[Request help]Finding target HP

09/07/2010 19:54 nXu#1

Hi,

i'd need a 'little' help from experienced people. I would like to know, how to find [or make] a pointer for the mobs Max and current HP.
I saw the video from lilprohacker, i can do it in CE. However, i'd need any working method in VB [.net]. I have even tried to modify the game.exe with olly (jump to code caves from the address, where it reads max/current HP, and MOV EAX and EDI to a memory address), but now the game just crashes when i select a target.

Could anyone help me a bit, please?

Thank you,
Regards

nXu

09/09/2010 19:35 nXu#2

BUMP o_o

09/11/2010 18:00 nXu#3

BUMP...
Any little hint? o.o

09/13/2010 05:25 meak1#4

lol if u can do it with ce just make a pointer and read them out with vb or c++ or something what u use? or if u know how to use the caves make a hook and write the eax to a dword ?

09/13/2010 15:19 nXu#5

Quote:

Originally Posted by meak1

if u know how to use the caves make a hook and write the eax to a dword ?

^this.
When i select a target, game crashes.

09/13/2010 16:53 meak1#6

jeah because the stuck is wrong after u saved ur eax to dword, u need to save all registers that changed after eax to dword and bring them back if u jump back to game function.

because the game not known how to continue it crashes because the registers are wrong if u jump back to the function =P

PHP Code:


			
_asm
{
mov dwordHp,eax
mov saveEax,eax
mov saveEcx,ecx 
// and some more duno test it^^
}
printf("your hp %d\n",dwordHp)
_asm
{
mov ecx,saveEcx
mov eax,saveEax
jmp backtogame
}

09/13/2010 18:00 nXu#7

Thanks. Now comes my another problem: i dont know any C, so i got to do it with VB. This would be impossible, or idk, thats why i tried to patch the game.exe itself with ollydbg.
Any method to do that? O.o
Maybe PUSH the register and POP to the dword? o_O

09/13/2010 18:24 meak1#8

u patched it with ollydbg and read it out with vb or what?
then patch it right =P i saved the ecx and eax and some other and and bring them back before it jump back but duno how it works easier with pop and push^^
i mean duno how to do it in ollydbg

09/13/2010 18:34 nXu#9

I understood what you did in your code, but it can't be done in vb.
My idea was -maybe its a totally crazy idea, idk- to write eax to a specific memory address, and then ReadProcessMemory().

09/13/2010 20:50 meak1#10

vb=c++ ? u cant make hook in vb or asm? sry cant help u then =(

09/13/2010 21:39 nXu#11

Ty anyways. Maybe... could you give me a link to a c++ hook tut pls (i can understand german too^^)? o.o
(Sure... google is my friend ...)

09/13/2010 21:50 meak1#12

u not need to learn now c++ just find out how it work with vb^^

09/13/2010 21:52 nXu#13

It will only go with win API somehow...
I found some things with VirtualAllocEx. Ima gonna dig into google hits...