[Release] PS Get Dump

[Bason4ik]

# Description:
program to dump for anti-cheat hack list.

# Functions:
- Detect EntryPoint,
- Detect 32 dump size,
- Detect program titul.

# ScreenShot:

# Credits:
PSLorde

# Download Link:

You must be registered to see links

 

[BARAMOS]

look good thanks for share.

 

[1313]

10+ Because I'm doing it hands and used 2-3 programms

 

[royaljourney]

can you share a code? for anti cheat?

 

[Bason4ik]

can you share a code? for anti cheat?

use Search for find it, many people release it.

 

[royaljourney]

Sir can i request?

Proc DUmp of cmd.exe

i have here but the Dump all 00 . hehe


CMD


$4AD060DC = Entry

DUmp = 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

i dont know why all zero. . hehe

 

[Bason4ik]

Sir can i request?

Proc DUmp of cmd.exe

i have here but the Dump all 00 . hehe


CMD


$4AD060DC = Entry

DUmp = 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

i dont know why all zero. . hehe

dont know why you have it....but for me cmd.exe:

EP: 
$4AD05046

Dump: 
6A 28 68 68 51 D0 4A E8 C8 C5 FF FF 33 FF 57 FF 15 1C 10 D0 4A 66 81 38 4D 5A 0F 85 F3 00 00 00

Titule:
H:\WINDOWS\system32\cmd.exe

p.s. my OS: WinXP Professional SP3

 

[Bl4ck I0t4]

Sir can i request?

Proc DUmp of cmd.exe

i have here but the Dump all 00 . hehe


CMD


$4AD060DC = Entry

DUmp = 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

i dont know why all zero. . hehe

for me the same cmd 32 bits is like yours full with 00 WTF maybe it because we use win7 :huh:

 

[royaljourney]

My OS is Win7

 

[16bitBAZUKA]

as then dump a lead her to a form
example:

{0x59F001, {0xE8, 0x00, 0x00, 0x00, 0x00, 0x5D, 0x50, 0x51, 0xEB, 0x0F, 0xB9, 0xEB, 0x0F, 0xB8, 0xEB, 0x07, 0xB9, 0xEB, 0x0F, 0x90, 0xEB, 0x08, 0xFD, 0xEB, 0x0B, 0xF2, 0xEB, 0xF5, 0xEB, 0xF6, 0xF2, 0xEB}}, // HahaMu 1.16

?

 

[-=DarkSim=-]

HexDump Util (work fine in Windows 7/XP/Vista)

-

You must be registered to see links

Credits: GeniuS [3TecTeaM]

 

[mauka]

um.. very simply programm and kind a usefull xD never come to my mind, but with small changes my HE - Hook Engine can do same..

at EntryPoint is bad to take Signature xDDDDDDDDDDDD
what if cheat packed with protector / packer? tha poop will detect all programms who is detected for example with themida xDDDD

EP: 
$4AD05046

Dump: 
6A 28 68 68 51 D0 4A E8 C8 C5 FF FF 33 FF 57 FF 15 1C 10 D0 4A 66 81 38 4D 5A 0F 85 F3 00 00 00

Titule:
H:\WINDOWS\system32\cmd.exe

and this is even worst, looks like offset is out of user mode

 

[diadop]

Link?

 

[evilek91]

re uplaud??

 

[Maddox]

Reupload or any updated?

thanks

 

[douglasruiz]

i'll code this tool again and post here on the same topic

 

[Saige]

reupload? hmmm support muemu antihack?

 

[Odisk]

# Description:
program to dump for anti-cheat hack list.

# Functions:
- Detect EntryPoint,
- Detect 32 dump size,
- Detect program titul.

# ScreenShot:

# Credits:
PSLorde

# Download Link:

You must be registered to see links

Re upload please.

 

[leorond]

Does anyone have a download link for this file?

Please update the link.