| View previous topic :: View next topic |
| Author |
Message |
Xocitus
Newbie cheater
![]() Reputation: 0
Joined: 19 Jul 2007
Posts: 15
|
 Posted: Wed Oct 24, 2007 12:04 pm Post subject: Asm in delphi.. |
 |
|
How would i do in delphi:
[TO ENABLE]
| Code: | 00411093:
jmp 0095161C
nop
0095161C:
mov ebx,458CA000
mov eax,0
mov [ecx+0000017c],ebx
mov [ecx+00000180],eax
mov [ecx+00000184],ebx
jmp 004110a9
nop |
[TO DISABLE]
| Code: | 00411093:
mov [ecx+0000017c],edx
mov edx,[esp+0c]
mov [ecx+00000180],eax
mov [ecx+00000184],edx |
^^is has to change the value of another game...
|
|
| Back to top |
|
 |
DeletedUser14087
I post too much
![]() Reputation: 2
Joined: 21 Jun 2006
Posts: 3069
|
| Posted: Wed Oct 24, 2007 12:16 pm Post subject: |
|
|
| vener made a TUT using CE source.
|
|
| Back to top |
|
|
Xocitus
Newbie cheater
![]() Reputation: 0
Joined: 19 Jul 2007
Posts: 15
|
| Posted: Wed Oct 24, 2007 12:22 pm Post subject: |
|
|
| Can u give a little more details..... i cant really find
|
|
| Back to top |
|
|
DeletedUser14087
I post too much
![]() Reputation: 2
Joined: 21 Jun 2006
Posts: 3069
|
| Posted: Wed Oct 24, 2007 1:11 pm Post subject: |
|
|
| Xocitus wrote: | | Can u give a little more details..... i cant really find |
Sure thing !
|
|
| Back to top |
|
|
Symbol
I'm a spammer
![]() Reputation: 0
Joined: 18 Apr 2007
Posts: 5094
Location: Israel.
|
| Posted: Wed Oct 24, 2007 9:56 pm Post subject: |
|
|
WriteProcessMemory.
I think you can also use "asm", make the script there, convert them to bytes and then it would be easier.
CE does the opposite thing, convert bytes to op-codes, so it won't help.
Or you can also write the value instead of lots of bytes.
Edit: sorry, didn't see kaspersky's post.
Thats only for ce's trainer, he brought some parts of code from ce's trainer, what if he wants to make his own?
| Quote: | I am redoing the whole trainer of mine to be more efficent and simple.
I will readd the features later shown in the old part...REV 2 |
Old, maybe detected?
and he uses the code with variables that are already exist in the trainer, that way he must copy almost the whole code to make one of his own.
|
|
| Back to top |
|
|
assaf84
Expert Cheater
![]() Reputation: 0
Joined: 03 Oct 2006
Posts: 238
|
| Posted: Thu Oct 25, 2007 12:44 am Post subject: |
|
|
| Symbol wrote: | WriteProcessMemory.
I think you can also use "asm", make the script there, convert them to bytes and then it would be easier.
CE does the opposite thing, convert bytes to op-codes, so it won't help.
Or you can also write the value instead of lots of bytes.
Edit: sorry, didn't see kaspersky's post.
Thats only for ce's trainer, he brought some parts of code from ce's trainer, what if he wants to make his own?
| Quote: | I am redoing the whole trainer of mine to be more efficent and simple.
I will readd the features later shown in the old part...REV 2 |
Old, maybe detected?
and he uses the code with variables that are already exist in the trainer, that way he must copy almost the whole code to make one of his own. |
CE can also convert opcode to an array of bytes. Check the "Assemble" function in assemblerunit.pas
|
|
| Back to top |
|
|
Symbol
I'm a spammer
![]() Reputation: 0
Joined: 18 Apr 2007
Posts: 5094
Location: Israel.
|
| Posted: Thu Oct 25, 2007 1:31 am Post subject: |
|
|
Yea, I should have think about it, it gotta convert the op-codes we write in the script to bytes first. 
|
|
| Back to top |
|
|
DeletedUser14087
I post too much
![]() Reputation: 2
Joined: 21 Jun 2006
Posts: 3069
|
| Posted: Thu Oct 25, 2007 3:06 am Post subject: |
|
|
| The simplest way to do, instead of coding a Trainer, code a .dll (With/WO UI) and just take address you wanna change it's assemble (Hexadecimal).
|
|
| Back to top |
|
|
Reak
I post too much
 Reputation: 0
Joined: 15 May 2007
Posts: 3496
|
| Posted: Thu Oct 25, 2007 3:13 am Post subject: |
|
|
| Kaspersky wrote: | | The simplest way to do, instead of coding a Trainer, code a .dll (With/WO UI) and just take address you wanna change it's assemble (Hexadecimal). |
Wanna post a tut, HOW ? 
|
|
| Back to top |
|
|
assaf84
Expert Cheater
![]() Reputation: 0
Joined: 03 Oct 2006
Posts: 238
|
| Posted: Thu Oct 25, 2007 4:13 am Post subject: |
|
|
| Code: |
BOOL APIENTRY DllMain(HMODULE hModule,DWORD ul_reason_for_call,LPVOID lpReserved)
{
if(ul_reason_for_call==DLL_PROCESS_ATTACH)
*(BYTE*)<an address> = <change to..>;
}
|
About the shortest way to do it..
|
|
| Back to top |
|
|
DeletedUser14087
I post too much
![]() Reputation: 2
Joined: 21 Jun 2006
Posts: 3069
|
| Posted: Thu Oct 25, 2007 4:28 am Post subject: |
|
|
| rEakW0n wrote: | | Kaspersky wrote: | | The simplest way to do, instead of coding a Trainer, code a .dll (With/WO UI) and just take address you wanna change it's assemble (Hexadecimal). |
Wanna post a tut, HOW ? |
If i do, it'll be in C though -.-"
Firs of all, i'll try making one in Delphi too, if it works then i'll make a Tut for C and Delphi
|
|
| Back to top |
|
|
Reak
I post too much
Reputation: 0
Joined: 15 May 2007
Posts: 3496
|
| Posted: Thu Oct 25, 2007 5:12 am Post subject: |
|
|
| Kaspersky wrote: | | rEakW0n wrote: | | Kaspersky wrote: | | The simplest way to do, instead of coding a Trainer, code a .dll (With/WO UI) and just take address you wanna change it's assemble (Hexadecimal). |
Wanna post a tut, HOW ? |
If i do, it'll be in C though -.-"
Firs of all, i'll try making one in Delphi too, if it works then i'll make a Tut for C and Delphi |
*merry*
|
|
| Back to top |
|
|
hcavolsdsadgadsg
I'm a spammer
![]() Reputation: 26
Joined: 11 Jun 2007
Posts: 5801
|
| Posted: Thu Oct 25, 2007 3:32 pm Post subject: |
|
|
Just use WriteProcessMemory. For example, write: (i'm pretty sure this is correct...) to 0095161C
BB 00 A0 8C 45 B8 00 00 00 00 89 99 7C 01 00 00 89 81 80 01 00 00 89 99 84 01 00 00 E9 6D EC B0 FF 90
and there's your
mov ebx,458CA000
mov eax,0
mov [ecx+0000017c],ebx
mov [ecx+00000180],eax
mov [ecx+00000184],ebx
jmp 004110a9
nop
|
|
| Back to top |
|
|
Reak
I post too much
Reputation: 0
Joined: 15 May 2007
Posts: 3496
|
| Posted: Thu Oct 25, 2007 3:52 pm Post subject: |
|
|
| slovach wrote: | Just use WriteProcessMemory. For example, write: (i'm pretty sure this is correct...) to 0095161C
BB 00 A0 8C 45 B8 00 00 00 00 89 99 7C 01 00 00 89 81 80 01 00 00 89 99 84 01 00 00 E9 6D EC B0 FF 90
and there's your
mov ebx,458CA000
mov eax,0
mov [ecx+0000017c],ebx
mov [ecx+00000180],eax
mov [ecx+00000184],ebx
jmp 004110a9
nop |
yea but please tell me how to exactly do it?
|
|
| Back to top |
|
|
hcavolsdsadgadsg
I'm a spammer
![]() Reputation: 26
Joined: 11 Jun 2007
Posts: 5801
|
| Posted: Thu Oct 25, 2007 4:46 pm Post subject: |
|
|
| slovach wrote: | | WriteProcessMemory |
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
