• Amused
  • Angry
  • Annoyed
  • Awesome
  • Bemused
  • Cocky
  • Cool
  • Crazy
  • Crying
  • Down
  • Drunk
  • Embarrased
  • Enraged
  • Friendly
  • Geeky
  • Godly
  • Happy
  • Hateful
  • Hungry
  • Innocent
  • Meh
  • Piratey
  • Poorly
  • Sad
  • Secret
  • Shy
  • Sneaky
  • Tired
  • Wtf
  • At Work
  • CodenzHub
  • Coding
  • Deejaying
  • Donating
  • Drinking
  • Eating
  • Editing
  • Hacking
  • Hate Mailing
  • Jamin'
  • Lagging
  • Live Streaming
  • Lurking
  • No Status
  • Pawning
  • PC Gaming
  • PS Gaming
  • Raging
  • Reversing
  • Sleeping
  • Steam Gaming
  • Trolling
  • TwitchStreamer
  • Vodka!
  • Watching TV/Movie
  • Xbox Gaming
  • Youtuber
  • Zombies
  • Results 1 to 6 of 6
    1. #1
      Newbie
      Learning to hack games!
       
      Feeling Normal
       
      Krayons's Avatar
      Join Date
      Oct 2012
      Posts
      10
      Thanks (-->)
      0
      Thanks (<--)
      2

      Finding the base pointer

      Silent VPN
      Hi guys,

      is 002E79BC or 0x0D36A3E8 my base pointer. (See attached)

      thanks in advance.
      Attached Thumbnails Attached Thumbnails screenshot.png  

    2. #2
      Learning to hack games!
       
      Feeling Normal
       
      's Avatar
      Join Date
      Jan 1970
      Posts
      0
      Thanks (-->)
      294
      Thanks (<--)
      328
      Your basepointer is:

      game.exe + 0x002E79BC so yes, 0x002E79BC is the pointer.

      game.exe + 0x002E79BC = 0x0D36A3E8

      I hope this is clear and correct. Might be mistaken.



      Maybe this example makes it more clear if it wasn't yet.

      uint address = mem.baseaddress( <Game.exe> ) + 0x002E79BC;

      address = BitConverter.ToUInt32(BitConverter.GetBytes(mem.Re adPointer(address)), 0) + 0x4d0;
      address = BitConverter.ToUInt32(BitConverter.GetBytes(mem.Re adPointer(address)), 0) + 0x3c;
      address = BitConverter.ToUInt32(BitConverter.GetBytes(mem.Re adPointer(address)), 0) + 0x0;
      address = BitConverter.ToUInt32(BitConverter.GetBytes(mem.Re adPointer(address)), 0) + 0x100;
      address = BitConverter.ToUInt32(BitConverter.GetBytes(mem.Re adPointer(address)), 0) + 0x2cc;

      uint Outcome = BitConverter.ToUInt32(BitConverter.GetBytes(mem.Re adPointer(address)), 0);
      In your case, Outcome will hold 100 and will always be valid. So yes, 0x002E79BC is the pointer you are looking for.
      Last edited by Spock; 10-28-2012 at 04:34 PM.

    3. Thanks Ryuuzaki L thanked for this post
    4. #3
      Newbie
      Learning to hack games!
       
      Feeling Normal
       
      Krayons's Avatar
      Join Date
      Oct 2012
      Posts
      10
      Thanks (-->)
      0
      Thanks (<--)
      2
      Thanks for the Help.

      But I still don't seem to get it right.

      Here is my cpp code.

      DWORD FindscrapAddy(HANDLE hProcHandle){
      DWORD base = 0x002E79BC;
      DWORD pointer;
      ReadProcessMemory(hProcHandle,(void*)base,&pointer , sizeof(pointer), 0);
      cout << hex << pointer;
      return pointer;
      }

    5. #4
      Learning to hack games!
       
      Feeling Normal
       
      's Avatar
      Join Date
      Jan 1970
      Posts
      0
      Thanks (-->)
      294
      Thanks (<--)
      328
      Sent you a PM.

      p.s. You need to find the base address of the game.exe and add 0x002E79BC to that. Then add all the offsets, and you're all set.
      Last edited by Spock; 10-28-2012 at 05:52 PM.

    6. #5
      Newbie
      Learning to hack games!
       
      Feeling Normal
       
      Krayons's Avatar
      Join Date
      Oct 2012
      Posts
      10
      Thanks (-->)
      0
      Thanks (<--)
      2
      Thanks to Magnificient, I have been able to come to a solution.

      To find the base pointer check out this gist.
      https://gist.github.com/a413289ca0eb3e7515e5

      Code:
      #include <windows.h>
      #include <TlHelp32.h>
      #include <iostream>
      #include <TCHAR.H>
      
      
      using namespace std;
      
      
      DWORD dwGetModuleBaseAddress(DWORD dwProcessIdentifier, TCHAR *lpszModuleName)
      {
         HANDLE hSnapshot = CreateToolhelp32Snapshot(TH32CS_SNAPMODULE, dwProcessIdentifier);
         DWORD dwModuleBaseAddress = 0;
         if(hSnapshot != INVALID_HANDLE_VALUE)
         {
            MODULEENTRY32 ModuleEntry32 = {0};
            ModuleEntry32.dwSize = sizeof(MODULEENTRY32);
            if(Module32First(hSnapshot, &ModuleEntry32))
            {
               do
               {
                  if(_tcscmp(ModuleEntry32.szModule, lpszModuleName) == 0)
                  {
                     dwModuleBaseAddress = (DWORD)ModuleEntry32.modBaseAddr;
                     break;
                  }
               }
               while(Module32Next(hSnapshot, &ModuleEntry32));
            }
            CloseHandle(hSnapshot);
         }
         return dwModuleBaseAddress;
      }
      
      
      int main()
      {
         HWND window = FindWindow(0, _T("FTL"));
         if( window == 0 ){
            cout << "Window not found!\n";
            char f;
            cin >> f;
            return 0;
         }
      
      
         DWORD pID = 0;
         GetWindowThreadProcessId(window, &pID);
      
      
         DWORD baseAddr = dwGetModuleBaseAddress(pID, _T("FTLGame.exe"));
         DWORD staticOffset = 0x002E79BC;
      
      
         HANDLE handle = OpenProcess(PROCESS_ALL_ACCESS, FALSE, pID);
      
      
         DWORD value;
         DWORD numBytesRead;
         ReadProcessMemory(handle, (LPCVOID)(baseAddr+staticOffset), &value, sizeof(DWORD), &numBytesRead);;
      
      
         CloseHandle(handle);
         cout << "Found value: " << hex << value;
      
      
         char f;
         cin >> f;
         return 0;
      }

    7. #6
      Learning to hack games!
       
      Feeling Normal
       
      's Avatar
      Join Date
      Jan 1970
      Posts
      0
      Thanks (-->)
      294
      Thanks (<--)
      328
      Silent VPN
      Glad to see that you've worked it out!

      Have fun and good luck!

    Similar Game Hacker Threads

    1. [Help] Finding Base Address?
      By Prometheus in forum Counter-Strike: Source Hacks
      Replies: 15
      Last Post: 08-24-2016, 07:01 AM
    2. [Help] [L4D2] Help please with finding Bone Matrix base!
      By dragonborn in forum Source Engine Hacks
      Replies: 4
      Last Post: 05-14-2016, 12:54 PM
    3. [Help] Finding Player and Entity Base Structure
      By arlight1 in forum Hacking Help
      Replies: 3
      Last Post: 10-18-2015, 08:58 PM
    4. Finding simpe base address.
      By Onsed1970 in forum Hacking Help
      Replies: 12
      Last Post: 08-25-2015, 01:00 PM
    5. [Help] Finding Float From Multilevel Pointer with DLL Base Address C#
      By coolestgamer123 in forum Hacking Help
      Replies: 3
      Last Post: 12-23-2014, 02:08 PM