Welcome!

Join our community of MMO enthusiasts and game developers! By registering, you'll gain access to discussions on the latest developments in MMO server files and collaborate with like-minded individuals. Join us today and unlock the potential of MMO server development!

Join Today!

Using a Code Cave to load your .DLL

Experienced Elementalist
Joined
Mar 23, 2009
Messages
239
Reaction score
17
Credits to Skilinium for his tutorial, me for doing it with crappy game like Gunz.

Code:
ZPostShot: 0047DF30
Original JMP: 0047FD9C
Code-Cave Address: 005E5F64

Code-Cave:
ASCII: protection.dll
PUSH 005E5F64
CALL LoadLibraryA
JMP 0047DF30

Steps:
1) Go to 0047FD9C change "JMP 0047DF30" to "JMP 005E5F64"
2) Go to 005E5F64 and do this:

Right CLick - > Binary - > Edit change ASCII to name of .DLL
Line under that, PUSH the address
Line under that call LoadLibraryA
Line under that JMP ZPostShot (0047DF30)

So your codecave looks like this:

005E5F65   . 70 72 6F 74 65>ASCII "protection.dll",0
005E5F74     68 645F5E00    PUSH theduel.005E5F64
005E5F79     E8 FDBD217C    CALL kernel32.LoadLibraryA
005E5F7E    ^E9 AD7FE9FF    JMP theduel.0047DF30

Don't get angry that I used a ZPostShot address I was in a hurry to write this before I went to sleep... :3 ^ not tested, but it should work.
 
Skilled Illusionist
Joined
Dec 18, 2009
Messages
300
Reaction score
82
Already saw something like this, but thanks.
 
Elite Diviner
Joined
Apr 23, 2006
Messages
415
Reaction score
45
What about doing it at the entrypoint? That way it would be called dozens and dozens of times (when ZPostShot is called)
 
Back
Top