Here is the code from the sigscan:
Code:0x4A4750
Here is the code from the sigscan:
Code:0x4A4750
My Unbelievable-Kill BM:
seeplusplus - updating address
[YOUTUBE]nWgztMVIUYY[/YOUTUBE]
https://www.mpgh.net/forum/207-combat...ml#post2979681
This has been posted.
For some reason, When i use that i crash O.o
I use Gordon's one
Code:typedef void (__cdecl *lpSetConsoleVariable)(unsigned long console,char* szVal); lpSetConsoleVariable SetConsoleVariable; SetConsoleVariable = (lpSetConsoleVariable)(0x0484BC0); SetConsoleVariable(0x8003F0,"SkelModelStencil -1");
Fuckin obvioulsy how would i have gotten that without knowing the jmp to the real .......
real +208
Code:0046FA40 A1 3C001037 MOV EAX,DWORD PTR DS:[3710003C] 0046FA45 8B88 2C001037 MOV ECX,DWORD PTR DS:[EAX+3710002C] 0046FA4B 8B1424 MOV EDX,DWORD PTR SS:[ESP] 0046FA4E 05 00001037 ADD EAX,37100000 0046FA53 81C1 00001037 ADD ECX,37100000 0046FA59 3BD1 CMP EDX,ECX 0046FA5B 72 0E JB SHORT Engine.0046FA6B 0046FA5D 8B40 50 MOV EAX,DWORD PTR DS:[EAX+50] 0046FA60 03C1 ADD EAX,ECX 0046FA62 3BD0 CMP EDX,EAX 0046FA64 73 05 JNB SHORT Engine.0046FA6B 0046FA66 E9 A5630100 JMP Engine.00485E10 //1st one 0046FA6B C3 RETNCode:00485E10 8B4424 04 MOV EAX,DWORD PTR SS:[ESP+4]//can see szcommand parameter moved and pushed below 00485E14 50 PUSH EAX 00485E15 68 F0038000 PUSH Engine.008003F0 00485E1A E8 A1EDFFFF CALL Engine.00484BC0 //sub function can do here (unsigned long, szCommand) 00485E1F 83C4 08 ADD ESP,8 00485E22 C3 RETN
O no wai another way to do ooooooo itttttt
Code:00484BC0 8B4424 08 MOV EAX,DWORD PTR SS:[ESP+8] 00484BC4 8B4C24 04 MOV ECX,DWORD PTR SS:[ESP+4] 00484BC8 6A 00 PUSH 0 00484BCA 6A 00 PUSH 0 00484BCC 50 PUSH EAX 00484BCD 51 PUSH ECX 00484BCE E8 2DF8FFFF CALL Engine.00484400(unsigned long,szcommand,int,int) //can do here 00484BD3 83C4 10 ADD ESP,10 00484BD6 C3 RETN
pfffffffff stupid shit bro. also all of thos are faster since they are all wrapped anyways ...many more ways to do it.Code:00484AB0 8B4424 0C MOV EAX,DWORD PTR SS:[ESP+C] 00484AB4 8B4C24 08 MOV ECX,DWORD PTR SS:[ESP+8] 00484AB8 8B5424 04 MOV EDX,DWORD PTR SS:[ESP+4] 00484ABC 6A 00 PUSH 0 00484ABE 50 PUSH EAX 00484ABF 51 PUSH ECX 00484AC0 52 PUSH EDX 00484AC1 E8 3AF9FFFF CALL Engine.00484400 00484AC6 83C4 10 ADD ESP,10 00484AC9 C3 RETN
Last edited by SNal2F; 11-02-2010 at 02:10 PM.
NOOB (06-11-2011)
real 208 is
IltClient + 0x208, its a table of pointers and at index 0x208 is where it calls it in the engine @ 0046FA40.
Any of these work to pushtoconsole?
I tryed a few diffrent ways and trying to convert your C++ to delphi and failed, also trying to mimic the assembly to Delphi but no success so far
Example that I failed with
Tryed with DelphiCode:00485E10 8B4424 04 MOV EAX,DWORD PTR SS:[ESP+4]//can see szcommand parameter moved and pushed below 00485E14 50 PUSH EAX 00485E15 68 F0038000 PUSH Engine.008003F0 00485E1A E8 A1EDFFFF CALL Engine.00484BC0 //sub function can do here (unsigned long, szCommand) 00485E1F 83C4 08 ADD ESP,8 00485E22 C3 RETN
and your C++ example I tryed to convert..Code:function PushIt(command: PChar):boolean;cdecl; begin asm Pushad //Save all current registers to stack mov eax, command //Move command to eax mov ecx, $00484BC0 //Move function address to ecx Push eax //Push command to stack Push $008003F0 //Push Engine Address to stack call ecx //Call ecx (our address) add esp, $00000008 //esp + 8 Popad //Replace all orginal Registers end; result := true; end;
That one just shut down the game without warningCode:type TRunConsoleCommand = function(cmd : pchar) : Integer; cdecl; PRunConsoleCommand = ^TRunConsoleCommand; procedure RunConsoleCommand(Const command : String); var RCC : PRunConsoleCommand; begin New(RCC); //Allocate Mem RCC:= pointer($00485E10); RCC^(Pchar(command)); Dispose(RCC); //Free Mem end;
Did nothingCode:procedure RunConsoleCommand(Const command : String); var RCC : TRunConsoleCommand; begin RCC:= TRunConsoleCommand($00485E10); RCC(Pchar(command)); end;
SO i need someone who can help me create a PushToConsole Function Something undersatanable like Assembly or simple C++ as im not C++ programmers and C++ skills is limited, Also im new to game hacking and this forum so I need someone to give me details about PushToConsole and how it works..
Last edited by Departure; 11-09-2010 at 02:59 AM.