C++ External Call Game Function With ShellCode

01/23/2022 11:44 macnn50#1
Edit : Fixed
01/24/2022 19:30 Omdi#2
Quote:
Originally Posted by macnn50 View Post
Code:
push ebp     
mov ebp,esp
mov eax,[ebp+08]
mov [ecx+90], 5            //fixed
mov [ecx+12548], eax   //1st parameter I send to the function, The VID of the person I will attack in the game
pop ebp
ret 0004
If that's the only thing the function does, why not just write to the corresponding CPlayerList offsets?
In your case:
Code:
void write(uint64_t dest, uint64_t src, uint32_t size)
{
    // your implementation of write to the game
}

void Func(uint64_t CPlayerList, uint64_t vid)
{
    uint32_t _five = 5;
    write(CPlayerList + 0x90, _five, sizeof(_five));
    write(CPlayerList + 0x12548, (uint64_t)&vid, sizeof(vid));
}
03/13/2022 07:28 haloinfinitecheats#3
For the purpose of learning you'll want to gain execution, this can trivially be done by hooking the rendering thread. Something like Present() would work just fine. Obviously this creates a detection vector depending on how you do it.