• Amused
  • Angry
  • Annoyed
  • Awesome
  • Bemused
  • Cocky
  • Cool
  • Crazy
  • Crying
  • Down
  • Drunk
  • Embarrased
  • Enraged
  • Friendly
  • Geeky
  • Godly
  • Happy
  • Hateful
  • Hungry
  • Innocent
  • Meh
  • Piratey
  • Poorly
  • Sad
  • Secret
  • Shy
  • Sneaky
  • Tired
  • Wtf
  • At Work
  • CodenzHub
  • Coding
  • Deejaying
  • Donating
  • Drinking
  • Eating
  • Editing
  • Hacking
  • Hate Mailing
  • Jamin'
  • Lagging
  • Live Streaming
  • Lurking
  • No Status
  • Pawning
  • PC Gaming
  • PS Gaming
  • Raging
  • Reversing
  • Sleeping
  • Steam Gaming
  • Trolling
  • TwitchStreamer
  • Vodka!
  • Watching TV/Movie
  • Xbox Gaming
  • Youtuber
  • Zombies
  • Results 1 to 4 of 4
    1. #1
      Kim Kong Trasher
      I don't have status.
       
      Raging
       
      c5's Avatar
      Join Date
      Jul 2012
      Location
      Mankei Iland
      Posts
      1,221
      Thanks (-->)
      97
      Thanks (<--)
      492

      Post BattlEye analyst

      Silent VPN
      A little python script I put together to fight against battleye's updates, I've excluded most of my private vital stuff (don't be hatin'), but this should still provide some insight on automating things for IDA.

      Code:
      import idautils
      import idaapi
      
      
      Message("\n===================\n")
      Message("BattlEye Analyst 0.1\n")
      
      for x in idautils.Functions() :
      	funcName = GetFunctionName(x)
      	if funcName == "GetVer" :
      		print("BattlEye version: %d " % Byte(int(x) + 1))	
      		
      Message("\n===================\n")
      
      #
      		
      Message("Main exports:\n")		
      		
      for x in idautils.Functions() :
      	funcName = GetFunctionName(x)
      	if funcName == "GetVer" :
      		print("GetVer: %s " % hex(x))
      	elif funcName == "Init" :
      		print("Init: %s " % hex(x))
      	elif funcName == "StartAddress" :
      		print("StartAddress: %s " % hex(x))
      		
      #
      		
      Message("\n")		
      Message("Improtant imports: \n")
      
      # find main imports (APIs) #
      ValuableImports = ["OpenProcess","ReadProcessMemory","VirtualQuery","VirtualQueryEx", "GetThreadContext"]
      
      def imp_cb(ea, name, ord):
          if name:
      		for i in ValuableImports:
      			if i == name:
      				print "%s: %x" % (name, ea)
      
          return True
      
      nimps = idaapi.get_import_module_qty()
      
      for i in xrange(0, nimps):
          name = idaapi.get_import_module_name(i)
          if not name:
              continue
      
          idaapi.enum_import_names(i, imp_cb)
      	
      #
      	
      Message("\n")
      Message("Main scan routines: \n")
      
      
      segments = dict()
      
      for seg_ea in Segments() :
      	data = []
      	
      	for ea in range(seg_ea, SegEnd(seg_ea)) :
      		data.append(chr(Byte(ea)))
      
      	segments[SegName(seg_ea)] = ''.join(data)
      
      
      # .text start and end address	
      Start = 0x10001000
      End = 0
      
      for seg_name, seg_data in segments.items() :
      	if (seg_name == ".text") :
      		End = 0x10001000 + len(seg_data)
      	
      # find pattern function		
      def findPattern(current, pat, mask):
      	Index = 0
      	for x in pat :
      		if mask[Index] == "?" :
      			Index = Index + 1
      			continue
      		if x != Byte(current + Index) :
      			return 0
      		else :
      			Index = Index + 1	
      	return current
      	
      # some patterns
      VirtualQueryScanPat = [0x55, 0x8B, 0xEC, 0x6A, 0xFE, 0x68, 0xFF, 0xFF, 0xFF, 0xFF, 0x68, 0xFF, 0xFF, 0xFF, 0xFF, 0x64, 0xA1, 0x00, 0x00, 0x00, 0x00, 0x50, 0x83, 0xEC, 0x30, 0x53, 0x56, 0x57]
      VirtualQueryMask = "xxxxxx????x????xxxxxxxxxxxxx"
      	
      ProcessScanPat = [0x81, 0xEC, 0x4C, 0x02, 0x00, 0x00, 0xA1, 0x58, 0x94, 0x01, 0x10, 0x33, 0xC4]
      ProcessScanMask	= "xxxxxxxxxxxxx "
      
      MainScanThreadPat = [0x55, 0x8B, 0xEC, 0x6A, 0xFE, 0x68, 0xFF, 0xFF, 0xFF, 0xFF, 0x68, 0xFF, 0xFF, 0xFF, 0xFF, 0x64, 0xA1, 0x00, 0x00, 0x00, 0x00, 0x50, 0x81, 0xEC]
      MainScanThreadMask = "xxxxxx????x????xxxxxxxxx"
      
      n = Start
      while n < End :
      	if findPattern(n, MainScanThreadPat, MainScanThreadMask) != 0 :
      		print("Main scan thread: 0x%x" % n)
      	n = n + 1
      
      # find patterns / scans	
      n = Start
      while n < End :
      	if findPattern(n, VirtualQueryScanPat, VirtualQueryMask)  != 0 :
      		print("VirtualQuery scan: 0x%x" % n)
      
      	if findPattern(n, ProcessScanPat, ProcessScanMask) != 0 :
      		print("ProcessScan 1: 0x%x" % n)
      		
      	n = n + 1
      	
      	
      Message("\n==== Complete! ====\n")
      Don't be harsh on my python skills, I've been learning it for just 2 hours lol
      Last edited by c5; 09-09-2013 at 10:01 AM.
      BattlEye analyst

    2. #2
      Newbie
      Learning to hack games!
       
      Feeling Normal
       
      bryant143's Avatar
      Join Date
      Oct 2013
      Posts
      2
      Thanks (-->)
      0
      Thanks (<--)
      0
      sir can you give me the software ?

    3. #3
      Kim Kong Trasher
      I don't have status.
       
      Raging
       
      c5's Avatar
      Join Date
      Jul 2012
      Location
      Mankei Iland
      Posts
      1,221
      Thanks (-->)
      97
      Thanks (<--)
      492
      Quote Originally Posted by bryant143 View Post
      sir can you give me the software ?
      IDA Pro with IDA Python plugin to run scripts.
      BattlEye analyst

    4. #4
      Newbie
      Learning to hack games!
       
      Feeling Normal
       
      bryant143's Avatar
      Join Date
      Oct 2013
      Posts
      2
      Thanks (-->)
      0
      Thanks (<--)
      0
      Silent VPN
      sir i dont know what its the IDA -_- Im only a computer technician but i dont know what its CC++ and u mean -_- do you have software only can run or click only ,.,.
      PLss sir help me to hack mornia online any cheat








      the body said its Yes BUT the brain said its No ,.,

    Similar Game Hacker Threads

    1. BattlEye Bypass? How Easy? Any Suggestions?
      By necrohhh in forum Hacking Help
      Replies: 4
      Last Post: 01-12-2013, 12:37 PM

    Tags for this Thread