XcBp tutorial

[HOOSIER]

Watch this first to follow along https://www.mpgh.net/forum/showthread.php?t=826485
Save the AVA.exe dump on your desktop
The default name for saving is dumped and that is fine

programs you will need

pe explorer

olly bdg

microsoft visual studio express 2012

If you succeed in Finding the correct Address and build your own working Bypass Please comment below .
I realize some if not most of you do not code or reverse . You will need to be able to do both to hack .
Though this is copy paste you will have to find the correct address and test your .exe yourself .
How i found the base was a little more complex but it took me to a base memory region , though what i showed you will work .
I will say again i recomend you learn to code in C++ Autoit and learn reverse engineering .
There are other games like cod AC and such like fleeps tutorials to start learning .
If you want to learn on a UE3 Based game i would recommend mass effect 3 then Americas Army

 

Code:

#include <Windows.h>
#include <iostream>
#include <tlhelp32.h>
#include <stdio.h>

using namespace std;

DWORD GetProcessId(const TCHAR* lpProcessName)
{
DWORD dwProcessId = 0;

PROCESSENTRY32 entry;
entry.dwSize = sizeof(PROCESSENTRY32);

HANDLE snapshot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, NULL);

if (snapshot != INVALID_HANDLE_VALUE)
{
if (Process32First(snapshot, &entry))
{
do
{
if (_wcsicmp(entry.szExeFile, lpProcessName) == 0)
{
dwProcessId = entry.th32ProcessID;
break;
}
} while (Process32Next(snapshot, &entry));
}

CloseHandle(snapshot);
}

return dwProcessId;
}

void suspend(DWORD processId)
{
HANDLE hThreadSnapshot = CreateToolhelp32Snapshot(TH32CS_SNAPTHREAD, 0);

THREADENTRY32 threadEntry; 

threadEntry.dwSize = sizeof(THREADENTRY32);

if (hThreadSnapshot != INVALID_HANDLE_VALUE)
{
if (Thread32First(hThreadSnapshot, &threadEntry))
{
do
{
if (threadEntry.th32OwnerProcessID == processId)
{
HANDLE hThread = OpenThread(THREAD_ALL_ACCESS, FALSE, threadEntry.th32ThreadID);

if (hThread)
{
SuspendThread(hThread);
CloseHandle(hThread);
}

}
} while (Thread32Next(hThreadSnapshot, &threadEntry));
}

CloseHandle(hThreadSnapshot);
}
}

int main(int argc, TCHAR* argv[])
{
HANDLE h = GetStdHandle( STD_OUTPUT_HANDLE );

SetConsoleTextAttribute(h,FOREGROUND_RED | FOREGROUND_INTENSITY );

SetConsoleTitle(TEXT("MPGH  Xigncode  Bypass"));



cout << "Searching for AVA..." << endl;

DWORD dwProcessId;

while (!(dwProcessId = GetProcessId(TEXT("AVA.exe")))) 
Sleep(1);


cout << "Searching for Xingcode!" << endl;

SetConsoleTextAttribute(h,FOREGROUND_GREEN | FOREGROUND_INTENSITY );

HANDLE hProcess = OpenProcess(PROCESS_VM_READ | PROCESS_VM_WRITE | PROCESS_VM_OPERATION, FALSE, dwProcessId);

if (hProcess)
{
cout << "Xingcode is Located..." << endl;

SetConsoleTextAttribute(h,FOREGROUND_RED | FOREGROUND_INTENSITY );

const DWORD dwLocationOfFunction = 0x041D190;  

BYTE FirstByte;



DWORD dwOldProtection;

while (!ReadProcessMemory(hProcess, (LPVOID)dwLocationOfFunction, &FirstByte, sizeof(FirstByte), NULL) || FirstByte != 0x55)
{
if (GetLastError() == ERROR_ACCESS_DENIED)
cout << "ERROR_ACCESS_DENIED" << endl;

Sleep(1);
}



cout << "Bypassing Xingcode" << endl;


SetConsoleTextAttribute(h,FOREGROUND_GREEN | FOREGROUND_INTENSITY );

const BYTE ByteToWrite = 0xC3;



BOOL bSuccess = VirtualProtectEx(hProcess, (LPVOID)dwLocationOfFunction, sizeof(FirstByte), PAGE_EXECUTE_READWRITE, &dwOldProtection);

if (bSuccess)
bSuccess = WriteProcessMemory(hProcess, (LPVOID)dwLocationOfFunction, &ByteToWrite, sizeof(ByteToWrite), NULL);

CloseHandle(hProcess);


if (bSuccess)

	

    cout << "Xingcode Bypassed Successfully... Have Fun... " << endl;
     
}


  cin.get(); 
  return 0;
}

I will also start a thread in the C++ and reversing forums for some good starter videos series to follow .
I encourage you all to take some time to learn and not just sit around hoping someone will just do it for you .
Or at the very least go make a few bucks and get a nice vip hack;
from someone that has dedicated lot's of their precious time to making them .

Again if you have an issue pm me and i will try to help you as long as i am free .




Credits @ccman32 for being the one to make this pubic
And all the others that have worked so hard making hacks they are a wealth of knowledge and i for one and glad they share .
Guys I hope you decide to learn more and use your minds cause this can be fun it just takes some time and patience .

[ZorroY]

i have microsoft visual studio 2010, its normal? or i need 2012?

[ccman32]

Ever thought about using byte patterns instead of hardcoded addresses?
https://www.mpgh.net/forum/showthread.php?t=505474
https://www.mpgh.net/forum/showthread.php?t=192449

WARNING: The code in these tutorials is REALLY crappy so better try to understand what it does instead of simply copy pasting it.
There are better tutorials out there but not on MPGH...

[HOOSIER]

Yes i know about sig scans i have the olly plugin already but thanks for the links . Your a good guy

[christythomas]

I tried to to make a bypass for Garena based AVA.But i got this error.Can u help me @HOOSIER.

[HOOSIER]

I found it already but it has the heart beat and i had to clean install my operating . So now i have to down load the game again , but I did bypass it but it dc'ed in five minutes . If i could nail down how to scan for multi level pointers in this game I would be ok and could release a simple garena . But i am having An issue with the pointers . I would think from some source that was just posted they are only 3 leveled. Which should be a piece of cake . But Scans fail on the second try . I know it is just some mistake i have to be making . I always did struggle with how the pointers in this game work though .

[Unk-]

I found it already but it has the heart beat and i had to clean install my operating . So now i have to down load the game again , but I did bypass it but it dc'ed in five minutes . If i could nail down how to scan for multi level pointers in this game I would be ok and could release a simple garena . But i am having An issue with the pointers . I would think from some source that was just posted they are only 3 leveled. Which should be a piece of cake . But Scans fail on the second try . I know it is just some mistake i have to be making . I always did struggle with how the pointers in this game work though .

What is your skype ?

[HOOSIER]

[QUOTE=Unk-;10911936]What is your skype ?[/QUOTE


I do not have skype and honestly making a bypass for Garena is not hard to do . If you would wanna teamview I would show you . You would need visual studio express pt tools and olly dbg for me to show you how to do it . I am sure after I have showed you you could do it also . That or A copy of the AVA.exe from your garena ava game and I could make you a bypass . But you WILL disconnect in less than 5 minutes .

- - - Updated - - -

I tried to to make a bypass for Garena based AVA.But i got this error.Can u help me @HOOSIER.

Yes i will just pm me . BTW your asre close you just need to copy all the addresses not just the first one because any of them can be the one there are 11 total .