Welcome, Guest.

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - pr0jekt

Pages: 1
1
Reversing / Re: Extract address of CALL instruction
« on: May 26, 2018, 07:13:58 pm »
Thanks.

2
Reversing / Re: Getting Past Battleeye
« on: May 26, 2018, 07:12:20 pm »
It's very easy to get around battleye nowadays, you can use a kernel driver and manual map it with capcom, use nobastian, use silentjack, whatever you wanna use.

3
Reversing / Get imports of an image
« on: May 26, 2018, 06:32:51 pm »
This is useful for many functions, reverse engineering, manual mapping, etc.

Code: [Select]
typedef std::vector<IMAGE_IMPORT_DESCRIPTOR*> vecImports;

vecImports get_imports(void* _image)
{
vecImports imports;
auto import_desc = this->getDataDir<IMAGE_IMPORT_DESCRIPTOR*>(IMAGE_DIRECTORY_ENTRY_IMPORT, _image);

for (;
import_desc->FirstThunk;
++import_desc)
imports.emplace_back(import_desc); // emplace_back faster than push_back

return imports;
}

4
Reversing / 4 Line PE-Header Eraser
« on: May 26, 2018, 06:24:15 pm »
Code: [Select]
ULONG old = NULL;
char *BaseAddr = (char*)GetModuleHandleA(NULL);
auto base = reinterpret_cast<uintptr_t>(LI_FIND(LoadLibraryA)("Kernel32.dll"));
LI_GET(base, VirtualProtect)(BaseAddr , 4096, PAGE_READWRITE, &old);
RtlSecureZeroMemory(BaseAddr , 4096);

LI_FIND/LI_GET are Lazy Importer functions.

5
they mostly use smod/glua scripts to detect for changed values, perfect bhops, patched functions etc, etc.

6
Public Discussion / Re: Worst Hack Menus Ever
« on: May 26, 2018, 06:07:23 pm »

Pages: 1


Total Members


  • Youtube Youtube
  • Facebook Facebook
  • Twitter Twitter
  • Steam Steam

  • Powered by SMF | SMF © 2018, Simple Machines

    2018 BigPackets. All rights reserved. All other trademarks, logos and copyrights are the property of their respective owners. This site is not associated with any company in any way.