Results 1 to 13 of 13
  1. #1
    apezwijn's Avatar
    Join Date
    Feb 2007
    Gender
    male
    Location
    The Netherlands
    Posts
    1,521
    Reputation
    22
    Thanks
    679

    Finding a Pointer Undetected

    hi,
    I want to deliver some cheats, but I'm able to bypass xtrap and be able to search for addresses, but I can't debug cos it will get detected by xtrap. I think more people have this and i'm guessing there must be somebody who knows how to get a pointer withouth debugging(attaching), or how to do it undetected.

    Please if you reccomend me ollydbg gimme a link on tutorial.
    tits in return:

  2. #2
    DoubleDutch's Avatar
    Join Date
    Sep 2007
    Gender
    male
    Location
    Koning
    Posts
    11,253
    Reputation
    1149
    Thanks
    1,174
    My Mood
    Bored
    General section

  3. #3
    scimmyboy's Avatar
    Join Date
    Jan 2008
    Gender
    male
    Location
    https://mpgh.net MPGHCash: $442,596,199
    Posts
    5,649
    Reputation
    26
    Thanks
    895
    My Mood
    Happy
    lulz ull get more help in assembly

  4. #4
    juanrineytor's Avatar
    Join Date
    Sep 2008
    Gender
    male
    Location
    Moo-chang
    Posts
    3,398
    Reputation
    0
    Thanks
    195
    My Mood
    Amused
    TL;TR

    ONLY LOOKED AT PIC TY.

  5. #5
    GOD's Avatar
    Join Date
    Jul 2008
    Gender
    male
    Location
    I am the God
    Posts
    11,084
    Reputation
    15
    Thanks
    1,516
    My Mood
    Amazed
    dis aint 4chin faggot

    I am the God.

  6. #6
    LegendaryAbbo's Avatar
    Join Date
    Dec 2008
    Gender
    male
    Posts
    5,244
    Reputation
    23
    Thanks
    546
    My Mood
    Relaxed


    This is not /b/

    edit: fku god mofucka stealing what I wanted to say

  7. #7
    apezwijn's Avatar
    Join Date
    Feb 2007
    Gender
    male
    Location
    The Netherlands
    Posts
    1,521
    Reputation
    22
    Thanks
    679

  8. #8
    Toxin's Avatar
    Join Date
    Apr 2009
    Gender
    female
    Location
    Somewhere about there.
    Posts
    16,279
    Reputation
    2285
    Thanks
    2,862

  9. #9
    radnomguywfq3's Avatar
    Join Date
    Jan 2007
    Gender
    male
    Location
    J:\E\T\A\M\A\Y.exe
    Posts
    8,858
    Reputation
    381
    Thanks
    1,813
    My Mood
    Sad
    You're starting in the wrong place. You should detour xTrap BEFORE trying to hack the game.

    I'm not going to get into this, detouring gives me a headache, too much testing & building + I suck at it.

    Couple of tips though that will HOPEFULLY safe you time(and I've never looked at xtrap in my life, so they could be off) It's probably communicating with a kernel driver(which you probably will not be able to find). And probably via named-pipes, or symbolic links to the driver(hereby refereed to as server) is creating a symbolic link which is being opened by xtrap's main dll(which will be loaded into the application being protected, hereby refereed to as client). My guess is the client is sending information to the server to be processed, which results in the 'ban', or w\e the fuck happens. You can either simulate the server(by recording messages send\recieved and figuring out their protocol + how to respond to messages) and I don't recommend you do. Or find out what's causing the certain messages to be sent, which results in the ban.

    I'd start by hooking any imported APIs which open any sort of communication to the driver. Accessing named-pipes or symbolic links to devices will be similar to the way any file is opened. I.e through OpenFile, CreateFile, fopen, etc.. The sort of path your looking for will look like a path to a directory. I.e '//someShiz/asdf' . Once you've located the correct call, you steal the handle, and log all file related operations with that handle. If you're lucky the communication won't be encrypted, if you aren't -- idk, I've never gotten this far, but I'm sure if you follow the execution you'll find decrypting methods.

    Good luck yo. I wasted a lot of my time wondering in the wrong direction last time I tried to crack an anti-hack.
    Last edited by radnomguywfq3; 01-30-2010 at 07:44 AM.



    There are two types of tragedies in life. One is not getting what you want, the other is getting it.

    If you wake up at a different time in a different place, could you wake up as a different person?


  10. The Following User Says Thank You to radnomguywfq3 For This Useful Post:

    apezwijn (02-01-2010)

  11. #10
    Spook's Avatar
    Join Date
    Jan 2010
    Gender
    male
    Posts
    4,649
    Reputation
    26
    Thanks
    569
    Quote Originally Posted by Jetamay View Post
    You're starting in the wrong place. You should detour xTrap BEFORE trying to hack the game.

    I'm not going to get into this, detouring gives me a headache, too much testing & building + I suck at it.

    Couple of tips though that will HOPEFULLY safe you time(and I've never looked at xtrap in my life, so they could be off) It's probably communicating with a kernel driver(which you probably will not be able to find). And probably via named-pipes, or symbolic links to the driver(hereby refereed to as server) is creating a symbolic link which is being opened by xtrap's main dll(which will be loaded into the application being protected, hereby refereed to as client). My guess is the client is sending information to the server to be processed, which results in the 'ban', or w\e the fuck happens. You can either simulate the server(by recording messages send\recieved and figuring out their protocol + how to respond to messages) and I don't recommend you do. Or find out what's causing the certain messages to be sent, which results in the ban.

    I'd start by hooking any imported APIs which open any sort of communication to the driver. Accessing named-pipes or symbolic links to devices will be similar to the way any file is opened. I.e through OpenFile, CreateFile, fopen, etc.. The sort of path your looking for will look like a path to a directory. I.e '//someShiz/asdf' . Once you've located the correct call, you steal the handle, and log all file related operations with that handle. If you're lucky the communication won't be encrypted, if you aren't -- idk, I've never gotten this far, but I'm if you follow the execution you'll find decrypting methods.

    Good luck yo. I wasted a lot of my time wondering in the wrong direction last time I tried to crack an anti-hack.


    Holy crap you gave a really good explanation of what he should do
    I'm back.

  12. #11
    radnomguywfq3's Avatar
    Join Date
    Jan 2007
    Gender
    male
    Location
    J:\E\T\A\M\A\Y.exe
    Posts
    8,858
    Reputation
    381
    Thanks
    1,813
    My Mood
    Sad
    Not really. There's a lot more involved. Idk, I suck at detouring, so if he wants good information he should be asking Dave. But I doubt Dave will say anything.



    There are two types of tragedies in life. One is not getting what you want, the other is getting it.

    If you wake up at a different time in a different place, could you wake up as a different person?


  13. #12
    DoubleDutch's Avatar
    Join Date
    Sep 2007
    Gender
    male
    Location
    Koning
    Posts
    11,253
    Reputation
    1149
    Thanks
    1,174
    My Mood
    Bored
    Quote Originally Posted by Jetamay View Post
    You're starting in the wrong place. You should detour xTrap BEFORE trying to hack the game.

    I'm not going to get into this, detouring gives me a headache, too much testing & building + I suck at it.

    Couple of tips though that will HOPEFULLY safe you time(and I've never looked at xtrap in my life, so they could be off) It's probably communicating with a kernel driver(which you probably will not be able to find). And probably via named-pipes, or symbolic links to the driver(hereby refereed to as server) is creating a symbolic link which is being opened by xtrap's main dll(which will be loaded into the application being protected, hereby refereed to as client). My guess is the client is sending information to the server to be processed, which results in the 'ban', or w\e the fuck happens. You can either simulate the server(by recording messages send\recieved and figuring out their protocol + how to respond to messages) and I don't recommend you do. Or find out what's causing the certain messages to be sent, which results in the ban.

    I'd start by hooking any imported APIs which open any sort of communication to the driver. Accessing named-pipes or symbolic links to devices will be similar to the way any file is opened. I.e through OpenFile, CreateFile, fopen, etc.. The sort of path your looking for will look like a path to a directory. I.e '//someShiz/asdf' . Once you've located the correct call, you steal the handle, and log all file related operations with that handle. If you're lucky the communication won't be encrypted, if you aren't -- idk, I've never gotten this far, but I'm sure if you follow the execution you'll find decrypting methods.

    Good luck yo. I wasted a lot of my time wondering in the wrong direction last time I tried to crack an anti-hack.
    Summary:

    GOOGLE

  14. #13
    apezwijn's Avatar
    Join Date
    Feb 2007
    Gender
    male
    Location
    The Netherlands
    Posts
    1,521
    Reputation
    22
    Thanks
    679
    Quote Originally Posted by DoubleDutch View Post
    Summary:
    GOOGLE
    Don't make me flame on you.

    @Jetamay
    Thanks, I used to 'NOP' functions in PB so I might research a litle, and I agree Dave prolly won't tell. Maby I can find some more on the UC forums.


    edit:
    xtrap files are encrypted.

    Also I found this will it do?
    https://www.codeproject.com/KB/DLL/funapihook.aspx
    Last edited by apezwijn; 02-01-2010 at 03:36 PM.

Similar Threads

  1. How can i find enemy pointer
    By joered in forum Combat Arms Hack Coding / Programming / Source Code
    Replies: 15
    Last Post: 08-10-2010, 03:05 AM
  2. [Released]How to find Device Pointer
    By TheBigBoy in forum Combat Arms Hack Coding / Programming / Source Code
    Replies: 2
    Last Post: 04-06-2010, 01:19 AM
  3. [Help]Finding Adress Pointer...
    By Blubb1337 in forum Visual Basic Programming
    Replies: 1
    Last Post: 02-25-2010, 09:03 AM
  4. Finding static pointer address? C++
    By scriptkiddy in forum C++/C Programming
    Replies: 0
    Last Post: 10-06-2009, 08:35 PM
  5. [Tutorial] Finding addresses/pointers for warrock in CE
    By mains3rv3r in forum WarRock - International Hacks
    Replies: 7
    Last Post: 07-28-2007, 07:38 AM