titomdma
Newbie cheater
![]() Reputation: 0
Joined: 14 Jul 2024
Posts: 12
|
 Posted: Sun Aug 04, 2024 8:13 am Post subject: Possible data write protection |
 |
|
I think game have a write protection because I edited expirience level value +1000, but when gamee add points after an event, value = old value + events point only.
Level experience address 0x205B72B3450
7FF6ECFE0FFA - 8B 86 400A0000 - mov eax,[rsi+00000A40] <<
Functions that access just before & after game modify Level experience address .
FFFFF805505C9F94:
FFFFF805505C9F8D - 48 8B 74 24 30 - mov rsi,[rsp+30]
FFFFF805505C9F92 - 8B C8 - mov ecx,eax
FFFFF805505C9F94 - F3 A4 - repe movsb <<
FFFFF805505C9F96 - C7 44 24 20 00000000 - mov [rsp+20],00000000
FFFFF805505C9F9E - EB 3D - jmp FFFFF805505C9FDD
RAX=0000000000000004
RBX=0000000000000002
RCX=0000000000000001
RDX=0000000000000000
RSI=00000205B72B3453
RDI=FFFFC38DACFD6183
RSP=FFFFB00E914FF360
RBP=FFFFC38DA7946700
RIP=FFFFF805505C9F94
R8=FFFFC38DA7334000
R9=0000000000000000
R10=FFFFFFFFFFFFFFFF
R11=FFFF727E80400000
R12=0000000000000000
R13=FFFFC38DA73D8E10
R14=0000000000000000
R15=00000000000000
sgfx_desktop.x64_release_final.exe+2069353:
7FF6EC9C9353 - D8 01 - fadd dword ptr [rcx] <<
RAX=0000000000387390
RBX=00000000003877AA
RCX=00000205B72B2A10
RDX=00000000003877AA
RSI=00000205B72B2A10
RDI=00000205B72B2A10
RSP=0000004075FFE810
RBP=0000004075FFE890
RIP=00007FF6EC9C9353
R8=0000000000002710
R9=0000020531B0AF98
R10=0000020317FC3BCA
R11=0000004075FFE870
R12=0000020531A85748
R13=0000020531A85740
R14=00000204AC5A0500
R15=00000205B7E13790
sgfx_desktop.x64_release_final.exe+2680FFA:
7FF6ECFE0FF2 - E8 4D2FB6FD - call sgfx_desktop.x64_release_final.exe+1E3F44
7FF6ECFE0FF7 - 89 45 E8 - mov [rbp-18],eax
7FF6ECFE0FFA - 8B 86 400A0000 - mov eax,[rsi+00000A40] <<
7FF6ECFE1000 - 89 45 EC - mov [rbp-14],eax
7FF6ECFE1003 - 48 8D 55 E0 - lea rdx,[rbp-20]
RAX=00000000003877AA
RBX=00000205B7AE0800
RCX=00000205B72B2F00
RDX=0000000000000000
RSI=00000205B72B2A10
RDI=000000000000041A
RSP=0000004075FFE840
RBP=0000004075FFE890
RIP=00007FF6ECFE0FFA
R8=0000000000002710
R9=0000020531B0AF98
R10=0000020317FC3BCA
R11=0000004075FFE870
R12=0000020531A85748
R13=0000020531A85740
R14=00000204AC5A0500
R15=00000205B7E13790
sgfx_desktop.x64_release_final.exe+2069353:
7FF6EC9C9353 - D8 01 - fadd dword ptr [rcx] <<
RAX=00000000003877AA
RBX=00000000003877AA
RCX=00000205B72B2A10
RDX=00000000003877AA
RSI=00000205B72B2A10
RDI=00000205B72B2A10
RSP=0000004075FFED30
RBP=00000204AC5A0500
RIP=00007FF6EC9C9353
R8=0000000000002710
R9=0000020531B0AF98
R10=00000205B7BDDC80
R11=00000205B7E33858
R12=0000020531A85700
R13=0000000000000000
R14=00000204AC5A0590
R15=00000204AC5A0590
FFFFF805505C9F94:
FFFFF805505C9F8D - 48 8B 74 24 30 - mov rsi,[rsp+30]
FFFFF805505C9F92 - 8B C8 - mov ecx,eax
FFFFF805505C9F94 - F3 A4 - repe movsb <<
FFFFF805505C9F96 - C7 44 24 20 00000000 - mov [rsp+20],00000000
FFFFF805505C9F9E - EB 3D - jmp FFFFF805505C9FDD
RAX=0000000000000004
RBX=0000000000000002
RCX=0000000000000004
RDX=0000000000000000
RSI=00000205B72B3450
RDI=FFFFC38D9F6B7700
RSP=FFFFB00E9158F360
RBP=FFFFC38DA7946700
RIP=FFFFF805505C9F94
R8=FFFFC38DA7334000
R9=0000000000000000
R10=FFFFFFFFFFFFFFFF
R11=FFFF727E80400000
R12=0000000000000000
R13=FFFFC38DA73D8E10
R14=0000000000000000
R15=0000000000000000
Is it possible bypass protection or is server-side?
Thanks so much in advance
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
