How to find funcions in CO

How to find functions like jump, skill cast or similar using CE, or olly ?
Cant figure it out bcouse cant play around becouse if i use breakpoints after few sec i will dc from server

Ah, I just explained to someone about how to do this.

Server->client packets are processed by the client with the client using a switch statement on the packet type. You can find these in olly by searching for switches. Once you find your desired packet, you can either go to the call and find where else the function is called from, or for some packets, like the general data packet, there will be a switch for each subtype so that you can easily find which function you're looking for.

Client->server packets are a bit harder to find, and I've found them by tracing back the send function and checking the calls. You can also trace back the recv function for server->client packets, but meh - easier with switches.

Edit: You can get client->server packet structures and their subtypes by searching for MOV WORD PTR DS:[EAX+2],(hex value of packet type). The subtypes call this function to create the packet, and the packets are constructed by pointer arithmetic.

at last some1 with usefull answer. If really i found some functions that hanglle x and y coords and push them into the stack and after that call xxxxxxxx. But how can i know which 1 is good 1 ?

Quote:

Originally Posted by TomasLT at last some1 with usefull answer. If really i found some functions that hanglle x and y coords and push them into the stack and after that call xxxxxxxx. But how can i know which 1 is good 1 ?

I don't quite understand what you're asking.

When you're using CheatEngine to look at the X/Y values you'll find multiple functions that look like the real jump function (push push call) but don't really do that.

@OP The best way would be to find one of those functions and see if it calls the function that sends out general data packets (packet-type: 0x271A). However it might be a little trickier if you don't have much experience with packets and their structures.

Quote:

Originally Posted by tanelipe When you're using CheatEngine to look at the X/Y values you'll find multiple functions that look like the real jump function (push push call) but don't really do that. @OP The best way would be to find one of those functions and see if it calls the function that sends out general data packets (packet-type: 0x271A). However it might be a little trickier if you don't have much experience with packets and their structures.

This question might be answered some where, but i'll get lazy and ask it here. Is there a tutorial on getting into asm parts of cheat engine? I have a bit of back ground in MIPS asm, but completly no background in Windows Programming.

Also, will the asm in ollydbg or CE be different when system is run under intel and amd?

I'll have a good load of time to learn things in summer (May), so i am thinking of planning something up now.

Quote:

Originally Posted by shitboi This question might be answered some where, but i'll get lazy and ask it here. Is there a tutorial on getting into asm parts of cheat engine? I have a bit of back ground in MIPS asm, but completly no background in Windows Programming. Also, will the asm in ollydbg or CE be different when system is run under intel and amd? I'll have a good load of time to learn things in summer (May), so i am thinking of planning something up now.

might change some between a 64 and a 32 bit but no the brand of processor you have wont make any difference. I'm not sure where a CE tutorial would be at other than at CE's website, but for olly just go to tuts4you, good tutorials right there for olly.

????