Alright, first et me tell you all what my aspirations are.....I want to become a 1337 hacker and create my own undetectable hacks.....Next week ill be going to a C++/VB camp at Transilvania University in Lexington Ky and ill be studing the languages for propably all year.....I was wondering, can someone please take me under their wing and help me out with working with hacks?????I know all you guys out their had to be starting out like me once.....i do realize that im a newbie and you all are thinking how frustrating it will be but pls ill love to learn....i have a strong passion for counter-strike, i probably play at least 4-8 hrs a day....i have no life at all...

my second and topic part of my question is that ive been analyzing jools 1.11 and OGC official 9.01 src codes and cant figure out why jools 1.11 works but 9.01 doesn't....will someone pls tell me why and how i may be able to alter it....second part of my second question:.......does anyone know how VAC detects OGC.....i know ppl out there know b/c i was on a server and someone had a private OGC that bypassed VAC.....will someone be able to point me in a direction in making my own undetectable jools 1.11?

P.S. at the very least will someone pls point me in a right direction...:beard:

the problem is in the moduleC.dll wich checks the crc of hw.dll
client.dll usw and the export tables so it sees when u hook.
u have to either redirect it into another "clean" dll or
unload your hook everytime it scans.or patch the moduleC
but its kinda hard figuring it out...and u would have to reverse it
everytime a new one comes out.....

well first i want to make sure what question are you answering.....you mentioned redirecting so i assume you are answering why jools 1.11 works and OGC doesnt because jools 1.11 has redirectfunction.h and cpp and ogc doesn't....well if i am correct in my assumption, will you pls tell me what do you mean by reversing it every time and i cant seem to locate modulec.dll .which directory is that in? thx!


P.S. can you give me your ICQ or AIM cuz i will probably have a lot of questions or possibly we can meet on irc. this will be a lot of help to me. thx!:classic:

moduleC.dll is the VAC security module dll.
it is packed and cyphered and loaded by the new
dll loader in hl.exe wic they introduced in 1.4
with redirect i was talking about a generic method
to circumvent it because it doesnt depend on the module.

with reversing it every time i mean you have to
- dump it
- disassemble it
- figure it out
- write a patch
everytime valve releases a new version of their anticheat
so it sux.

in my opinion the best approach to create a generic
circumvention is either directX injection of ur code
or opengl.
but since directX is to unknown country as i would say
the easyest way is creating an opengl based bot,wh ect
wich is loaded by injecting your code right into the opengl32.dll
since they cant crc it because then it would detect everyone with
different drivers like ati card users...

thx for your support.....well is there open source for the opengl.dll to inject, and(sorry for the newbish question) i think i have an idea what injection is but can you tell me what it is or will i probly learn it next week at camp?

thats the background:
http://www.xcheater.com/tutorials/sheep_agtp1.txt
and thats the injection tut:
http://www.xcheater.com/tutorials/sheep_agtp2.txt

thanks m8t......youve helped me a lot.....you are one of my role models:classic:

np im glad i could help...

I don't think you explained the right things to this guy. The only thing these tuts do are showing you how to use softice. Although it can be a good tool to get a hang on what they do in the game you want to hack, that's about it. Injection as used in OGC etc. is not like the tut. What you do is using API calls in windows to trick your game into thinking that the dll is it's own, so that the dll can access it's memory etc. Then in the init part of the dll you place your patch for parts of the system so that your dll is used instead of the standard one.. And your dll is then a bridge to the real dll, offering all information and can change all information. As simple as that..

that is dll hooking not code injection.and these tuts do more than
teaching u how to use softice it teaches u how to get dma offsets and how to add your code to any programm. its not hooking and
you cant code an ogc like that buts a method of modifying
a programm to do what u want.
if u remember oldschoolhack by chazz... thats how he did
it basically but not with opengl32 but with hl directly
i know that this tut has nearly nothing to do with creating hl
cheats but it gives u a basic idea how to interfere with
programmes like u want

Were can I get this "softice." :confused: :confused:

go to the links greenball posted ^^:classic:
are there any tuts on hooking ?:bandit:
and also greenball, how did you get your title "big f|_|ckin gun" cuz mine is apprentice knight????

lol in ur profile u can change it

thx....are there any tuts on hookin?

clientb0t.counter-strike.ru/forum

thx....once again...

woohoo...100 posts:classic:

P.S. i think this thread will help a lot of people who are intereseted in makin hacks like me.....thx..greenball...for being a great src of information...

Originally posted by si][ent
go to the links greenball posted ^^:classic:
are there any tuts on hooking ?:bandit:
and also greenball, how did you get your title "big f|_|ckin gun" cuz mine is apprentice knight????
I didn't find any links in that link he posted. :( :dead:

go to www.xcheater.com and go to their cheating tools section on their navigation bar....it should be there

edit: hmm....actually its not there
edit:ill look for it in a while...im printing all the tutorials i can find on the net relating to vc++, c++, asm, vb.net, gamehacking, and opengl.


******FOUND IT***********
www.gamehacking.com
Misc. tools

thanks a lot si][ent :classic: :classic:

in the clientbot forum just click on the tutorials button is this so
hard ??.........

Originally posted by greenball
in the clientbot forum just click on the tutorials button is this so
hard ??.........
I don't get what you mean??? What should I be looking for? But anyways, i need a serial number for the softice, any ideas??

we arent suppose to be talking about that...figure that out on your own:classic:

Originally posted by greenball
in the clientbot forum just click on the tutorials button is this so
hard ??.........

i couldnt find it...but anyway i got it from another src so im alright

greenball did you say Redirect to clean client.dll? so many new idea's you have opened to my eyes :p
May the force be with you!
Idea's:
1) Make a fake client.dll (must placed where real one should be and fill it with useless stuff to fake the size)
2) Make it have a pass though to load your Hook.dll
3) Make it have redirect to a clean client.dll
5) Make a redirect to a client.dll to use for hook functions(not the clean dll)
6) Make the redirect be called for crc checks of the real client.dll (it will now check a clean client.dll hehe)
7) Return YOU HAVE NO CHEATS INSTALLED!

1)make a kernel hook return the false adresses for client.dll
if moduleC asks for...
2)put a unmodified client.dll there
3)tell ur hook where the real one resides

yea i read that in another forum....i maay try it....

asm? or vc++

doesnt matter

Learn C++ first then ASM. ASM takes a lot of hard work and time. Its something I worry about learning in the darkest hours of my C++ classes hehe

Ok for the first question.. Joolz works because of the way it hooks the client. IE, the base hook. Joolz uses Goldfinger's Base Hook, which is probably why it works - OGC uses its own. LTFXHOOK is a modified OGC w/ Goldfinger's Base, also why it works. See the pattern there? You can probably find Goldfinger's Base Hook on the clientbot forums. ClientBot Website (http://clientbot.narod.ru) <-- Click on the forum link.

As for the second question, too advanced for me right now :)
I only dabble in adding weird stuff to OGC :D

-Angechu