I have concluded that the hit detection system is client side. Basicly this means that if u shoot someone it sends a message to the server Playerx hit Playerx x number of times with x gun. Then the server deals damage accordingly.
Proof: beacause there is major lag in planetside, if someone is shooting you and then u run around the corner, THEY could lag and in turn send the server however many messages telling it that they hit you, when infact you are in another room, so it seems like you are being shot through walls.
Ok, so with that going on, if we could make something that could send more messages to the PS server(if anyone is willing to figure out how) we could make a 1 hit one kill thing, like for knifes or sniper rifles, which would be great.
OR, we can make a programm that cuts off your internet and allows you to shoot like 2000 people, and then run outta the CC room where they all were camping, then you could get a shit load of killz... We could also perform the same task but by making an artificial lag creator.
If anyone knows how to do these, or has any made, please, please, PLEASE!!!, post

I have concluded that the hit detection system is client side. Basicly this means that if u shoot someone it sends a message to the server Playerx hit Playerx x number of times with x gun.

You are right about client-side hit detection. That's why you can run into a tower to avoid baddies outside, be down the stairs, think you're safe, but get pwned by some noob with a beamer and a 56k connection outside. SImply put, if the shooter thinks you got hit, you take the damage. The logic there is that it evens the playing field among connection types and ping.

But wait...there's more...the shooter may predict collisions between the target and his weapon, but it's the recipient's client that assigns the resulting damage, so you have to work within the parameters that the recipient expects as plausible. That means if you want a one hit one kill solution, you should look into how to make (as far as the recipient knows) a flail bolt come out of your rifle.

Damn...why didn't I think of that before I stopped playing?

Here's another bit of knowledge about client-side hit prediction (and no, don't even ask for this hack, because if it got out, Planetside as a game would be destroyed; whereas if you figure it out yourself -- a long process -- you'll likely safeguard it):

I made a hit detection hack that worked like this...I figured out where in memory my machine was keeping track of other players' exact locations (there are three addies, btw...one for XYZ location, one for XY radar, and one that is constantly calculating the distance between you and all players and vehicles that are close enough to be a threat. You want the first).

I then poked at that value until I figured out how to freeze it in the register. At that point, all other players appear to run/walk/crouch in place, in the exact spot they were when that value was frozen. Indeed, they continue running around you but you can't see them. Instead, your client believes they are in the spot where you see them, and will believe it when you shoot/stab them and tell the recipient as much, and they they die.

I took it a step farther when I figured out how to use this same info to change and freeze my own location and from there how to freeze other players at any location I chose.

The result was this: I could park myself 100, 1000, or 5000 meters above (or below) a base in mid-zerg, where getting shot is never unexpected. I would then freeze all other players locations at a spot about 10 meters away from me...also way above or below the ground...and then lasher/plasma nade/forceblade them to Hell.

Of course it's all good until one of your victims is actually one of five guys guarding a CC, and he's the only one who bursts into green flames and dies with the others around him not touched.

You get some puzzled /tells that way.

Good luck, and if you pull it off, keep it to yourself.

sw

You are right about client-side hit detection. That's why you can run into a tower to avoid baddies outside, be down the stairs, think you're safe, but get pwned by some noob with a beamer and a 56k connection outside. SImply put, if the shooter thinks you got hit, you take the damage. The logic there is that it evens the playing field among connection types and ping.

But wait...there's more...the shooter may predict collisions between the target and his weapon, but it's the recipient's client that assigns the resulting damage, so you have to work within the parameters that the recipient expects as plausible. That means if you want a one hit one kill solution, you should look into how to make (as far as the recipient knows) a flail bolt come out of your rifle.

Damn...why didn't I think of that before I stopped playing?

Here's another bit of knowledge about client-side hit prediction (and no, don't even ask for this hack, because if it got out, Planetside as a game would be destroyed; whereas if you figure it out yourself -- a long process -- you'll likely safeguard it):

I made a hit detection hack that worked like this...I figured out where in memory my machine was keeping track of other players' exact locations (there are three addies, btw...one for XYZ location, one for XY radar, and one that is constantly calculating the distance between you and all players and vehicles that are close enough to be a threat. You want the first).

I then poked at that value until I figured out how to freeze it in the register. At that point, all other players appear to run/walk/crouch in place, in the exact spot they were when that value was frozen. Indeed, they continue running around you but you can't see them. Instead, your client believes they are in the spot where you see them, and will believe it when you shoot/stab them and tell the recipient as much, and they they die.

I took it a step farther when I figured out how to use this same info to change and freeze my own location and from there how to freeze other players at any location I chose.

The result was this: I could park myself 100, 1000, or 5000 meters above (or below) a base in mid-zerg, where getting shot is never unexpected. I would then freeze all other players locations at a spot about 10 meters away from me...also way above or below the ground...and then lasher/plasma nade/forceblade them to Hell.

Of course it's all good until one of your victims is actually one of five guys guarding a CC, and he's the only one who bursts into green flames and dies with the others around him not touched.

You get some puzzled /tells that way.

Good luck, and if you pull it off, keep it to yourself.

sw

hehe wow, sounds intresting. But dude, check ur emails...
We need to somehow get in touch real time, cause based on your posts, you are like in europe or something. Anywhoo, I need a tutorial on even beggining to narrow down searches in Tsearch. I thought I had it close on tribes vengence, untill I narrowed it to 3, and then tried to do something with it... nothing. Didn't know how. Any tutorial would be appreciated, something, anything u want to leak, anything that could even remotely help me engineer my own hack...

I have 3 cr5s in Planetside, one for each empire, i know how this works, if you wanted to create some sort of aimbot, or a AutoFire (which would be hella cool) your going to need to create a hook, to get arround the client side system. If you want to talk more about this, maybe even spam ideas to me, my Aol Instant Messenger screen name is : ABCoreyDEFG

spongeworthy, whats your email? please... or aim or some im.. i need to talk with you...

matrix, i think you me and sponge need to hook up on aim or msn sometime. We need to create like a planetside hack team.. or something.. you know? lol anyway my email is pdzman@hotmail.com please... spongeworthy definately is a very brilliant man

ok spongeworthy umm... i fiddles with tsearch, very interesting proggy btw... anyway

i tried to give myself inf reaver rockets, i found the value, made my rockets 100, freezed it. it worked... sorta... i had inf ammo but it didnt do any damage. so i teied all over again, and didnt freeze it, and this time it showed 100 on my entire ammo

16 // 100

and when i shot 16 and reloaded, it stayed 16 // 100 but after 4 clips. went to zero, so it was acting like normal. just the entire ammo spot just stayed at 100. can you help me, sponge?

I am playing around with Tsearch. Wish I knew about this tool along time ago. How did you guys know what "type" of memory to start searching? 1 byte, 2 bytes, 4 bytes, 8 bytes, etc.

Is there some type of reference you guys can point me to? Also I'd be willing to get ingame with you guys and try to test some things out...just send me a PM if I can help with anything.

I just normally search for 4 bytes. I think that's the most common. I have started making inf ammo and inf health and jetpack trainers for Tribes Vengence demo... Most of the info I really need is in the 4 bytes...

I just normally search for 4 bytes. I think that's the most common. I have started making inf ammo and inf health and jetpack trainers for Tribes Vengence demo... Most of the info I really need is in the 4 bytes...

Ok, well lucky me that's what I was using anyways. Now the process to see what does what.

anyone having troubles logging in to PS?

was having trouble b4...but i can get in now maybe they put a update in?

EDIT: also im downloading tsearch and im really interested in how to make hacks especially infinite health ;) or that freeze hack sounds awesome to get my knife merit :dead: any tips or guides would be handy :)

nope. um matrix, can you try and hack tsearch with me? what server you on? pm me your name etc... both of us trying tsearch at the same time could really do some damage.

I figured out that your really cant have infinite ammo or health. If you were to give yourself 1000 health, the server would quickly fix it. if you give yourself alot of ammo, it wouldnt do any damage, because the server would fix that. However, if you type /health, it says 'you do not have permission to use that command' same as /armor. if we could somehow try getting aroudn that, we could get infinite health. Only someone smart like Spongeworthy can do that. And btw sponge, mind pm'ing me your email or im name? thx

you CAN! give yourself more ammo, i was on the test server with a csr named ||||||||||| and he spawned me a collosus (when i was nc) and put 500 ammo in each cannon also he spawned a gal in the caves so it is possible also im on werner but im not saying my real name here :) if u want it pm me

EDIT: also what is the default value for health in tsearch? no idea wats going on atm also if u wanna talk in msn pm me 4 email :)


EDIT2: ok seems like pms dont work so mazo2@hotmail.com add me to msn and we'll talk hackage! :D

csrs have permission to do that. we dont. so whenever we try, the server recognizes it, and fixes it.

you CAN! give yourself more ammo, i was on the test server with a csr named ||||||||||| and he spawned me a collosus (when i was nc) and put 500 ammo in each cannon also he spawned a gal in the caves so it is possible also im on werner but im not saying my real name here :) if u want it pm me

EDIT: also what is the default value for health in tsearch? no idea wats going on atm also if u wanna talk in msn pm me 4 email :)


EDIT2: ok seems like pms dont work so mazo2@hotmail.com add me to msn and we'll talk hackage! :D


That's going to require a lot more then just a memory hack. What we are working on is based on the game mechanic of client side hit detection.

mmmm any1 know how to freeze players locations? just got taught how to get inf ammo but no dmg :P

Ally, im on emerald dittillerann now...

if we can find the memory packet that has player Xyz co'ords we could teleport... anywhere. And I think we need an artificial lag creator for the freeze thing
Btw I can have infinate ammo and do dmg

mmmm any1 know how to freeze players locations? just got taught how to get inf ammo but no dmg :P


I am looking into the freeze player locations, and change visibility using memory editing. It's just taking me some time with trial and error :p I don't even know if it's possible, but from Spongeworthy's post it seems it is. And the idea behind how it is accomplished makes perfect sense. It will just take me some time :p

matrix can u plz tell us how u managed to get inf ammo AND damage? ty :)

me and mazo is on markov in the shooting range, TR. join us. andm atrix, come on msn messenger, if you have it.

i can get inf ammo and do damage, only for about a min, then it stops and doesnt do damage

krazykid, you should also come to markov Tr shooting range... and tell me your msn name... we should all try hackign at the same time

Ally, im on emerald dittillerann now...

if we can find the memory packet that has player Xyz co'ords we could teleport... anywhere. And I think we need an artificial lag creator for the freeze thing
Btw I can have infinate ammo and do dmg

Good job if you managed to do inf ammo w/ dmg. I am just worried about how easily trackable that might be for SOE. When I am thinking about it, it seems like it would be so easy for the server to throw up a red flag.

Either way it doesn't matter, what does matter is you figured out how to do it. Again, good job.

and how did he do it? :P
would it also be possible to edit how mcuh damage somethign does?

and how did he do it? :P
would it also be possible to edit how mcuh damage somethign does?

Like Sponge said in a post, it might be possible to edit the memory and have it say your shooting flail shots our of your bolt driver. You never know.....

ok sponge get on here NOW! we need to know how to freeze player locations including yourself :D

hehe wow, sounds intresting. But dude, check ur emails...
We need to somehow get in touch real time, cause based on your posts, you are like in europe or something.
Sorry-apparently I'm getting a ton of PMs but they won't let me <b>read or send</b> them until I've made 15 posts! What an *****ic policy.
I actually just bought Tribes:v and would rather work with you on hacking that.

Sw
ps: i'm not in Europe. I'm on Mtn. time.

I hate to say it but reading all your posts is getting me excited to get hacking PS again! So you know one reason PS isn't hacked more often is that every little update (yes...all of them) breaks your memory hacks and you have to re-find them, meaning time you'd like to spend developing new stuff is spent just treading water.

Because it'll be at least a week before I can get back into it, let me tell you this: don't bother with ammo hacks. The server keeps track of that. Instead, we'll get my teleport working aqain and you can just zip back to a friendly base or tower or ams to reload.
Even better, use my hack that reveals enemy AMSs, teleport next to one, and jack it!
To get an idea of what the server controlls, think about those occasional server crashes and what you could no longer do in the minute or so it took before the game restarted...especially reload and inflict damage.
As a general Tsearch tip, think about what value you're looking for, and what creative things you can do to even indirectly affect that value. Implants are priceless that way. Another example- if you want to affect gravity, jump off a high cliff in the caverns and see what Tsearch says does and doesn't change on the way down, for example.

You have to get creative to find the good stuff. the existing tsearch tutorials on infinite ammo are far too mono-dimensional for a hyper-redundant game like PS.

SW

I see, Spongeworthy. anyway, if you could get back into hacking ps, that would be very appreciated. I know you dont want to leak your teleport hack, unless you want to :D. Instead, why dont you make us your little trainees, teach us hwo to teach ourselves, and hint us how to find hacks in ps. I would really lik to hack in planetside, not very largely, but im fed up with planetside, the game itself is severely unbalanced (im TR) and i really need soem merits, lol. anyway, if you could leave your email or im name here... we can get together some time... take care :)

Well I was able to freeze my z co-ord I guess. Figured out which values changed as I went up and down stairs. Froze it, and if I walked off the edge of stairs I stayed floating in the air. Pretty cool.

But is PS DMA? Because it seems if I die, the current address's I have for the memory no long update and seems are no longer used.

im having a idea about weapon and running speed but im not quite sure how i'd do it, if i could find the default value for a tr max weapon speed while in normal standing mode and then deploy and search for has increased by 20% then i could work it out same with surge but i got no idea what the default values are same thing with reaver i was thinking find the default armor value, search 4 it get hit for 20% or more dmg and then do has decreased by 20% and poof uber-reaver with 999999999999 armour :D must get default values! >.<


EDIT: also we could make a perma-invis cheat, find a value, cloak see what it changes to freeze it and then u could possibly change armour to a max and be invisible :D

erm...bumpage! (sorry if bumping not allowed :D)

mazo I am pretty sure the server would edit it back to the normal value whenever you got shot. So if you have 999999999 and take 80 dmg, then it goes to 999999919, the server will see whenever it tries to take away damge, and then make it real...
sorry to burst your bubble

Edit:hehe, I forgot about looking up I only saw ur post.... but erm, what value did you search for to find your z co'ords? Or did you do an unknown search value? herm, wow this thread is getting me real excited also(not that way...) lol
Edit: wow I looked even farther up and spongeworthy said thats what makes ps annoying to crack. Sponge thats the fun of hacking ps. If I have to make a new hack every other day, then hey, I get to **** up ps a little more and make the devs patch it.

mmm i tried to get my co-ords before by hopping in a aircraft goin to the flight ceiling and trying to put in where i was in height then put has decreased by more than 5% lol but it didnt work as it doesnt show accurately how far down it sent u cuz the msg fades away

what is the adress of your z coord?

lets get on PS, markov shooting range TR

Spongeworthy, how did you find your cordinates when u first started mem editing?

For me it's all trial and error. Follow the idea behind basic science, and do controlled experiments.

For instance what I did was find some flat ground, move left and right, and have the search tell me what didn't change. Then go up a flight of stairs, and tell me what did change. I did stuff like this untill I had a smaller list, that I could then just watch with my eye and see how it updated as I did or didn't change my elevation.


edit: this doesnt really do me any good because floating around a base would probably only get me /reported. I am going to try and work on vis distance fo DL and such.

hey dude meet me in markov in the shooting range TR...

QUick hint on loc:
first of all, it is DMA, so you have to use Tsearch's Autohack to get at the place in the register where the value is always stored.
Doesn't make sense? Then go learn about Assembly language and your computer's registers. Trust me, understanding ASM is key to real hacking.

Second, you need to know that your location is a float (decimal), and that's what you need to be searching for.

Try this: go to your console and type /loc. It will bring up your XY rounded to the nearest whole number. Now go to Tsearch and search for increment and decrement floats bounding what the console says. ie: if the console says you're at 4523, 2367 (which corresponds to meters from the origin, which is the lower left hand corner of your continent's map, and each line of longitude or latitude on the map is 200 meters), you first search for floats ranging from 4523 to 4524. You'll probably get 10-20 values back from that search. Then, change your position, go back to Tsearch and see what's changed. It'll be pretty obvious which are your values at that point. You only need to search for X since, when you look at the code, you'll see that Y is atways located (as I recall) 8 bytes downstream and Z another 8 downstream from there.

REMEMBER...these values are HIGHLY DMA, so just knowing your present XYZ won't get you anything. You must be able to find where in the register that value is permanently stored, and then operate at that level by making a trainer that will poke at the register.

I'm attaching three screens I took while using the XYZ hack. One shows me below an enemy tower, shooting nades up into it. The other two show what it's like to be 5000 meters above a base mid-zerg, and freezing enemy locations to within 10 or so meters of your own. It's wild. Nothing but enemy arms and legs in a big, amprphous mass. Like a Calvin Klein perfume ad.

In the cases of SS-2 and SS-3, note where I am according to the mini-radar.

SW.

lol, like a calvin klein perfume ad. Hehe, but where is this console you speak of and do you know where I can learn assembly language?

nvm nvm I found the console


REMEMBER...these values are HIGHLY DMA, so just knowing your present XYZ won't get you anything. You must be able to find where in the register that value is permanently stored, and then operate at that level by making a trainer that will poke at the register.

also any tips on how to do this? (sorry for asking so many questions : (

To learn practical gamehacking Assembly, go here:

http://burks.brighton.ac.uk/burks/language/asm/artofasm/artof001.htm

You need to read and understand at a minimum Chapters 1, 3, 6, and 11. The rest is mostly applicable only to programming, and really goes way above what you'll do while hacking (reverse-engineering), so only read it if bored.

Then go catch a fly with a pair of chopsticks.

SW

REMEMBER...these values are HIGHLY DMA, so just knowing your present XYZ won't get you anything. You must be able to find where in the register that value is permanently stored, and then operate at that level by making a trainer that will poke at the register.

also any tips on how to do this? (sorry for asking so many questions : (

also any tips on how to do this? (sorry for asking so many questions : (

For making basic trainers, get Game Trainer Studio. It's either free or cheap.

For code-caving (which is what location and radar hacks end up being) you probably need to code in visual basic. Now that's easier than it sounds, thanks to VB.NET and this template, (which you can ideally work with in Visual Studio or by getting one of the free visual basic IDE/compilers out there):

http://www.pscode.com/vb/scripts/ShowZip.asp?lngWId=1&lngCodeId=56387&strZipAccessCode=tp%2FT563872092

Of course, none of these things will be of any use to you until you find the relevant addresses, and you do that through TSearch's Autohack feature.

What you do is find your value(s), then enable Autohack and set a breakpoint at the corresponding address, trigger the code that acts upon that address (meaning, do whatever you do ingame to make it change), check the Autohack window and see what turns up. THen right click those addresses and select "Add to Register" (or whatever it says). Then go to Tsearch's Register window and see what happens when you change or freeze values there. Note the numbers you see there are in hex, so you have to convert them to decimal to make them mean anything.

HOnestly, it is much more complicated than that, but I figured it out with less help, and I bet you can too. Just be prepared to crash PS about 4,127 times in the process.

Last thing, keep a very clear record of what you do, and what results you get in order to operate efficiently and minimize time lost due to crash reboots. If not, you're guaranteed to repeat the same mistakes ad inifinitum.

Does that make sense?

SW

Does that make sense?

SW


uhm....just give us the hax then :P too much junk 4 me to be bothered atm lolz

.... gee.. I dont think he constructed a program, read some other threads, especially one named spongeworthy! Read what is going on... the thing with fishing, better to teach a man to fish than to give him one.

within a day ov working with tsearch I have found some amazing things...

working on this at the TR sanc, agentz95...

uhm....just give us the hax then :P too much junk 4 me to be bothered atm lolz

Mazo, you can count on not being bothered with whatever we end up producing either.

SW

in auto hack, what do I set the bmp and the Type to?

note the "atm" lotsa stuff going on in my house.....so im not too sure ill be able to do all that right now (not good stuff going on) and dont ask bout it :(

so then......with the freeze player locations thing it doesnt just freeze the players on the spot, it teleports the models on your client to Xyz then freezes them but the real player doesnt see a thing? interesting......i thought it would just freeze all the models on the spot

EDIT: also, is there a way to run planetside in a window? <---scratch that found the big "Full screen" checkbox :P

EDIT2: ive also got my X co-ord narrowed down to 1 search result, so how do i "add it to the registy and get autohack to poke at it"? :) thx

This stuff is great i can also help if you guys can give me your aim sn's or something

how can u help?

I know alot about programming. I cracked Halo 2 on my xbox (See thru walls) Developed numerous Counter-Strike hacks im looking forward to using tsearch.

how did you crack halo2?


What you do is find your value(s), then enable Autohack and set a breakpoint at the corresponding address, trigger the code that acts upon that address (meaning, do whatever you do ingame to make it change), check the Autohack window and see what turns up. THen right click those addresses and select "Add to Register" (or whatever it says). Then go to Tsearch's Register window and see what happens when you change or freeze values there. Note the numbers you see there are in hex, so you have to convert them to decimal to make them mean anything.


ok first, I cant rightclick on the adresses (I only come up with 2) so I dont see any way to add them to a "registry" ( I am not sure what u mean, or where this registry is). Then how do I convert "the numbers" to decimal?

Thx I got everything working till there
I have even been able to get like 85 addresses that all pertain to the x coordinate. so I froze them all and I could not move on my x axis. But however when I jumped my ps froze and quit.

Edit: what all do I set in the breakpoint. Like the adress, got that, then I can choose from 1, 2 ,3 or 4, and there is something that I can choose write or read/write...

Thx in advance

I have a modded xbox and i ftp access. Halo 2 baiscally runs on xbl files and strings of code. I went in and modified these files. Changed wall density values and things like that. im currently working on making myself have inf. ammo in xbox live halo 2

how do you upload those files onto your computer? or are u just spitting together a string of words that might make sense. hehe jk. did you just put the cd in you comp or what?

hey guys, today monday, i really cant be much of help, but on tuesday ill help you guys hack.

this is all kind of a blur to me though. I know basic TSearch funcitons, like how to get inf ammo or things, but like you said, i need to think more. You guys have been talking about "See what happens to TSearch when you jump down" or something... and i really dont know what you mean, i only know how to search for values...

As far as /loc in game, when i get the coordinates, where do i go from there? Search the values in TSearch, if so, then what? Sorry, im only 17, and i have SOME expirience with Visual Basic, and im only in algebra 2, but i would really like to help you guys make hacks for planetside, and i would really like to learn this stuff. My aim is "foliocb" and my msn is pdzman@hotmail.com

thanks

SpongeWorthy, I know youre a busy man, but if you could make a sort of "Planetside TSearch Tutorial", i would definately /paymoney for that :D Anyway, a forum isnt the best place for describing how to do something like this, If you can get teamspeak, it would be much more efficient ( www.goteamspeak.com ) Anyway.... lookf foward to talking to you all :)

with the freeze player locations thing it doesnt just freeze the players on the spot, it teleports the models on your client to Xyz then freezes them but the real player doesnt see a thing? interesting......i thought it would just freeze all the models on the spot.

Thanks for explaining, Mazo. Please understand that everybody's busy, though.

On your question, as I explained in the secont post to this thread, my initial version of the location freeze hack did appear to freeze other players in place, but it evolved.

Understand that in gamehacking, you only have the power to affect how your computer processes and interprets the information that comes to it. Believe it or not, the exact locations, health levels, weapons loadout, direction, identity, etc., of all other players (friends and enemies) are sent to your computer during the game, but the game itself limits what you as the player get to see. We're just taking steps to change what and how that wealth of data are processed, and then occasionally affecting what data are sent out from your machine to the server and all other players.

Also, the game provides your client with a set of limits, rules of physics, boundaries, etc., and then expects your copy of the game to see that you obey them. After all, the PS servers have enough to monitor already without babysitting every player to ensure that you're not running faster in REXO than you do in Agile, for example. Therefore, we need to figure out how to change the limits that your computer holds you to.

Point is, all you can do is change how your computer's interacts with the PS world, not how others do. Back to my original point:
I first figured out how to make my computer believe other players were frozen in place. Because hit detection is handled by the client, not server, it stood to reason that if my client believed it was shooting an enemy, that enemy would take damage -- wherever they were.

The problem was, this hack essentially made those enemies invisible around me, and I eneded up getting killed more often than I killed them.

So, I first modified the hack to freeze them all at a single assigned location, instead of their varied present lcoations. But because they remained invisible around me, I further modified it to make that location somewhere otherwise inaccessible to them, such as underground or high in the air, where I also froze my own location.

So, they're playing as normal, and continue sending my computer their location info, but I tell my computer that regardless of what it's being told, all the bad guys are actually in location XYZ, which happend to be very near my XYZ. Then when I shot at them, my computer believed they were getting hit and sent them that message.

Pretty basic, eh?

SW

Sponge, can you download teamspeak, and can we talk sometime on tuesday?

Sponge, can you download teamspeak, and can we talk sometime on tuesday?
I already have TS, and yes I might be able to get on for a few secs tomorrow.
You and matrix1065739X0 pm me (I can get them now) and we'll figure out a time.
When we do, I'll quiz you both on the basics of Assembly, and if you don't pass...;).

Sw

This is both exciting and sad at the same time. SOE markets a MMOFPS that is so easily hackable that it makes me cry :(

Sponge whats the thing about finding the location of the code and then adding it to registry and making the auto-hack "poke" at it tho? have no idea what that means ^^

Allyallyally I cant respond/look at to your pm because I havent got 15 posts. I havent tried Tsearch im going to go and download it and play with it.

ok guys ive figured out how to add it to the registry and stuff (got my bro to take a look at it) but i gotta fiddle with it a lil bcuz it closed planetside last time :P yeey im getting closer :D

how do you upload those files onto your computer? or are u just spitting together a string of words that might make sense. hehe jk. did you just put the cd in you comp or what?

-Stuck Halo 2 in my CD Drive

-With Halo2 you can delete the xbox live files and then create an iso without them and it'll fit on a single layer disc.(dashupdate.xbe,downloader.xbe and update.xbe)

-Made a copy of it (Did not try it on my orignal)

-Then went in and looked through the files and configs

-Suprisingly enough the code was very basic

-All I had to do was keep changing the values until i got to a good translucity and wall density

My aim is fitzy6868
email twfitts@gmail.com

-Basically it was guess n check the whole time.

- I am using an xbox with a xecuter2 bios; FTP Only works on xbox with modded xboxs.

ok guys ive figured out how to add it to the registry and stuff (got my bro to take a look at it) but i gotta fiddle

with it a lil bcuz it closed planetside last time :P yeey im getting closer :D

For those who still need to know how it works, I'll explain the basics (with some inconsequential inacuracies for the purposes of clarity and brevity), though to really understand it, go learn about Assembly language, as I've said 1,476 times now.

First of all, it's "registers" not the "registry" we're dealing with. That might be a little confusing for some, since most know of their OS's registry. THis is something very different.

Basically your computer's active memory (meaning, RAM, not storage/ROM) is actually composed of many many many little groups of 8, 16 and 32 byte clusters. Applications move and store relevant numbers to those clusters so they can go back and refer to them later,

or in order to allow another function in the application to refer to it and even change it or copy the number to yet another register.

ANother way of looking at it is like this: as you know, Windows gives you one clipboard to use when word processing, moving files, etc. Think of the registers as tons of seperate "clipboards" where your application manipulates and stores discrete pieces of information.

For example, in a game you would have a register assigned to store the value corresponding to your health. WHen you take damage, the game changes the value in that register and leaves it alone until you get healed or take more damage. Meanwhile, the code responsible for drawing the health bar on your HUD is looking at that number to know what to draw, and the code responsible for deciding how fast you can run is looking at it to know whether or not you're injured.

More than just look at registers, as you'll see when you learn the Assembly code for it, the game is essentially copying the value in one register and "moving" that copy to another register. That's why so much of Assembly is made up of statements like: " mov [0x12345],eax " which literally means "take the value in the current EAX register and copy it to the EAX register located at 0x12345". "0x" by the way, denotes a hex number.

When I referred in another post to needing to convert numbers in the register, I mean when you see them in the Tsearch register window, they will be in a base-16 (hexadecimal) format, not base-10 (decimal) like when you're initially searching for them. In other words, if your health is full, you may be expecting the relevant register value to be 100, but will instead see 64, which is 100 in hexadecimal. It gets even worse with floats, which is what you're dealing with on location hacks. for example, if your X is 2453.154, the hex will be 45195277, and (it gets worse) if you're hex editing, it will appear reversed: 77 52 19 45.

My point is simply that when you see numbers in the register, they won't likely be intuitive and you'll need to use the Tsearch conversion utility (or any other hex/decimal converter) to change those numbers so they make sense to you, until you get used to hex.

BAck to Tsearch...find some good candidate values and then Autohack them. ONce you do, the easiest way to know whether they're relevant is to freeze them and NOP them. "Nop" is Assembly shorthand for "No operation" and means you essentially remove that line of code and then see what happens. If you can see that nopping it immediately affects the thing you want to hack, (usually in an extreme or undesireable way at first), then you're getting close! From there, un-nop it, look on the bottom half of the Autohack screen and you'll see the individual lines of assembly code in context. Go the the one that should be highlighted and right-click it, chosing "register" from the context menu. Now look at the tabs at the bottom of the screen and choose the one called Register. This is where you can change and freeze values as they are register, which as I've said is where it really matters and where you have to operate for location hacks to work.

From there, you need to go to the hex editor and see how your manual changes to the register affects the raw memory, and then use that info to code your trainer.

I put the cart way before the horse here. Just take it one step at a time, systematically experiment, learn Assembly, don't smoke pot, and by the time you get to these steps it'll make much more sense.

Sheeesh...I'm spending WAY too much time on this.

Spongeworthy

This is both exciting and sad at the same time. SOE markets a MMOFPS that is so easily hackable that it makes me cry :(
Yes and no...PS is easy to hack (though no more so than any other mpg) but the advantage PS has over hackers is the frequent updates, each of which breaks your hacks and you're stuck playing catch-up.

I remember once in early January there was a week of rapid-fire updates and sometimes two in a day. That sucked.

SW

As far as /loc in game, when i get the coordinates, where do i go from there? Search the values in TSearch, if so, then what? Sorry, im only 17, and i have SOME expirience with Visual Basic, and im only in algebra 2,

hehe, spongeworthy, in one of your threads you refered to 12 year old smacktards (or was that you?). Guess what, im a 12 year old (teehee) pre algebra.
but BOT, once u get the location, the first number refers to the X coord(across), then y(up down), then z(Height, I mean like jumping and going up and down stairs). So once u get the say x location and it is 3500(ex) so then u go to t search and u search for range (make sure it is float as it is a decimal) put the range from 3499, to 3501 (as the coord is rounded to the nearest whole number). Once u get the numbers, move on your x axis, then /loc in game, then next range search for 1 below the number, and 1 above the number u just recieve. Thats what u do with /loc


Current Satus:
5:55 I have found a value that I have added to my autohack. I can 'patch' it (push that little red button) and my screen overviews like a stategy game and continues to zoom out. But however when I do try to move on my x axis I am frozen (running in place when I try to move, standing when im not)

6:00 ok fixed that problem just by not going third person, I have made an infisible corridor with an 400 meter height and just large enough for me to fit my shoulders through

lsdssd

lsdssd

Nice work here. I just got planetside and im intrested on the work your doing here. Im experienced with t-search and all those memory hacking programs. What server/faction are you on?

First of all, it's "registers" not the "registry" <----typo :) i meant registers not registry we're dealing with. That might be a little confusing for some, since most know of their OS's registry. THis is something very different.


hmmm says i gotta add at least 5 characters in msg to here we go :P

guys... the *server* is up... snicker..

Lol i hope half of you gimps aint on Werner server, and want to hack so you can get the advantage over my skills.

BR23 CR5-TR
BR23 CR4 VS

There aint no hacks for planetside to downlaod anywhere.

But there is a Halo2 Autoshot hack that works with planetside, DL it and give it a go, its not that good, and only works in non zerged places and with a JH.

Its on the MPC vault

And for thoose of you who want to warp around in planetside, and be the next AzK, you need to packetfilter things (i say "things" as im not telling you jack)

I have a little project of my own going on atm, if you want in PM me ot leave you hotmail addy.

so is it possible to make the hacks?

so is it possible to make the hacks?


Lol did you read the thread at all?

Bragging over game skills? Now thats just sad. Every game is possible to hack or exploit. Theres always a way. Ive already managed to partially teleport around places.

Bragging over game skills? Now thats just sad. Every game is possible to hack or exploit. Theres always a way. Ive already managed to partially teleport around places.

Now bragging over something you say, you have done,without proof is sad.

Any way keep on topic.

Im doing ok with WPE, how are people doing with Tsearch ect?

Il have to give T a go.

SpongeWorthy i cannont read PMs i know you sent me one, but could you email me it instad?

Evisu8@hotmail.co.uk

Proof, screenshots arent going to show me teleporting around a map. Your the one bragging how you play the game 24/7 and trying to show off your characters level. Im mentioning something ive managed to do. Anyone else can do it. Im willing to help but your sitting there spamming nonsense.

Supreme, could you help me out? my e-mail is ABCoreyDEFG@Hotmail.com (or) shepy_8@yahoo.com, could we talk?.

You must have knowledge of t-search and memory hacking then I will help you. If you do, contact me at Renegadehax@hotmail.com. *MSN messenger ONLY* I dont have any free email room in my inbox.

Ive been playing with it, i cant get any1 to help me, if you could point me in the right direction it would be great, i added you and am still playing with Tsearch, i dont quite understand it, i do a unknown search, then in game i Jump, then i do a Changed search, it comes up with a ton though, how do i know which one was the jump? any tips or anything, i probably sound like a dumbass, oh well.

hacks with jumping or stuff wont do you much. youre betetr off with xyz hacks... type /loc in game and it tells you your location in XYZ order... fiddle with that.... youll find somethign eventually

Lol i hope half of you gimps aint on Werner server, and want to hack so you can get the advantage over my skills.

BR23 CR5-TR
BR23 CR4 VS

There aint no hacks for planetside to downlaod anywhere.

.

Yep were gimps. even though you are working on planetside hacks as well. Oh well.. i have a team of about 4 people working on some hacks... thats all ill say though ")

Wait what about the /loc? how can i fiddle with it?, ally, could you sign on MSN so i can talk to you? please ;-)

You search one of the xyz coordinate values. Move around, search next. Try it. Youll figure it out sooner or later.

This is what i did, i clicked the magnifying glass, and i searched "3025" which was the first number when i typed /loc in game, it brought up 1175 entries, after this what do i do?

you need to search for a float. if ur x coord is 4000, then u search a float RANGE from 3999 to 4001. then try crouching, then do a 'search next' and search for 'hasn ot changed' .... takes lots of time, expect to tread lots of water before you find something useful.

This is what i did, i clicked the magnifying glass, and i searched "3025" which was the first number when i typed /loc in game, it brought up 1175 entries, after this what do i do?

Hey Hero, I am as big a proponent of learning and sharing of knowledge in this forum as anybody, buy you really are asking ridiculously baasic questions. Please go review the existing Tsearch tutorials (as poorly written as they may be), learn about the threory of gamehacking, and come back with some provocative questions.

Otherwise, we risk getting bogged down in minutia.

Just a suggestion.

Sw

I have tried countless times to go through tutorials, but found each of them started in the middle of it and not from the begginning, im asking questions to clear things up, make sure im doing this right, not because i dont understand it, i dont want to get so far and realize i searched the wrong bytes or something.

I have tried countless times to go through tutorials, but found each of them started in the middle of it and not from the begginning, im asking questions to clear things up, make sure im doing this right, not because i dont understand it, i dont want to get so far and realize i searched the wrong bytes or something.

Fair enough. PM me with some specific questions and I'll advise you myself, as long as you commit to not handing out the stuff you find in the process and not abusing it.

SW

ok i found my X value auto hacked it and patched it, now im frozen on my x value but can still move down what seems like a invisible pathway, Have you guys gotten this far? if so, what next step.

ok i found my X value auto hacked it and patched it, now im frozen on my x value but can still move down what seems like a invisible pathway, Have you guys gotten this far? if so, what next step.

Yeah thats good in all, that was exactly the first thing I could do with my xyz's. But I suggest messing with your z coord, there is a ton more intresting stuff... :)

How can i start to search for how to change my bolt driver bullets to flail bullets? anyone have any ideas on how to manipulate and find where that registry is?

i think we need a packet editing proggy, other than tsearch. we need to find the packet we send to the server, that states what gun we shot the person with, and we would probably just have to change some vlaues in there... dunno... sponge would definately know though.

i think we need a packet editing proggy, other than tsearch. we need to find the packet we send to the server, that states what gun we shot the person with, and we would probably just have to change some vlaues in there... dunno... sponge would definately know though.

two words, code cave. ask sponge hehe

i think we need a packet editing proggy

Packet editing is risky, especially on private servers. That's because while strict memory editing is crude and usually buggy, it's still operating within the bounds of what the game's own code considers feasible. Packet editing, on the other hand, can easily veer off into the impossible and flags are much more likely to go up.

The way to achieve the sort of thing you want to do is through code caving -- something that's tough, but very usefull. And no, I won't even begin to answer questions about it until you do what?????....

YES! Learn Assembly.

Then wax the car.

SW

Packet editing is risky, especially on private servers. That's because while strict memory editing is crude and usually buggy, it's still operating within the bounds of what the game's own code considers feasible. Packet editing, on the other hand, can easily veer off into the impossible and flags are much more likely to go up.

The way to achieve the sort of thing you want to do is through code caving -- something that's tough, but very usefull. And no, I won't even begin to answer questions about it until you do what?????....

YES! Learn Assembly.

Then wax the car.

SW

I'm reading Chapters 1,3, & 6 right now :p That took up all the space in the 3 ring binder so Chapter 11 will have to wait. About 300+ printed pages. Pretty good material. Assembly is funny, it's like learning to count all over again.

ok guys...can i have a report on how far we got and who the main crew is? sorry 4 not posting in a long time ive been abit............busy :P feels good 2 be back tho

killer is cool

Hey guys.

I have played planetside for over 18 months, and while these location hacks you are developing are now doubt intruiging. I speculate they won't be very practical, freezing people and killing them is likely just going to get you reported and eventually barred, if you use them a few times.

A much more practical application would be a speedhack. Or something that would saturate the upload stream and give make you warp around a lot.

I would be much more interested in these as I get reported for warping anyway :P. I amys well take it up fully.

Sorry I can't receive PMs yet, I don't have enough posts.

But, yes I'll help you if I can (no experience in hacking though).

Do you have MSN, or AIM? whats your SN.

nintygc@NOSPAMhotmail.com

(remove NOSPAM)

bumpppp

AL! y are you guys excluding me? do you not read your pm's dude??? I need some answers, and if u are excluding me I would appreciate, if you will tell me, y...?

im really sorry guys.....but this is the end for me :( i cant afford to pay for planetside anymore so i wont be able to join u guys but i will check the forum from time to time and see if we got anywhere :) cya around *does vanu salute*