Few questions about CR bypass macros etc.

[ibonehj15]

yeah head on sir..
hhmm better get me some gud hdd coz my current 1 is just 20 gb..
**** !! aha..anyways...now i know am on the right track !!

[pornpinoy]

i was following the discussion here... as i read Im really clarified on things i must do... this will help me on my projects NovaCygni your the BEST!!! I hope this thread will not close...

Question: you've mention that your active in a different forum and discussed some ideas about the ollydbg plugin?

I'm an Average programmer... now learning Reverse Engineering... I was refreshed in knowing you here..

Backup plan:
the ogg dlls files are open source :
Xiph.org: Downloads
Proceed to download the main dlls source-code... add your bot functions in there.... your bot is now loaded/"Is" also the sound dll Gameguard bypassed as the dll (* so long as you havnt renamed it xD *) is still the "Named" dll the game is calling to and will still "In a fashion " perfom normally... result
__________________

sir did you mean that i should redirect a certain function in the dll to a certain program that would run my bot program? or simply apply the whole script and call it there? example if i press play? on the sound button of the dll my bot will open and run?

if there's another approach i'm very glad to here from a master.. ^_^

[ibonehj15]

Quote:

Originally Posted by pornpinoy

sir did you mean that i should redirect a certain function in the dll to a certain program that would run my bot program? or simply apply the whole script and call it there? example if i press play? on the sound button of the dll my bot will open and run?

if there's another approach i'm very glad to here from a master.. ^_^

ur there man...i think nova would say yes to the second question..simply save it in a dll file thats no different from the ones we are seeing in our cabal ph folder !! my plan was..well if i really know something about c++..i like to view the source code of the former "passnp.dll" , copy paste save them to all of the lib/ogg files in my cabal folder..trial and error..and see what comes up !!
cause CALL and other c++ language is like an alien language for me..thats my plan atm..though i cant put some tuts for practicing coz of my darn hdd..i can only enjoy cabal normally..having it bypassed is really what i missed !!

@pornpinoy...now ur on ur way to unleash cabal ph bypass..
@nova...stay cool, answer every intelligent question we give to you !!

[pornpinoy]

as i was reading MASTER NovaCygni post

i was bumped on a certain word: CODE CAVE - and start searching for it i found this

can this help?

[ibonehj15]

@pornpinoy...
nicely done sir..u really read the posts !!
the idea is to reverse engineer an existing dll file in our cabal folder..
in order to do so..we still need to unpack cabalmain.exe so that we will know when/how to kill gameguard, and also to prevent us from having a dc also a nasty detection !!
then save it to the chosen file u have edited ...

[pornpinoy]

I'm really doing studies about what MASTER NovaCygni post and many information now is stored on my cute little brain... really want to have more space and defrag my brain ... may be i will drink something like STING!!! may be it can boost my brain....

Im starting to have nose bleed's and starting to sleep late just studying...

**** wish there is a gud sample i can look at or may be a guide....

I'm planning to buy a book maybe it cud help....

MAKES ME CRAVE FOR MORE KNOWLEDGE!!!!!

[ibonehj15]

try lenas tutorials..its linked here in one of the posts of sir nova..
also google is a big help as well..atm, i cant help u pretty much coz im doing so much i cant even play cabal !! ****.. anyways..if ever i have time, i will try to study one of those tuts so that i can gain knowledge, even though my level of knowledge is stopped until high school level only ..

[pornpinoy]

i've already downloaded the tutorial haven't read yet still reading some theories about code caves. it interest me... i also sometimes forgot to play bro coz i'm really focus on learning RCE it interest me... now trying PINBALL maybe if i start here i cud go to higher application like cabal...


As i learn i don't know if im right??? We use a bot like CR i think CR is a proxybot??? it interupts the data of the cabal server so that all its functions will work... or maybe im wrong?

[ibonehj15]

Quote:

Originally Posted by pornpinoy

i've already downloaded the tutorial haven't read yet still reading some theories about code caves. it interest me... i also sometimes forgot to play bro coz i'm really focus on learning RCE it interest me... now trying PINBALL maybe if i start here i cud go to higher application like cabal...


As i learn i don't know if im right??? We use a bot like CR i think CR is a proxybot??? it interupts the data of the cabal server so that all its functions will work... or maybe im wrong?

wud this help

Quote:

Originally Posted by NovaCygni

The method CR uses to unmask the Cabal ProcessID from the windows task list is also used by the ollydbg plugin, the same process is then simply reversed to "Hide" the CR process "And" CR again after the code injection has taken place.

[pornpinoy]

downloading the plugin im having problems... im currently using another method to hide olly it seems to work but the thing is i'm on a maze can't seem to find the right address to insert the JMP to bypass i always end on terminating the client process... i think there is a Vprotect around the asm codes im already viewing everytime i insert i always go to a dead end...

[ibonehj15]

Quote:

Originally Posted by pornpinoy

downloading the plugin im having problems... im currently using another method to hide olly it seems to work but the thing is i'm on a maze can't seem to find the right address to insert the JMP to bypass i always end on terminating the client process... i think there is a Vprotect around the asm codes im already viewing everytime i insert i always go to a dead end...

ur live debugging? or tried the method in hiding olly?? well that is for cr's case..i guess they made adapter.dll to hide itself so it can run as if ur running an ordinary launcher...maybe understanding how the cr files work in cabal ph wud give us a break through..well if we are making something new, or rather cabal rider like !! but for me..i'll be sticking with editing a dll file in cabal folder to act as a bypass...maybe having a dll viewer will really help me coz i wanna try and see what scripts does "passnp.dll" has..how'd crph made it to bypass official cabal servers, and also, how to make it work again hidden in our cabal folder

[pornpinoy]

no not yet... i'm just practicing packing and unpacking that's my first step programming is easy but reversing is hell... you can easly create a simple program but to reverse a simple program like a Hello World its like "booom my brain where is it..." hehehehe...

Actually the theory about CR is simple its a proxy bot also server side... all that you see in your folder CR is just a client also that helps the whole process of botting... passnp.dll was just a support to fight GG system... but when the team of CR develop a different process all server side... they disable the dll...

[ibonehj15]

Quote:

Originally Posted by NovaCygni

therve changed dlls finally... no problem a master like me always had a backup plan xD

Backup plan:
the ogg dlls files are open source :

Proceed to download the main dlls source-code... add your bot functions in there.... your bot is now loaded/"Is" also the sound dll Gameguard bypassed as the dll (* so long as you havnt renamed it xD *) is still the "Named" dll the game is calling to and will still "In a fashion " perfom normally... result

Quote:

Originally Posted by NovaCygni

Sure I hinted to this one with "and I noticed that cabal loaded the libmmd.dll without any trouble because it was called by a valid cabal dll, and that in such a fashion it would be possible to call other dlls or programs"

@pornpinoy..read this quoted posts of sir nova..as i understand things about what he said..well, reversing will be too much for us, the only thing we need to do is make another script for the lib/ogg files we have in cabal folder to make it act as a bypass..then save it like nothing happened(again that is in my lvl of thinking) also a hard part is that, how on earth can I bypass gg, dont have enough skills in understanding scripts, what i have is faith, faith that some day i can learn all this and make it to work !!

about unpacking, dlnqt and hellspider(i think u know his works already) has worked them out for the past 2 yrs of cabal's existence !! well their works still exist here in epvp, scanning them if u have time will help us a lot..