[TUTORIAL] How To Add more D-Shop Tabs to your dekaron.exe

~~ariesmichael~~ · 10/23/2011, 02:00

Quote:

Originally Posted by [DEV]DorianGray

I did them line by Line.

I m a Newbie in exe editing

i am a newbie in dekaron =.= /

[DEV]DorianGray · 10/23/2011, 02:01

Quote:

Originally Posted by BioNicX

I'll give it a another tackle tomorrow, I just spent 4 hours on it xD good enough for one day.

Quote:

Originally Posted by ariesmichael

i am a newbie in dekaron =.= /

Was the first time i ever edited a dekaron.exe

[DEV]Harmony · 10/23/2011, 18:41

All those Reverse tuts should be stickied <.<

en[DEV]er · 10/23/2011, 19:59

Quote:

Originally Posted by [DEV]Harmony

All those Reverse tuts should be stickied <.<

i agree !

Beastie · 10/24/2011, 20:06

for the line

Code:

PUSH OFFSET 009D8330

I keep getting the error 'Extra input after operand'

using Olly 110

SkadadIller · 10/24/2011, 20:12

Quote:
Originally Posted by Beastie
for the line
Code:
PUSH OFFSET 009D8330
I keep getting the error 'Extra input after operand'

using Olly 110

Because you have to delete OFFSET:

Code:

PUSH 009D8330

Beastie · 10/24/2011, 20:21

ah, cheers dude

en[DEV]er · 10/24/2011, 21:21

Quote:
Originally Posted by SkadadIller
Because you have to delete OFFSET:
Code:
PUSH 009D8330

funny....auhuahuahuha

Beastie · 10/24/2011, 21:27

Quote:

Originally Posted by en[DEV]er

funny....auhuahuahuha

how so? I'm just learning here, we were all nubs at the beginning..

[DEV]DorianGray · 10/24/2011, 21:41

With the 1st Jump you set, you disable the whole ShopTab (Tab 3)
You jump to the new space and have to add the whole tab new there
plus the new Tabs, then you jump back to the end to the Tab you disabled

It s the same as if you have a chain and open it to add a new piece :-)

Im a Beginner in that too

it s just learning by doing

Beastie · 10/24/2011, 22:04

This is what I have (Adjusting for offset 00B8B000)

Code:

00B8B000   62746E 5F        BOUND ESI,QWORD PTR DS:[ESI+EBP*2+5F]
00B8B004   74 5F            JE SHORT Dekaron_.00B8B065
00B8B006   625F 35          BOUND EBX,QWORD PTR DS:[EDI+35]
00B8B009   0000             ADD BYTE PTR DS:[EAX],AL
00B8B00B   62746E 5F        BOUND ESI,QWORD PTR DS:[ESI+EBP*2+5F]
00B8B00F   74 58            JE SHORT Dekaron_.00B8B069
00B8B011   625F 36          BOUND EBX,QWORD PTR DS:[EDI+36]
00B8B014   0000             ADD BYTE PTR DS:[EAX],AL
00B8B016   68 30839D00      PUSH Dekaron_.009D8330                   ; ASCII "btn_tab_3"
00B8B01B   55               PUSH EBP
00B8B01C   E8 7F8387FF      CALL Dekaron_.004033A0
00B8B021   83C4 08          ADD ESP,8
00B8B024   84C0             TEST AL,AL
00B8B026   74 58            JE SHORT Dekaron_.00B8B080
00B8B028   8B4E 08          MOV ECX,DWORD PTR DS:[ESI+8]
00B8B02B   85C9             TEST ECX,ECX
00B8B02D   74 06            JE SHORT Dekaron_.00B8B035
00B8B02F   8B11             MOV EDX,DWORD PTR DS:[ECX]
00B8B031   6A 01            PUSH 1
00B8B033   FF12             CALL DWORD PTR DS:[EDX]
00B8B035   6A 08            PUSH 8
00B8B037   C746 08 00000000 MOV DWORD PTR DS:[ESI+8],0
00B8B03E   E8 BC2BC1FF      CALL Dekaron_.0079DBFF
00B8B043   83C4 04          ADD ESP,4
00B8B046   85C0             TEST EAX,EAX
00B8B048   74 0D            JE SHORT Dekaron_.00B8B057
00B8B04A   8B4E 04          MOV ECX,DWORD PTR DS:[ESI+4]
00B8B04D   51               PUSH ECX
00B8B04E   8BC8             MOV ECX,EAX
00B8B050   E8 6BFEB4FF      CALL Dekaron_.006DAEC0
00B8B055   EB 02            JMP SHORT Dekaron_.00B8B059
00B8B057   33C0             XOR EAX,EAX
00B8B059   6A 03            PUSH 3
00B8B05B   8BCE             MOV ECX,ESI
00B8B05D   8946 08          MOV DWORD PTR DS:[ESI+8],EAX
00B8B060   E8 5B30AEFF      CALL Dekaron_.0066E0C0
00B8B065   6A 03            PUSH 3
00B8B067   8BCE             MOV ECX,ESI
00B8B069   E8 6235AEFF      CALL Dekaron_.0066E5D0
00B8B06E   8BCE             MOV ECX,ESI
00B8B070   E8 BB2FAEFF      CALL Dekaron_.0066E030
00B8B075   5F               POP EDI
00B8B076   5D               POP EBP
00B8B077   B0 01            MOV AL,1
00B8B079   5E               POP ESI
00B8B07A   83C4 48          ADD ESP,48
00B8B07D   C2 1000          RETN 10
00B8B080   68 9EB2B800      PUSH Dekaron_.00B8B29E                   ; ASCII "btn_tab_5"
00B8B085   55               PUSH EBP
00B8B086   E8 158387FF      CALL Dekaron_.004033A0
00B8B08B   83C4 08          ADD ESP,8
00B8B08E   84C0             TEST AL,AL
00B8B090   74 58            JE SHORT Dekaron_.00B8B0EA
00B8B092   8B4E 08          MOV ECX,DWORD PTR DS:[ESI+8]
00B8B095   85C9             TEST ECX,ECX
00B8B097   74 06            JE SHORT Dekaron_.00B8B09F
00B8B099   8B11             MOV EDX,DWORD PTR DS:[ECX]
00B8B09B   6A 01            PUSH 1
00B8B09D   FF12             CALL DWORD PTR DS:[EDX]
00B8B09F   6A 08            PUSH 8
00B8B0A1   C746 08 00000000 MOV DWORD PTR DS:[ESI+8],0
00B8B0A8   E8 522BC1FF      CALL Dekaron_.0079DBFF
00B8B0AD   83C4 04          ADD ESP,4
00B8B0B0   85C0             TEST EAX,EAX
00B8B0B2   74 0D            JE SHORT Dekaron_.00B8B0C1
00B8B0B4   8B4E 04          MOV ECX,DWORD PTR DS:[ESI+4]
00B8B0B7   51               PUSH ECX
00B8B0B8   8BC8             MOV ECX,EAX
00B8B0BA   E8 01FEB4FF      CALL Dekaron_.006DAEC0
00B8B0BF   EB 02            JMP SHORT Dekaron_.00B8B0C3
00B8B0C1   33C0             XOR EAX,EAX
00B8B0C3   6A 05            PUSH 5
00B8B0C5   8BCE             MOV ECX,ESI
00B8B0C7   8946 08          MOV DWORD PTR DS:[ESI+8],EAX
00B8B0CA   E8 F12FAEFF      CALL Dekaron_.0066E0C0
00B8B0CF   6A 05            PUSH 5
00B8B0D1   8BCE             MOV ECX,ESI
00B8B0D3   E8 F834AEFF      CALL Dekaron_.0066E5D0
00B8B0D8   8BCE             MOV ECX,ESI
00B8B0DA   E8 512FAEFF      CALL Dekaron_.0066E030
00B8B0DF   5F               POP EDI
00B8B0E0   5D               POP EBP
00B8B0E1   B0 01            MOV AL,1
00B8B0E3   5E               POP ESI
00B8B0E4   83C4 48          ADD ESP,48
00B8B0E7   C2 1000          RETN 10
00B8B0EA   68 A9B2B800      PUSH Dekaron_.00B8B2A9                   ; ASCII "btn_tab_6"
00B8B0EF   55               PUSH EBP
00B8B0F0   E8 AB8287FF      CALL Dekaron_.004033A0
00B8B0F5   83C4 08          ADD ESP,8
00B8B0F8   84C0             TEST AL,AL
00B8B0FA   74 58            JE SHORT Dekaron_.00B8B154
00B8B0FC   8B4E 08          MOV ECX,DWORD PTR DS:[ESI+8]
00B8B0FF   85C9             TEST ECX,ECX
00B8B101   74 06            JE SHORT Dekaron_.00B8B109
00B8B103   8B11             MOV EDX,DWORD PTR DS:[ECX]
00B8B105   6A 01            PUSH 1
00B8B107   FF12             CALL DWORD PTR DS:[EDX]
00B8B109   6A 08            PUSH 8
00B8B10B   C746 08 00000000 MOV DWORD PTR DS:[ESI+8],0
00B8B112   E8 E82AC1FF      CALL Dekaron_.0079DBFF
00B8B117   83C4 04          ADD ESP,4
00B8B11A   85C0             TEST EAX,EAX
00B8B11C   74 0D            JE SHORT Dekaron_.00B8B12B
00B8B11E   8B4E 04          MOV ECX,DWORD PTR DS:[ESI+4]
00B8B121   51               PUSH ECX
00B8B122   8BC8             MOV ECX,EAX
00B8B124   E8 97FDB4FF      CALL Dekaron_.006DAEC0
00B8B129   EB 02            JMP SHORT Dekaron_.00B8B12D
00B8B12B   33C0             XOR EAX,EAX
00B8B12D   6A 06            PUSH 6
00B8B12F   8BCE             MOV ECX,ESI
00B8B131   8946 08          MOV DWORD PTR DS:[ESI+8],EAX
00B8B134   E8 872FAEFF      CALL Dekaron_.0066E0C0
00B8B139   6A 06            PUSH 6
00B8B13B   8BCE             MOV ECX,ESI
00B8B13D   E8 8E34AEFF      CALL Dekaron_.0066E5D0
00B8B142   8BCE             MOV ECX,ESI
00B8B144   E8 E72EAEFF      CALL Dekaron_.0066E030
00B8B149   5F               POP EDI
00B8B14A   5D               POP EBP
00B8B14B   B0 01            MOV AL,1
00B8B14D   5E               POP ESI
00B8B14E   83C4 48          ADD ESP,48
00B8B151   C2 1000          RETN 10
00B8B154  -E9 F03DAEFF      JMP Dekaron_.0066EF49

Remembering that olly did change a few of the operands when it assembled the code, problem is, it doesnt work using elites client

and yes, I did use JMP at 0066EEDF to the new 3rd tab in the newly created space, although olly did change the address (probably the location in the EXE instead)

EDIT:
/facepalm Just noticed the damn assembler has only half done the corrections D'OH!
EDIT 2:
Redid the code, still doesnt work in elite, try again tomorrow, lol

BioNicX · 10/24/2011, 23:49

Quote:
Originally Posted by Beastie
for the line
Code:
PUSH OFFSET 009D8330
I keep getting the error 'Extra input after operand'

using Olly 110

take off "OFFSET" try just "PUSH 009D8330".

Quote:

Originally Posted by en[DEV]er

funny....auhuahuahuha

not really, specially when we are all learning.

Beastie · 10/25/2011, 13:21

Ok, its seems I fluffed up some jump points, also I forgot to push the correct offsets

but now I have 1 extra tab in Elite's D-shop (+9 Weapons) kicking in

Code:

00B8B000   62746E 5F        BOUND ESI,QWORD PTR DS:[ESI+EBP*2+5F]
00B8B004   74 61            JE SHORT Dekaron_.00B8B067
00B8B006   625F 35          BOUND EBX,QWORD PTR DS:[EDI+35]
00B8B009   0000             ADD BYTE PTR DS:[EAX],AL
00B8B00B   62746E 5F        BOUND ESI,QWORD PTR DS:[ESI+EBP*2+5F]
00B8B00F   74 5A            JE SHORT Dekaron_.00B8B06B
00B8B011   625F 36          BOUND EBX,QWORD PTR DS:[EDI+36]
00B8B014   0000             ADD BYTE PTR DS:[EAX],AL
00B8B016   68 30839D00      PUSH Dekaron_.009D8330                   ; ASCII "btn_tab_3"
00B8B01B   55               PUSH EBP
00B8B01C   E8 7F8387FF      CALL Dekaron_.004033A0
00B8B021   83C4 08          ADD ESP,8
00B8B024   84C0             TEST AL,AL
00B8B026   74 58            JE SHORT Dekaron_.00B8B080               ; ASCII "Jump to tab 5"
00B8B028   8B4E 08          MOV ECX,DWORD PTR DS:[ESI+8]
00B8B02B   85C9             TEST ECX,ECX
00B8B02D   74 06            JE SHORT Dekaron_.00B8B035
00B8B02F   8B11             MOV EDX,DWORD PTR DS:[ECX]
00B8B031   6A 01            PUSH 1
00B8B033   FF12             CALL DWORD PTR DS:[EDX]
00B8B035   6A 08            PUSH 8
00B8B037   C746 08 00000000 MOV DWORD PTR DS:[ESI+8],0
00B8B03E   E8 BC2BC1FF      CALL Dekaron_.0079DBFF
00B8B043   83C4 04          ADD ESP,4
00B8B046   85C0             TEST EAX,EAX
00B8B048   74 0D            JE SHORT Dekaron_.00B8B057
00B8B04A   8B4E 04          MOV ECX,DWORD PTR DS:[ESI+4]
00B8B04D   51               PUSH ECX
00B8B04E   8BC8             MOV ECX,EAX
00B8B050   E8 6BFEB4FF      CALL Dekaron_.006DAEC0
00B8B055   EB 02            JMP SHORT Dekaron_.00B8B059
00B8B057   33C0             XOR EAX,EAX
00B8B059   6A 03            PUSH 3
00B8B05B   8BCE             MOV ECX,ESI
00B8B05D   8946 08          MOV DWORD PTR DS:[ESI+8],EAX
00B8B060   E8 5B30AEFF      CALL Dekaron_.0066E0C0
00B8B065   6A 03            PUSH 3
00B8B067   8BCE             MOV ECX,ESI
00B8B069   E8 6235AEFF      CALL Dekaron_.0066E5D0
00B8B06E   8BCE             MOV ECX,ESI
00B8B070   E8 BB2FAEFF      CALL Dekaron_.0066E030
00B8B075   5F               POP EDI
00B8B076   5D               POP EBP
00B8B077   B0 01            MOV AL,1
00B8B079   5E               POP ESI
00B8B07A   83C4 48          ADD ESP,48
00B8B07D   C2 1000          RETN 10
00B8B080   68 00B0B800      PUSH Dekaron_.00B8B000                   ; ASCII "btn_tab_5"
00B8B085   55               PUSH EBP
00B8B086   E8 158387FF      CALL Dekaron_.004033A0
00B8B08B   83C4 08          ADD ESP,8
00B8B08E   84C0             TEST AL,AL
00B8B090   74 58            JE SHORT Dekaron_.00B8B0EA               ; ASCII "Jump to Tab 6"
00B8B092   8B4E 08          MOV ECX,DWORD PTR DS:[ESI+8]
00B8B095   85C9             TEST ECX,ECX
00B8B097   74 06            JE SHORT Dekaron_.00B8B09F
00B8B099   8B11             MOV EDX,DWORD PTR DS:[ECX]
00B8B09B   6A 01            PUSH 1
00B8B09D   FF12             CALL DWORD PTR DS:[EDX]
00B8B09F   6A 08            PUSH 8
00B8B0A1   C746 08 00000000 MOV DWORD PTR DS:[ESI+8],0
00B8B0A8   E8 522BC1FF      CALL Dekaron_.0079DBFF
00B8B0AD   83C4 04          ADD ESP,4
00B8B0B0   85C0             TEST EAX,EAX
00B8B0B2   74 0D            JE SHORT Dekaron_.00B8B0C1
00B8B0B4   8B4E 04          MOV ECX,DWORD PTR DS:[ESI+4]
00B8B0B7   51               PUSH ECX
00B8B0B8   8BC8             MOV ECX,EAX
00B8B0BA   E8 01FEB4FF      CALL Dekaron_.006DAEC0
00B8B0BF   EB 02            JMP SHORT Dekaron_.00B8B0C3
00B8B0C1   33C0             XOR EAX,EAX
00B8B0C3   6A 05            PUSH 5
00B8B0C5   8BCE             MOV ECX,ESI
00B8B0C7   8946 08          MOV DWORD PTR DS:[ESI+8],EAX
00B8B0CA   E8 F12FAEFF      CALL Dekaron_.0066E0C0
00B8B0CF   6A 05            PUSH 5
00B8B0D1   8BCE             MOV ECX,ESI
00B8B0D3   E8 F834AEFF      CALL Dekaron_.0066E5D0
00B8B0D8   8BCE             MOV ECX,ESI
00B8B0DA   E8 512FAEFF      CALL Dekaron_.0066E030
00B8B0DF   5F               POP EDI
00B8B0E0   5D               POP EBP
00B8B0E1   B0 01            MOV AL,1
00B8B0E3   5E               POP ESI
00B8B0E4   83C4 48          ADD ESP,48
00B8B0E7   C2 1000          RETN 10
00B8B0EA   68 0BB0B800      PUSH Dekaron_.00B8B00B                   ; ASCII "btn_tab_6"
00B8B0EF   55               PUSH EBP
00B8B0F0   E8 AB8287FF      CALL Dekaron_.004033A0
00B8B0F5   83C4 08          ADD ESP,8
00B8B0F8   84C0             TEST AL,AL
00B8B0FA   74 58            JE SHORT Dekaron_.00B8B154               ; ASCII "Jump to return"
00B8B0FC   8B4E 08          MOV ECX,DWORD PTR DS:[ESI+8]
00B8B0FF   85C9             TEST ECX,ECX
00B8B101   74 06            JE SHORT Dekaron_.00B8B109
00B8B103   8B11             MOV EDX,DWORD PTR DS:[ECX]
00B8B105   6A 01            PUSH 1
00B8B107   FF12             CALL DWORD PTR DS:[EDX]
00B8B109   6A 08            PUSH 8
00B8B10B   C746 08 00000000 MOV DWORD PTR DS:[ESI+8],0
00B8B112   E8 E82AC1FF      CALL Dekaron_.0079DBFF
00B8B117   83C4 04          ADD ESP,4
00B8B11A   85C0             TEST EAX,EAX
00B8B11C   74 0D            JE SHORT Dekaron_.00B8B12B
00B8B11E   8B4E 04          MOV ECX,DWORD PTR DS:[ESI+4]
00B8B121   51               PUSH ECX
00B8B122   8BC8             MOV ECX,EAX
00B8B124   E8 97FDB4FF      CALL Dekaron_.006DAEC0
00B8B129   EB 02            JMP SHORT Dekaron_.00B8B12D
00B8B12B   33C0             XOR EAX,EAX
00B8B12D   6A 06            PUSH 6
00B8B12F   8BCE             MOV ECX,ESI
00B8B131   8946 08          MOV DWORD PTR DS:[ESI+8],EAX
00B8B134   E8 872FAEFF      CALL Dekaron_.0066E0C0
00B8B139   6A 06            PUSH 6
00B8B13B   8BCE             MOV ECX,ESI
00B8B13D   E8 8E34AEFF      CALL Dekaron_.0066E5D0
00B8B142   8BCE             MOV ECX,ESI
00B8B144   E8 E72EAEFF      CALL Dekaron_.0066E030
00B8B149   5F               POP EDI
00B8B14A   5D               POP EBP
00B8B14B   B0 01            MOV AL,1
00B8B14D   5E               POP ESI
00B8B14E   83C4 48          ADD ESP,48
00B8B151   C2 1000          RETN 10
00B8B154  -E9 F03DAEFF      JMP Dekaron_.0066EF49                    ; ASCII "return to original tabs"

been over and over it, comparing with [DEV]DorianGray's original and working out where the jump points are, but for some reason I cannot get the 7th tab working..

any Ideas/clues?

[DEV]DorianGray · 10/25/2011, 13:32

i ask myself already the whole time why you don t just use the offsets i posted

it doesn t matter if you start at 00B8B000 or at my offsets (00B8B29E)

The unused offsets 00B8B000 - 00B8B29D doesn t harm your exe in any way

Beastie · 10/25/2011, 13:35

lol, how am I supposed to learn if I just copy/paste ;-) lol, I think I've sussed it out tho

edit: I got it working!!!

for some reason I had

Code:

00B8B00F   74 5A            JE SHORT Dekaron_.00B8B06B

and it should have been

Code:

00B8B00F   74 61            JE SHORT Dekaron_.00B8B072

Yay, go me

oh and btw, cheers for the tut, Learned quite a lot in the past couple of days, so big thanks for that dude!