[Release] PS Get Dump

# Description:
program to dump for anti-cheat hack list.

# Functions:
- Detect EntryPoint,
- Detect 32 dump size,
- Detect program titul.

# ScreenShot:
http://img69.imageshack.us/img69/4347/principalff.jpg

# Credits:
PSLorde

# Download Link:
4Shared Mirror

look good thanks for share.

10+ Because I'm doing it hands and used 2-3 programms

can you share a code? for anti cheat?

Quote:

---

Originally Posted by royaljourney

can you share a code? for anti cheat?

---

use Search for find it, many people release it.

Sir can i request?

Proc DUmp of cmd.exe

i have here but the Dump all 00 . hehe


CMD


$4AD060DC = Entry

DUmp = 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

i dont know why all zero. . hehe

Quote:

---

Originally Posted by royaljourney

Sir can i request?

Proc DUmp of cmd.exe

i have here but the Dump all 00 . hehe


CMD


$4AD060DC = Entry

DUmp = 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

i dont know why all zero. . hehe

---

dont know why you have it....but for me cmd.exe:

Code:

---

EP:
$4AD05046

Dump:
6A 28 68 68 51 D0 4A E8 C8 C5 FF FF 33 FF 57 FF 15 1C 10 D0 4A 66 81 38 4D 5A 0F 85 F3 00 00 00

Titule:
H:\WINDOWS\system32\cmd.exe

---

p.s. my OS: WinXP Professional SP3

Quote:

---

Originally Posted by royaljourney

Sir can i request?

Proc DUmp of cmd.exe

i have here but the Dump all 00 . hehe


CMD


$4AD060DC = Entry

DUmp = 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

i dont know why all zero. . hehe

---

for me the same cmd 32 bits is like yours full with 00 WTF maybe it because we use win7 :huh:

My OS is Win7

as then dump a lead her to a form
example:

Quote:

---

{0x59F001, {0xE8, 0x00, 0x00, 0x00, 0x00, 0x5D, 0x50, 0x51, 0xEB, 0x0F, 0xB9, 0xEB, 0x0F, 0xB8, 0xEB, 0x07, 0xB9, 0xEB, 0x0F, 0x90, 0xEB, 0x08, 0xFD, 0xEB, 0x0B, 0xF2, 0xEB, 0xF5, 0xEB, 0xF6, 0xF2, 0xEB}}, // HahaMu 1.16

---

?

HexDump Util (work fine in Windows 7/XP/Vista)

- MultiUpload

Credits: GeniuS [3TecTeaM]

um.. very simply programm and kind a usefull xD never come to my mind, but with small changes my HE - Hook Engine can do same..

at EntryPoint is bad to take Signature xDDDDDDDDDDDD
what if cheat packed with protector / packer? tha shit will detect all programms who is detected for example with themida xDDDD

Code:

---

EP:
$4AD05046

Dump:
6A 28 68 68 51 D0 4A E8 C8 C5 FF FF 33 FF 57 FF 15 1C 10 D0 4A 66 81 38 4D 5A 0F 85 F3 00 00 00

Titule:
H:\WINDOWS\system32\cmd.exe

---

and this is even worst, looks like offset is out of user mode

Link?

re uplaud??

Reupload or any updated?

thanks