[DiscordArchive] need to add add_subdirectory("name of folder") to the cmake file i guess ?
[DiscordArchive] need to add add_subdirectory("name of folder") to the cmake file i guess ?
Original source
need to add add_subdirectory("name of folder") to the cmake file i guess ?
rektbyfaith
08-12-2022, 08:46 PM #1Archived author: Thiaz • Posted: 2022-08-12T20:46:54.572000+00:00
Original source
need to add add_subdirectory("name of folder") to the cmake file i guess ?
Original source
it should add "Script" files automatically
rektbyfaith
08-12-2022, 08:47 PM #2Archived author: <o> • Posted: 2022-08-12T20:47:11.724000+00:00
Original source
it should add "Script" files automatically
Original source
ok
rektbyfaith
08-12-2022, 08:47 PM #3Archived author: Thiaz • Posted: 2022-08-12T20:47:24.970000+00:00
Original source
ok
Original source
Kind of a beginner in injection, is there an injector included ?
rektbyfaith
08-12-2022, 08:52 PM #4Archived author: Thiaz • Posted: 2022-08-12T20:52:48.871000+00:00
Original source
Kind of a beginner in injection, is there an injector included ?
Original source
no, you can write these bytes to your exe to load it:
**FOR ANYONE READING THIS: THESE BYTES ARE RETARDED AND DONT WORK WITHOUT ANOTHER UNRELATED PATCH, CHECK OUT <https://github.com/tswow/tswow/blob/master/tswow-scripts/util/ClientPatches.ts> FOR THE LATEST VERSION**
```
[0x28e19c,[0xE9,0x6C,0xBC,0x07,0x00,0x90]],
// hook:
// - Jump past following code in surrounding subroutine (we had to cave inside another function)
// - Call LoadLibraryA (arbitrary instruction we replaced with jump, will load d3d9.dll)
// - Push all registers
// - Push ClientExtensions.dll string
// - Call LoadLibraryA
// - Pop all registers
// - Jump back
[0x309e0b,[0xEB,0x1D,0xFF,0x15,0x48,0xF2,0x9D,0x00,0x60,0x68,0x71,0x42,0x9E,0x00,0xFF,0x15,0x48,0xF2,0x9D,0x00,0x61,0xE9,0x7D,0x43,0xF8,0xFF]],
// "ClientExtensions.dll" string
[0x5e2a71,[0x43,0x6C,0x69,0x65,0x6E,0x74,0x45,0x78,0x74,0x65,0x6E,0x73,0x69,0x6F,0x6E,0x73,0x2E,0x64,0x6C,0x6C]]
```
rektbyfaith
08-12-2022, 08:53 PM #5Archived author: <o> • Posted: 2022-08-12T20:53:17.129000+00:00
Original source
no, you can write these bytes to your exe to load it:
**FOR ANYONE READING THIS: THESE BYTES ARE RETARDED AND DONT WORK WITHOUT ANOTHER UNRELATED PATCH, CHECK OUT <https://github.com/tswow/tswow/blob/master/tswow-scripts/util/ClientPatches.ts> FOR THE LATEST VERSION**
```
[0x28e19c,[0xE9,0x6C,0xBC,0x07,0x00,0x90]],
// hook:
// - Jump past following code in surrounding subroutine (we had to cave inside another function)
// - Call LoadLibraryA (arbitrary instruction we replaced with jump, will load d3d9.dll)
// - Push all registers
// - Push ClientExtensions.dll string
// - Call LoadLibraryA
// - Pop all registers
// - Jump back
[0x309e0b,[0xEB,0x1D,0xFF,0x15,0x48,0xF2,0x9D,0x00,0x60,0x68,0x71,0x42,0x9E,0x00,0xFF,0x15,0x48,0xF2,0x9D,0x00,0x61,0xE9,0x7D,0x43,0xF8,0xFF]],
// "ClientExtensions.dll" string
[0x5e2a71,[0x43,0x6C,0x69,0x65,0x6E,0x74,0x45,0x78,0x74,0x65,0x6E,0x73,0x69,0x6F,0x6E,0x73,0x2E,0x64,0x6C,0x6C]]
```
Original source
so at `0x28e19c` you write `0xE9,0x6C,0xBC,0x07,0x00,0x90` etc
rektbyfaith
08-12-2022, 08:53 PM #6Archived author: <o> • Posted: 2022-08-12T20:53:40.021000+00:00
Original source
so at `0x28e19c` you write `0xE9,0x6C,0xBC,0x07,0x00,0x90` etc
Original source
Oh and it auto loads that's nice
rektbyfaith
08-12-2022, 08:53 PM #7Archived author: Thiaz • Posted: 2022-08-12T20:53:50.119000+00:00
Original source
Oh and it auto loads that's nice
Original source
i'm not 100% sure the "ClientExtensions.dll" string is actually a safe place, but it looked very much unused and only one xref before it that looked fixed in size
rektbyfaith
08-12-2022, 08:54 PM #8Archived author: <o> • Posted: 2022-08-12T20:54:33.143000+00:00
Original source
i'm not 100% sure the "ClientExtensions.dll" string is actually a safe place, but it looked very much unused and only one xref before it that looked fixed in size
Original source
the code itself should be good, it's in a NOPed region that i jump around
rektbyfaith
08-12-2022, 08:54 PM #9Archived author: <o> • Posted: 2022-08-12T20:54:48.454000+00:00
Original source
the code itself should be good, it's in a NOPed region that i jump around
Original source
i can just raw edit it with 010 Editor there is no offset ?
rektbyfaith
08-12-2022, 08:55 PM #10Archived author: Thiaz • Posted: 2022-08-12T20:55:14.068000+00:00
Original source
i can just raw edit it with 010 Editor there is no offset ?
1 Guest(s)
1 Guest(s)