its the first time i've made a hook that didn't crash me and i'm kind of proud of that... lol

realy dude -_- this isnt even a drawindex hook

XD all you show is


the small bit of code that doesnt matter it could be alot of stuff
your hook may not be working correctly
maybe look at the sticky post of CodeDemons ?
with all the info on the D3D -_-

here if you know how to use vtable then use this

Code:

typedef HRESULT (WINAPI* oDIP)(LPDIRECT3DDEVICE9 pDevice,D3DPRIMITIVETYPE,int,UINT,UINT,UINT,UINT); 
oDIP pDIP;

Code:

HRESULT WINAPI DIP(LPDIRECT3DDEVICE9 pDevice,D3DPRIMITIVETYPE Type,int BaseVertexIndex,UINT MinIndex,UINT NumVertices,UINT StartIndex,UINT PrimCount)
{
	return pDIP(pDevice, Type, BaseVertexIndex, MinIndex, NumVertices, StartIndex, PrimCount);
}

Code:

Credits to codeDemon for his post i guess ?

btw
Dip is vtable number

Code:

82

[supercarz1991]

my hook works, i've triple checked. there's no reason my stuff shouldn't activate

[Ch40zz-C0d3r]

Man... Post some more code :|
Really, DIP is so easy to hook on NA, its done in like 1min.
Just hook it like all the public nerds and youre fine since CA NA is a piece of shit and doesnt scan in d3d9.dll -.-

[DisOwned]

Man... Post some more code :|
Really, DIP is so easy to hook on NA, its done in like 1min.
Just hook it like all the public nerds and youre fine since CA NA is a piece of shit and doesnt scan in d3d9.dll -.-

lol
hes not going to post his little hook XD even tho all hooks are public
XD just the detours need changing
XD

[supercarz1991]

Man... Post some more code :|
Really, DIP is so easy to hook on NA, its done in like 1min.
Just hook it like all the public nerds and youre fine since CA NA is a piece of shit and doesnt scan in d3d9.dll -.-

meh screw it idc

Code:

#include <Windows.h>
#include <d3d9.h>
#include "XOR.h"
#include "main.h"

DWORD retMy_DIP;



// Full Credits to Crash 
#define smPlayer (my_Stride == 44) 
#define smHeads (my_Stride == 36) 
#define smGuns (my_Stride == 32) 
#define Hands (my_Stride == 40) 

void My_D3D (LPDIRECT3DDEVICE9 pDevice)
{
	IDirect3DVertexBuffer9* my_StreamData = NULL; 
	UINT my_OffsetInBytes,my_Stride;  
	pDevice->GetStreamSource(0,&my_StreamData,&my_OffsetInBytes,&my_Stride); 

	if(GetAsyncKeyState(VK_NUMPAD1)&1) //does not seem to activate
	{
		if(smPlayer || smHeads || smGuns || Hands)
		{
			pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_FALSE);//WallHack
			//MessageBox(NULL, NULL, NULL, NULL);
		} else {
				pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_TRUE);
		}
	}
	if(GetAsyncKeyState(VK_INSERT)%1) 
	{
		TerminateProcess("Engine.exe",1); //jsut a test to see if it would work
	}
	
}

__declspec(naked) HRESULT WINAPI My_DIP()
{
	static LPDIRECT3DDEVICE9 pDevice;

	__asm
	{
		MOV EDI,EDI
		PUSH EBP
		MOV EBP,ESP
		MOV EAX,DWORD PTR SS:[EBP + 0x8]
		MOV pDevice,EAX
	}
	My_D3D(pDevice);
	__asm
	{
		JMP retMy_DIP
	}
}

void Hook ()
{
	DWORD hD3D = (DWORD)LoadLibrary(ed3d9);
	DWORD *vtbl;

	DWORD adr = FindPattern(hD3D, 0x128000, (PBYTE)"\xC7\x06\x00\x00\x00\x00\x89\x86\x00\x00\x00\x00\x89\x86", "xx????xx????xx");
	if(adr)
	{
		memcpy(&vtbl,(void*)(adr + 2),4);
		retMy_DIP = vtbl[147] + 0x5;
		MakeJMP((PBYTE)vtbl[147],(DWORD)My_DIP,0x5);
	}
}

extern "C" 
{
    BOOL WINAPI DllMain (HINSTANCE hinstDLL, DWORD fdwReason, LPVOID lpvReserved)
    {
        switch (fdwReason)
        {
        case DLL_PROCESS_ATTACH:
			CreateThread(0,0,(LPTHREAD_START_ROUTINE)Hook,0,0,0); //it does hook, tested with msg box
            break;
        }
        return true;
    }
}

ed3d9 is defined elsewhere in a header file

[Timboy67678]

meh screw it idc

Code:

#include <Windows.h>
#include <d3d9.h>
#include "XOR.h"
#include "main.h"

DWORD retMy_DIP;



// Full Credits to Crash 
#define smPlayer (my_Stride == 44) 
#define smHeads (my_Stride == 36) 
#define smGuns (my_Stride == 32) 
#define Hands (my_Stride == 40) 

void My_D3D (LPDIRECT3DDEVICE9 pDevice)
{
	IDirect3DVertexBuffer9* my_StreamData = NULL; 
	UINT my_OffsetInBytes,my_Stride;  
	pDevice->GetStreamSource(0,&my_StreamData,&my_OffsetInBytes,&my_Stride); 

	if(GetAsyncKeyState(VK_NUMPAD1)&1) //does not seem to activate
	{
		if(smPlayer || smHeads || smGuns || Hands)
		{
			pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_FALSE);//WallHack
			//MessageBox(NULL, NULL, NULL, NULL);
		} else {
				pDevice->SetRenderState(D3DRS_ZENABLE, D3DZB_TRUE);
		}
	}
	if(GetAsyncKeyState(VK_INSERT)%1) 
	{
		TerminateProcess("Engine.exe",1); //jsut a test to see if it would work
	}
	
}

__declspec(naked) HRESULT WINAPI My_DIP()
{
	static LPDIRECT3DDEVICE9 pDevice;

	__asm
	{
		MOV EDI,EDI
		PUSH EBP
		MOV EBP,ESP
		MOV EAX,DWORD PTR SS:[EBP + 0x8]
		MOV pDevice,EAX
	}
	My_D3D(pDevice);
	__asm
	{
		JMP retMy_DIP
	}
}

void Hook ()
{
	DWORD hD3D = (DWORD)LoadLibrary(ed3d9);
	DWORD *vtbl;

	DWORD adr = FindPattern(hD3D, 0x128000, (PBYTE)"\xC7\x06\x00\x00\x00\x00\x89\x86\x00\x00\x00\x00\x89\x86", "xx????xx????xx");
	if(adr)
	{
		memcpy(&vtbl,(void*)(adr + 2),4);
		retMy_DIP = vtbl[147] + 0x5;
		MakeJMP((PBYTE)vtbl[147],(DWORD)My_DIP,0x5);
	}
}

extern "C" 
{
    BOOL WINAPI DllMain (HINSTANCE hinstDLL, DWORD fdwReason, LPVOID lpvReserved)
    {
        switch (fdwReason)
        {
        case DLL_PROCESS_ATTACH:
			CreateThread(0,0,(LPTHREAD_START_ROUTINE)Hook,0,0,0); //it does hook, tested with msg box
            break;
        }
        return true;
    }
}

ed3d9 is defined elsewhere in a header file

0x93 (147) is not the index for DIP in the IDirect3DDevice9 class. 0x82 (130) is.

There is no need for a mid function hook. Im not entirely sure if you can still detour D3D9 functions in CA EU , but in NA, a simple detour of dip is fine. There is a scan that hackshield does of the D3D9 Device VMT used by the game to check for changes. Disabling it is actually really easy and works on EU and NA.

[Ch40zz-C0d3r]

So you made 2 mistakes:
1. Nobody needs midfunction hooks since HS detect ALL byte changes in the WHOLE function, just useless and unorganized
2. This VTable was surely found by a guy who was on drugs (maybe speed idk) its out of range and doesnt even really exist if you look it up on msdn

Just hook like everyone is doing and avoid being catched by one of nexons "SUPER AWESOME MONSTER SIGNATURES!!" lol.

Ah btw, your fucking up the stack because of the pdevice declararion(even if its static!!!) and because of the lack of using pushad and popad!

[supercarz1991]

So you made 2 mistakes:
1. Nobody needs midfunction hooks since HS detect ALL byte changes in the WHOLE function, just useless and unorganized
2. This VTable was surely found by a guy who was on drugs (maybe speed idk) its out of range and doesnt even really exist if you look it up on msdn

Just hook like everyone is doing and avoid being catched by one of nexons "SUPER AWESOME MONSTER SIGNATURES!!" lol.

Ah btw, your fucking up the stack because of the pdevice declararion(even if its static!!!) and because of the lack of using pushad and popad!

coded all this myself with no help till now... so frankly i'm not surprised if there's some issues. The 147 was an accident i just never caught, the rest of it is because i did it literally with no help

update: changed the 147 to 130, features still don't activate

[DisOwned]

coded all this myself with no help till now... so frankly i'm not surprised if there's some issues. The 147 was an accident i just never caught, the rest of it is because i did it literally with no help

update: changed the 147 to 130, features still don't activate

Hey didn't you tell Jeff and Matty to drop their project how about you drop yours and get the fuck out. No one wants to help a two bit retard.


^^

[Ch40zz-C0d3r]

coded all this myself with no help till now... so frankly i'm not surprised if there's some issues. The 147 was an accident i just never caught, the rest of it is because i did it literally with no help

update: changed the 147 to 130, features still don't activate

I dont think that 130 is the VTable you want. You should look it up on msdn :|
And I dont think either that you made the hook since you dont even have the right vtable (and you SHOULD have it because your asm part has to replace the one in the VTable function ....)

[supercarz1991]

I dont think that 130 is the VTable you want. You should look it up on msdn :|
And I dont think either that you made the hook since you dont even have the right vtable (and you SHOULD have it because your asm part has to replace the one in the VTable function ....)

the asm i pulled from another base i have that's not a public base, so i shouldn't have posted it, but it's not CA related so i dont care much. Just figured it would work

[Ch40zz-C0d3r]

the asm i pulled from another base i have that's not a public base, so i shouldn't have posted it, but it's not CA related so i dont care much. Just figured it would work

How should something work you dont know what its doing? o.0
I cant tell you much here, go and learn some asm and make use of msdn...

[supercarz1991]

How should something work you dont know what its doing? o.0
I cant tell you much here, go and learn some asm and make use of msdn...

that's how i learn. I just sorta write it up, and figure out what doesn't work either with help or random guesses

[XarutoUsoCrack]

stop saying shit guys, 82 * 4 = 148. he just created a hook in start of drawindexedprimitive.

This is undocummented. Try using vtable 148 and not 82, will work anyway, just do that logic, this is un-checked by hackshield, most anticheat's detect this now.

But, this don't works in CA, becouse, they protect more 82 than they server files.