Results 1 to 1 of 1
  1. #1
    Vitrix Maggot
    Vitrix Maggot is offline
    Member-in-training Vitrix Maggot's Avatar
    Join Date
    2013 Apr
    Location
    Brasil
    Posts
    58
    Thanks Thanks Given 
    0
    Thanks Thanks Received 
    43
    Thanked in
    24 Posts
    Rep Power
    0

    Burlando Xtrap (Source) Parte 1

    I see and admire the people who have been doing hacks, and the methods you have used before in use, changing only
    bypass modes of strings detected by X-TRAP (in my case was GameGuard).
    Today I will show you the first codes we used.

    Writing in memory:

    First you can use these codes both in a DLL or EXE in proprio. (no need to inject a dll).

    ~ ~ Declare variables:

    Var
    Pid: Integer;
    Pidhandle: integer;
    I will explain one by one

    Pid The process ID that is required to write to memory
    Pidhandle Kinda the same thing, but a little different: P


    At this time, the value is 0 because we are not using them.

    ~ ~ Create a constant

    Const
    process = 'PRocess.exe'
    Ready now the system already knows where vai happen editions of memory.

    Finding the PID of the program:

    function GetID(Const ExeFileName: string; var ProcessId: integer): boolean;
    var
    ContinueLoop: BOOL;
    FSnapshotHandle: THandle;
    FProcessEntry32: TProcessEntry32;
    begin
    result := false;
    FSnapshotHandle := CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0);
    FProcessEntry32.dwSize := Sizeof(FProcessEntry32);
    ContinueLoop := Process32First(FSnapshotHandle, FProcessEntry32);
    while integer(ContinueLoop) <> 0 do begin
    if (StrIComp(PChar(ExtractFileName(FProcessEntry32.sz ExeFile)), PChar(ExeFileName)) = 0)
    or (StrIComp(FProcessEntry32.szExeFile, PChar(ExeFileName)) = 0) then begin
    ProcessId:= FProcessEntry32.th32ProcessID;
    result := true;
    break;
    Now pay attention primarily on this line

    function GetID(Const ExeFileName: string; var ProcessId: integer): boolean;
    This is the function works as follows, program name and PID variable you declared.
    Let's now create a button that makes it

    procedure TForm1.Button1Click(Sender: TObject);
    begin
    if GetID(process, Pid) then
    Showmessage(IntToStr(Pid));
    Now you have your function GetID!

    ~ ~ Writing in memory

    WriteProcessMemory(Pidhandle, Pointer(Address), @NewValue, Data, Written);
    The WPM needs are Process Handle, Address, New Value, Value / address (forgot OO) and Written. Type this:

    Var
    Address: Cardinal
    NewValue: Integer;
    Data: Integer;
    Written: Cardinal
    Remember

    byte = 1 byte
    word = 2 bytes
    cardinal = 4 bytes
    Hitherto ta easy but how do we get the PIDHANDLE?

    ~ ~ OpenProcess

    We will use OpenProcess () to get the PidHandle

    Pidhandle := OpenProcess(PROCESS_ALL_ACCESS,False,Pid);
    Code Complete

    Var
    Pid: Integer;
    Pidhandle: integer;
    Address: Cardinal
    NewValue: Integer;
    Data: Integer;
    Written: Cardinal;

    procedure TForm1.Button1Click(Sender: TObject);
    begin

    Address := $04000000;
    NewValue := 666;
    Data := 4;

    if GetID(process,Pid) then
    begin
    Pidhandle := OpenProcess(PROCESS_ALL_ACCESS,False,Pid);
    WriteProcessMemory(Pidhandle, Pointer(Address), @NewValue, Data, Written);
    closehandle(Pidhandle);
    end else
    begin
    MessageDlg('Processo não encontrado!!!', mtwarning, [mbOK],0);
    end;
    Last edited by Vitrix Maggot; 2013-04-12 at 08:31 PM.
    I admire most other programmers not paid any dick!!

    Admiro outros Programadores mais nao pago pau pra nenhum !!


    Skype: Vitor Monteiro

Similar Threads

  1. Replies: 4
    Last Post: 2015-12-03, 09:56 AM
  2. [C++] Source Bypass Xtrap (para estudos)
    By Vitrix Maggot in forum C/C++
    Replies: 13
    Last Post: 2014-05-17, 10:17 PM
  3. [Delphi] Source Bypass Xtrap (para estudos)
    By Vitrix Maggot in forum Delphi
    Replies: 9
    Last Post: 2014-02-22, 08:36 PM
  4. [Tutorial] Como Traduzir Parte de outros Aikas Para AIKA Br
    By Dinamiter in forum Português
    Replies: 4
    Last Post: 2013-07-24, 04:54 AM
  5. [Help] How to kill Xtrap ? / Como aniquilar Xtrap ?
    By JhonnySalles in forum Aika Online
    Replies: 6
    Last Post: 2012-07-25, 03:55 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •