Home › Forum › MultiPlayer Game Hacks & Cheats › CrossFire Hacks & Cheats › CrossFire Hack Coding / Programming / Source Code › Source code help!! GINIYAT IS NEEDED HERE!
Source code help!! GINIYAT IS NEEDED HERE!
Source code help!! GINIYAT IS NEEDED HERE!
well i will release this tut only for noobs who dont belive i found it my self
open your unpacked cshell.dll with olly dbg
right click->search for->binary string and search for
of course you are asking me how could i find this string
here it comes:
use a modified version of bypassxtrap to open the game in undetected ollydbg
(which i won't share here, use google)
btw special thanx to ***** for sharing his bypass source
now right click->view->module CShell
and right click->search for->text strings.
go to third location of "ButtonMissionInfo"
and go up and you will find something like this
click on the call before it and press enter to see this
so we have found the HTR ptr now right click and select find refs->address constant
and select this one:
now go to the top of the function then login
and press HWBP on function
when BP hits make sure that "Hack tool detected" string is in the stack
if not press F9
now right click on first address in stack and select "follow in dissambler"
you can find this code:
highlight this piece of code and right click->binary->binary copy then paste it into afile
and you can see some thing like this:
now, as you see the E9 byte is call but called function will change every update
so we change the EF 08 FF FF to ?? ?? ?? ??
every thing we need now is to nop this bytes and the msgbox won't appear
you are happy now? press thanks
open your unpacked cshell.dll with olly dbg
right click->search for->binary string and search for
Code:
51 57 68 C9 00 00 00 6A 1C E8 ?? ?? ?? ?? 83 C4 10
51 57 68 C9 00 00 00 6A 1C E8 ?? ?? ?? ?? 83 C4 10
here it comes:
use a modified version of bypassxtrap to open the game in undetected ollydbg
(which i won't share here, use google)
btw special thanx to ***** for sharing his bypass source
now right click->view->module CShell
and right click->search for->text strings.
go to third location of "ButtonMissionInfo"
and go up and you will find something like this
Code:
CMP EAX, 1C
CMP EAX, 1C
Code:
MOV EAX,DWORD PTR DS:[103466AC]
MOV EAX,DWORD PTR DS:[103466AC]
and select this one:
Code:
MOV DWORD PTR DS:[103466AC],EAX
MOV DWORD PTR DS:[103466AC],EAX
and press HWBP on function
when BP hits make sure that "Hack tool detected" string is in the stack
if not press F9
now right click on first address in stack and select "follow in dissambler"
you can find this code:
Code:
PUSH ECX
PUSH EDI
PUSH 0C9
PUSH 1C
CALL CShell.10076020
ADD ESP,10
PUSH ECX
PUSH EDI
PUSH 0C9
PUSH 1C
CALL CShell.10076020
ADD ESP,10
and you can see some thing like this:
Code:
51 57 68 C9 00 00 00 6A 1C E8 EF 08 FF FF 83 C4 10
51 57 68 C9 00 00 00 6A 1C E8 EF 08 FF FF 83 C4 10
so we change the EF 08 FF FF to ?? ?? ?? ??
every thing we need now is to nop this bytes and the msgbox won't appear
you are happy now? press thanks
@giniyat101
Gini, if you are giniyat202
can you explain in a better way how to get this code? coz i reeally need it
@[[SeXergy]]
Sexergy you know it too, can you explain?
Thanks
Similar Threads
- 33Last post
- 8Last post
- 10Last post
Originally Posted by 006B
