Admin Console Trainer [Source]

Page 1 of 2

03/12/2015 16:54 arkade#1

Yo, i wana share a simple example of Admin Console Trainer in S4League ;)
Only Source!

[Only registered and activated users can see links. Click Here To Register...]

dllmain.cpp

Spoiler

CCFunction.cpp

Spoiler

Code:

#include "stdafx.h"
#include "CCFunction.h"
#include <detours.h>

void __declspec(naked) hkReadCom()
{
 _asm
 { 
    mov eaxadd, eax  //Put the address contain in eax in eaxadd (DWORD var)  
    mov eax, [ebp - 0x04]
    mov ebpadd, eax //Put the address contain in eax to ebpadd (DWORD var too)
 }

 char Command[20];
 ReadProcessMemory(GetCurrentProcess(), (LPVOID)eaxadd, &Command, 20, NULL);//Just read the 20 first bytes of eaxadd and put in Command var

 //Call my func with Command to parameter
ParseCommand(Command);

 _asm
 {
    
      mov eax, [ebpadd] 
      mov [ebp - 0x04], eax    
      mov eax, [eaxadd]
   push eax
   mov ecx, [ebp - 0x04]
   call addr//Call addr (DWORD var)  
   jmp RD_COM_Back//Jump to RD_COM_Back
 }
}

_declspec(naked) void hkWriteResp()
{
        _asm mov tmpResp, offset[MyResponse]
 
            DWORD adr;
            ReadProcessMemory(GetCurrentProcess(), (LPVOID)tmpResp, &adr, sizeof(int), NULL);
 
 _asm {
                mov eax, adr
                push eax
                push TypeResp
                mov ecx, [ebp - 0x000001E8]
                jmp RW_RES_Back
 
        }
}

typedef int (__fastcall* typeCallResponse)(unsigned char, char*);

void ParseCommand(char* pCommand)
{
	DWORD old = 0;

	if(!strcmp(pCommand, "/infsp"))
	{
		if(!infsp)
		{	    
	        VirtualProtect((LPVOID)0x00492AD2, 4, PAGE_EXECUTE_READWRITE, &old);
            memcpy((void*)0x00492AD2, "\xDB\x45", 2);
            VirtualProtect((LPVOID)0x00492AD2, 4, old, NULL);	

			ChangeResponse(" {CB-255,128,0,255}Infinite Sp Activated ! ", Response::Answer);
			infsp = true;
		}
		else
		{			
			 VirtualProtect((LPVOID)0x00492AD2, 4, PAGE_EXECUTE_READWRITE, &old);
             memcpy((void*)0x00492AD2, "\xD9\x45", 2);
             VirtualProtect((LPVOID)0x00492AD2, 4, old, NULL);	

			ChangeResponse(" {CB-255,128,0,255}Infinite Sp Deactivated ! ", Response::Answer);
		    infsp = false;
		}
	}
	else if(!strcmp(pCommand,"/help"))
	{
		/*typeCallResponse writResp  = (typeCallResponse)0x00BE33B0;
	    writResp(1, " -testline1");*/
	}
	else
	{
		ChangeResponse(" {CB-255,255,255,255}Unknown Command! ", Response::Error);
	}
}

void ChangeResponse(char* pResponse, Response::ResponseType resp)
{
	MyResponse = pResponse;
	TypeResp = resp;
}


void Activate()
{
	     DWORD old = 0;
	     VirtualProtect((LPVOID)0x00BE254A, 4, PAGE_EXECUTE_READWRITE, &old);
         memcpy((void*)0x00BE254A, "\x75", 1);
         VirtualProtect((LPVOID)0x00BE254A, 4, old, NULL);
}


int __fastcall hkWriteResponse(void *typ, char* command)
{
	MessageBoxA(0, command, "", 0);
	return mWriteResponse(typ, command);
}


void LoadConsole()
{
	//Detours

	DetourFunction((PBYTE)0x00BE25B3, (PBYTE)hkReadCom);
	DetourFunction((PBYTE)0x00BE2ECA, (PBYTE)hkWriteResp);//display answer visualy
	//mWriteResponse = (tWriteResponse)DetourFunction((PBYTE)0x00BE33B0, (PBYTE)hkWriteResponse);

	Activate();
}

CCFunction.h

Spoiler

03/12/2015 17:26 ☠Toxxi�#2

Post your Hack Realeases there > [Only registered and activated users can see links. Click Here To Register...]

and there is a Admin Console Hack : [Only registered and activated users can see links. Click Here To Register...]

dunnu if u just Copied or wut

03/12/2015 17:42 arkade#3

Quote:

Originally Posted by ☠Toxxi�

Post your Hack Realeases there > [Only registered and activated users can see links. Click Here To Register...]

and there is a Admin Console Hack : [Only registered and activated users can see links. Click Here To Register...]

dunnu if u just Copied or wut

copied what?

03/12/2015 19:22 astropilote#4

Nice C/C xD
Almost the same of my code
And same commentary that i have post in a skype conv
So nice leecher

03/12/2015 19:36 [P2933]Step29#5

Spoiler

03/12/2015 20:09 Omdi#6

#moved

03/12/2015 20:14 シャイキング#7

Quote:

Originally Posted by [P2933]Step29

Spoiler

[11:23:46 AM] Le monde d'Astro #Judgement: I don't post my code :x
Just the hook for read command
[11:24:45 AM | Edited 11:26:46 AM] Le monde d'Astro #Judgement: anyway arkade nice leecher :c
[11:30:58 AM] Le monde d'Astro #Judgement: who have leak my readcomhook ?
[11:32:02 AM] wtfblub: who the fuck cares
[11:32:07 AM] wtfblub: its shit anyway
[11:32:10 AM] [Beatrice]: Did arkade leech that
[11:32:16 AM] [Beatrice]: :c
[11:32:21 AM] [F]aze | S4 Faq: yy
[11:32:32 AM] wtfblub: everything he has is leeched
[11:33:13 AM] Le monde d'Astro #Judgement: But if he has my commentary of my hook, somebody has leak it. So nice break rule xD
[11:33:59 AM] Step29: Unfortunatly..
[11:34:21 AM] Step29: Well. I guess it's safe to say now that to never post codes here
[11:34:31 AM | Edited 11:34:40 AM] Step29: because we got a Level 0 faggot in this group chat now.

hmm..

03/12/2015 20:30 alexmen10#8

O.o Thanks arkade <3

03/12/2015 20:37 シャイキング#9

Quote:

Originally Posted by alexmen10

O.o Thanks arkade <3

devilish smile hshdahg

03/12/2015 22:01 arkade#10

Quote:

Originally Posted by astropilote

Nice C/C xD
Almost the same of my code
And same commentary that i have post in a skype conv
So nice leecher

nope, just figured out it my way :rolleyes:
i haven't asked for code anyone ^^

03/12/2015 23:25 astropilote#11

Quote:

Originally Posted by arkade

nope, just figured out it my way :rolleyes:
i haven't asked for code anyone ^^

Yeah so explain me a thing..
[Only registered and activated users can see links. Click Here To Register...]
It's my code (with commentary) that i share the 4th March on a skype conv with me, Faze, Nociif and killer1997.
So explain me how you do to rewrite the SAME comments (and same var names) on "your" code xDDDD
And it's strange, the only commented part of code in all your code is my part of code that i have share :o

03/13/2015 01:14 FaYm#1#12

i will tem kill >.< there isnt the address >.< and why do you post the source its so bad dude

03/13/2015 06:08 [P2933]Step29#13

Quote:

Originally Posted by astropilote

Yeah so explain me a thing..
[Only registered and activated users can see links. Click Here To Register...]
It's my code (with commentary) that i share the 4th March on a skype conv with me, Faze, Nociif and killer1997.
So explain me how you do to rewrite the SAME comments (and same var names) on "your" code xDDDD
And it's strange, the only commented part of code in all your code is my part of code that i have share :o

I know for a fact that Faze and Noclif are smart enough not to leak out stuff here unless permission was granted.
I don't mean to point out fingers, But.....

Regardless, Sorry this happened to you. It's so shameful and embarrassing that the source was leaked out to the public by this dumbass. But I guess it's the best way to not share your code with anyone you cannot completely trust.

Leaker should kill himself.

03/13/2015 06:56 Terrat#14

Quote:

Originally Posted by FaYm#1

i will tem kill >.< there isnt the address >.< and why do you post the source its so bad dude

.......
Srsly ? Everytime the same.
everyone, EVERYONE with a bit know of cheat engine can filter all this things the complete changed asm with 5 clicks and have the adress......

03/13/2015 12:17 arkade#15

Quote:

Originally Posted by astropilote

Yeah so explain me a thing..
[Only registered and activated users can see links. Click Here To Register...]
It's my code (with commentary) that i share the 4th March on a skype conv with me, Faze, Nociif and killer1997.
So explain me how you do to rewrite the SAME comments (and same var names) on "your" code xDDDD
And it's strange, the only commented part of code in all your code is my part of code that i have share :o

i commented the same XDDD

Page 1 of 2