yo uce

noobnotfuny · 29th July 2006, 05:34

can anyone help me with a uce tut
i wanna make my own but got no tut so can someone post up a tut or a link to a tut ty

GODAMIT can anyone help please

zubler99 · 29th July 2006, 06:05

hey man this is the best i could find:

1. Kernel Driver handler

--------------------------
First of all you will need to download the DDK and Delphi for this part. Delphi is just a more advance program like the notepad.

You will need to find the file dbkdrvr.c in the folder "dbkkernel" of the CE source you have downloaded earlier. Open that file in notepad or delphi and search for "CEDRIVER52", "DBKThreadList51" and "DBKProcList51" to something else.
Say you have changed:

CEDRIVER52 ---> something1
DBKThreadList51 ---> something2
DBKProcList51 ---> something3

After you have edited the file save it and find the files "SOURCES" and "sources.ce".
Open them with notepad and find the text "dbk32" and change it to something else.
Say you have changed:

dbk32 ---> something4
--------------------------

--------------------------
This part will be harder than the previous part but congratulations you have successfully finished the first step. Go to the folder "dbk32" of the CE source you have downloaded and edit the file "dbk32functions.pas". Find the text "CEDRIVER52", "DBKThreadList51" and "DBKProcList51" and change them to the ones you have done in the first step.

CEDRIVER52 ---> something1
DBKThreadList51 ---> something2
DBKProcList51 ---> something3

Now edit dbk32.sys to the new name of the .sys. Then rename the .dll to something else.
Rename:

dbk32.sys --> something4
dbk32.dll --> something5
---------------------------

---------------------------
Now for cheat engine, open "newkernalhandler.pas" located in the CE Source directory with notepad or delphi.Renaim the string dbk32.dll to the one you have renaimed.
In this case I have renaimed it to something5.
Renaim string:

dbk32.dll --> something5

After all the hardwork it is to compile the driver using "Windows 2000 free build environment" You have installed this earlier on (DDK). A black window will popup and in that type in "cd C

xxxxx\xxxxxx\xxxxx\xxxxxxx"
Open up your CE source file and click into the dbkkernal directory.
As you can see on the address bar there is the path of that folder, replace the path of what I have put as an example.
So the black windo will look like:

C

WINDDK\3790~11.183>cd "your path"

Note:
C

WINDDK\3790~11.183> - this is shown once you open the windows 2000 free build.
cd - type this before your path

Press enter after you have typed in the path. The words in the black screen will say
the path name you have typed. After that, type ce.bat and press enter.
Wait for a couple of seconds and then it will say compiling and done.

7 files compiled
1 executable built
eg.

Close the window.
-----------------------------

-----------------------------
This is the long part.
GameGuard detects the export function names in dbk32.dll, so we got to change it. But when CE loads the dbk32.dll, it calls the functions inside it by its function name. So there will be 3 files you need to change.

Open "dbk32.dpr" in the folder "dbk32".
As you can see there are a lot of exports. You will have to change them all

. Yes it will take ages.
In "dbk32.dpr", "dbk32functions.pas", "newkernelhandler.pas" change all the following to the ones i have mentioned.

VQE ---> change1
OP ---> change2
OT ---> change3
NOP ---> change4
RPM ---> change5
WPM ---> change6
VAE ---> change7
CreateRemoteAPC ---> change8
ReadPhysicalMemory ---> change9
WritePhysicalMemory ---> change10
GetPhysicalAddress ---> change11
GetPEProcess ---> change12
GetPEThread ---> change13
ProtectMe ---> change14
UnprotectMe ---> change15
IsValidHandle ---> change16
GetCR4 ---> change17
GetCR3 ---> change18
SetCR3 ---> change19
GetSDT ---> change20
GetSDTShadow ---> change21
setAlternateDebugMethod ---> change22
getAlternateDebugMethod ---> change23
DebugProcess ---> change24
StopDebugging ---> change25
StopRegisterChange ---> change26
RetrieveDebugData ---> change27
GetThreadsProcessOffset ---> change28
GetThreadListEntryOffset ---> change29
GetDebugportOffset ---> change30
GetProcessnameOffset ---> change31
StartProcessWatch ---> change32
WaitForProcessListData ---> change33
GetProcessNameFromID ---> change34
GetProcessNameFromPEProcess ---> change35
GetIDTCurrentThread ---> change36
GetIDTs ---> change37
MakeWritable ---> change38
GetLoadedState ---> change39
ChangeRegOnBP ---> change40
DBKSuspendThread ---> change41
DBKResumeThread ---> change42
DBKSuspendProcess ---> change43
DBKResumeProcess ---> change44
test ---> change45
useIOCTL ---> change46

After that your done. you can compile the whole thing or just start CE and see if it works. If it doesnt the GG is detecting the dbk32.dll or .sys.

ENJOY i guess o.o

~~shr!mp~~ · 29th July 2006, 06:14

Here's a really good UCE tutorial.

sh!mp's guide to everything UCE

zubler99 · 29th July 2006, 08:23

lol shr!mp

ForeverBlake · 29th July 2006, 08:52

what you found zubler is missing very important parts at the end. you need to compile certain things and put into a seperate folder/etc. search for 'rollingdice's UCE tut' something like that it explains it more

Envy · 29th July 2006, 08:54

Also you have to include the hook/jumper parts.

29th July 2006, 05:34	#1
noobnotfuny Apprentice Knight Join Date: 22nd Jul 2006 Posts: 90	yo uce can anyone help me with a uce tut i wanna make my own but got no tut so can someone post up a tut or a link to a tut ty GODAMIT can anyone help please Last edited by noobnotfuny; 29th July 2006 at 05:39.. Reason: Automerged Doublepost

29th July 2006, 06:05	#2
zubler99 Z u B l E r 9 9 Knight of Wars Join Date: 10th Jun 2006 Location: look around..... BANG!! Posts: 147	hey man this is the best i could find: 1. Kernel Driver handler -------------------------- First of all you will need to download the DDK and Delphi for this part. Delphi is just a more advance program like the notepad. You will need to find the file dbkdrvr.c in the folder "dbkkernel" of the CE source you have downloaded earlier. Open that file in notepad or delphi and search for "CEDRIVER52", "DBKThreadList51" and "DBKProcList51" to something else. Say you have changed: CEDRIVER52 ---> something1 DBKThreadList51 ---> something2 DBKProcList51 ---> something3 After you have edited the file save it and find the files "SOURCES" and "sources.ce". Open them with notepad and find the text "dbk32" and change it to something else. Say you have changed: dbk32 ---> something4 -------------------------- -------------------------- This part will be harder than the previous part but congratulations you have successfully finished the first step. Go to the folder "dbk32" of the CE source you have downloaded and edit the file "dbk32functions.pas". Find the text "CEDRIVER52", "DBKThreadList51" and "DBKProcList51" and change them to the ones you have done in the first step. CEDRIVER52 ---> something1 DBKThreadList51 ---> something2 DBKProcList51 ---> something3 Now edit dbk32.sys to the new name of the .sys. Then rename the .dll to something else. Rename: dbk32.sys --> something4 dbk32.dll --> something5 --------------------------- --------------------------- Now for cheat engine, open "newkernalhandler.pas" located in the CE Source directory with notepad or delphi.Renaim the string dbk32.dll to the one you have renaimed. In this case I have renaimed it to something5. Renaim string: dbk32.dll --> something5 After all the hardwork it is to compile the driver using "Windows 2000 free build environment" You have installed this earlier on (DDK). A black window will popup and in that type in "cd Cxxxxx\xxxxxx\xxxxx\xxxxxxx" Open up your CE source file and click into the dbkkernal directory. As you can see on the address bar there is the path of that folder, replace the path of what I have put as an example. So the black windo will look like: CWINDDK\3790~11.183>cd "your path" Note: CWINDDK\3790~11.183> - this is shown once you open the windows 2000 free build. cd - type this before your path Press enter after you have typed in the path. The words in the black screen will say the path name you have typed. After that, type ce.bat and press enter. Wait for a couple of seconds and then it will say compiling and done. 7 files compiled 1 executable built eg. Close the window. ----------------------------- ----------------------------- This is the long part. GameGuard detects the export function names in dbk32.dll, so we got to change it. But when CE loads the dbk32.dll, it calls the functions inside it by its function name. So there will be 3 files you need to change. Open "dbk32.dpr" in the folder "dbk32". As you can see there are a lot of exports. You will have to change them all . Yes it will take ages. In "dbk32.dpr", "dbk32functions.pas", "newkernelhandler.pas" change all the following to the ones i have mentioned. VQE ---> change1 OP ---> change2 OT ---> change3 NOP ---> change4 RPM ---> change5 WPM ---> change6 VAE ---> change7 CreateRemoteAPC ---> change8 ReadPhysicalMemory ---> change9 WritePhysicalMemory ---> change10 GetPhysicalAddress ---> change11 GetPEProcess ---> change12 GetPEThread ---> change13 ProtectMe ---> change14 UnprotectMe ---> change15 IsValidHandle ---> change16 GetCR4 ---> change17 GetCR3 ---> change18 SetCR3 ---> change19 GetSDT ---> change20 GetSDTShadow ---> change21 setAlternateDebugMethod ---> change22 getAlternateDebugMethod ---> change23 DebugProcess ---> change24 StopDebugging ---> change25 StopRegisterChange ---> change26 RetrieveDebugData ---> change27 GetThreadsProcessOffset ---> change28 GetThreadListEntryOffset ---> change29 GetDebugportOffset ---> change30 GetProcessnameOffset ---> change31 StartProcessWatch ---> change32 WaitForProcessListData ---> change33 GetProcessNameFromID ---> change34 GetProcessNameFromPEProcess ---> change35 GetIDTCurrentThread ---> change36 GetIDTs ---> change37 MakeWritable ---> change38 GetLoadedState ---> change39 ChangeRegOnBP ---> change40 DBKSuspendThread ---> change41 DBKResumeThread ---> change42 DBKSuspendProcess ---> change43 DBKResumeProcess ---> change44 test ---> change45 useIOCTL ---> change46 After that your done. you can compile the whole thing or just start CE and see if it works. If it doesnt the GG is detecting the dbk32.dll or .sys. ENJOY i guess o.o __________________ chickens

29th July 2006, 08:23	#4
zubler99 Z u B l E r 9 9 Knight of Wars Join Date: 10th Jun 2006 Location: look around..... BANG!! Posts: 147	lol shr!mp __________________ chickens

29th July 2006, 08:52	#5
ForeverBlake Currently:Hacking Devil of Hell Join Date: 22nd Feb 2006 Posts: 315	what you found zubler is missing very important parts at the end. you need to compile certain things and put into a seperate folder/etc. search for 'rollingdice's UCE tut' something like that it explains it more __________________ Call me Blake Lvl 10x WK - Hacking Lvl 7x HP Crusader - Break

29th July 2006, 06:14	#3
~~shr!mp~~ Banned by Moderators Lord Join Date: 29th Jul 2006 Posts: 37	Here's a really good UCE tutorial. sh!mp's guide to everything UCE

29th July 2006, 08:54	#6
Envy Hermit - GMS Hacker Knight of Wars Join Date: 19th Apr 2006 Location: NYC Home Of the Greatest Hackers xD Posts: 134	Also you have to include the hook/jumper parts.