Pointer collection

12/12/2008 19:29 Smurfin#136
thanks, hope you or anyone good with offset fishing find it. It'll be very useful.

finding offsets is confusing, sometimes it's shown directly using CE's 'what access this memory address' but sometimes it has confusing formula. ecx esi edx etc zzzz no idea what those things are.
12/14/2008 13:34 StellarFighter#137
Quote:
Originally Posted by BetaBowElfe View Post
does the other player see your name change or only yourself... lol because player names is very much server sided i think.
my purpose is not for changing my name BetaBow... but like the RF online game.. i'm curious to find out the offset for our character name ..

on progress : i had found that our name in PW ,for example : Superman will become S u p e r m a n (with space (hex 00) between alphabet)

so far .. i found the address.. but it keeps changing everytime re-login
its real Pointer still can't found yet

help me
12/14/2008 16:12 BetaBowElfe#138
sometimes that is my problem too there are some address that dont have pointer in them i just mark their offsets and address in memory.
12/15/2008 14:32 plixbugmenot#139
Quote:
Originally Posted by StellarFighter View Post
my purpose is not for changing my name BetaBow... but like the RF online game.. i'm curious to find out the offset for our character name ..

on progress : i had found that our name in PW ,for example : Superman will become S u p e r m a n (with space (hex 00) between alphabet)

so far .. i found the address.. but it keeps changing everytime re-login
its real Pointer still can't found yet

help me

if there is 0x00 between them thats because its UNICODE instead of ASCII.
Unicode uses 2 bytes for a letter.
12/15/2008 17:17 StellarFighter#140
Quote:
Originally Posted by BetaBowElfe View Post
sometimes that is my problem too there are some address that dont have pointer in them i just mark their offsets and address in memory.
yes..me too. found 3-5 address.. but when i add it,i can't use the same address again after re-login. (that address was changing)
so..thats annoying. so.. you do confuse too, BetaBow ?
:mad:


Quote:
Originally Posted by plixbugmenot View Post
if there is 0x00 between them thats because its UNICODE instead of ASCII.
Unicode uses 2 bytes for a letter.
ohh thanks for the info plixbugmenot...
so..what must i do with unicode when working with UCE ? or ..
(usually i use ASCII), will unicode affect to BOT's script?
12/15/2008 18:55 BetaBowElfe#141
Quote:
Originally Posted by plixbugmenot View Post
if there is 0x00 between them thats because its UNICODE instead of ASCII.
Unicode uses 2 bytes for a letter.
no what i mean is that when look at writes or access the adresss it shows something kinda like "cmp dword ptr [eax4*+4]" something like that.
12/16/2008 10:16 dk.signum#142
Quote:
Originally Posted by BetaBowElfe View Post
no what i mean is that when look at writes or access the adresss it shows something kinda like "cmp dword ptr [eax4*+4]" something like that.
well it's simply because the address that we breakpointed is in used either in the general purpose register or it equation.

the one that confusing is mov eax,eax or something like that :pimp:
12/16/2008 13:27 BetaBowElfe#143
Quote:
Originally Posted by dk.signum View Post
well it's simply because the address that we breakpointed is in used either in the general purpose register or it equation.

the one that confusing is mov eax,eax or something like that :pimp:
so how do i find it if what access or writes to if it is breakpointed? how do i get to the pointers? also some that wrties as >> with the red color are shown as jgeclient 00043434 i mean there is no pointer to it like what it normally shown with pointer example for jumphack goes like ecx[00000+b10].
12/16/2008 14:08 StellarFighter#144
does it mean .. the address for name is level 2 or 3 or level 4 pointer ?

:eek: pointer of pointers ?
12/16/2008 19:39 Smurfin#145
I have a noob way for finding offsets using CE for anyone as noob as me in finding offsets ^^

just search what you want to search and when you find it you'll get an address. Then just find another address which you already known the offset, for example jumphack or HP value (you can find these offsets anywhere in bot like mhs or other hacks like disconnect's or smurfit or others, but you still have to find its current address for comparison ), just pick one and compare the addresses' difference, then calculate the difference value to the known offset.

dunno if it will always work but yesterday I got zoomhack's offset with it.
12/17/2008 05:42 dk.signum#146
Quote:
Originally Posted by BetaBowElfe View Post
so how do i find it if what access or writes to if it is breakpointed? how do i get to the pointers? also some that wrties as >> with the red color are shown as jgeclient 00043434 i mean there is no pointer to it like what it normally shown with pointer example for jumphack goes like ecx[00000+b10].
i may wrong about this but i believe it was maybe some sort of data only purpose, means that it was only a value stored there. The real thing is to look at above coz sometimes the address that breaks was fill in there.

Quote:
Originally Posted by Smurfin View Post
I have a noob way for finding offsets using CE for anyone as noob as me in finding offsets ^^

just search what you want to search and when you find it you'll get an address. Then just find another address which you already known the offset, for example jumphack or HP value (you can find these offsets anywhere in bot like mhs or other hacks like disconnect's or smurfit or others, but you still have to find its current address for comparison ), just pick one and compare the addresses' difference, then calculate the difference value to the known offset.

dunno if it will always work but yesterday I got zoomhack's offset with it.
that way is not always work, althought it will some kind work like ex ecx+450 then we pre-assumed that will work to write new offset to the address we found as ecx+490.

but what if the calculation was wrong, for ex ( ecx+330 )+30 as known as 2 level pointer :mofo:
12/17/2008 07:05 BetaBowElfe#147
yep, that is what i do i look the the addresss close to it in the region sometimes i got something right sometimes wrong, something it is something totaly new that i get that i was not looking for in the first place like the offset for range or some sort i that i found out while i was looking for the pointer for critical.
12/17/2008 09:04 Smurfin#148
ah it doesn't always work, yesterday I tried to an address and the the range is too far, after calculated them the difference value is like another hex address lol
12/18/2008 14:16 solvent#149
Guys im really having a hard time on looking for base address and offset for MY-EN can someone help me plz... how to get the offset of fly and jump... thnx... ^^
12/19/2008 15:34 Smurfin#150
there is a guide already for finding base address, as for offset, you can use CE and find jumphack offset with it, then use available hack app which has a list of offsets in there, even if the value wont match for your region, you can calculate the offset difference for the jumphack and sum it to other offsets listed. It will work if the address is kinda close like jumphack, flyhack, hp, max hp, etc.