NOTE: ONLY POST IN THIS THREAD WITH A SOURCE CODE

no spam

Post the sources of hacking tools you have here
Hacking Tools like...
Cheat Engine

Others may be able to make it bypasses the newest version of nProtect GameGuard.

Before you post, you must get permission from the author of the maker.

Good job Tan :)

MZBot.dll Source Code;

Credits to Zuan

.386
.model flat, stdcall
option casemap:none

include windows.inc
include kernel32.inc
includelib kernel32.lib


.DATA
varSSID dd 0
sDeviceName db 92, 92, 46, 92, 116, 111, 66, 122, 77, 0 ; //./toBzM
buffDrvOutput dq 0

.CODE
start:
LibMain proc hInstDLL:DWORD, reason:DWORD, unused:DWORD
mov varSSID, 0
.if reason == DLL_PROCESS_ATTACH

.elseif reason == DLL_PROCESS_DETACH

.elseif reason == DLL_THREAD_ATTACH

.elseif reason == DLL_THREAD_DETACH

.endif

mov eax, 1
ret

LibMain endp

InitMzBot proc
; Open File it
push 0
push 0
push 3 ; OPEN_EXISTING
push 0
push 3 ; FILE_SHARE_READ | FILE_SHARE_WRITE,
push 0C0000000h ; GENERIC_READ | GENERIC_WRITE
push OFFSET sDeviceName
call CreateFile
cmp eax, 0FFFFFFFFh ; INVALID_HANDLE_VALUE
jne ContactDriver1

; Oh sh*t? A funny error occurred!
mov eax, -1
ret
ContactDriver1:
; So we got it?
push eax ; Backup the handle as usual

; Time to IOCTL it!
push 0 ; Reserve 4 byte for the OutputSize
mov ebx, esp ; Yes, I have a habit of using random registers.. erm... not eax and not ecx...

; Call IOCTL
push 0
push ebx
push 8 ; QWord, remember?
push OFFSET buffDrvOutput; The content?
push 0 ; No, there is ~~
push 0 ; no input data!
push 0A9002A40h ; #define IOCTL_GET_STARTING_SERVICEID CTL_CODE(0xA900, 0x0A90, METHOD_BUFFERED, FILE_ANY_ACCESS)
push eax
call DeviceIoControl
cmp eax, 0
jne ContactDriver2

; Screw it, another error!
add esp, 4 ; Clean off the OutputSize as well!
call CloseHandle ; Backup.. backup...
mov eax, -2
ret

ContactDriver2:
add esp, 4
call CloseHandle
mov eax, OFFSET buffDrvOutput ; **** it! Who cares if it is a QWord or DWord?! As far as I see, it won't be zero
mov eax, [eax]
add eax, 01000h
mov varSSID, eax ; Set varSSID as well...
ret
InitMzBot endp

AltSendInput proc
mov eax, varSSID
cmp eax, 0
je Alt_SendInput_Err
call IntCallGate

ret 0Ch

Alt_SendInput_Err:
mov eax, -1
ret 0Ch

IntCallGate:
; Erm.. no, they won't be dumb enough to detect this!
mov edx, esp
db 00Fh
db 034h ; Yeah, sysenter
ret
AltSendInput endp

end start


2. Clarification on what this API is all about.
What this API would allow you to do:
I. Provide unhooked access to SendInput()
II. Bypass ACTool
III. Allow you to make your own bot
What this API is not, and will not do for you:
I. Minimized botting.
II. Driver source code to MzBot2

Collection of e-books and other stuff all related to coding;

Developer (http://rapidshare.com/users/Z5V1C4)

Here is the old Akuma Engine, I am putting it out here because someone might be able to decompile it or use ollydbg to make it bypass the current gg rev.

link (http://www.mpcforum.com/attachment.php?attachmentid=19557&d=1170392060)

I already uploaded this file at the beginning of February.

Here's the download link: link (http://www.mpcforum.com/attachment.php?attachmentid=19557&d=1170392060)

Source code for Cheat Engine v5.4. About 11 megs.
Download (http://rapidshare.com/files/82934853/Cheat_Engine_v5.4_Source.rar)
Mirror (http://www.mediafire.com/download.php?6weddnmw1jd)


Links approved - scruie

I already uploaded this file at the beginning of February.

Here's the download link: link (http://www.mpcforum.com/attachment.php?attachmentid=19557&d=1170392060)

A trojan? What is this?!

LOL? That's not a trojan... it's the source of cheatengine he had posted.

Err... I was told to post this here. I'm trying to get PMX. dll / hookhop.dll to support Arrow keys (I can do mouse clicks & everything else, but I cannot "hold down" any button, nor can I do arrow keys.)

My code: (it's a strange language, its easy to read code.)

void click() {
hookhop.hhPostMessageA(handle,WM_LBUTTONDOWN,null, 0x10000);
sleep(5);
hookhop.hhPostMessageA(handle,WM_LBUTTONUP,null,0x 10000);
}


void SendKey(int vKey, boolean Down){
int ScanCode = user32.MapVirtualKey(vKey, 0);
int lParam = (ScanCode << 16) + 1;
if (!Down) {
lParam |= 0xC0000000;
}
int Action = Down?WM_KEYDOWN:WM_KEYUP;
hookhop.hhPostMessageA(handle,Action,vKey,lParam);
}


WORKS FOR:

Click (up & down)
Most key presses (any letter keys & ins > pdn)

DOES NOT DO:

Holding down of keys: I have to spam a press down to get it to stick <_<
Arrow keys! Without this, I'm stuck!

http://msdn2.microsoft.com/en-us/library/ms646280.aspx

Well, by triggering bit 24, I can now jump with alt. (but that wasn't a problem, I could just remap the jump button.)

Also, sending WM_SYSKEYDOWN instead of just WM_KEYDOWN works as well, but no better.

I... still haven't been able to get arrow keys to work, or any other key to hold down... *sighs*... There just has to be something really weird going on.

I tried using KeyTweak to map the b key to left arrow, and it works for keypresses manually, but send input VK_b was indeed sending VK_LEFT's scancode, but it then didn't work any better.

I've heard there's an underground for keyboard drivers: my em ail is in my profile.

http://www.gamecheetah.com/showthread.php?t=52393

Done in Delphi. I think you can translate it.

Scroll down a bit to get info on how to auto loot which would be related to what you are attempting...

Thx Tan for info

Source Code
Name : GameResistance v2.09
Format: C++

:dead:

good ....
thread its very helpful once
thank all

hi. im sorta new at program hacking and i would like to know what are these programs and codes for and if som1 could help me figure out a problem that i have with imaxmacro 4.8 please and thank you.

Heres my Memory Hacking Module coded in Visual Basic.
Module Module1
Public Const PROCESS_ALL_ACCESS = &H1F0FFF
Dim f1holder As Integer
Dim timer_pos As Long
Dim hProcess As Long

Public Declare Function GetWindowThreadProcessId Lib "user32" (ByVal SomeValueIsStoredHere As Long, ByVal lpdwProcessId As Long) As Long
Public Declare Function OpenProcess Lib "kernel32" (ByVal dwDesiredAccess As Long, ByVal bInheritHandle As Long, ByVal dwProcessId As Long) As Long
Public Declare Function WriteProcessMemory Lib "kernel32" (ByVal hProcess As Long, ByVal lpBaseAddress As Object, ByVal lpBuffer As Object, ByVal nSize As Long, ByVal lpNumberOfBytesWritten As Long) As Long
Public Declare Function CloseHandle Lib "kernel32" (ByVal hObject As Long) As Long
Public Declare Function FindWindow Lib "user32" Alias "FindWindowA" (ByVal Classname As String, ByVal WindowName As String) As Long
Public Declare Function GetKeyPress Lib "user32" Alias "GetAsyncKeyState" (ByVal key As Long) As Integer
Public Declare Function ReadProcessMem Lib "kernel32" Alias "ReadProcessMemory" (ByVal hProcess As Long, ByVal lpBaseAddress As Object, ByRef lpBuffer As Object, ByVal nSize As Long, ByVal lpNumberOfBytesWritten As Long) As Long

Public Function WriteALong(ByVal TheGame As String, ByVal TheAddress As Long, ByVal ThisIsTheValue As Long)
Dim SomeValueIsStoredHere As Long
Dim SomeValueIsStoredHereToo As Long
Dim SomeValue As Long
SomeValueIsStoredHere = FindWindow(vbNullString, TheGame)
GetWindowThreadProcessId(SomeValueIsStoredHere, SomeValueIsStoredHereToo)
SomeValue = OpenProcess(PROCESS_ALL_ACCESS, False, SomeValueIsStoredHereToo)
If (SomeValue = 0) Then
Exit Function
End If
WriteProcessMemory(SomeValue, TheAddress, ThisIsTheValue, 4, 0&)
CloseHandle(hProcess)
End Function

Public Function ReadALong(ByVal TheGame As String, ByVal TheAddress As Long, ByVal TheValue As Long)
Dim SomeValueIsStoredHere As Long
Dim SomeValueIsStoredHereToo As Long
Dim SomeValue As Long
SomeValueIsStoredHere = FindWindow(vbNullString, TheGame)
GetWindowThreadProcessId(SomeValueIsStoredHere, SomeValueIsStoredHereToo)
SomeValue = OpenProcess(PROCESS_ALL_ACCESS, False, SomeValueIsStoredHereToo)
If (SomeValue = 0) Then
Exit Function
End If
ReadProcessMem(SomeValue, TheAddress, TheValue, 4, 0&)
CloseHandle(hProcess)
End Function



Public Function ReadAFloat(ByVal TheGame As String, ByVal TheAddress As Long, ByVal TheValue As Single)
Dim SomeValueIsStoredHere As Long
Dim SomeValueIsStoredHereToo As Long
Dim SomeValue As Long
SomeValueIsStoredHere = FindWindow(vbNullString, TheGame)
GetWindowThreadProcessId(SomeValueIsStoredHere, SomeValueIsStoredHereToo)
SomeValue = OpenProcess(PROCESS_ALL_ACCESS, False, SomeValueIsStoredHereToo)
If (SomeValue = 0) Then
Exit Function
End If
ReadProcessMem(SomeValue, TheAddress, TheValue, 4, 0&)
CloseHandle(hProcess)
End Function



Public Function WriteAFloat(ByVal TheGame As String, ByVal TheAddress As Long, ByVal ThisIsTheValue As Single)
Dim SomeValueIsStoredHere As Long
Dim SomeValueIsStoredHereToo As Long
Dim SomeValue As Long
SomeValueIsStoredHere = FindWindow(vbNullString, TheGame)
GetWindowThreadProcessId(SomeValueIsStoredHere, SomeValueIsStoredHereToo)
SomeValue = OpenProcess(PROCESS_ALL_ACCESS, False, SomeValueIsStoredHereToo)
If (SomeValue = 0) Then
Exit Function
End If
WriteProcessMemory(SomeValue, TheAddress, ThisIsTheValue, 4, 0&)
CloseHandle(hProcess)
End Function
End Module

if you wanna make this work, Listen Up!

i'm going to explain this to you, very clearly. if you know what your doing this should be fairly easy.

Im going to hack that cheezy pinball game that comes with windows.

Example:
Private Sub Command1_Click()
Call WriteALong("3D Pinball for Windows, Space Cadet", &HA12EF4, 999999)
Call WriteALong("3D Pinball for Windows, Space Cadet", &HB8AEBA, 999999)
End Sub

"Call WriteALong" is the function to write a 'Long' variable. Basically, the example says in english: "On the program known as '3D Pinball for Windows, Space Cadet', go to address &HA12EF4 and change the value to 999999"

If you are hacking programs, you need to find the name of the program. "MapleStory" Works. It will change the values of the program known as "MapleStory". BE CAREFUL! it is cAse seNsiTive.

For the Address, It really depends on what the address is. The ones that im working with in the example are 00A12RF4 and 00B8AEBA. Using this module, you need to change the beginning of the address for it to know what to do. If the address has two 00's to begin with, then you must change them to &H. If there is just one 0, then change it to &. If the address doesnt begin with any 0's then you dont have to change anything.


Hope this Helped :)