|
You last visited: Today at 19:17
Advertisement
[CODE]Ingame Functions( POST YOUR FINDINGS HERE )
Discussion on [CODE]Ingame Functions( POST YOUR FINDINGS HERE ) within the Aura Kingdom forum part of the MMORPGs category.
02/14/2014, 15:18
|
#1
|
elite*gold: 0 
Join Date: Nov 2008
Posts: 181
Received Thanks: 465
|
[CODE]Ingame Functions( POST YOUR FINDINGS HERE )
Hi guys, here is how to send a Skill using SkillId ( not using a keyboard press )
Code:
//Retrieves the skill ID from the actual slotbar
ULONG myGetSkillIdFromSlotBar( ULONG lpSlot, ULONG lpBase = 0x0179D9B0 )
{
ULONG dwDelta = ( lpSlot - 1 ) * 4, dwRes = NULL;
__asm
{
mov eax, lpBase;
mov eax, [ eax ];
mov edi, dwDelta;
mov eax, [ eax + 0x00000004 ];
mov eax, [ eax + 0x0000000C ];
mov eax, [ eax + 0x00000604 ];
mov eax, [ eax + 0x00000004 ];
mov eax, [ eax + edi ];
mov dwRes, eax;
}
return dwRes;
}
//Send skill by Id
VOID mySendSkillID( ULONG lpSkillId, ULONG lpBase = 0x0179D87C, ULONG lpFunction = 0x006F1DA0 )
{
__asm
{
mov edi, lpBase;
mov edi, [ edi ];
mov edi, [ edi + 0x000000A0 ];
mov edi, [ edi + 0x00000010 ];
mov eax, 0x00000000;
mov esi, lpSkillId;
push eax;
push eax;
mov eax, [ esi + 0x00000008 ];
shr eax, 0x0C;
and eax, 0x0000FFFF;
push eax;
mov ecx, edi;
call lpFunction;
}
}
//here is an example for sending the skill that is on your number 1 key using game engine.
mySendSkillID( myGetSkillIdFromSlotBar( 1 ) );
Here is how you can query your current target agro information, can be tweaked to index the treasures drops or index the nearest monster on your Field of Vision. ( Usefull to stop using the tab key aswell just need to get select target function )
Code:
ULONG myGetMonsterTargetbyID( ULONG lpMonsterId, ULONG lpBase = 0x0179D9D8 )
{
ULONG dwTargetId = NULL;
__asm
{
mov ecx, lpBase;
mov ecx, [ ecx ];
mov esi, ecx;
Search:
mov eax, [ esi + 0x00000008 ];
mov ebx, [ eax + 0x00000178 ];
cmp ebx, lpMonsterId;
je FoundId;
mov esi, [ esi ];
cmp esi, ecx;
je Finnished;
jmp Search;
FoundId:
mov ebx, [ eax + 0x00000170 ];
mov dwTargetId, ebx;
Finnished:
;
}
return dwTargetId;
}
Here is an example of selecting the nearest target using the game engine
Code:
VOID mySelectNearestTarget( ULONG lpBase = 0x00F38224, ULONG lpFunction = 0x0068DB50 )
{
__asm
{
mov esi, lpBase;
mov esi, [ esi ];
push 0x00000001;
mov ecx, esi;
call lpFunction;
}
}
//most basic multiclient bot example.
mySelectNearestTarget( );
mySendSkillID( myGetSkillIdFromSlotBar( 1 ) );
Camera View Distance
Code:
/*
Sometimes the monsters are in your field of vision but they are so far away
that you cannot tab it for selection just change the maximum view distance.
Dont forget to VirtualProtect it to PAGE_EXECUTE_READWRITE
before writting, or just use cheat engine on address
00E07C78 ( FLOAT ) and set it to ur needs.
*/
*( PFLOAT )0x00E07C78 = 3600;
Based on Thr!ce research this ( linked list ) will index the items on your inventory you can get the SlotBase structure  ( thx Thr!ce )
Code:
ULONG dwSlotArray = *( PULONG )( *( PULONG )( *( PULONG )( ( *( PULONG )0x0179D920 ) + 0x00000214 ) + 0x000000F0 ) + 0x00000038 ) + 0x00000010;
while( dwSlotArray )
{
PULONG dwSlotBase = *( PULONG )( dwSlotArray + 0x0000000C );
//dwSlotBase = EAX from GetInventoryBase ( Thr!ce ) - CODE GOES HERE
dwSlotArray = *( PULONG )dwSlotArray;//next slot
}
Walk to Position( X, Y )
Code:
//This will allow you to move to a specific position, usefull for melee classes return back to spot
when botting.
INT MoveToPosition( FLOAT lpX, FLOAT lpY, ULONG lpFunction = 0x00885CB0 )
{
ULONG dwRes = NULL;
__asm
{
mov eax, lpFunction;
call eax;
cmp eax, dwRes;
je Finnish;
mov ecx, eax;
mov eax, [ eax ];
mov eax, [ eax + 0x00000014 ];
push lpY;
push lpX;
call eax;
mov dwRes, eax;
Finnish:
;
}
return dwRes;
}
//usage
MoveToPosition( 800, 500 );//will make your character walk to position 800,500 of current map
Warp to position
Code:
/*
This is usefull to warp directly into bosses on dungeons, by clicking the boss name on the
quest list.
006E1E63 ( BYTE ) and set it to 0xD8 = On, 0xD9 = Off
*/
*( PBYTE )0x006E1E63 = 0xD8;// D8 On/ D9 Off
a simple LUA editable bot and source code example using Thr!ce AFKLoader and these functions.
If this is usefull for you please credit me and press thanks button( this will keep me happy enough to make some of my research public in the future )
Here is some suggestions to have a look at:
-
-
-
-
-
-
CODE SHARES:
-
-
-
-
-
-
-
-
-
-
-
You are welcome to post your findings on this thread aswell.
|
|
|
|
02/14/2014, 15:38
|
#2
|
elite*gold: 0
Join Date: Aug 2012
Posts: 381
Received Thanks: 562
|
Thanks for sharing  .
I know this is supposed to be the basics but how did you find your lpBase ? On which client version are you using this ?
|
|
|
|
|
02/14/2014, 15:44
|
#3
|
elite*gold: 0
Join Date: Nov 2008
Posts: 181
Received Thanks: 465
|
Quote:
Originally Posted by AlainProvist
Thanks for sharing .
I know this is supposed to be the basics but how did you find your lpBase ? On which client version are you using this ? |
Thanks for feedback Alain this is working with the current client ( Katar Update ), i just searched for the shortest pointer i could find and rescanned it ( closing and starting the game several times ) since it was returning valid values for every session i just assumed these are correct and are not DMA.
|
|
|
|
|
02/14/2014, 16:44
|
#4
|
elite*gold: 0
Join Date: Sep 2009
Posts: 78
Received Thanks: 54
|
Great work ntKid  Hopefully more bots will surface soon. Personally, I'm only looking for a way to just spam keys without doing anything else (basically to speed up AFK farming a little). Appreciate you sharing your findings bud Thanks pressed!
|
|
|
|
|
02/14/2014, 16:47
|
#5
|
elite*gold: 0
Join Date: May 2012
Posts: 10
Received Thanks: 0
|
What programming language? STEP TO USE THAT?
|
|
|
|
|
02/14/2014, 18:38
|
#6
|
elite*gold: 0
Join Date: Sep 2009
Posts: 78
Received Thanks: 54
|
No offense, but if you can't tell what language that is I doubt you'll be able to use it But to answer your question it's assembler I believe.
|
|
|
|
|
02/14/2014, 19:14
|
#7
|
elite*gold: 0
Join Date: Dec 2010
Posts: 10
Received Thanks: 0
|
what tools do you use?
|
|
|
|
|
02/14/2014, 19:48
|
#8
|
elite*gold: 20
Join Date: Aug 2005
Posts: 652
Received Thanks: 189
|
Nice find, bye bye VM  .
|
|
|
|
|
02/14/2014, 20:11
|
#9
|
elite*gold: 1
Join Date: Apr 2010
Posts: 13,772
Received Thanks: 15,036
|
Why not using packets :O?
|
|
|
|
|
02/14/2014, 21:20
|
#10
|
elite*gold: 100
Join Date: May 2010
Posts: 1,948
Received Thanks: 1,635
|
Quote:
Originally Posted by Omdihar
Why not using packets :O?
|
the client has some weird encryption thus it's easier for now
|
|
|
|
|
02/14/2014, 21:21
|
#11
|
elite*gold: 0
Join Date: Sep 2013
Posts: 216
Received Thanks: 6
|
are you guys gonna make a bot for this game or just using those code for personal use?
|
|
|
|
|
02/14/2014, 21:33
|
#12
|
elite*gold: 100
Join Date: May 2010
Posts: 1,948
Received Thanks: 1,635
|
Quote:
Originally Posted by pureleech
are you guys gonna make a bot for this game or just using those code for personal use?
|
you're pretty impatient
|
|
|
|
|
02/14/2014, 22:27
|
#13
|
elite*gold: 1
Join Date: Apr 2010
Posts: 13,772
Received Thanks: 15,036
|
Quote:
Originally Posted by Shane¸
the client has some weird encryption thus it's easier for now
|
I'll have a look at the encryption later, gonna release something like a packet sniffer then
Quote:
Originally Posted by pureleech
are you guys gonna make a bot for this game or just using those code for personal use?
|
After my current projects are finished, I'll try my best to create a clientless bot
|
|
|
|
|
02/14/2014, 22:34
|
#14
|
elite*gold: 94
Join Date: Mar 2007
Posts: 569
Received Thanks: 1,496
|
Quote:
Originally Posted by Omdihar
I'll have a look at the encryption later, gonna release something like a packet sniffer then |
That'd be a game-changing event. would **** love to see the encryption algorithm released.
will you also release the source of such packet sniffer?
|
|
|
|
|
02/14/2014, 23:02
|
#15
|
elite*gold: 1
Join Date: Apr 2010
Posts: 13,772
Received Thanks: 15,036
|
Quote:
Originally Posted by Oriya9
That'd be a game-changing event. would **** love to see the encryption algorithm released.
will you also release the source of such packet sniffer?
|
Sure if you want 
|
|
|
|
Similar Threads
|
Python Functions von Mt2 per C++ Code Inject ausführen?
12/02/2011 - C/C++ - 5 Replies
Hallo, wollte fragen, ob mir eventuell jemand beantworten kann, wie man Python Functions nützt, welche in den Metin2 - pack Files gespeichert sind.
Und ob das überhaupt so wie ich mir das vorstelle möglich ist.
|
[Code / C++] Basic hooking of API Functions
07/19/2010 - Coding Tutorials - 2 Replies
Global:
typedef BOOL (__stdcall * ReadProcessMemory_t)(HANDLE hProcess,LPVOID lpBaseAddress,LPCVOID lpBuffer,SIZE_T nSize,SIZE_T *lpNumberOfBytesRead);
ReadProcessMemory_t pReadProcessMemory;
Functions:
//Credits to GD ; You can do it manually, too.
|
SOX findings, place ur sox findiings here
06/04/2007 - Silkroad Online - 8 Replies
place ur sox finds here :D
i just found a sos lvl 8 glaive =P
<hr>Append on Jun 4 2007, 01:11<hr> 20 mins later i find another sos chest.. lvl 13
|
All times are GMT +1. The time now is 19:18.
|
|
![[CODE]Ingame Functions( POST YOUR FINDINGS HERE )](https://www.elitepvpers.com/forum/iconimages/aura-kingdom/code-ingame-functions-post-your-findings-here_ltr.gif){kind=small}
