[REQ]A TuT on Make A Bypass and CRC bypass
Moderator: wizme
-
Nerrazzuri
- Destiny General
- Posts: 1110
- Joined: Sun Dec 20, 2009 9:15 pm
Re: [REQ]A TuT on Make A Bypass and CRC bypass
I've tried few plugins but still can't/
Selling my ultimate trainer for MapleStory SEA --> View below for screenshot
Click Here for more Information!
Click Here for more Information!
Re: [REQ]A TuT on Make A Bypass and CRC bypass
what are u going to do after u unpack maple ==
Re: [REQ]A TuT on Make A Bypass and CRC bypass
get a random code and find out what accesses it ?
lol , idk sia .
lol , idk sia .
Re: [REQ]A TuT on Make A Bypass and CRC bypass
you can only do that when maple is running, but when maple is running, hshield also runs, so u cant use olly, unless u bypass hackshield
if u got bypass, u can find out what access with just CE, and you dont have to unpack it at all
i dont think if there are tuts out there to bypass crc with just unpacked maple..
if u got bypass, u can find out what access with just CE, and you dont have to unpack it at all
i dont think if there are tuts out there to bypass crc with just unpacked maple..
-
Nerrazzuri
- Destiny General
- Posts: 1110
- Joined: Sun Dec 20, 2009 9:15 pm
Re: [REQ]A TuT on Make A Bypass and CRC bypass
To use CE you need to fully kill Hackshield.zile wrote:you can only do that when maple is running, but when maple is running, hshield also runs, so u cant use olly, unless u bypass hackshield
if u got bypass, u can find out what access with just CE, and you dont have to unpack it at all
i dont think if there are tuts out there to bypass crc with just unpacked maple..
Selling my ultimate trainer for MapleStory SEA --> View below for screenshot
Click Here for more Information!
Click Here for more Information!
Re: [REQ]A TuT on Make A Bypass and CRC bypass
[ Leeched ]
Prerequisite: Basic skill in debugging/unpacking.
Require Tools: OllyDbg (or any suitable debugger you prefer)
Optional Tools: IDA Pro & any process dumping tools (procdump/lordpe)
1. Find the actual OEP (original entry point) of ms. Don't know how or understand? Go find tutorials on unpacking.
2. Load ms to ollydbg. Set write memory breakpoint on the OEP. Resume the process. You may want to use hide debugger plugins for ollydbg so you no need to bypass the debugger checks manually.
3. The ms process will stop, resume it again & it will stop at the code where it write code at OEP to jump into the new OEP.
4. Remove memory breakpoints. Execute till return. Optionally you may want to set breakpoint on the new OEP & continue run. Nothing more than to ensure everything is unpacked.
5. Nop the following 4 lines & set bp on the code following. Resume run till it hit the bp. Remove the breakpoint & restore back the codes that we just nop (highlight & undo selection).
seg000:005E19C6********nop******mov ecx, esi
seg000:005E19C8********nop******call sub_5E20EE
seg000:005E19CD********nop******mov ecx, esi
seg000:005E19CF********nop******call near ptr dword_5E2AEF
6. Resume ms. If you are using WinXP & using hide debugger plugin, you can detach ollydbg from ms.
As for finding where to nop just trace the functions that referencing "AcGuardianEvent". Then trace back few level of calls prior to that.
I DUNNO WHAT HE TALKING @_@
Prerequisite: Basic skill in debugging/unpacking.
Require Tools: OllyDbg (or any suitable debugger you prefer)
Optional Tools: IDA Pro & any process dumping tools (procdump/lordpe)
1. Find the actual OEP (original entry point) of ms. Don't know how or understand? Go find tutorials on unpacking.
2. Load ms to ollydbg. Set write memory breakpoint on the OEP. Resume the process. You may want to use hide debugger plugins for ollydbg so you no need to bypass the debugger checks manually.
3. The ms process will stop, resume it again & it will stop at the code where it write code at OEP to jump into the new OEP.
4. Remove memory breakpoints. Execute till return. Optionally you may want to set breakpoint on the new OEP & continue run. Nothing more than to ensure everything is unpacked.
5. Nop the following 4 lines & set bp on the code following. Resume run till it hit the bp. Remove the breakpoint & restore back the codes that we just nop (highlight & undo selection).
seg000:005E19C6********nop******mov ecx, esi
seg000:005E19C8********nop******call sub_5E20EE
seg000:005E19CD********nop******mov ecx, esi
seg000:005E19CF********nop******call near ptr dword_5E2AEF
6. Resume ms. If you are using WinXP & using hide debugger plugin, you can detach ollydbg from ms.
As for finding where to nop just trace the functions that referencing "AcGuardianEvent". Then trace back few level of calls prior to that.
I DUNNO WHAT HE TALKING @_@
-
Nerrazzuri
- Destiny General
- Posts: 1110
- Joined: Sun Dec 20, 2009 9:15 pm
Re: [REQ]A TuT on Make A Bypass and CRC bypass
Where you get that information?
Selling my ultimate trainer for MapleStory SEA --> View below for screenshot
Click Here for more Information!
Click Here for more Information!
Re: [REQ]A TuT on Make A Bypass and CRC bypass
from Google ! hahah .
-
Nerrazzuri
- Destiny General
- Posts: 1110
- Joined: Sun Dec 20, 2009 9:15 pm
Re: [REQ]A TuT on Make A Bypass and CRC bypass
Link us there, we might found something useful.
Selling my ultimate trainer for MapleStory SEA --> View below for screenshot
Click Here for more Information!
Click Here for more Information!
Re: [REQ]A TuT on Make A Bypass and CRC bypass
okie , you need to scroll down a little bit .
http://www.mpcforum.com/archive/index.php/t-92190.html
http://www.mpcforum.com/archive/index.php/t-92190.html