Cabal PH Damage Hack

Ok here goes.

1. Search for your honor, get the address. Take it.
2. Kill a monster so your honor points will increase. Search for your new honor address and take it.
3. Select the first address you got, right click -> find out what writes to this address. Get the code.
4. Repeat Step 3 but this time with the new honor address.
5. Now compare the 2 Codes you got. The codes that differ are what you call the checksums. This is what makes you dc when you try to equip a BOF+4 with a low level honor ranked character.
6. You have to learn at least the basics of CE and simple C++ in order for you to alter these checksums and use them at your advantage.
7. If you managed to manipulate the Honor Level Address' Checksum, then you can send that packet to the server and thereby be able to inject your own code.

I'm expecting many of you won't be able to get this. But this is as far as I'll go.
The rest is up to you.

@bihasa110304
If you don't know check sum, don't discourage other people who want to learn it. I'm thinking you're just a noob leecher waiting for DMG Hack to go public. How pathetic.

I will say this for last time and for those people who are sending out nonsense pms.

The only way to make this hack possible is by bypassing the Honor Points Checksum.

If you don't know check sum, download tutorial.exe @ cheatengine.org. Learn the basics of CE so you'll be enlightened. Believe me. Knowing CE can be very rewarding.

ok... I think that's the 1st step and 2nd goodluck to all of us =)

i still haven't figured it out.. lol.

1. Search for your honor, get the address. Take it.
2. Kill a monster so your honor points will increase. Search for your new honor address and take it.
3. Select the first address you got, right click -> find out what writes to this address. Get the code.
4. Repeat Step 3 but this time with the new honor address.
5. Now compare the 2 Codes you got. The codes that differ are what you call the checksums. This is what makes you dc when you try to equip a BOF+4 with a low level honor ranked character.

in the 1st and second part. the honor address is still the same. this is what i did, i searched for my honour value (default),added it to list.

i killed monster in war channel then increase by 2. New search then i put in my new honor value. searched then the same address appeared..

I'm expecting many of you won't be able to get this. But this is as far as I'll go.
The rest is up to you.


----- aw man ... still head hurts.. =(

Quote:

Originally Posted by dlnqt i still haven't figured it out.. lol. 1. Search for your honor, get the address. Take it. 2. Kill a monster so your honor points will increase. Search for your new honor address and take it. 3. Select the first address you got, right click -> find out what writes to this address. Get the code. 4. Repeat Step 3 but this time with the new honor address. 5. Now compare the 2 Codes you got. The codes that differ are what you call the checksums. This is what makes you dc when you try to equip a BOF+4 with a low level honor ranked character. in the 1st and second part. the honor address is still the same. this is what i did, i searched for my honour value (default),added it to list. i killed monster in war channel then increase by 2. New search then i put in my new honor value. searched then the same address appeared..

--- yes i also got the same result. i still got the same address its just that the value is higher.

-so thats the problem how could i compare it to another one if there is only one and same address for it.. do you think that we should compare the value? bec when i change the value it will differ when you click browse this memory region. and there i could compare my original honor and the edited honor.

-and also the thing is i'm able to create a created process then what should i do with it. still dont know hehe. when i scan it with my current honor points im able to get an address on it. then there you go i'm just stuck to that and dont know what to do...

It's really hard if your just knowing this for the first time like the c++ haha dont have any idea about it. lolz.. Geeeezzz i thought its just easy as before or just easy like map hack , sh etc... .. Head Hurts =(

yeah, i thought it was only CE, but it happens we also need to program using C++..

in the step where you have to find what writes to that address, after pressing that option, go kill a monster that will give you honor points. and the code will appear in that window. from there on its hard. we'll need more help from cyenne :)

i sure hope cyenne would just give us the entire steps, pssye, maybe i'll dream about it later. lol :) i'm about to give up on this since i'm not getting anywhere :(

for people who already got this hack to work, please be responsible and don't ruin the cabal economy. :)

waaa i compared the two addresses already there are to excess codes to the first one and i guess those two are the checksums?am i ryt?

is there anyone can help me with this? i don't know how to use checksum for this code. maybe there's anyone of you have the knowledge to use checksum for my code or anyone can teach how to use checksum for this code. thanks.




alloc(newmem,2048) //2kb should be enough
label(returnhere)
label(originalcode)
label(exit)

036e0000:
jmp newmem
nop
returnhere:

newmem: //this is allocated memory, you have read,write,execute access
//place your code here


originalcode:
add [edi+00003c20],ebx

exit:
jmp returnhere

Quote:

Originally Posted by allen05 is there anyone can help me with this? i don't know how to use checksum for this code. maybe there's anyone of you have the knowledge to use checksum for my code or anyone can teach how to use checksum for this code. thanks. alloc(newmem,2048) //2kb should be enough label(returnhere) label(originalcode) label(exit) 036e0000: jmp newmem nop returnhere: newmem: //this is allocated memory, you have read,write,execute access //place your code here originalcode: add [edi+00003c20],ebx exit: jmp returnhere

that's not the checksum. what that address do is that it adds the value of ebx to edi+00003c20. in your case, i bet you killed a monster in war channel. you will see the value of ebx = 0000002 at the time you captured the address.

the checksum's address is different..

me neither....

well thinking that it can bypass honor points checksum then perhaps it can also bypass alz checksum... is that right? because when you do search the alz it also make you DC when you try to change it and store it in your storage make you DC. I dunno if they differ to one another.

Not making any sense right now... were hopeless :(

Quote:

Originally Posted by dlnqt that's not the checksum. what that address do is that it adds the value of ebx to edi+00003c20. in your case, i bet you killed a monster in war channel. you will see the value of ebx = 0000002 at the time you captured the address. the checksum's address is different..

oh men ur great! how did u know that im in a war channel? well, tnx for the info :)

Quote:

Originally Posted by dlnqt that's not the checksum. what that address do is that it adds the value of ebx to edi+00003c20. in your case, i bet you killed a monster in war channel. you will see the value of ebx = 0000002 at the time you captured the address. the checksum's address is different..

what the checksum's address should be look like? can you post it?

I also don't know where to look for it, it's very complicated :|

mhhhhh i thought damage hack will kill 1 hit on a mobs.... so it will depend on a bracelet you have???? will good luck all of u guys!!!!!