gir489
29th June 2007, 03:25
I'm trying to nop anything with mov [edx], ecx
But the address of where IDA is finding it, always differes from where it is in the memory.
I know Half-life uses a DLL injection method, to load its game, and that also throws it off some.
But I found exactly what I want to nop.
.text:1001CE12 mov [edx], ecx
FUNCTION: sub_1001CCC0
START ADDRESS: .text:1001CCC0
END ADDRESS: .text:1001CE8C
How can I predict what address it's going to be stored at in the game? Thre is also 2 other instances of this mov [edx], ecx. It's for the appache, and something for a CThink function.
EDIT: Actually, how do I just nop anything with mov [edx],ecx? Because I see that different weapons have different ammo handeling systems.
I'd ask Kalvin, but he's not online.
But the address of where IDA is finding it, always differes from where it is in the memory.
I know Half-life uses a DLL injection method, to load its game, and that also throws it off some.
But I found exactly what I want to nop.
.text:1001CE12 mov [edx], ecx
FUNCTION: sub_1001CCC0
START ADDRESS: .text:1001CCC0
END ADDRESS: .text:1001CE8C
How can I predict what address it's going to be stored at in the game? Thre is also 2 other instances of this mov [edx], ecx. It's for the appache, and something for a CThink function.
EDIT: Actually, how do I just nop anything with mov [edx],ecx? Because I see that different weapons have different ammo handeling systems.
I'd ask Kalvin, but he's not online.