Xemectrum

The community that will never stop discussing!
https://xemectrum.guyz92.men/

Universal HS bypass (CE/hack tool/hs driver bypass) for all

https://xemectrum.guyz92.men/viewtopic.php?t=3139

Page 1 of 6

Universal HS bypass (CE/hack tool/hs driver bypass) for all

Posted: Tue Feb 15, 2011 12:36 pm
by helohelo1
Took out the MS-CRC bypass from the full bypass in babypass [GMS].

Its a full hackshield and CRC bypass

so this should bypass every single version of MS and hackshield version out there as of today.

this bypasses

CE
hack tool
HS-CRC
HS driver
note: you need to find your own MSCRC hook for the specific maple using this+CE.

Without ms crc so you can't use scripts or memory change. you can use ce to do ms crc.

download
http://depositfiles.com/files/uev0z42z6
enjoy


Credits to Bizarro

Re: Universal HS bypass (CE/hack tool/hs driver bypass) for

Posted: Tue Feb 15, 2011 12:39 pm
by xiangloong
Oi MOTHER FUCKER DON DO THAT.OR ELSE BIZARRO WILL NEVER RELEASE AGAIN!TAKE IT DOWN RIGHT AWAY NOOB!

Re: Universal HS bypass (CE/hack tool/hs driver bypass) for

Posted: Tue Feb 15, 2011 12:50 pm
by helohelo1
Anyway that link can't be downloaded, keep broking down. Invalid params. Scold me noob and mother fucker want me to take down? dream on

Re: Universal HS bypass (CE/hack tool/hs driver bypass) for

Posted: Tue Feb 15, 2011 1:46 pm
by Raiden
It does NOT work. Maple won`t load. It stucks at black screen b4 "Asiasoft".

@xiangloong: since it don`t work, no argues about releasing lol~

Re: Universal HS bypass (CE/hack tool/hs driver bypass) for

Posted: Tue Feb 15, 2011 2:15 pm
by xiangloong
Okay.Well,for TS i might too much of fire.Sorry?

Re: Universal HS bypass (CE/hack tool/hs driver bypass) for

Posted: Tue Feb 15, 2011 11:44 pm
by Nerrazzuri
Works for me.

Check the hook for IsWow64Process, OpenProcess, GetNativeSystemInfo, CreateFileA

Re: Universal HS bypass (CE/hack tool/hs driver bypass) for

Posted: Wed Feb 16, 2011 1:59 am
by darkpride
This is public for a reason... Bizzaro wanna release this... Anyway it works

Raiden black screen? using MSCRC bypass?

Re: Universal HS bypass (CE/hack tool/hs driver bypass) for

Posted: Wed Feb 16, 2011 2:19 am
by SoullessSoul
Any public MSCRC?

Re: Universal HS bypass (CE/hack tool/hs driver bypass) for

Posted: Wed Feb 16, 2011 2:21 pm
by skeletonboi
Dont understand how to make it work.
Paste the dll into maplestory directory?
Or somewhere?
After that open maplestory and done?

Re: Universal HS bypass (CE/hack tool/hs driver bypass) for

Posted: Wed Feb 16, 2011 2:37 pm
by Raiden
Picture shows a million words.
NotWorking01.png
Edit: Now it works for me, BUT CRC scripts and debuggers WON`T work. The MSCRC won`t work AT ALL. Sigh~
The bad side of the bypass: I can only use softkeyboard to login. Keyboard is locked on login page and 2nd password enter page.
MSCRC: (CE Auto-Assemble code)

Code: Select all

//MSCRC Bypass
//This script is dynamic, no nid update except if AoB changed.
//Original by Nimo
[Enable]
//MS CRC Bypass 
//CE Assembly Script by nimo1993.
//If you can't execute this script, please press "Memory view"->"View". Check whether "Kernelmode symbols" item is checked.
Alloc(CRCBypass,512)
Alloc(FakeDump,8376320)
Label(MSCRCBypass)
Label(Normal)
Label(MSmemcpy)
Label(SearchAOB)
Label(StartHook)
Label(Title)
Label(FailureMsg)
Label(SuccessMsg)
Label(BackToMSCRC)
RegisterSymbol(MSCRCBypass)
RegisterSymbol(FakeDump)

CreateThread(MSmemcpy)

CRCBypass:
MSCRCBypass:
push eax
lea eax, [ecx]
cmp eax, 00401000
jb Normal
cmp eax, 00D00000
ja Normal
push ebx
mov ebx, FakeDump
sub eax, 00401000
add eax, ebx
movzx ecx, byte ptr [eax]
pop ebx
pop eax
jmp Normal+04

Normal:
pop eax
movzx ecx, byte ptr [ecx]
mov edx, [ebp+14]
jmp [BackToMSCRC]



MSmemcpy:
//Copy Memory
mov edi, FakeDump
mov esi, 00401000
mov ecx, 001FF400
repe movsd

mov eax, 00401000
SearchAOB:
cmp [eax], 8B09B60F
je StartHook
inc eax
cmp eax, 00D00000
jle SearchAOB
push 10 //MB_ICONERROR
push Title
push FailureMsg
push 00
call MessageBoxA
ret
StartHook:
lea ebx, [eax+05] //The Target Address - The Next Address
sub ebx, MSCRCBypass
neg ebx
mov byte ptr [eax], e9 //jmp
mov [eax+01], ebx //Target AOB
mov byte ptr [eax+05], 90 //nop
add eax, 6
mov [BackToMSCRC], eax //Return to the address+6
push 40 //MB_ICONINFORMATION
push Title
push SuccessMsg
push 00
call MessageBoxA
ret

Title:
db 'MS-CRC-Bypass' 00
FailureMsg:
db Anti-MS-CRC-Check Fail!' 00
SuccessMsg:
db 'Anti-MS-CRC-Check Init Successfully!' 00
BackToMSCRC:
dd 0
[Disable]
All times are UTC+08:00
Page 1 of 6

Powered by phpBB® Forum Software © phpBB Limited