Pointer collection

Smurfin · 12/12/2008, 19:29

thanks, hope you or anyone good with offset fishing find it. It'll be very useful.

finding offsets is confusing, sometimes it's shown directly using CE's 'what access this memory address' but sometimes it has confusing formula. ecx esi edx etc zzzz no idea what those things are.

StellarFighter · 12/14/2008, 13:34

Quote:

Originally Posted by BetaBowElfe

does the other player see your name change or only yourself... lol because player names is very much server sided i think.

my purpose is not for changing my name BetaBow... but like the RF online game.. i'm curious to find out the offset for our character name ..

on progress : i had found that our name in PW ,for example : Superman will become S u p e r m a n (with space (hex 00) between alphabet)

so far .. i found the address.. but it keeps changing everytime re-login
its real Pointer still can't found yet

help me

BetaBowElfe · 12/14/2008, 16:12

sometimes that is my problem too there are some address that dont have pointer in them i just mark their offsets and address in memory.

plixbugmenot · 12/15/2008, 14:32

Quote:

Originally Posted by StellarFighter

my purpose is not for changing my name BetaBow... but like the RF online game.. i'm curious to find out the offset for our character name ..

on progress : i had found that our name in PW ,for example : Superman will become S u p e r m a n (with space (hex 00) between alphabet)

so far .. i found the address.. but it keeps changing everytime re-login
its real Pointer still can't found yet

help me

if there is 0x00 between them thats because its UNICODE instead of ASCII.
Unicode uses 2 bytes for a letter.

StellarFighter · 12/15/2008, 17:17

Quote:

Originally Posted by BetaBowElfe

sometimes that is my problem too there are some address that dont have pointer in them i just mark their offsets and address in memory.

yes..me too. found 3-5 address.. but when i add it,i can't use the same address again after re-login. (that address was changing)
so..thats annoying. so.. you do confuse too, BetaBow ?

Quote:

Originally Posted by plixbugmenot

if there is 0x00 between them thats because its UNICODE instead of ASCII.
Unicode uses 2 bytes for a letter.

ohh thanks for the info plixbugmenot...
so..what must i do with unicode when working with UCE ? or ..
(usually i use ASCII), will unicode affect to BOT's script?

BetaBowElfe · 12/15/2008, 18:55

Quote:

Originally Posted by plixbugmenot

if there is 0x00 between them thats because its UNICODE instead of ASCII.
Unicode uses 2 bytes for a letter.

no what i mean is that when look at writes or access the adresss it shows something kinda like "cmp dword ptr [eax4*+4]" something like that.

dk.signum · 12/16/2008, 10:16

Quote:

Originally Posted by BetaBowElfe

no what i mean is that when look at writes or access the adresss it shows something kinda like "cmp dword ptr [eax4*+4]" something like that.

well it's simply because the address that we breakpointed is in used either in the general purpose register or it equation.

the one that confusing is mov eax,eax or something like that

BetaBowElfe · 12/16/2008, 13:27

Quote:

Originally Posted by dk.signum

well it's simply because the address that we breakpointed is in used either in the general purpose register or it equation.

the one that confusing is mov eax,eax or something like that

so how do i find it if what access or writes to if it is breakpointed? how do i get to the pointers? also some that wrties as >> with the red color are shown as jgeclient 00043434 i mean there is no pointer to it like what it normally shown with pointer example for jumphack goes like ecx[00000+b10].

StellarFighter · 12/16/2008, 14:08

does it mean .. the address for name is level 2 or 3 or level 4 pointer ?

pointer of pointers ?

Smurfin · 12/16/2008, 19:39

I have a noob way for finding offsets using CE for anyone as noob as me in finding offsets ^^

just search what you want to search and when you find it you'll get an address. Then just find another address which you already known the offset, for example jumphack or HP value (you can find these offsets anywhere in bot like mhs or other hacks like disconnect's or smurfit or others, but you still have to find its current address for comparison ), just pick one and compare the addresses' difference, then calculate the difference value to the known offset.

dunno if it will always work but yesterday I got zoomhack's offset with it.

dk.signum · 12/17/2008, 05:42

Quote:

Originally Posted by BetaBowElfe

so how do i find it if what access or writes to if it is breakpointed? how do i get to the pointers? also some that wrties as >> with the red color are shown as jgeclient 00043434 i mean there is no pointer to it like what it normally shown with pointer example for jumphack goes like ecx[00000+b10].

i may wrong about this but i believe it was maybe some sort of data only purpose, means that it was only a value stored there. The real thing is to look at above coz sometimes the address that breaks was fill in there.

Quote:

Originally Posted by Smurfin

I have a noob way for finding offsets using CE for anyone as noob as me in finding offsets ^^

just search what you want to search and when you find it you'll get an address. Then just find another address which you already known the offset, for example jumphack or HP value (you can find these offsets anywhere in bot like mhs or other hacks like disconnect's or smurfit or others, but you still have to find its current address for comparison ), just pick one and compare the addresses' difference, then calculate the difference value to the known offset.

dunno if it will always work but yesterday I got zoomhack's offset with it.

that way is not always work, althought it will some kind work like ex ecx+450 then we pre-assumed that will work to write new offset to the address we found as ecx+490.

but what if the calculation was wrong, for ex ( ecx+330 )+30 as known as 2 level pointer

BetaBowElfe · 12/17/2008, 07:05

yep, that is what i do i look the the addresss close to it in the region sometimes i got something right sometimes wrong, something it is something totaly new that i get that i was not looking for in the first place like the offset for range or some sort i that i found out while i was looking for the pointer for critical.

Smurfin · 12/17/2008, 09:04

ah it doesn't always work, yesterday I tried to an address and the the range is too far, after calculated them the difference value is like another hex address lol

solvent · 12/18/2008, 14:16

Guys im really having a hard time on looking for base address and offset for MY-EN can someone help me plz... how to get the offset of fly and jump... thnx... ^^

Smurfin · 12/19/2008, 15:34

there is a guide already for finding base address, as for offset, you can use CE and find jumphack offset with it, then use available hack app which has a list of offsets in there, even if the value wont match for your region, you can calculate the offset difference for the jumphack and sum it to other offsets listed. It will work if the address is kinda close like jumphack, flyhack, hp, max hp, etc.