A Development Site for Reverse Engineering - A Development Site for Reverse Engineering

Section Widget
Staff Update

Server Update

Website Update

Reverse Engineering

Game News

Programming

Developer Tools

Anti Cheat

Development

Hack Methods
Category Widget (bottom-up)
Recent Article Comments Widget

This was just the first thing that popped into my head. After working on the manual mapping stuff,...

How to Grab Source Engine Interfaces Externally
syntroniks on 09-02-2010

Tbh I was wondering why he didn't do a LoadLibrary either, I assumed he had some reason for it...

How to Grab Source Engine Interfaces Externally
Chazwazza on 09-02-2010

You are right. This was a serious memory leak i built into 0.9. I changed some little things before...

HookShark Beta 0.9 (With a Vengeance)
DeepblueSea on 09-02-2010

This does not seem to be the behavior i'm witnessing though DBS. I scan different processes ( 3 to...

HookShark Beta 0.9 (With a Vengeance)
MiDoX on 09-02-2010

He should skip all that crap and just do a straight LoadLibrary.

or read client.dll EAT for...

How to Grab Source Engine Interfaces Externally
wav on 09-02-2010

GameDeception
HookShark Beta 0.9 (With a Vengeance)
by
DeepblueSea

View Profile

View Forum Posts

View Blog Entries

Visit Homepage

View Articles

Published on 09-01-2010 01:52 PM
Categories:

Utility

Assembly

Dissasembly

Detection Methods
It has been one month only, and here i come with another big update.
And yes, it's worth it.

I am doing a quick overview of what has changed.

I am introducing the first tool that detects Hooks of VTables.
It does so by tracing certain assembly patterns and relocated blocks in the data section, that might be a table of virtual method-pointers.

If you set the verbosity high HookShark will also list all changed relocated ...

Read More 6 Comments
How to Grab Source Engine Interfaces Externally
by
syntroniks

View Profile

View Forum Posts

View Blog Entries

View Articles

Published on 09-01-2010 10:28 AM
Categories:

C++

Utility
What it be:
Take in a string with the interface version

Locate that string

Locate references to that string

Offset and dereference for the interface

Example:

PHP Code:

//Fill out client.dll's ME32 profile so we can get at its base address and size MODULEENTRY32 clientme = GetModuleStats("client.dll", processHandle, false); //Allocate space for a whole client module PDWORD clientmodule = (PDWORD)malloc(clientme.modBaseSize);

...
Read More 5 Comments
[QuakeLive] modded Pakscape
by
learn_more

View Profile

View Forum Posts

View Blog Entries

View Articles

Published on 09-01-2010 08:35 AM
Categories:

Utility

Decryption
PakScape 0.11
Copyright © 1999-2000 Peter Engström

Modified by learn_more to read and write Quake live 'encrypted' PK3 files.
To save an encrypted QuakeLive pk3, simply tick the box 'Encrypt' in the save dialog.
The so called 'EncryptedFileIO' simply xor's the pk3 file with an 1024 byte key.
In the current version (0.1.0.382) this can be found at quakelive.dll + 0x734C78 (dump is in attached ql_key.h)

If you want to use ...

Read More 1 Comment
DrvMon
by
Fyyre

View Profile

View Forum Posts

View Blog Entries

Visit Homepage

View Articles

Published on 08-31-2010 01:32 AM
Categories:

Utility
DrvMon v1.0
by Fyyre & EP_X0FF

DrvMon tool monitors the system for new drivers and saves them to a directory of your choice.

We created this to make easy saving drivers from certain types of rootkit malware, which erase the driver immediately after loading.

This is accomplished by use of PsSetLoadImageNotifyRoutine and handler routine.

No driver escapes =)

Enjoy

p.s. x64 version ...

Read More 11 Comments
Connectivity Problems
by
Absolution

View Profile

View Forum Posts

View Blog Entries

Visit Homepage

View Articles

Published on 08-24-2010 04:56 PM
I’m having some problems with the GD’s router. There may be intermittent downtime throughout the day. You’ve probably noticed it over the last couple of days. Microsoft recently published an update to some of the software used and this may have resolved the issue. ...

Read More 1 Comment
HookShark BETA 0.8
by
DeepblueSea

View Profile

View Forum Posts

View Blog Entries

Visit Homepage

View Articles

Published on 08-01-2010 07:21 PM
Categories:

Utility

Detection Methods

Anti-Injection
As everyone knows, i am a god damn lazy ass bitch. So there are still features i didn't complete. There are still issues with stability, compatability and performance.

But i thought i would give it another go for a BETA run to collect some feedback. Maybe some will motivate me to take this further. Like finally implementing the VTABLE Check.
This version is still a big and vast improvement of the old HookShark. And in addition it contains ModuleShark technology ...

Read More 30 Comments
MOHAA Basehook For AA/SH
by
eXoloon

View Profile

View Forum Posts

View Blog Entries

View Articles

Published on 07-15-2010 11:38 AM
Categories:

C++
Well hello guys here is my first public release. anyway, this is my first shot at debugging a game and finding the necesssary addresses so I can detour the proper functions. PROPS to okidoki for his MOHAA addresses because I was able to trace back from them... Debugging them in MOHAA and then again in the Medal of honor spearhead add-on. I hope this can help anyone in anyway. I know all of the intelligent post at GD have really helped me learn the fundamentals of game-hacking ...

Read More 1 Comment
Aequitas Hardware & Mac Hash Spoofer
by
Organner

View Profile

View Forum Posts

View Blog Entries

Visit Homepage

View Articles

Published on 06-11-2010 12:39 AM
Categories:

Aequitas

Spoofing
In this short tutorial i will show you how to spoof Aequitas Hardware Hash & Mac hash. Both hashes are used to recognize previously banned cheaters from ESL league. This method is going to work as long as Aequitas is developed in Visual Basic language. Rumors says that next version - Aequitas 2.0 - is going to be a pure C/C++ tool.

What are we going to do is basically hook a function which compresses data before its send to ESL server.

All data ...

Read More 21 Comments
How to Bypass EasyAntiCheat
by
Organner

View Profile

View Forum Posts

View Blog Entries

Visit Homepage

View Articles

Published on 06-08-2010 02:55 PM
Categories:

ESEA
In this short tutorial i will show you how to bypass newest version of EasyAntiCheat.

There were a lot of rumors saying that this software is a beast, many Europeans league believe this and replaced their current anticheats with EasyAntiCheat.
I must say i was one of the people who believe in that story so i always kept in my mind that bypassing EAC3 is a big task and delayed the project until i found enough time.
I did only investigate parts which ...

Read More 17 Comments
How to Bypass ESEA
by
Organner

View Profile

View Forum Posts

View Blog Entries

Visit Homepage

View Articles

Published on 06-08-2010 02:30 PM
Categories:

ESEA
This is another thread from the series "how to bypass ....". Today we will review ESEA Client and their security. I won't give out any code, only some theoretical knowledge which should be enough for you to accomplish a working bypass. ESEA is the biggest American league, this is the reason why they have one of the best anti-cheats out there. There is a lot of the money on the stake ( ~100k USD per month ? ) so they will even commit a murder on you if its going to stop ...

Read More 9 Comments
Advanced VMT Hooking
by
Casual_Hacker

View Profile

View Forum Posts

View Blog Entries

View Articles

Published on 05-11-2010 01:08 PM
Categories:

Library
Alright, this small release definitely needs some explanation.
Everything here probably only applies to the microsoft C++ compiler but eh...
The example code also assumes that the toolkit namespace is brought into the global namespace.

One of the major problems I have with hooking is that you need to make your hook object global if you want to access it once your hook is called.

Most of the time this isn't necessary, but consider this ...

Read More 8 Comments
Game Deception Utilities, Static Library
by
Azorbix

View Profile

View Forum Posts

View Blog Entries

Visit Homepage

View Articles

Published on 05-01-2010 01:22 PM
Categories:

Class

C++

Library

Utility

Model Recognition
Game Deception Utilities, static library

The purpose of this thread is to accumulate a library of useful utility type functions that is applicable to many different types of projects.

The utilities should not be specific to any game and / or technology, and should be as generic as possible.

When we have enough utility type functions / classes, I will generate a visual studio project static library that everyone can use in their projects. ...

Read More 8 Comments
Page 1 of 2 1 2 Last
- Jump to page:

IRC

Server: irc.rizon.net
Channel: #game-deception
Hosted Sites

boecke
osGb
ozzeh
tamimego
patchLib

Link Us!
Recent Articles
HookShark Beta 0.9 (With a Vengeance)

It has been one month only, and here i come with another big update.
And yes, it's worth it.

I am doing a quick overview of what has changed.

I am introducing the first tool that detects Hooks of VTables.
It does so by tracing certain assembly patterns and relocated blocks in the data section, that might be a table of virtual method-pointers.

If you set the verbosity high HookShark will also list all changed relocated

Categories: Utility Assembly Dissasembly Detection Methods

DeepblueSea 09-01-2010
How to Grab Source Engine Interfaces Externally

What it be:
Take in a string with the interface version

Locate that string

Locate references to that string

Offset and dereference for the interface

Example:

PHP Code:

//Fill out client.dll's ME32 profile so we can get at its base address and size MODULEENTRY32 clientme = GetModuleStats("client.dll", processHandle, false); //Allocate space for a whole client module PDWORD clientmodule = (PDWORD)malloc(clientme.modBaseSize);

Categories: C++ Utility

syntroniks 09-01-2010
[QuakeLive] modded Pakscape

PakScape 0.11
Copyright © 1999-2000 Peter Engström

Modified by learn_more to read and write Quake live 'encrypted' PK3 files.
To save an encrypted QuakeLive pk3, simply tick the box 'Encrypt' in the save dialog.
The so called 'EncryptedFileIO' simply xor's the pk3 file with an 1024 byte key.
In the current version (0.1.0.382) this can be found at quakelive.dll + 0x734C78 (dump is in attached ql_key.h)

If you want to use

Categories: Utility Decryption

learn_more 09-01-2010

DrvMon

DrvMon v1.0
by Fyyre & EP_X0FF

DrvMon tool monitors the system for new drivers and saves them to a directory of your choice.

We created this to make easy saving drivers from certain types of rootkit malware, which erase the driver immediately after loading.

This is accomplished by use of PsSetLoadImageNotifyRoutine and handler routine.

No driver escapes =)

Enjoy

p.s. x64 version

Categories: Utility

Fyyre 08-31-2010

Section Widget

Category Widget (bottom-up)

Recent Article Comments Widget

GameDeception

IRC

Hosted Sites

Recent Articles