Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


InternetWriteFile - Change the buffer?

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking
View previous topic :: View next topic  
Author Message
Popinman32
Cheater
Reputation: 0

Joined: 23 Jul 2010
Posts: 29
PostPosted: Mon May 30, 2011 3:55 pm    Post subject: InternetWriteFile - Change the buffer? Reply with quote
I've found that a game I like to play uses InternetWriteFile for uploading files, and I want to change the buffer to upload *cough* not so approved *cough* content.

From what I could glean from http://msdn.microsoft.com/en-us/library/aa385128%28v=vs.85%29.aspx the buffer that I want to change is actually a pointer, but I don't understand how to find the actual address of the buffer...

Can anyone point me in the direction of a tutorial or give me a hint as to how to find the buffer so I can change it?
_________________
I had a life? O.o
I thought my job was to collect information and help, then one day hope to use it. :S
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 471

Joined: 09 May 2003
Posts: 25855
Location: The netherlands
PostPosted: Mon May 30, 2011 4:25 pm    Post subject: Reply with quote
in 32-bit:
after the startup body of the function (push ebp/ mov ebp,esp) the state of the variables is:

[ebp+4]=return address
[ebp+8]=Handle to file
[ebp+c]=Address of the buffer
[ebp+10]=Number of bytes in the buffer
[ebp+14]=Address to store the number of actually written bytes

The following code is just to show how it should, it will not work if you just copy/paste, you must make some adjustments yourself
Code:

push ebp
mov ebp,esp

push eax

mov eax,[ebp+c]
mov byte ptr [eax+0], change byte1
mov byte ptr [eax+1], change byte 2
mov byte ptr [eax+10], change byte 16
.....
//just don't go over the value stored in [ebp+10]

//adjust [ebp+10] if you want to write less bytes


pop eax
pop ebp

execute overwritten bytes
jmp to original code

_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping


Last edited by Dark Byte on Mon May 30, 2011 4:44 pm; edited 1 time in total
Back to top
View user's profile Send private message MSN Messenger
Popinman32
Cheater
Reputation: 0

Joined: 23 Jul 2010
Posts: 29
PostPosted: Mon May 30, 2011 4:37 pm    Post subject: Reply with quote
Thanks for the reply DB, I appreciate it.
*continues to stare at post*
_________________
I had a life? O.o
I thought my job was to collect information and help, then one day hope to use it. :S
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites