[Release] Insanity Flyff Multi Hack

Page 2 of 4 1 2 34
02/13/2018 11:24 agprinceuchihaa1#16
the injector that i used wont detect the flyff
02/13/2018 17:43 netHoxInc#17
Quote:
Originally Posted by agprinceuchihaa1 View Post
the injector that i used wont detect the flyff
'the injector that i used'

Well yea, i hope you diddnt expected anyone to help you cuz, We're no magicans and cant know what you used.
02/14/2018 10:14 vokylo#18
Quote:
Originally Posted by shadow14493 View Post
As I'm not into Nulling other Clients atm, Im only up for the try on another Server, if there's no CheatEngine or Winject protection. Or if the AntiHack Routines are srsly weak as hell.

Tell me your wished server and I'll give a look once i find time.
If you ever consider doing another server woulda appreciate if it'd be Ignite-flyff, btw thanks for efforts
02/14/2018 23:20 netHoxInc#19
Quote:
Originally Posted by vokylo View Post
If you ever consider doing another server woulda appreciate if it'd be Ignite-flyff, btw thanks for efforts
I've tested on Ignite and I've found all needed data for the Hack to work there.

Weird thing is: It wont let me Inject any DLL, already tried different methods. But im new to 'failed' injections and will checkout more to know if there's another way ;)

But in general i can already say it's working.

Tested all Hacks apart of the Send Attack func.

If anyone got a quick Idea for the Injection prob, lemme know ^^
02/15/2018 00:06 cookie69#20
Quote:
Originally Posted by shadow14493 View Post
I've tested on Ignite and I've found all needed data for the Hack to work there.

Weird thing is: It wont let me Inject any DLL, already tried different methods. But im new to 'failed' injections and will checkout more to know if there's another way ;)

But in general i can already say it's working.

Tested all Hacks apart of the Send Attack func.

If anyone got a quick Idea for the Injection prob, lemme know ^^
Some hints :rolleyes:
  • Create a special injector that creates the process in SUSPENDED mode, injects the DLL in normal mode (create remote thread) and resumes the process
  • Use manual mapping injection -> google it (good injection method)
  • Use reflective injection -> gogle it (advanced technique, AV don't like it a lot)
  • Load byte code from memory -> gogle it (advanced technique, do not work always or if not done properly)
  • Abuse Application Verifier exploit in Windows -> [Only registered and activated users can see links. Click Here To Register...] (simple technique but based on an unpatched exploit in windows so I would not recommend it)
    Etc...

And by the way, I didn't play Ignite for like 1 month and I remember that @[Only registered and activated users can see links. Click Here To Register...]lware put a lot of Auto-ban for botters so have fun disable all the shitty traps :D
02/15/2018 08:11 netHoxInc#21
Its running CrashRpt1403.dll inside, 2 Threads, anything else doesnt trigger if the dll Threads are closed. 2 Clicks for a fix wasnt hard.

I was impressed how save it looked and even more impressed how easy to pass. xD

Again thanks for some good hints, will hopefully be successfull ;)
02/15/2018 12:02 cookie69#22
Quote:
Originally Posted by shadow14493 View Post
Its running CrashRpt1403.dll inside, 2 Threads, anything else doesnt trigger if the dll Threads are closed. 2 Clicks for a fix wasnt hard.

I was impressed how save it looked and even more impressed how easy to pass. xD

Again thanks for some good hints, will hopefully be successfull ;)
CrashRpt is for error reporting normally and it is a great free library. Either they changed the source code of it to add a DLL injection blocker or it is just a coincidence that CrashRpt blocks dll injection...
But yeah good job, 80% of "protections" of many pservers can be bypassed by finding and killing/suspending some threads..(In general they have a high dynamic priority compared to other threads)
02/15/2018 13:49 netHoxInc#23
I havent tested alot tho, but still it could send infos about injected modules which we usually shouldnt want them to know ^^

Diddnt came to test anything yet atm bit busy^^
02/17/2018 01:22 agprinceuchihaa1#24
i mean the winject wont detect the game
02/18/2018 09:40 Ridl3#25
Same, winject doesnt see Neuz.exe
02/18/2018 09:42 netHoxInc#26
Neuz.exe must be running, also this is only for Insanity Flyff.

Start Winject as admin ofc. It's all working fine.

Some GIF:

[Only registered and activated users can see links. Click Here To Register...]
02/18/2018 09:45 Ridl3#27
Quote:
Originally Posted by shadow14493 View Post
Neuz.exe must be running, also this is only for Insanity Flyff.

Start Winject as admin ofc. It's all working fine.

Some GIF:

[Only registered and activated users can see links. Click Here To Register...]
Got it worked now, i can find neuz now, Now i am getting an error.

[Only registered and activated users can see links. Click Here To Register...]

Both injection-methods failed!
(RemoteLoadLibrary and DetourInjecting)
nHack.dll -> neuz.exe
Target is protected ? err:0
02/18/2018 09:47 netHoxInc#28
Some1 else had this error too, not sure if its win8/win10 related.
You might be missing vcredist pack's. Not sure.
02/18/2018 09:48 Ridl3#29
So do you know how to fix it ? i have win 10
02/18/2018 10:12 netHoxInc#30
I'd try installing all Redist packages for your core (86x/64x)
Page 2 of 4 1 2 34