Quote:
Originally Posted by Rift2552
Its a bit complicated though the function address keeps changing everytime rappelz loads and the function also requires the base address to an array of address's for the fuctions rappelz use.
|
the function adress keeps changing becouse you havent 'freezed' the process on special set-points on startup. ( search for packet id {4......M(
[email protected]!} ) and freeze it on that point and tell it to null the first 16bytes(out of 32).
That should prevent it from changing.
another method is to send a packet directed at sframe (using the handler acception IO_PACKET), and attach it to the handler of your GG.dll file.
When you send this
MAKE SURE you send it in this pattern:
-Convert tekst to bytes
-Make an byte-array of the bytes we catched earlier
-Encrypt byte-array with: Captainherlock(packet_key) to rc4
-Convert rc4 to 3 blocks, and make the 2nd block SHA-1 encrypted.
-Encrypt the 3th block with RSA standard(packet_key)
-Convert the 1st block with the 3th block to hex and cast it as a ''stream'' before sending.
Hope this helps you out
, if you want u can pm me and ask my Skype i can send you the packets that sframe sends.
