| View previous topic :: View next topic |
| Author |
Message |
colo
Expert Cheater
 Reputation: 1
Joined: 09 Apr 2005
Posts: 111
|
 Posted: Wed Aug 15, 2007 7:14 am Post subject: |
 |
|
if apis hook in mode driver how dog bypassed??? in mode driver?
NtGdiLineTo, NtUserSendInput, NTUserGetDC???? how can me make bypass in me source code trainer???
|
|
| Back to top |
|
 |
UnLmtD
Grandmaster Cheater
 Reputation: 0
Joined: 13 Mar 2007
Posts: 894
Location: Canada
|
| Posted: Wed Aug 15, 2007 10:06 am Post subject: |
|
|
| colo wrote: |
if apis hook in mode driver how dog bypassed??? in mode driver?
NtGdiLineTo, NtUserSendInput, NTUserGetDC???? how can me make bypass in me source code trainer??? |
You could relocate the ServiceTable of KeSerivceDescriptorTableShadow, let gameguard to their hooks, and then restore the original address. This method works with KeSerivceDescriptorTable.
_________________
|
|
| Back to top |
|
|
colo
Expert Cheater
Reputation: 1
Joined: 09 Apr 2005
Posts: 111
|
| Posted: Wed Aug 15, 2007 11:15 am Post subject: |
|
|
| sry but one example? I am not a good programmer but I understand
|
|
| Back to top |
|
|
tahoma
How do I cheat?
![]() Reputation: 0
Joined: 15 Aug 2007
Posts: 3
|
| Posted: Wed Aug 15, 2007 5:15 pm Post subject: There is no simple way. |
|
|
| colo wrote: | | sry but one example? I am not a good programmer but I understand |
You must write kernel mode driver against GG.
_________________
for code, by code, to code. |
|
| Back to top |
|
|
kittonkicker
I post too much
 Reputation: 1
Joined: 19 Apr 2006
Posts: 2171
|
| Posted: Thu Aug 16, 2007 5:54 am Post subject: Re: There is no simple way. |
|
|
| tahoma wrote: | | colo wrote: | | sry but one example? I am not a good programmer but I understand |
You must write kernel mode driver against GG. |
There's a few usermode tricks which can achieive a similar effect...
|
|
| Back to top |
|
|
linden
Master Cheater
![]() Reputation: 0
Joined: 10 Mar 2006
Posts: 319
|
| Posted: Thu Aug 16, 2007 8:06 am Post subject: Re: There is no simple way. |
|
|
| kittonkicker wrote: |
There's a few usermode tricks which can achieive a similar effect... |
But kernel driver is much more powerful. So I prefer/suggest writing a kernel mode driver 
|
|
| Back to top |
|
|
kittonkicker
I post too much
Reputation: 1
Joined: 19 Apr 2006
Posts: 2171
|
| Posted: Thu Aug 16, 2007 11:34 am Post subject: Re: There is no simple way. |
|
|
| linden wrote: | | But kernel driver is much more powerful. So I prefer/suggest writing a kernel mode driver |
To be perfectly honest, I don't know the first thing about writing kernelmode drivers.
I could probably code one with a bit of help though...
The last time I tried to mess about with a kernelmode driver, I was trying to hook ZwCreateFile...I managed to BSOD myself about 100 times before I decided it wasn't worth it!
|
|
| Back to top |
|
|
nog_lorp
Grandmaster Cheater
 Reputation: 0
Joined: 26 Feb 2006
Posts: 743
|
| Posted: Thu Aug 16, 2007 2:15 pm Post subject: |
|
|
Kiki, use code from rootkit.com as a template, and go from there.
_________________
Mutilated lips give a kiss on the wrist of the worm-like tips of tentacles expanding in my mind
I'm fine accepting only fresh brine you can get another drop of this yeah you wish |
|
| Back to top |
|
|
UnLmtD
Grandmaster Cheater
Reputation: 0
Joined: 13 Mar 2007
Posts: 894
Location: Canada
|
| Posted: Thu Aug 16, 2007 2:30 pm Post subject: |
|
|
r0 is way more fun then r3
_________________
|
|
| Back to top |
|
|
kittonkicker
I post too much
Reputation: 1
Joined: 19 Apr 2006
Posts: 2171
|
| Posted: Thu Aug 16, 2007 2:31 pm Post subject: |
|
|
| UnLmtD wrote: | | r0 is way more fun then r3 |
So says "Mr BSOD" xD.
I remember you saying on IRC "I'm probably about to BSOD"!! I rofl'd.
|
|
| Back to top |
|
|
UnLmtD
Grandmaster Cheater
Reputation: 0
Joined: 13 Mar 2007
Posts: 894
Location: Canada
|
| Posted: Thu Aug 16, 2007 2:33 pm Post subject: |
|
|
 But when it finally works, it's worth it.
_________________
|
|
| Back to top |
|
|
nog_lorp
Grandmaster Cheater
Reputation: 0
Joined: 26 Feb 2006
Posts: 743
|
| Posted: Thu Aug 16, 2007 8:50 pm Post subject: |
|
|
"Bypassed"... awfully specific. Bypassing what exactly? Userland hooks? Kernel hooks?
~nog_lorp
_________________
Mutilated lips give a kiss on the wrist of the worm-like tips of tentacles expanding in my mind
I'm fine accepting only fresh brine you can get another drop of this yeah you wish |
|
| Back to top |
|
|
linden
Master Cheater
![]() Reputation: 0
Joined: 10 Mar 2006
Posts: 319
|
| Posted: Thu Aug 16, 2007 10:50 pm Post subject: |
|
|
| Well, I had lots of BSOD too. And you can't avoid BSOD if you're writing kernel codes. Rather than testing your driver by trial and error, learn how to debug with WinDbg so you know what's causing the BSOD.
|
|
| Back to top |
|
|
--Pillboi--
Grandmaster Cheater Supreme
 Reputation: 0
Joined: 06 Mar 2007
Posts: 1383
Location: I don't understand the question. Is this a 1 to 10 thing?
|
| Posted: Fri Aug 17, 2007 4:04 am Post subject: |
|
|
Or trial it in VMWare... xD
_________________
 
Enter darkness, leave the light, Here be nightmare, here be fright...
Earth and Water, Fire and Air. Prepare to meet a creature rare.
Enter now if you dare, Enter now the dragon's lair. |
|
| Back to top |
|
|
assaf84
Expert Cheater
![]() Reputation: 0
Joined: 03 Oct 2006
Posts: 238
|
| Posted: Sun Aug 19, 2007 1:11 pm Post subject: |
|
|
um...
where is the DLL? 
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
