[Release] - uNf Trainer

(As a happy donator) Mini ESP is simply amazing. It makes for a great advantage in WvW especially. : P
Kudos to Ploxasarus! Looking forward to seeing more of this, haha

[Only registered and activated users can see links. Click Here To Register...]
[Only registered and activated users can see links. Click Here To Register...]

...disregard the Radar of course.

Teleport dont work anymore for me. Coords change after tp, but after sync with skill character is in the same place as before tp.

Cheers:)

Work's fine with the teleport and will be adding the auto sync to it at some point in the next week or 2 w/o the use of packet editing.

Try using the v2 or v1 depending on which your using.

hey can u please fix the location error which occurs on map...the party members seems to be on other location while the minimap says they are stuck (usually bumping walls)...seems to be working fine for my location sync but not for other player based locations

hi Ploxasarus,

there was an update recently with the game and now seems the clipping and climb buttons are not working, or rather it gets disconnected from the game when u use it.
Hope you can fix this thanks!
And that auto sync update would be really awesome aswell :handsdown:

Quote:

there was an update recently with the game and now seems the clipping and climb buttons are not working

Updated, no 32bit support.

Quote:

And that auto sync update would be really awesome aswell

No, blame Dragon~Ash who likes to leech other peoples finds to gZoom for a no-packet edit sync not being added for free to the public.

well that is fine

updating the program as it is good enough and helped a lot especially when doing dailies like treasure boxes and ori veins

anyway thanks a lot cheers!

Also added some nice packing features to the updated executable to prevent people from taking out of it to update that piece of shit gZoom. :D

Quote:

Originally Posted by Ploxasarus Also added some nice packing features to the updated executable to prevent people from taking out of it to update that piece of shit gZoom. :D

Thats pretty much the first thing one should do when releasing at epvpers.

Quote:

Originally Posted by Ploxasarus Also added some nice packing features to the updated executable to prevent people from taking out of it to update that piece of shit gZoom. :D

gZoom is a piece of shit? Interesting. In what way?

Quote:

Originally Posted by Metalman9 gZoom is a piece of shit? Interesting. In what way?

Using [Only registered and activated users can see links. Click Here To Register...] which can and will break and not work to update address's and there is much better methods to doing it.

The timers for it are left on constantly and not handled properly causing gZoom to hog and use memory that is not required.

Using GetAsyncKeyState could be done better aswell as having a user set there own hotkeys, buffy did it well in midnight and is going to have a better method in future updates for it.

Originally forced users to use 1 specific regional setting, duno if *M* ever updated it to be universal and use . and , together.

Making the executable name random is stupid, its not going to avoid detection just by having a random name for it when you can just avoid detection in the future by hiding it in process list entirely.

The GUI for it is a mess, the colors are eye soring and there is just useless shit like hiding the teleport list. He doesn't update it properly when he goes to repost an update because he doesn't bother to test if it is functional or not.

Quote:

Thats pretty much the first thing one should do when releasing at epvper

Problem with that was trying to find something to pack/protect for C# and sadly there is nothing except the obfuscation that is really not great at all to use because it doesn't prevent alot of debugger/dissasemblers from opening an C# executable or randomize string names properly. So I just created my own method of doing it which is now on uNf and should be quite fun for people to try an take a crack at messing with.

Quote:

Originally Posted by Ploxasarus Problem with that was trying to find something to pack/protect for C# and sadly there is nothing except the obfuscation that is really not great at all to use because it doesn't prevent alot of debugger/dissasemblers from opening an C# executable or randomize string names properly. So I just created my own method of doing it which is now on uNf and should be quite fun for people to try an take a crack at messing with.

Confuser seems more than capable of obfuscating .Net assemblies. At least automated utilities like de4dot aren't able to deobfuscate it.

Confuser is great and all, but there is always a method in terms of public aspects you can use to take apart things like that.

Runtime packer :(

Guess now i will need to monitor the changes in the actual GW2 memory in order to see what you did. Means halt the process, dump image, activate the functionality on your trainer and see what YOU have changed. Either that or trying to break the packer, but thats to much effort.

But i must say, i find your current approach rather risky. Manipulating the heap is one thing, but rewriting the code sections in the process image goes a little to far.

What i mean is: Anet wouldn't be so stupid to try to detect access to the games memory in general, that would produce to many false positives, neither would they try to scan for known processes as it is far to easy to hide yourself. And checking the heap for manipulations is pointless either. But checking checking the coherence of the code sections in cyclic intervals is quite easy and doesn't cost much performance either. Can you guarantee that you would notice such a protection?

Btw.: I think i know now what you meant with "thinking outside the box" when i asked you about autosync without forged packets. All one needs to find, is the function which returns the sync-flag and rewrite it so it will return a constant value of your choice for a short period after each teleportation. And you don't even need to mess with ASLR since code sections are completely unaffected...
If i only had enough time to analyze the GW2.exe myself :/

(I just realized when analyzing your Mini ESP, you didn't mess around with pattern scanning to bypass ASLR, all you did was rewriting something in the code section.)

PS: With the method "better than Sigscan", you meant rewriting the getChCliContext-method so it writes the ChCliContext out to an address of YOUR choice?

Quote:

Can you guarantee that you would notice such a protection?

Yes, I monitor all arenanet updates on the client, so does buffy.

Quote:

If i only had enough time to analyze the GW2.exe myself :/

Doesn't take much time, just effort and understanding.

It's nice when people actually post with an understanding of certain thing's :)