|
You last visited: Today at 03:42
Advertisement
Ingame Hack S4 League
Discussion on Ingame Hack S4 League within the AutoIt forum part of the Coders Den category.
05/29/2013, 16:45
|
#1
|
elite*gold: 29 
Join Date: Aug 2011
Posts: 640
Received Thanks: 493
|
Ingame Hack S4 League
Einen wunderschönen guten Tag liebe Epvpers
und zwar hab ich eine Frage wie ich einen Ingame Hack für S4 League mache ;da aber wenn ich die Value ändern möchte Ingame nichts passiert (ich benutzt NomadMemory)
Hier das Script:
PHP Code:
#NoTrayIcon
#Region ;**** Directives created by AutoIt3Wrapper_GUI ****
#AutoIt3Wrapper_Res_requestedExecutionLevel=asInvoker
#EndRegion ;**** Directives created by AutoIt3Wrapper_GUI ****
#Include <Pointer.au3>
#include <Apple Base.au3>
#RequireAdmin
Global $Open,$Address,$Address1,$Address2,$Address3,$Address4,$Handle,$Handle1,$Handle2,$Handle3,$Handle4,$Offset,$Offset1,$Offset2,$Offset3,$Offset4,$fShow
_Apple_Startup(10, 0x00FF00, 0x008000, 0xFF0000)
$GUI = _Apple_Draw_Gui(265, 290, 1, "D3D S4 League Hack", 0x00C0C0, 230)
_Apple_Create_Text("Hack made by Golle12", 400)
_Apple_Create_Function("Inf.HP", 40) ; function _0
_Apple_Create_Function("SP Regen",50) ; funktion _1
_Apple_Create_Function("Ghostmode",53) ;funktion _2
_Apple_Create_Function("Hitrange",40) ;funktion _3
_Apple_Create_Function("Air Walk",40) ;funktion _4
_Apple_Create_Function("200 HP",45) ;funktion _5
_Apple_Create_Function("0 HP",45) ;funktion _6
_Apple_Create_Function("Speed Hack",65) ;funktion _7
_Apple_Create_Function("Full Power",55) ;funktion _8
_Apple_Create_Function("Exit", 18) ;funktion _9
_Apple_Create_Text("Have Fun", 200)
_Apple_State_Gui(1, $GUI)
_Apple_Topmost_Check("")
global $fShow = True
HotKeySet("{INS}","_ShowHide")
Func _ShowHide()
If $fShow Then GuiSetState(@SW_Show)
If not $fShow Then GuiSetState(@SW_Hide)
$fShow=Not $fShow
Endfunc
_Apple_Enable_Up_Down()
While True
Sleep(100)
WEnd
Func _0($action)
If $action = 1 Then
$Pid = PROCESSEXISTS("S4Client.exe")
$Open = _MemoryOpen($Pid)
_MEMORYWRITE(0x00518984,$OPEN,"2348565979","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00518984,$OPEN,"2348565977","long")
EndIf
EndFunc
Func _1($action)
If $action = 1 Then
$Pid = PROCESSEXISTS("S4Client.exe")
$Open = _MemoryOpen($Pid)
_MEMORYWRITE(0x00489048,$OPEN,"1166870634","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00489048,$OPEN,"1166869354","long")
EndIf
EndFunc
Func _2($action)
If $action = 1 Then
$Pid = PROCESSEXISTS("S4Client.exe")
$Open = _MemoryOpen($Pid)
_MEMORYWRITE(0x00F104E8,$OPEN,"2348565979","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00F104E8,$OPEN,"2348565977","long")
EndIf
EndFunc
Func _3($action)
If $action = 1 Then
$Pid = PROCESSEXISTS("S4Client.exe")
$Open = _MemoryOpen($Pid)
_MEMORYWRITE(0x00000000,$OPEN,"2348560000","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00000000,$OPEN,"2000000000","long")
EndIf
EndFunc
Func _4($action)
If $action = 1 Then
$Pid = PROCESSEXISTS("S4Client.exe")
$Open = _MemoryOpen($Pid)
_MEMORYWRITE(0x0051F0C4,$OPEN,"2348565979","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x0051F0C4,$OPEN,"2348565977","long")
EndIf
EndFunc
Func _5($action)
If $action = 1 Then
$Pid = PROCESSEXISTS("S4Client.exe")
$Open = _MemoryOpen($Pid)
_MEMORYWRITE(0x005189E4,$OPEN,"2348565979","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005189E4,$OPEN,"2348565977","long")
EndIf
EndFunc
Func _6($action)
If $action = 1 Then
$Pid = PROCESSEXISTS("S4Client.exe")
$Open = _MemoryOpen($Pid)
_MEMORYWRITE(0x005189E4,$OPEN,"2348565978","long")
_MEMORYWRITE(0x00518984,$Open,"2348565978","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005189E4,$OPEN,"2348565977","long")
_MEMORYWRITE(0x00518984,$Open,"2348565979","long")
_MEMORYWRITE(0x00518984,$Open,"2348565977","long")
EndIf
EndFunc
Func _7($action)
If $action = 1 Then
$Pid = PROCESSEXISTS("S4Client.exe")
$Open = _MemoryOpen($Pid)
_MEMORYWRITE(0x005E6A24,$OPEN,"2240612458","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005E6A24,$OPEN,"2240611178","long")
EndIf
EndFunc
Func _8($action)
If $action = 1 Then
$Pid = PROCESSEXISTS("S4Client.exe")
$Open = _MemoryOpen($Pid)
_MEMORYWRITE(0x00481728,$OPEN,"4275346907","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00481728,$OPEN,"4275346905","long")
EndIf
EndFunc
Func _9($action)
If $action = 1 Then
Exit
EndIf
EndFunc
Die Adressen stimmen mit dem jetztigen Patch überein 
Bitte sagt mir was ich machen kann so das es Ingame auch die Value verändert 
|
|
|
|
05/29/2013, 20:40
|
#2
|
elite*gold: 574
Join Date: Nov 2010
Posts: 2,498
Received Thanks: 726
|
Quote:
Originally Posted by golle12
Einen wunderschönen guten Tag liebe Epvpers
und zwar hab ich eine Frage wie ich einen Ingame Hack für S4 League mache ;da aber wenn ich die Value ändern möchte Ingame nichts passiert (ich benutzt NomadMemory)
|
PHP Code:
#NoTrayIcon
#Include <Pointer.au3>
#include <Apple Base.au3>
#RequireAdmin
Wenn du sagst, dass du die NomadMemory UDF benutzt, warum includest du diese dann nicht?
|
|
|
|
|
05/29/2013, 22:27
|
#3
|
elite*gold: 29
Join Date: Aug 2011
Posts: 640
Received Thanks: 493
|
doch sie ist der Pointer.au3 enthalten am Anfang kann ich die Values verändern aber dann Ingame nicht mehr 
|
|
|
|
|
05/30/2013, 21:05
|
#4
|
elite*gold: 0
Join Date: Aug 2012
Posts: 222
Received Thanks: 1,821
|
Missing :#include <NomadMemory.au3>
Code:
#include-once
#region _Memory
;==================================================================================
; AutoIt Version: 3.1.127 (beta)
; Language: English
; Platform: All Windows
; Author: Nomad
; Requirements: These functions will only work with beta.
;==================================================================================
; Credits: wOuter - These functions are based on his original _Mem() functions.
; But they are easier to comprehend and more reliable. These
; functions are in no way a direct copy of his functions. His
; functions only provided a foundation from which these evolved.
;==================================================================================
;
; Functions:
;
;==================================================================================
; Function: _MemoryOpen($iv_Pid[, $iv_DesiredAccess[, $iv_InheritHandle]])
; Description: Opens a process and enables all possible access rights to the
; process. The Process ID of the process is used to specify which
; process to open. You must call this function before calling
; _MemoryClose(), _MemoryRead(), or _MemoryWrite().
; Parameter(s): $iv_Pid - The Process ID of the program you want to open.
; $iv_DesiredAccess - (optional) Set to 0x1F0FFF by default, which
; enables all possible access rights to the
; process specified by the Process ID.
; $iv_InheritHandle - (optional) If this value is TRUE, all processes
; created by this process will inherit the access
; handle. Set to 1 (TRUE) by default. Set to 0
; if you want it FALSE.
; Requirement(s): None.
; Return Value(s): On Success - Returns an array containing the Dll handle and an
; open handle to the specified process.
; On Failure - Returns 0
; @Error - 0 = No error.
; 1 = Invalid $iv_Pid.
; 2 = Failed to open Kernel32.dll.
; 3 = Failed to open the specified process.
; Author(s): Nomad
; Note(s):
;==================================================================================
Func _MemoryOpen($iv_Pid, $iv_DesiredAccess = 0x1F0FFF, $iv_InheritHandle = 1)
If Not ProcessExists($iv_Pid) Then
SetError(1)
Return 0
EndIf
Local $ah_Handle[2] = [DllOpen('kernel32.dll')]
If @Error Then
SetError(2)
Return 0
EndIf
Local $av_OpenProcess = DllCall($ah_Handle[0], 'int', 'OpenProcess', 'int', $iv_DesiredAccess, 'int', $iv_InheritHandle, 'int', $iv_Pid)
If @Error Then
DllClose($ah_Handle[0])
SetError(3)
Return 0
EndIf
$ah_Handle[1] = $av_OpenProcess[0]
Return $ah_Handle
EndFunc
;==================================================================================
; Function: _MemoryRead($iv_Address, $ah_Handle[, $sv_Type])
; Description: Reads the value located in the memory address specified.
; Parameter(s): $iv_Address - The memory address you want to read from. It must
; be in hex format (0x00000000).
; $ah_Handle - An array containing the Dll handle and the handle
; of the open process as returned by _MemoryOpen().
; $sv_Type - (optional) The "Type" of value you intend to read.
; This is set to 'dword'(32bit(4byte) signed integer)
; by default. See the help file for DllStructCreate
; for all types. An example: If you want to read a
; word that is 15 characters in length, you would use
; 'char[16]' since a 'char' is 8 bits (1 byte) in size.
; Return Value(s): On Success - Returns the value located at the specified address.
; On Failure - Returns 0
; @Error - 0 = No error.
; 1 = Invalid $ah_Handle.
; 2 = $sv_Type was not a string.
; 3 = $sv_Type is an unknown data type.
; 4 = Failed to allocate the memory needed for the DllStructure.
; 5 = Error allocating memory for $sv_Type.
; 6 = Failed to read from the specified process.
; Author(s): Nomad
; Note(s): Values returned are in Decimal format, unless specified as a
; 'char' type, then they are returned in ASCII format. Also note
; that size ('char[size]') for all 'char' types should be 1
; greater than the actual size.
;==================================================================================
Func _MemoryRead($iv_Address, $ah_Handle, $sv_Type = 'dword')
If Not IsArray($ah_Handle) Then
SetError(1)
Return 0
EndIf
Local $v_Buffer = DllStructCreate($sv_Type)
If @Error Then
SetError(@Error + 1)
Return 0
EndIf
DllCall($ah_Handle[0], 'int', 'ReadProcessMemory', 'int', $ah_Handle[1], 'int', $iv_Address, 'ptr', DllStructGetPtr($v_Buffer), 'int', DllStructGetSize($v_Buffer), 'int', '')
If Not @Error Then
Local $v_Value = DllStructGetData($v_Buffer, 1)
Return $v_Value
Else
SetError(6)
Return 0
EndIf
EndFunc
;==================================================================================
; Function: _MemoryWrite($iv_Address, $ah_Handle, $v_Data[, $sv_Type])
; Description: Writes data to the specified memory address.
; Parameter(s): $iv_Address - The memory address which you want to write to.
; It must be in hex format (0x00000000).
; $ah_Handle - An array containing the Dll handle and the handle
; of the open process as returned by _MemoryOpen().
; $v_Data - The data to be written.
; $sv_Type - (optional) The "Type" of value you intend to write.
; This is set to 'dword'(32bit(4byte) signed integer)
; by default. See the help file for DllStructCreate
; for all types. An example: If you want to write a
; word that is 15 characters in length, you would use
; 'char[16]' since a 'char' is 8 bits (1 byte) in size.
; Return Value(s): On Success - Returns 1
; On Failure - Returns 0
; @Error - 0 = No error.
; 1 = Invalid $ah_Handle.
; 2 = $sv_Type was not a string.
; 3 = $sv_Type is an unknown data type.
; 4 = Failed to allocate the memory needed for the DllStructure.
; 5 = Error allocating memory for $sv_Type.
; 6 = $v_Data is not in the proper format to be used with the
; "Type" selected for $sv_Type, or it is out of range.
; 7 = Failed to write to the specified process.
; Author(s): Nomad
; Note(s): Values sent must be in Decimal format, unless specified as a
; 'char' type, then they must be in ASCII format. Also note
; that size ('char[size]') for all 'char' types should be 1
; greater than the actual size.
;==================================================================================
Func _MemoryWrite($iv_Address, $ah_Handle, $v_Data, $sv_Type = 'dword')
If Not IsArray($ah_Handle) Then
SetError(1)
Return 0
EndIf
Local $v_Buffer = DllStructCreate($sv_Type)
If @Error Then
SetError(@Error + 1)
Return 0
Else
DllStructSetData($v_Buffer, 1, $v_Data)
If @Error Then
SetError(6)
Return 0
EndIf
EndIf
DllCall($ah_Handle[0], 'int', 'WriteProcessMemory', 'int', $ah_Handle[1], 'int', $iv_Address, 'ptr', DllStructGetPtr($v_Buffer), 'int', DllStructGetSize($v_Buffer), 'int', '')
If Not @Error Then
Return 1
Else
SetError(7)
Return 0
EndIf
EndFunc
;==================================================================================
; Function: _MemoryClose($ah_Handle)
; Description: Closes the process handle opened by using _MemoryOpen().
; Parameter(s): $ah_Handle - An array containing the Dll handle and the handle
; of the open process as returned by _MemoryOpen().
; Return Value(s): On Success - Returns 1
; On Failure - Returns 0
; @Error - 0 = No error.
; 1 = Invalid $ah_Handle.
; 2 = Unable to close the process handle.
; Author(s): Nomad
; Note(s):
;==================================================================================
Func _MemoryClose($ah_Handle)
If Not IsArray($ah_Handle) Then
SetError(1)
Return 0
EndIf
DllCall($ah_Handle[0], 'int', 'CloseHandle', 'int', $ah_Handle[1])
If Not @Error Then
DllClose($ah_Handle[0])
Return 1
Else
DllClose($ah_Handle[0])
SetError(2)
Return 0
EndIf
EndFunc
;==================================================================================
; Function: SetPrivilege( $privilege, $bEnable )
; Description: Enables (or disables) the $privilege on the current process
; (Probably) requires administrator privileges to run
;
; Author(s): Larry (from autoitscript.com's Forum)
; Notes(s):
; http://www.autoitscript.com/forum/index.php?s=&showtopic=31248&view=findpost&p=223999
;==================================================================================
Func SetPrivilege( $privilege, $bEnable )
Const $TOKEN_ADJUST_PRIVILEGES = 0x0020
Const $TOKEN_QUERY = 0x0008
Const $SE_PRIVILEGE_ENABLED = 0x0002
Local $hToken, $SP_auxret, $SP_ret, $hCurrProcess, $nTokens, $nTokenIndex, $priv
$nTokens = 1
$LUID = DLLStructCreate("dword;int")
If IsArray($privilege) Then $nTokens = UBound($privilege)
$TOKEN_PRIVILEGES = DLLStructCreate("dword;dword[" & (3 * $nTokens) & "]")
$NEWTOKEN_PRIVILEGES = DLLStructCreate("dword;dword[" & (3 * $nTokens) & "]")
$hCurrProcess = DLLCall("kernel32.dll","hwnd","GetCurrentProcess")
$SP_auxret = DLLCall("advapi32.dll","int","OpenProcessToken","hwnd",$hCurrProcess[0], _
"int",BitOR($TOKEN_ADJUST_PRIVILEGES,$TOKEN_QUERY),"int_ptr",0)
If $SP_auxret[0] Then
$hToken = $SP_auxret[3]
DLLStructSetData($TOKEN_PRIVILEGES,1,1)
$nTokenIndex = 1
While $nTokenIndex <= $nTokens
If IsArray($privilege) Then
$priv = $privilege[$nTokenIndex-1]
Else
$priv = $privilege
EndIf
$ret = DLLCall("advapi32.dll","int","LookupPrivilegeValue","str","","str",$priv, _
"ptr",DLLStructGetPtr($LUID))
If $ret[0] Then
If $bEnable Then
DLLStructSetData($TOKEN_PRIVILEGES,2,$SE_PRIVILEGE_ENABLED,(3 * $nTokenIndex))
Else
DLLStructSetData($TOKEN_PRIVILEGES,2,0,(3 * $nTokenIndex))
EndIf
DLLStructSetData($TOKEN_PRIVILEGES,2,DllStructGetData($LUID,1),(3 * ($nTokenIndex-1)) + 1)
DLLStructSetData($TOKEN_PRIVILEGES,2,DllStructGetData($LUID,2),(3 * ($nTokenIndex-1)) + 2)
DLLStructSetData($LUID,1,0)
DLLStructSetData($LUID,2,0)
EndIf
$nTokenIndex += 1
WEnd
$ret = DLLCall("advapi32.dll","int","AdjustTokenPrivileges","hwnd",$hToken,"int",0, _
"ptr",DllStructGetPtr($TOKEN_PRIVILEGES),"int",DllStructGetSize($NEWTOKEN_PRIVILEGES), _
"ptr",DllStructGetPtr($NEWTOKEN_PRIVILEGES),"int_ptr",0)
$f = DLLCall("kernel32.dll","int","GetLastError")
EndIf
$NEWTOKEN_PRIVILEGES=0
$TOKEN_PRIVILEGES=0
$LUID=0
If $SP_auxret[0] = 0 Then Return 0
$SP_auxret = DLLCall("kernel32.dll","int","CloseHandle","hwnd",$hToken)
If Not $ret[0] And Not $SP_auxret[0] Then Return 0
return $ret[0]
EndFunc
#endregion
|
|
|
|
|
05/30/2013, 22:18
|
#5
|
elite*gold: 29
Join Date: Aug 2011
Posts: 640
Received Thanks: 493
|
Quote:
Originally Posted by JohnAndersn
Missing :#include <NomadMemory.au3>
Code:
#include-once
#region _Memory
;==================================================================================
; AutoIt Version: 3.1.127 (beta)
; Language: English
; Platform: All Windows
; Author: Nomad
; Requirements: These functions will only work with beta.
;==================================================================================
; Credits: wOuter - These functions are based on his original _Mem() functions.
; But they are easier to comprehend and more reliable. These
; functions are in no way a direct copy of his functions. His
; functions only provided a foundation from which these evolved.
;==================================================================================
;
; Functions:
;
;==================================================================================
; Function: _MemoryOpen($iv_Pid[, $iv_DesiredAccess[, $iv_InheritHandle]])
; Description: Opens a process and enables all possible access rights to the
; process. The Process ID of the process is used to specify which
; process to open. You must call this function before calling
; _MemoryClose(), _MemoryRead(), or _MemoryWrite().
; Parameter(s): $iv_Pid - The Process ID of the program you want to open.
; $iv_DesiredAccess - (optional) Set to 0x1F0FFF by default, which
; enables all possible access rights to the
; process specified by the Process ID.
; $iv_InheritHandle - (optional) If this value is TRUE, all processes
; created by this process will inherit the access
; handle. Set to 1 (TRUE) by default. Set to 0
; if you want it FALSE.
; Requirement(s): None.
; Return Value(s): On Success - Returns an array containing the Dll handle and an
; open handle to the specified process.
; On Failure - Returns 0
; @Error - 0 = No error.
; 1 = Invalid $iv_Pid.
; 2 = Failed to open Kernel32.dll.
; 3 = Failed to open the specified process.
; Author(s): Nomad
; Note(s):
;==================================================================================
Func _MemoryOpen($iv_Pid, $iv_DesiredAccess = 0x1F0FFF, $iv_InheritHandle = 1)
If Not ProcessExists($iv_Pid) Then
SetError(1)
Return 0
EndIf
Local $ah_Handle[2] = [DllOpen('kernel32.dll')]
If @Error Then
SetError(2)
Return 0
EndIf
Local $av_OpenProcess = DllCall($ah_Handle[0], 'int', 'OpenProcess', 'int', $iv_DesiredAccess, 'int', $iv_InheritHandle, 'int', $iv_Pid)
If @Error Then
DllClose($ah_Handle[0])
SetError(3)
Return 0
EndIf
$ah_Handle[1] = $av_OpenProcess[0]
Return $ah_Handle
EndFunc
;==================================================================================
; Function: _MemoryRead($iv_Address, $ah_Handle[, $sv_Type])
; Description: Reads the value located in the memory address specified.
; Parameter(s): $iv_Address - The memory address you want to read from. It must
; be in hex format (0x00000000).
; $ah_Handle - An array containing the Dll handle and the handle
; of the open process as returned by _MemoryOpen().
; $sv_Type - (optional) The "Type" of value you intend to read.
; This is set to 'dword'(32bit(4byte) signed integer)
; by default. See the help file for DllStructCreate
; for all types. An example: If you want to read a
; word that is 15 characters in length, you would use
; 'char[16]' since a 'char' is 8 bits (1 byte) in size.
; Return Value(s): On Success - Returns the value located at the specified address.
; On Failure - Returns 0
; @Error - 0 = No error.
; 1 = Invalid $ah_Handle.
; 2 = $sv_Type was not a string.
; 3 = $sv_Type is an unknown data type.
; 4 = Failed to allocate the memory needed for the DllStructure.
; 5 = Error allocating memory for $sv_Type.
; 6 = Failed to read from the specified process.
; Author(s): Nomad
; Note(s): Values returned are in Decimal format, unless specified as a
; 'char' type, then they are returned in ASCII format. Also note
; that size ('char[size]') for all 'char' types should be 1
; greater than the actual size.
;==================================================================================
Func _MemoryRead($iv_Address, $ah_Handle, $sv_Type = 'dword')
If Not IsArray($ah_Handle) Then
SetError(1)
Return 0
EndIf
Local $v_Buffer = DllStructCreate($sv_Type)
If @Error Then
SetError(@Error + 1)
Return 0
EndIf
DllCall($ah_Handle[0], 'int', 'ReadProcessMemory', 'int', $ah_Handle[1], 'int', $iv_Address, 'ptr', DllStructGetPtr($v_Buffer), 'int', DllStructGetSize($v_Buffer), 'int', '')
If Not @Error Then
Local $v_Value = DllStructGetData($v_Buffer, 1)
Return $v_Value
Else
SetError(6)
Return 0
EndIf
EndFunc
;==================================================================================
; Function: _MemoryWrite($iv_Address, $ah_Handle, $v_Data[, $sv_Type])
; Description: Writes data to the specified memory address.
; Parameter(s): $iv_Address - The memory address which you want to write to.
; It must be in hex format (0x00000000).
; $ah_Handle - An array containing the Dll handle and the handle
; of the open process as returned by _MemoryOpen().
; $v_Data - The data to be written.
; $sv_Type - (optional) The "Type" of value you intend to write.
; This is set to 'dword'(32bit(4byte) signed integer)
; by default. See the help file for DllStructCreate
; for all types. An example: If you want to write a
; word that is 15 characters in length, you would use
; 'char[16]' since a 'char' is 8 bits (1 byte) in size.
; Return Value(s): On Success - Returns 1
; On Failure - Returns 0
; @Error - 0 = No error.
; 1 = Invalid $ah_Handle.
; 2 = $sv_Type was not a string.
; 3 = $sv_Type is an unknown data type.
; 4 = Failed to allocate the memory needed for the DllStructure.
; 5 = Error allocating memory for $sv_Type.
; 6 = $v_Data is not in the proper format to be used with the
; "Type" selected for $sv_Type, or it is out of range.
; 7 = Failed to write to the specified process.
; Author(s): Nomad
; Note(s): Values sent must be in Decimal format, unless specified as a
; 'char' type, then they must be in ASCII format. Also note
; that size ('char[size]') for all 'char' types should be 1
; greater than the actual size.
;==================================================================================
Func _MemoryWrite($iv_Address, $ah_Handle, $v_Data, $sv_Type = 'dword')
If Not IsArray($ah_Handle) Then
SetError(1)
Return 0
EndIf
Local $v_Buffer = DllStructCreate($sv_Type)
If @Error Then
SetError(@Error + 1)
Return 0
Else
DllStructSetData($v_Buffer, 1, $v_Data)
If @Error Then
SetError(6)
Return 0
EndIf
EndIf
DllCall($ah_Handle[0], 'int', 'WriteProcessMemory', 'int', $ah_Handle[1], 'int', $iv_Address, 'ptr', DllStructGetPtr($v_Buffer), 'int', DllStructGetSize($v_Buffer), 'int', '')
If Not @Error Then
Return 1
Else
SetError(7)
Return 0
EndIf
EndFunc
;==================================================================================
; Function: _MemoryClose($ah_Handle)
; Description: Closes the process handle opened by using _MemoryOpen().
; Parameter(s): $ah_Handle - An array containing the Dll handle and the handle
; of the open process as returned by _MemoryOpen().
; Return Value(s): On Success - Returns 1
; On Failure - Returns 0
; @Error - 0 = No error.
; 1 = Invalid $ah_Handle.
; 2 = Unable to close the process handle.
; Author(s): Nomad
; Note(s):
;==================================================================================
Func _MemoryClose($ah_Handle)
If Not IsArray($ah_Handle) Then
SetError(1)
Return 0
EndIf
DllCall($ah_Handle[0], 'int', 'CloseHandle', 'int', $ah_Handle[1])
If Not @Error Then
DllClose($ah_Handle[0])
Return 1
Else
DllClose($ah_Handle[0])
SetError(2)
Return 0
EndIf
EndFunc
;==================================================================================
; Function: SetPrivilege( $privilege, $bEnable )
; Description: Enables (or disables) the $privilege on the current process
; (Probably) requires administrator privileges to run
;
; Author(s): Larry (from autoitscript.com's Forum)
; Notes(s):
; http://www.autoitscript.com/forum/index.php?s=&showtopic=31248&view=findpost&p=223999
;==================================================================================
Func SetPrivilege( $privilege, $bEnable )
Const $TOKEN_ADJUST_PRIVILEGES = 0x0020
Const $TOKEN_QUERY = 0x0008
Const $SE_PRIVILEGE_ENABLED = 0x0002
Local $hToken, $SP_auxret, $SP_ret, $hCurrProcess, $nTokens, $nTokenIndex, $priv
$nTokens = 1
$LUID = DLLStructCreate("dword;int")
If IsArray($privilege) Then $nTokens = UBound($privilege)
$TOKEN_PRIVILEGES = DLLStructCreate("dword;dword[" & (3 * $nTokens) & "]")
$NEWTOKEN_PRIVILEGES = DLLStructCreate("dword;dword[" & (3 * $nTokens) & "]")
$hCurrProcess = DLLCall("kernel32.dll","hwnd","GetCurrentProcess")
$SP_auxret = DLLCall("advapi32.dll","int","OpenProcessToken","hwnd",$hCurrProcess[0], _
"int",BitOR($TOKEN_ADJUST_PRIVILEGES,$TOKEN_QUERY),"int_ptr",0)
If $SP_auxret[0] Then
$hToken = $SP_auxret[3]
DLLStructSetData($TOKEN_PRIVILEGES,1,1)
$nTokenIndex = 1
While $nTokenIndex <= $nTokens
If IsArray($privilege) Then
$priv = $privilege[$nTokenIndex-1]
Else
$priv = $privilege
EndIf
$ret = DLLCall("advapi32.dll","int","LookupPrivilegeValue","str","","str",$priv, _
"ptr",DLLStructGetPtr($LUID))
If $ret[0] Then
If $bEnable Then
DLLStructSetData($TOKEN_PRIVILEGES,2,$SE_PRIVILEGE_ENABLED,(3 * $nTokenIndex))
Else
DLLStructSetData($TOKEN_PRIVILEGES,2,0,(3 * $nTokenIndex))
EndIf
DLLStructSetData($TOKEN_PRIVILEGES,2,DllStructGetData($LUID,1),(3 * ($nTokenIndex-1)) + 1)
DLLStructSetData($TOKEN_PRIVILEGES,2,DllStructGetData($LUID,2),(3 * ($nTokenIndex-1)) + 2)
DLLStructSetData($LUID,1,0)
DLLStructSetData($LUID,2,0)
EndIf
$nTokenIndex += 1
WEnd
$ret = DLLCall("advapi32.dll","int","AdjustTokenPrivileges","hwnd",$hToken,"int",0, _
"ptr",DllStructGetPtr($TOKEN_PRIVILEGES),"int",DllStructGetSize($NEWTOKEN_PRIVILEGES), _
"ptr",DllStructGetPtr($NEWTOKEN_PRIVILEGES),"int_ptr",0)
$f = DLLCall("kernel32.dll","int","GetLastError")
EndIf
$NEWTOKEN_PRIVILEGES=0
$TOKEN_PRIVILEGES=0
$LUID=0
If $SP_auxret[0] = 0 Then Return 0
$SP_auxret = DLLCall("kernel32.dll","int","CloseHandle","hwnd",$hToken)
If Not $ret[0] And Not $SP_auxret[0] Then Return 0
return $ret[0]
EndFunc
#endregion
|
No that is wrong in the Include pointer.au3 is the memoryRead and write also here before the S4 client run i can change the value with the Hack and if I am ingame i can´t change the Value with the Hack nothing happend ...
|
|
|
|
|
05/30/2013, 22:26
|
#6
|
elite*gold: 106
Join Date: Jun 2010
Posts: 2,256
Received Thanks: 3,867
|
32bit? Wenn ja, dann liegt's daran, dass der Prozess versteckt wird.
Sonst ggf. mit Bypass starten.
|
|
|
|
|
05/30/2013, 22:56
|
#7
|
elite*gold: 50
Join Date: Sep 2012
Posts: 3,841
Received Thanks: 1,462
|
Erstmal pointer.au3 ist eine erweiterte NomadMemory.au3 .
-Bypass
-kannst du die memory denn einlesen ?
-sind das auch die richtigen pointer ?
-sind diese writable
-hast du debug rechte und admin rechte ?
-ist es ein 32 bit process ?
|
|
|
|
|
05/31/2013, 15:56
|
#8
|
elite*gold: 29
Join Date: Aug 2011
Posts: 640
Received Thanks: 493
|
Quote:
Originally Posted by »FlutterShy™
Erstmal pointer.au3 ist eine erweiterte NomadMemory.au3 .
-Bypass
-kannst du die memory denn einlesen ?
-sind das auch die richtigen pointer ?
-sind diese writable
-hast du debug rechte und admin rechte ?
-ist es ein 32 bit process ?
|
-Mit bypass gestartet
-memory kann ich auslesen kann die werte am anfang ändern wenn der Client -startet später Ingame nicht mehr
-Ja
-Ja
-Ja und nein ich hab ein 32 bit system aber das Betriebssystem ist 64 Bit
|
|
|
|
|
05/31/2013, 17:58
|
#9
|
elite*gold: 50
Join Date: Sep 2012
Posts: 3,841
Received Thanks: 1,462
|
ehm versuchst du etwa munition zu verändern oder sowas ? das wird am server gespeichert
|
|
|
|
|
05/31/2013, 22:09
|
#10
|
elite*gold: 29
Join Date: Aug 2011
Posts: 640
Received Thanks: 493
|
Quote:
Originally Posted by »FlutterShy™
ehm versuchst du etwa munition zu verändern oder sowas ? das wird am server gespeichert
|
nein die inf.ammo hab ich auch icht gefunden genau so nicht wie godmode und inf.SP aber die Funktionen die ihr oben in meinem Script sieht funktionieren zwar aber nur am Anfang wenn der Client startet aber Ingame ändern sich die selben Values nicht
(Wie finde ich diese werte wie Ammo godmode und inf.SP?!)
|
|
|
|
|
06/01/2013, 14:49
|
#11
|
elite*gold: 26
Join Date: Jan 2012
Posts: 3,474
Received Thanks: 18,844
|
Quote:
Originally Posted by »FlutterShy™
ehm versuchst du etwa munition zu verändern oder sowas ? das wird am server gespeichert
|
Nicht bei S4.
Quote:
Originally Posted by golle12
nein die inf.ammo hab ich auch icht gefunden genau so nicht wie godmode und inf.SP aber die Funktionen die ihr oben in meinem Script sieht funktionieren zwar aber nur am Anfang wenn der Client startet aber Ingame ändern sich die selben Values nicht
(Wie finde ich diese werte wie Ammo godmode und inf.SP?!) |
Das liegt daran dass du dir jedes mal neu die ProcessID holst. Am besten du machst in deiner Schleife eine If-Abfrage, ob S4 läuft. Wenn dies der Fall ist, dann wird die ProcessID in einer globalen Variable gespeichert, auf die du dann von jeder Funktion aus zugreifen kannst 
|
|
|
|
|
06/01/2013, 16:15
|
#12
|
elite*gold: 0
Join Date: Apr 2013
Posts: 980
Received Thanks: 734
|
Quote:
Originally Posted by K1ramoX
Nicht bei S4.
Das liegt daran dass du dir jedes mal neu die ProcessID holst. Am besten du machst in deiner Schleife eine If-Abfrage, ob S4 läuft. Wenn dies der Fall ist, dann wird die ProcessID in einer globalen Variable gespeichert, auf die du dann von jeder Funktion aus zugreifen kannst |
Also so?
Processwait("S4Client.exe")
_Start()
Func _Start()
While 1
If GuiCtrlRead($Checkbox1)=1 then
_MemoryWrite(Adresse,MemoryOpen Variabele,Hack Value, type)
Else
_MemoryWrite(Adresse,MemoryOpen Variabele,Normale Value,type)
Endif
Wend
EndFunc
|
|
|
|
|
06/01/2013, 20:03
|
#13
|
elite*gold: 29
Join Date: Aug 2011
Posts: 640
Received Thanks: 493
|
Danke euch Beiden
irgendwie funktionierts immernoch nicht also es man kann so lange die Values ändern bis Xtrap.xt auftaucht dann funktioniert es nicht mehr
PHP Code:
#RequireAdmin
#NoTrayIcon
#Region ;**** Directives created by AutoIt3Wrapper_GUI ****
#AutoIt3Wrapper_Res_requestedExecutionLevel=asInvoker
#EndRegion ;**** Directives created by AutoIt3Wrapper_GUI ****
#include <NomadMemory.au3>
#include <Apple Base.au3>
Global $Pid,$Open,$Address,$Address1,$Address2,$Address3,$Address4,$Handle,$Handle1,$Handle2,$Handle3,$Handle4,$Offset,$Offset1,$Offset2,$Offset3,$Offset4,$fShow
_Apple_Startup(21, 0x00FF00, 0x008000, 0xFF0000)
$GUI = _Apple_Draw_Gui(150,560, 1, "D3D S4 League Hack", 0x00C0C0, 230)
_Apple_Create_Text("Hack made by Golle12", 400)
_Apple_Create_Function("Inf.HP", 40) ; function _0
_Apple_Create_Function("SP Regen",50) ; funktion _1
_Apple_Create_Function("Ghostmode",53) ;funktion _2
_Apple_Create_Function("Hitrange",40) ;funktion _3
_Apple_Create_Function("Air Walk",40) ;funktion _4
_Apple_Create_Function("200 HP",45) ;funktion _5
_Apple_Create_Function("0 HP",45) ;funktion _6
_Apple_Create_Function("Godmode",65) ;funktion _7
_Apple_Create_Function("Inf.SP",65) ;funktion _8
_Apple_Create_Function("Fastfire",65) ;funktion _9
_Apple_Create_Function("1Hit",65) ;funktion _10
_Apple_Create_Function("Inf.Ammo",65) ;funktion _11
_Apple_Create_Function("Cut Speed",65) ;funktion _12
_Apple_Create_Function("Instant Respawn",85) ;funktion _13
_Apple_Create_Function("Wall Time",65) ;funktion _14
_Apple_Create_Function("Wall HP",65) ;funktion _15
_Apple_Create_Function("0 Gravity",65) ;funktion _16
_Apple_Create_Function("Anchor Range",88) ;funktion _17
_Apple_Create_Function("Inf.Anchor",65) ;funktion _18
_Apple_Create_Function("Full Power",55) ;funktion _19
_Apple_Create_Function("Exit", 18) ;funktion _20
_Apple_Create_Text("Have Fun", 200)
_Apple_State_Gui(1, $GUI)
_Apple_Topmost_Check("")
global $fShow = True
HotKeySet("{INS}","_ShowHide")
Func _ShowHide()
If $fShow Then GuiSetState(@SW_Show)
If not $fShow Then GuiSetState(@SW_Hide)
$fShow=Not $fShow
Endfunc
_Apple_Enable_Up_Down()
While True
Sleep(100)
WEnd
Func _0($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x00518984,$OPEN,"2348565979","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00518984,$OPEN,"2348565977","long")
EndIf
EndFunc
Func _1($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x00489048,$OPEN,"1166870634","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00489048,$OPEN,"1166869354","long")
EndIf
EndFunc
Func _2($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x00F104E8,$OPEN,"2348565979","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00F104E8,$OPEN,"2348565977","long")
EndIf
EndFunc
Func _3($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x00000000,$OPEN,"2340000000","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00000000,$OPEN,"2348000000","long")
EndIf
EndFunc
Func _4($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x0051F0C4,$OPEN,"2348762585","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x0051F0C4,$OPEN,"2348565977","long")
EndIf
EndFunc
Func _5($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x005189E4,$OPEN,"2348565979","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005189E4,$OPEN,"2348565977","long")
EndIf
EndFunc
Func _6($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x005189E4,$OPEN,"2348565978","long")
_MEMORYWRITE(0x00518984,$Open,"2348565978","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005189E4,$OPEN,"2348565977","long")
_MEMORYWRITE(0x00518984,$Open,"2348565977","long")
EndIf
EndFunc
Func _7($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x00518A45,$OPEN,"3135869072","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00518A45,$OPEN,"3135833466","long")
EndIf
EndFunc
Func _8($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x00481422,$OPEN,"2348565979","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00481422,$OPEN,"2348565977","long")
EndIf
EndFunc
Func _9($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x0055FBE9,$OPEN,"990399115","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x0055FBE9,$OPEN,"990136971","long")
EndIf
EndFunc
Func _10($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x00519439,$OPEN,"1593591259","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00519439,$OPEN,"1593591257","long")
EndIf
EndFunc
Func _11($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x00759142,$OPEN,"3051982992","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00759142,$OPEN,"3051947381","long")
EndIf
EndFunc
Func _12($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x005E6A24,$OPEN,"2240612458","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005E6A24,$OPEN,"2240611178","long")
EndIf
EndFunc
Func _13($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x005E3533,$OPEN,"989874827","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005E3533,$OPEN,"990136971","long")
EndIf
EndFunc
Func _14($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x005FB328,$OPEN,"1166868586","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005FB328,$OPEN,"1166868842","long")
EndIf
EndFunc
Func _15($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x007616ED,$OPEN,"2374697066","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x007616ED,$OPEN,"2374698346","long")
EndIf
EndFunc
Func _16($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x0047E9AE,$OPEN,"1166868842","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x0047E9AE,$OPEN,"1166869354","long")
EndIf
EndFunc
Func _17($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x005EB11F,$OPEN,"990071435","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005EB11F,$OPEN,"990136971","long")
EndIf
EndFunc
Func _18($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x005EB1DE,$OPEN,"2374697322","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x005EB1DE,$OPEN,"2374698346","long")
EndIf
EndFunc
Func _19($action)
$Pid = ProcessExists("S4Client.exe")
$Open = _MemoryOpen($Pid)
If $action = 1 Then
_MEMORYWRITE(0x00481728,$OPEN,"4275346907","long")
ElseIf $action = 0 Then
_MEMORYWRITE(0x00481728,$OPEN,"4275346905","long")
EndIf
EndFunc
Func _20($action)
If $action = 1 Then
Exit
EndIf
EndFunc
Quote:
Originally Posted by K1ramoX
Nicht bei S4.
Das liegt daran dass du dir jedes mal neu die ProcessID holst. Am besten du machst in deiner Schleife eine If-Abfrage, ob S4 läuft. Wenn dies der Fall ist, dann wird die ProcessID in einer globalen Variable gespeichert, auf die du dann von jeder Funktion aus zugreifen kannst |
Wie meinst du das ?!
|
|
|
|
|
06/01/2013, 22:43
|
#14
|
elite*gold: 0
Join Date: Apr 2013
Posts: 980
Received Thanks: 734
|
Ich glaub er meint das du in jede schleife eine ProcessExistens Funktion einbauen sollst also..
While 1
Processwait ("S4Client.exe")
ProcessExistens("S4Client.exe")
If GuiCtrlrea...... then
processExistens("S4Client.exe")
_MemoryWrite(...)
Else
......
Endif
Wend
eine Extra Funktion..
Oder while 1
If ProcessExistens ("S4Client.exe") then
$Godmode_Variabele = 0x******
Endif
If Guictrl.... then
_MemoryWrite($Godmode_Variabele, ..)
Else
...
...
endif
Wend
|
|
|
|
|
06/02/2013, 17:57
|
#15
|
elite*gold: 29
Join Date: Aug 2011
Posts: 640
Received Thanks: 493
|
Kann mir den keiner helfen
|
|
|
|
All times are GMT +1. The time now is 03:50.
|
|
