Ask the Toymaker

[Toymaker]

I have started this thread to announce i'm making myself available to creating tutorials for requesting in this one nicely unified thread. The point is I'll try to do a better job then most others do. I am a more experienced developer then most others here, any way. I may just delete your post if it's spam or poorly requested, although. Try not to get upset if I edit your post and if you want to thank me just press the thank button because I'll probably delete any thank you post. Please include:

Title of Request but keep it short.
Language If one is used at all.
Reason your requesting it.
Suggestions/Comments

[Obey]

I have started this thread to announce i'm making myself available to creating tutorials for requesting in this one nicely unified thread. The point is I'll try to do a better job then most others do. I am a more experienced developer then most others here, any way. I may just delete your post if it's spam or poorly requested, although. Try not to get upset if I edit your post and if you want to thank me just press the thank button because I'll probably delete any thank you post. Please include:

-C++ Tutorial
-C++ Language
-To help code hacks
-Other news- Because we need a TUT on how to code in C++ for War Rock. So people can stop begging, and I can link them to a TUT. Might even get more people into coding :@

[Toymaker]

You can't hack just because you know C++ and I don't want to help leechers But I will reply to this request in short with a basic tutorial to cover the C++ part of making a quick hack. I am making it simple and using WarRock as an example.


C++ Sort-of Hack Maker by Toymaker

1. Requirements - You simply need to download and install a quick free compiler like bloodshev Dev-C++ and understand once you have this part down you still need to create the hack yourself by finding a different tutorial that is already on this site like a 'Cheat Engine Tutorial.'

2. You simply paste the following code into your compiler:

Code:

#include <windows.h>
#include <iostream>
using namespace std;
HWND hHack=FindWindow(NULL,"Game Window Name Like WarRock");
void write(LPVOID addy, DWORD mydata);
void enableDebugPrivileges();
void calltohack();
int main() {
    if(!hHack)
    {
        cout << "Window not found" << endl;
        system("pause");
        exit(0);
    }
	cout << "Hack is now active" << endl;  
	enableDebugPrivileges();
    calltohack();          
    system("pause");
  }



void write(LPVOID addy, DWORD mydata)
{
    DWORD PID, TID;
    TID = ::GetWindowThreadProcessId (hHack, &PID);
    HANDLE hopen=OpenProcess( PROCESS_ALL_ACCESS|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|
                  PROCESS_VM_WRITE,FALSE,PID);

    WriteProcessMemory(hopen,addy,&mydata,1,0);
    CloseHandle(hopen);  
}

void enableDebugPrivileges()
{
    HANDLE hcurrent=GetCurrentProcess();
    HANDLE hToken;
    BOOL bret=OpenProcessToken(hcurrent,40,&hToken);
    LUID luid;
    bret=LookupPrivilegeValue(NULL,"SeDebugPrivilege",&luid);
    TOKEN_PRIVILEGES NewState,PreviousState;
    DWORD ReturnLength;
    NewState.PrivilegeCount =1;
    NewState.Privileges[0].Luid =luid;
    NewState.Privileges[0].Attributes=2;
    AdjustTokenPrivileges(hToken,FALSE,&NewState,28,&PreviousState,&ReturnLength);
}

void calltohack()
{
    	write((LPVOID)0xOFFSET, 0xBYTE);
}

3. You need to add your actual target's window name into the 'game name' part.

4. You need to use a hacking tool like cheat engine to find the OFFSET and BYTE to add in their section

5. You know can COMPILE & RUN a working hack. Enjoy.

[Obey]

You can't hack just because you know C++ and I don't want to help leechers But I will reply to this request in short with a basic tutorial to cover the C++ part of making a quick hack. I am making it simple and using WarRock as an example.


C++ Sort-of Hack Maker by Toymaker

1. Requirements - You simply need to download and install a quick free compiler like bloodshev Dev-C++ and understand once you have this part down you still need to create the hack yourself by finding a different tutorial that is already on this site like a 'Cheat Engine Tutorial.'

2. You simply paste the following code into your compiler:

Code:

#include <windows.h>
#include <iostream>
using namespace std;
HWND hHack=FindWindow(NULL,"Game Window Name Like WarRock");
void write(LPVOID addy, DWORD mydata);
void enableDebugPrivileges();
void calltohack();
int main() {
    if(!hHack)
    {
        cout << "Window not found" << endl;
        system("pause");
        exit(0);
    }
	cout << "Hack is now active" << endl;  
	enableDebugPrivileges();
    calltohack();          
    system("pause");
  }



void write(LPVOID addy, DWORD mydata)
{
    DWORD PID, TID;
    TID = ::GetWindowThreadProcessId (hHack, &PID);
    HANDLE hopen=OpenProcess( PROCESS_ALL_ACCESS|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|
                  PROCESS_VM_WRITE,FALSE,PID);

    WriteProcessMemory(hopen,addy,&mydata,1,0);
    CloseHandle(hopen);  
}

void enableDebugPrivileges()
{
    HANDLE hcurrent=GetCurrentProcess();
    HANDLE hToken;
    BOOL bret=OpenProcessToken(hcurrent,40,&hToken);
    LUID luid;
    bret=LookupPrivilegeValue(NULL,"SeDebugPrivilege",&luid);
    TOKEN_PRIVILEGES NewState,PreviousState;
    DWORD ReturnLength;
    NewState.PrivilegeCount =1;
    NewState.Privileges[0].Luid =luid;
    NewState.Privileges[0].Attributes=2;
    AdjustTokenPrivileges(hToken,FALSE,&NewState,28,&PreviousState,&ReturnLength);
}

void calltohack()
{
    	write((LPVOID)0xOFFSET, 0xBYTE);
}

3. You need to add your actual target's window name into the 'game name' part.

4. You need to use a hacking tool like cheat engine to find the OFFSET and BYTE to add in their section

5. You know can COMPILE & RUN a working hack. Enjoy.

Glad you took the time to do that.
Anyways, I know you can't hack if you know C++. You have to be experienced in it. But, if people try, and work their self up, then, you can make a hack and share it.

KTXHBAI.

-Respected

[Toymaker]

What is Download Bloodshev Dev-C++ it doesnt find any downloads for it...

google dev c++ and you will find it.

Yes, it's the name of a program you download and my example is for any or all games. If you want
an example of a hacking a specific game go to my link here:
https://www.mpgh.net/forum/17-tutoria...-new-post.html Now for the sake
of keeping this thread focused on requests and tutorials I'm going to remove your posts but quote
them above.

[[MPGH]Liz]

Improve Firefox speed/RAM usage and/or Internet speed.
Language -none (English rofl)
I'm requesting it because sometimes FF takes up ALOT of my RAM, and I wanted to know if there was a way to speed things up or make the process lighter. Also If you know any tricks to speed up the packages sent and received, or download speeds, or anything like that. thanks

[Toymaker]

Improve Firefox speed/RAM usage and/or Internet speed.
Language -none (English rofl)
I'm requesting it because sometimes FF takes up ALOT of my RAM, and I wanted to know if there was a way to speed things up or make the process lighter. Also If you know any tricks to speed up the packages sent and received, or download speeds, or anything like that. thanks

How to speed up runtime and decrease reliance on RAM
by Toymaker

1. How it works is basically when you load a program it allocates some of it's memory into your RAM and anotherportion of it is stored in Virtual Memory. The more software you load the harder it is on your RAM and CPU. There are henceforth three common solutions to this problem

• Run less programs at once
• Choose smaller applications
• Increase Virtual Memory Use

Indeed you may want to select a different web browser but if you must use FireFox you may find assistance in the primary and latter of the methods. I'll demonstrate how to do so,besides the obvious opening task manager and closing the junk programs you really don't need running:

In Windows XP

1.Click Start, and then click Control Panel.
2.Click Performance and Maintenance, and then click System.
3.On the Advanced tab, under Performance, click Settings.
4.On the Advanced tab, under Virtual memory, click Change.
5.Under Drive [Volume Label], click the drive that contains the paging file that you want to change.
6.Under Paging file size for selected drive, click to Custom size check box. You can enter the amount of memory you would like to reserve for Virtual memory by entering the initial and maximum size.
7.Click Set
When you are prompted to restart the computer, click Yes.
Special Note: You should choose the same amount for the initial size and maximum size. This will Stop your CPU from constantly changing the paging file.

In Vista

1. Click Start button Picture of the Start button
2. Click Control Panel
3. Choose System and Maintenance and then click System.
4. In the left pane, click Advanced system settings.
5.On the Advanced tab, under Performance, click Settings.
6. Click the Advanced tab, and then, under Virtual memory, choose Change.
7. Click Custom to change the Initial size (MB) and Maximum size. See the hot tip above.

Increasing your actual internet speed is simply reliant on your gear, provider, some settings,
and keeping your temporary folders cleaned up. In case you want to google more... ps - > You were also right Obama but I'm trying to keep this section strict, thanks = ) Tednugent also added what Obama already did about google Chrome being a good choice.

[ferrar1000]

-Make a siple Dll hack with injector
-C++
-I'm requesting it because i always wanted to make a hack with a dll, and i think it's a good way to hack a game, so the people can learn it too.

thanks.

[Toymaker]

-Make a siple Dll hack with injector
-C++
-I'm requesting it because i always wanted to make a hack with a dll, and i think it's a good way to hack a game, so the people can learn it too.

thanks.

To Make a .DLL Hack in C++
by Toymaker

Requirements:

• Dev-C++ Compiler
• A Hack (Offset/Byte)

Step 1. Your .DLL/hack and your .EXE/loader are two seperate projects. Open two instances of Dev-C++ and start new projects, one an .EXE and one is a .DLL. Below is a working example

.DLL main.cpp

Code:

#include <windows.h>

BOOL __stdcall DllMain( HINSTANCE hModule, DWORD dwReason, LPVOID lpvReserved )
{
	if( dwReason == DLL_PROCESS_ATTACH )
	{
		DisableThreadLibraryCalls( GetModuleHandle( NULL ) );
MessageBoxA( NULL, "Loaded!", "Hello World", 0 );
}
return true;
}

.EXE main.cpp

Code:

#include <windows.h>
#include <TLHELP32.H>
#include <stdio.h>
#pragma warning(disable : 4996)

bool Done;

//Modified by Jetamay for Toymaker

PROCESSENTRY32 PE32;

char szTarget[] = "Game Name Here";
char szPath[256], szDllToInject[256];

void EnableDebugPriv( void )
{
	HANDLE hToken;
	LUID sedebugnameValue;
	TOKEN_PRIVILEGES tkp;

	 OpenProcessToken( GetCurrentProcess(),
		TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, &hToken );


	LookupPrivilegeValue( NULL, SE_DEBUG_NAME, &sedebugnameValue );

	tkp.PrivilegeCount = 1;
	tkp.Privileges[0].Luid = sedebugnameValue;
	tkp.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;

	AdjustTokenPrivileges( hToken, FALSE, &tkp, sizeof tkp, NULL, NULL );

	CloseHandle( hToken );
}

int main(int argc, char* argv[], char* envp[])
{
	GetModuleFileName( 0, szPath, sizeof(szPath) );
	if(!argv[1]) {
	        printf("Invalid usuagen t [Library path]");
	        return -1;
         }
    else
            printf("Loading library %s.n", argv[1]);
    strcpy(szDllToInject, argv[1]);
	WIN32_FIND_DATA fnd;
	HANDLE DllHnd = FindFirstFile(szDllToInject, &fnd);
	if( DllHnd == INVALID_HANDLE_VALUE )
	{
	printf("                                   n");
	printf("       No correct dll-library.     n");
	printf("                                   n");
	system("pause");
	return 0;
	}

	printf("                                   n");
	printf("        Window Not Found           n");

	EnableDebugPriv();

	HANDLE hSnapshot, hModule, hProcess;
	PE32.dwSize = sizeof(PROCESSENTRY32);

	while(!Done)
	{
		hSnapshot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0);
		Process32First(hSnapshot, &PE32);
		while(Process32Next(hSnapshot, &PE32))
		{
			if(strcmp(PE32.szExeFile, szTarget) == 0)
			{
				if(!Done)
				{
					hProcess = OpenProcess(PROCESS_ALL_ACCESS, false, PE32.th32ProcessID);
					hModule = VirtualAllocEx(hProcess, 0, sizeof(szDllToInject), MEM_COMMIT, PAGE_EXECUTE_READWRITE);
					WriteProcessMemory(hProcess, hModule, (LPVOID)szDllToInject, sizeof(szDllToInject), NULL);
					CreateRemoteThread(hProcess, NULL, 0, (unsigned long(__stdcall *)(void *))GetProcAddress(GetModuleHandle("kernel32"), "LoadLibraryA"), hModule, 0, NULL );
					CloseHandle(hProcess);

					printf("                                   n");
					printf("     Loaded !     n");
					printf("                                   n");
					Sleep(200);
					printf("           Now exiting");
					Sleep(75);printf(".");Sleep(75);printf(".");Sleep(75);printf(".");
					Sleep(50);
					return true;
				}
			}
		}
		CloseHandle(hSnapshot);
		Sleep(0);
	}
return true;
}

Make sure you changed the Target Window Name to your game's window name. I don't believe in giving it all away so all you need to do now is find out how to add WriteProcessMemory to your .DLL although if you share similar address space there are other methods but that might be best for now. Good luck. You know have a working program that loads your working .DLL into your running game. You paste these in, making sure your project is a console app and the other .dll file, and press compile and you have them.

[Marsicano]

Blocking letters in one TextBox.
Visual Basic 2005.
Learning purposes.
I tried to use this code:

Code:

    Private Sub TextBox1_TextChanged(ByVal sender As System.Object, ByVal e As System.Windows.Forms.KeyPressEventArgs) Handles TextBox1.KeyPress
        If Not IsNumeric(e.keychar) Then
            e.Handled = True
        End If
    End Sub

It works but the problem is that he blocks the "-", "." and the backspace character, and I can't block these keys. :X

[Toymaker]

You simply make a text box and double click it so you're at the 'text_change()' code block and you enter:

if text1.text = "a"
text1.text = ""
end if

You now made it so it won't allow a to be typed in. For example.

[Marsicano]

You simply make a text box and double click it so you're at the 'text_change()' code block and you enter:

if text1.text = "a"
text1.text = ""
end if

You now made it so it won't allow a to be typed in. For example.

Thanks, your code works well. But right now I was playing with VB and came to this result

Code:

    Private Sub TextBox1_TextChanged(ByVal sender As System.Object, ByVal e As System.Windows.Forms.KeyPressEventArgs) Handles TextBox1.KeyPress
        If Not IsNumeric(e.KeyChar) And Not (Asc(e.KeyChar) = 8) And Not (Asc(e.KeyChar) >= 44 And Asc(e.KeyChar) <= 46) Then
            e.Handled = True
        End If

    End Sub

The code blocks all the keys except the numeric keys or the "BackSpace", ".", "," and "-" keys.

[angelnev]

Can u help me make HACKS for SWAT 4 i know its old but i still play it pls help

[FantaBrause]

simple esp/wh/or chams for css or cod4 ( dont need anticheat proof)
c++
im done with the basic and i want to start with one of these
there many sourcecodes out i know..but the most sourcecodes are multihacks that means this to much stuff in for a beginner (aimbot, esp, wh, speedhack.......) like me

[Toymaker]

Can u help me make HACKS for SWAT 4 i know its old but i still play it pls help

simple esp/wh/or chams for css or cod4 ( dont need anticheat proof)
c++
im done with the basic and i want to start with one of these
there many sourcecodes out i know..but the most sourcecodes are multihacks that means this to much stuff in for a beginner (aimbot, esp, wh, speedhack.......) like me

FPS Hacking Example
by Toymaker

This is a general FPS hacking game that can be applied to speed or ammo on any game such as CoD CSS or OP7. If you can't make the connections then you're just looking for free answers and I'll still delete your threads asking for more give aways. This is messy so I welcome questions, haha. I've hacked Call of Duty and Operation 7 before but I'm not going to go out and get Swat 4 and CounterStrike for this but I can assure you it's very similar.


1. Requirements: Dev-C++ Your FPS Game CheatEngine and OllyDBG.

2. Load your FPS and make a game that preferably dosn't have other players in it.

3. A. If you're doing ammo or speed in op7 you see the number is set at 100. So:

• Alt-Tab and Load Cheat Engine
• Open Process - Your Game Name
• New Scan on 100 and get results

B. You now have a list of result addresses representing 100. You need to go to the game and change the value either by running or taking a few shots. Alt-Tab back to Cheatengine.

I. If you are doing ammo, search next, the new exact value. Your ammo remains a finite value after all.

II. If speed, search next, 'SMALLER THAN' type, and quickly. Your speed automatically starts to regenerate after all.

A. You now double click the final result so it appears in the botton CE box. You right click it and select 'view what WRITES here.' You press OK and get a pop up box named 'the following opcodes...' go back to the game and repeat step I. or II.

B. You come back and should have a result of some sort. If you were doing ammo you'll have an address like 0047B8EF in which you can just write the correct amount of NOPs to and prevent your AMMO from decreasing past 0.

I will be using a speedhack example for the rest of the tutorial. Your results:

Change of 004737f2 - 89 50 24 - mov [eax+24],edx
Change of 00473946 - ff 40 24 - inc [eax+24]

C. You now open OllyDBG and file - open - operation7.exe and press CLTR+G and goto the more interesting result: 00473946 and look around

Code:

00473946   . FF40 24                         INC DWORD PTR DS:[EAX+24]
00473949   . 8B46 04                         MOV EAX,DWORD PTR DS:[ESI+4]
0047394C   . 8B50 24                         MOV EDX,DWORD PTR DS:[EAX+24]
0047394F   . 52                              PUSH EDX

D. These are the first few lines you see. If you ignore the EAX part and do some testing. You'll be able to learn for yourself that what's happening is:

INC DWORD PTR DS:[EAX+24] ; increases new amount of speed
MOV EDX,DWORD PTR DS:[EAX+24] ; loads the new amount of speed into EDX
PUSH EDX ; prints the new value to screen

5. A. All in all the last two lines are not important. This means you can make sacrifice. Notice the INC and MOV EDX command lines are equal in byte size? FF40 24 and 8B50 24 are both 3 bytes.

Code:

00473946   . FF40 24                         INC DWORD PTR DS:[EAX+24]
00473949   . 8B46 04                         MOV EAX,DWORD PTR DS:[ESI+4]
0047394C   . FF40 24                         INC DWORD PTR DS:[EAX+24]
0047394F   . 52                              PUSH EDX

B. If you replace the mov with another inc, you just doubled the speed at which your Speed recovers. That seems like a much safer and harder for players to detect version of speedhack doesn't it?

C. You simply replace the first two bytes to be the same. 0047394C 8B50 24 You will replace 8B50 with FF40 in your hack.

D. NOW When you try this out and are amazed at how your speed recovers so fast you'll notice the amount of speed listed on the screen is like 998 and your SP bar is green. That's because EDX is some unset number from before.

Code:

0047394F   . 52                              PUSH EDX

E. Considering this is only one byte of data there's not much you can. If you try to push 100 or something it will mess up the code and crash you. Clearly though this means pushing registers is only 1 byte. I went ahead and changed it to PUSH ECX and the SP was only 125 and stayed white. Which may be safer. The byte you need becomes 51.

Code:

00473946   . FF40 24                         INC DWORD PTR DS:[EAX+24]
00473949   . 8B46 04                         MOV EAX,DWORD PTR DS:[ESI+4]
0047394C   . FF40 24                         INC DWORD PTR DS:[EAX+24]
0047394F   . 51                              PUSH ECX

If you didn't know. Look how the last two addresses are 0047394C and 0047394F and between them are 3 bytes? 0047394C+3 = 0047394F and the reason we can just take the first two bytes is because,

0047394C: FF
0047394D: 40
0047394E: 24
0047394F: 51

6. You now are ready to open dev-C++ and paste in this trainer code and change the basic info to compile your hack!

Code:

#include <windows.h>
#include <iostream>
using namespace std;
HWND hHack=FindWindow(NULL,"Operation7");

//DECLARE FUNCTIONS
void write(LPVOID addy, DWORD mydata);
void enableDebugPrivileges();
void dohack();


//Main part
int main() {
    if(!hHack)
    {
        cout << "Window not found" << endl;
        system("pause");
        exit(0);
    }
	cout << "Injecting hack..." << endl;  
	enableDebugPrivileges();
    dohack();          
    system("pause");
  }
void write(LPVOID addy, DWORD mydata)
{
    DWORD PID, TID;
    TID = ::GetWindowThreadProcessId (hHack, &PID);
    HANDLE hopen=OpenProcess( PROCESS_ALL_ACCESS|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|
                  PROCESS_VM_WRITE,FALSE,PID);

    WriteProcessMemory(hopen,addy,&mydata,1,0);
    CloseHandle(hopen);  
}
void enableDebugPrivileges()
{
    HANDLE hcurrent=GetCurrentProcess();
    HANDLE hToken;
    BOOL bret=OpenProcessToken(hcurrent,40,&hToken);
    LUID luid;
    bret=LookupPrivilegeValue(NULL,"SeDebugPrivilege",&luid);
    TOKEN_PRIVILEGES NewState,PreviousState;
    DWORD ReturnLength;
    NewState.PrivilegeCount =1;
    NewState.Privileges[0].Luid =luid;
    NewState.Privileges[0].Attributes=2;
    AdjustTokenPrivileges(hToken,FALSE,&NewState,28,&PreviousState,&ReturnLength);
}
void dohack()
{
    write((LPVOID)0x0047394C, 0xFF);	 
    write((LPVOID)0x0047394D, 0x40);
    write((LPVOID)0x0047394F, 0x51);	 
}

Notice I changed the window name to 'Operation7' and the three writes are as said above. FF40 and 51. You now have a working Operation 7 speedhack that doubles the rate of regeneration and yet keeps the number in a safe range. It doesn't bypass the security but good luck.