Since i'm trying to learn a bit of C++ and ASM I need some help...
I'm looking for some adresses but I can't find the right ones =[
I've been looking for like 2 hours for a tutorial at google, but when I folow them I always get lost =S
So my Request:
Can someone make a tutorial about how to find adresses in a runnable ?
Last edited by Trilest; 01-05-09 at 10:42 AM.
Bump plox <3
Bump.... I need this =[
Well you should start by looking for some basic RE tutorials.
RE tutorial ;O ?Originally Posted by PaulBub
Cerealnp gave me the right adress of ZChatOutput, and when I looked at that adress I was like wth ;P
I always look through the ASM code, see what it does, then I see a CALL with some arguments, and mostly I know exactly what function it is, simply because it has ASCII strings, or anything similar to that.
Anyway, you could try GunzOld.
That seems like a very inefficient method for finding a particular address.
Do you suggest anything better?
I do like Wiz, I do it the same way as in making cracks, I reverse code step by step and figure out how things are working.
Yeah but like this adress:
0042A230 from ZChatOutput
I would never find that adress with looking throught the asm code no asci strings or something.
all it said is call 0042ABCE0 =S
If you're just interested in Gunz, just grab a hold on GunzOld and compare code at the address it gives and find that chunk of code in your current client. Basically comparing code to find the new address.
If you're interested in more than just Gunz, you need to trace through the program execution or have a PDB file handy.
Nabs these days Q__Q
Code:Pointers/etc... --------------- pGame : 0x00672F68 Functions --------- ZGetGame : 0x004ABDD0 ZGetGameClient : 0x004ABCC0 ZGetGameInterface : 0x004ABCE0 ZChatOutput : 0x0042A230 ZPostCreateMyChar : 0x00448730 ZPostPeerChat : 0x004297F0 ZPostSkill : 0x0047DDA6 ZPostShot : 0x0047DF30 ZPostShotSp : 0x00475C80 ZPostShotMelee : 0x0047E020 ZPostReload : 0x00432590 ZPostRequestSpawnWorldItem : 0x004B4646 ZPostStageTeam : 0x00448480 ZPostStageCreate : 0x00448230 ZPostStageChat : 0x00417F80 ZPostStageState : 0x00433310 ZPostStageMap : 0x004483A0 ZPostStageEnterBattle : 0x004A05C0 ZPostStageLeaveBattle : 0x00433480 ZPostChannelChat : 0x004298D0 ZPostWhisper : 0x0042A9D0 ZPostWhere : 0x00424560 ZPostDash : 0x0047C6F0 ZPostChangeWeapon : 0x004330A0 ZPostDie : 0x004A0400 ZPostGameKill : 0x004A07E0 ZPostSpMotion : 0x004A0350 ZPostRequestSpawn : 0x004B26C0 ZPostChatRoomCreate : 0x0042BF40 ZPostInviteChatRoom : 0x0042ACA0 ZPostChatRoomLeave : 0x0042AB70 ZPostRequestExpelClanMember : 0x00424F90 ZPostChannelRequestJoin : 0x004C4010 ZPostReaction : 0x0047E1D0 ZPostLadderRequestChallenge : 0x0042AAC0 ZPostRequestBuyQuestItem : 0x00433CB0 ZPostRequestBuyQuestItem : 0x00433CB0 ZPostRequestBuyQuestItem : 0x00433CB0 Questing Functions ----------------------- ZPostQuestRequestNPCDead : 0x0048A9E0 ZGetObjectManager : 0x0049E880 ZPostRequestBuyItem : 0x00433640 ZPostStageStart : 0x00448E30 ZPostRequestBuyQuestItem : 0x00433CB0 ZPostQuestReadyToNewSector : 0x0045D830 ZPostRequestDropSacrificeItem : 0x00457EF0 ZObjectManager::GetObjectA : 0x00000000 ZObjectManager::GetNPCObject : 0x00000000 ZharacterRevival : 0x00476C2F ZCharacterManager Class ----------------------- ZGetCharacterManager : 0x0049E870 ZCharacterManager::Find : 0x00000000 ZCharacter Class ---------------- ZCharacter::PositionEncrypter : 0x00402BA0 ZCharacter::Die : 0x00473770 ZCharacter::SetHP : 0x00473750 ZCharacter::SetAP : 0x00473760 ZCharacter::GetHP : 0x00473730 ZCharacter::GetAP : 0x00473740 ZCharacter::InitHPAP : 0x00474950 ZCharacter::LevelUp : 0x00473970 ZCharacter::LevelDown : 0x00473980 ZCharacter::SetDirection : 0x00473780 ZCharacter::InitProperties : 0x00474B70 ZCharacter::IsAdminName : 0x00473920 ZCharacter::ActDead : 0x00477530 ZCharacter::UpdateSpWeapon : 0x004761A0 ZCharacter::Destroy : 0x004750A0 ZCharacter::InitRound : 0x00475250 ZCharacter::InitBullet : 0x00000000 ZCharacter::IsAttackable : 0x004739E0 ZMyCharacter::InitBullet : 0x0047D890 ZModuleHPAP Class ----------------------- ZModuleHPAP::SetHP : 0x00485D50 ZModuleHPAP::SetAP : 0x00485D50 ZApplication Class ----------------------- ZApplication::GetGameInterface: 0x004970C0 ZApplication::GetGame : 0x00430730 ZApplication::GetGameClient : 0x00497570 ZChat Class ----------------------- ZChat::Input : 0x0042A300 ZCombatInterface Class ---------------------- ZGetCombatInterface : 0x004ABD70 ZCombatInterface::GetTargetUID: 0x00402A30 Possibly useful information --------------------------- Last Attacker Offsets: MOV EAX, DWORD PTR DS:[ZChar+0x32C] MOV EAX, DWORD PTR DS:[EAX+0x20] ZName offset: MOV EAX, DWORD PTR DS:[ZChar+0x3D8]
But some people prefer doing things themselves instead of leeching.
Cough.
where is this leeched from ;)
Wow bounty first time i'm loving ur post =P
Thanks very much <3
To find ZChatOutput I would have opened gunz in olly launched it (must be windowed), got in game, then i would have open a chat box and type something in,I would have pause execution and set it to "return to user", then I wouldhave press enter and olly would have popped up to the last line of code executed and I would have see wich call it was.
What are the addresses which you are searching for?
Well bounty gave me already a full list so none atm =P
But still i would like to know how to find it cuz i h8 leeching... I prefer doing everything by my own if you understand....
You look the same as Testing NLG :S
and i onl helped u coz u were being a nab ... and not using google Q_Q
I am testing >.<
And how about u read my text and read that I said that i've been looking for 2 hours at google but lost at all tuts...
Reply With Quote![[Help] Finding Adresses](http://ragezone.com/hyper728.png)