Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


OpenProcess() Hooked

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine Source
View previous topic :: View next topic  
Author Message
Synapse
Advanced Cheater
Reputation: 0

Joined: 26 Oct 2005
Posts: 76
PostPosted: Mon Apr 24, 2006 4:46 pm    Post subject: OpenProcess() Hooked Reply with quote
I know CE has been able to fix this problem (by using the kernel somehow), so what would I do (in psuedo code) to be able to pass by a hook on OpenProcess() down to the SDT entry?

I tried SYSCALLing it, but unfortunately it seems the hooking service operates even beyond that - which is beyond my knowledge.

And the lack of nt kernel documenation is disheartening...
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 470

Joined: 09 May 2003
Posts: 25788
Location: The netherlands
PostPosted: Tue Apr 25, 2006 12:56 am    Post subject: Reply with quote
you could save the original address of ZwOpenProcess in the SDT and when you wsant to call ZwOpenProcess you qickly set it back, call it and then restore back to the original.

Another method would be using ObOpenObjectByPointer and open the process by using the peprocess

Also, even if openprocess fails ce can still read/write the memory (uses the peprocess, not a handle)
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
Synapse
Advanced Cheater
Reputation: 0

Joined: 26 Oct 2005
Posts: 76
PostPosted: Tue Apr 25, 2006 3:13 am    Post subject: Reply with quote
Interesting... Hmm - Thanks DB.

And #1 would probably work as the protection method I'm conquering I believe only sets it back after it's been called, and it "sees" that it's wrong (? lol).

And #2 might be a better option, of course if #1 fails ;P
Back to top
View user's profile Send private message
hack0r
How do I cheat?
Reputation: 0

Joined: 03 Sep 2007
Posts: 6
PostPosted: Wed Sep 05, 2007 11:10 pm    Post subject: Reply with quote
did u fix this problem? how?
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine Source All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites