Guide Anticheat nProtect Gameguard Bypass

Hexui Undetected CSGO Cheats Sinkicheat PUBG Cheat

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
Game Name
N/A
Anticheat
GameGuard
How long you been coding/hacking?
5 years
Coding Language
N/A
nProtect GameGuard (sometimes called GG) is an anti-cheating rootkit developed by INCA Internet. It is widely installed in many online games to block possibly malicious applications and prevent common methods of cheating. nProtect GameGuard provides B2B2C (Business to Business to Consumer) security services for online game companies and portal sites. The software is considered to be one of three software programs which "dominate the online game security market".

GameGuard uses rootkits to proactively prevent cheat software from running. GameGuard hides the game application process, monitors the entire memory range, terminates applications defined by the game vendor and INCA Internet to be cheats, blocks certain calls to Direct X functions and Windows APIs, keylogs keyboard input, and auto-updates itself to change as new possible threats surface.

Since GameGuard essentially works like a rootkit, players may experience unintended and potentially unwanted side effects. If set, GameGuard blocks any installation or activation of hardware and peripherals (e.g., a mouse) while the program is running. Since GameGuard monitors any changes in the computer's memory, it will cause performance issues when the protected game loads multiple or large resources all at once.

Additionally, some versions of GameGuard have an unpatched privilege escalation bug, allowing any program to issue commands as if they were running under an Administrator account.

GameGuard possesses a database on game hacks based on security references from more than 260 game clients. Some editions of GameGuard are now bundled with INCA Internet's Tachyon anti-virus/anti-spyware library, and others with nProtect Key Crypt, an anti-key-logger software that protects the keyboard input information.

List of online games using GameGuard
GameGuard Bypass Information

Read over our general anticheat guide:
https://guidedhacking.com/threads/how-to-get-started-with-anticheat-bypass.9882/

Try VEH Debugger in Cheat Engine, Undetected Cheat Engine & Scylla Hide

GameGuard blocks all debuggers including Cheat Engine.

GameGuard will block OpenProcess and ToolHelp32Snapshot specifically

GameGuard uses HeartBeat packets. If the anticheat stops communicating with the server, you will get disconnected. So if your game uses the heartbeat feature you have to bypass that part as well.

Old Versions of GameGuard you can put your DLL on a flash drive and use an autoinjector that injects the second the game loads, it will inject your hack before GameGuard starts running, then you unplug your flash drive and old versions of GameGuard can't find your hack. This won't work on newer versions.

String Decryptor
https://guidedhacking.com/threads/idapython-gameguard-string-decryptor.10220/




6 Other GameGuard Bypasses in the posts below
 
Last edited:
  • Love
Reactions: Kleon742

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
RumbleFighter GameGuard bypass written with C++ 11 using win32

https://github.com/neetjn/oro-bypass

Full source code attached to this thread also

Here is main.cpp
C++:
void Oro::init()
{

    while (FindWindow("Rumble Fighter", "Rumble Fighter") == NULL)
        Sleep(2500);

    DWORD dw_min = 0x400000;
    DWORD dw_max = 0x7FFFFF;

  this->gg_start = scanner::find_pattern(
    dw_min, dw_max, "55 8B EC B8 18 10 00 00  E8"
  );

  this->gg_window_check = scanner::find_pattern(
    dw_min, dw_max, "3D 55 07 00 00 ? ? 8B 15 "
  ) + 0x5;

  DWORD gg_check_sub = scanner::find_pattern(
    dw_min, dw_max, "55 8B EC 81 EC 08 02 00 00 A1 ? ? ? 00 33 C5"
  ); // # get base address for gameguard check subroutine

  this->gg_falsified = gg_check_sub + 0x110;
  this->gg_hack_detected = gg_check_sub + 0x109;
  this->gg_init = gg_check_sub + 0x9D;
  this->gg_speed_hack = gg_check_sub + 0xD1;
  this->gg_unhandeled_exception = gg_check_sub + 0x96;

  this->gg_access = scanner::find_pattern(
    dw_min, dw_max, "8D 86 08 3A 00 00"
  ) - 0x34;

  this->initialized = true;

}

void Oro::bypass()
{

  if (this->initialized)
  {

    // # stop client from "starting" GameGuard
    memapi::write(0x41A300, "C2 00 00 00 00 90 90");

    // # disable initial GG check
    memapi::write(this->gg_window_check, "EB");

    // # disable gg scan/check routine by detouring individual checks
    // # - disabling individual checks because it has proven safer
    // # - otherwise we need to disarm this subroutine at each ref. including in external threads
    // TODO: create jmp based off of end sub address
    // possibly try inline assembly?
    memapi::write(this->gg_falsified, "EB 24");  // # route to no errors detected
    memapi::write(this->gg_hack_detected, "EB 2B");  // # route to no errors detected
    memapi::write(this->gg_init, "E9 94 00 00 00 90 90");  // # route to no errors detected
    memapi::write(this->gg_speed_hack, "EB 63 90 90 90");
    memapi::write(this->gg_unhandeled_exception, "E9 9B 00 00 00 90 90");  // # route to no errors detected

    // # spoof status code from GG daemon
    // # - client sends a request to the GG daemon to check if client is ok
    // # - if client can't be contacted GG daemon will kill process
    // # - if daemon can't be contacted, client will kill itself
    // # - patch by simply returning the expected status code
    //memapi::write(this->gg_access, "C2 00 00 00 00 90 90"); // # toggle good return status (code 0)

    // # kill gg daemon
    std::vector <std::string> processes{ "GameMon.des", "GameMon64.des" };

    for (std::string& i : processes) {
      if (!utils::kill_process_by_name(i.c_str())) {
        // # fallback to pstools @ https://docs.microsoft.com/en-us/sysinternals/downloads/pskill
        #if _WIN32 || _WIN64
          #if _WIN64
            std::string cmd = "pskill -t " + i;
          #else
            std::string cmd = "pskill64 -t " + i;
          #endif
        #endif
        system(cmd.c_str());
      }
    }
  }

}
 

Attachments

Last edited:

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
from reddit, Blade and Soul bypass

So it seems like a lot of people bypassing GameGuard by using the old "leaked" client.

now here is what to do to get and use it. (DO IT AT YOUR OWN RISK)
  1. Download the old bin64 folder from here: bin64 (idk if mediafire is allowed here) and config64.dat from here config64
  2. extract bin64.rar to get bin64 folder (which has client.exe in it).
  3. open C:\Program Files (x86)\NCSOFT\BnS and remove bin64 that is there, and put the one extracted in step 2.
  4. replace config64.dat downloaded in step 1 with the one inside C:\Program Files (x86)\NCSOFT\BnS\contents\Local\NCWEST\data
  5. go to C:\Program Files (x86)\NCSOFT\BnS\bin64 and start the bat file called "Start EU Server" for EU and "Start NA Server" for NA.
the game will open and ask for your info, you just login and you are good to go. no gameguard will be running, and all your X Mouse/whatever app you used will run normally.

I have tried this myself and it works, so i decided to share it. do it with caution.

EDIT: replacing config64.dat may not be necessary, you could try without replacing it at first.

EDIT2: seems like the bypass isn't needed anymore, but it's there if someone ever find it useful again.

EDIT3: I currently use this,
, to bypass GG and it works perfectly.
 
Last edited:

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
Something I found online on a university website by Carter Jones

An Explanation of the Need for CRC Bypasses in MapleStory
By Carter Jones

Preface:


This article was originally posted in a community forum regarding a game called MapleStory. The article has been modified slightly to make it easier to understand for those not familiar with the game.

Modified Article:
The question arises from time to time, "If I have a UCE1, do I need CRC bypass?” Well, here is the short
answer: yes. Here is the long answer…

First, you need to understand what is being bypassed in the first place.

Cyclic Redundancy Check (CRC):
A CRC is defined by Wikipedia as: “a type of function that takes as input a data stream of any length and produces as output a value of a certain fixed size.” Simply put, this means that there is a special computer algorithm (CRC) that takes a part of memory and doing its CRC magic comes up with a value.

For example, assume that this is a part of MapleStory's memory:
00 80 3C 37 90 89

Now, assume that a highly oversimplified CRC check takes the first number of each pair of numbers and adds them together to get the value. That means that it adds 0+8+3+3+9+8 together to get 31. Also, assume that a hack that gives god mode2 needs to change the 37 to a 52. So now the memory would look like this:

00 80 3C 52 90 89

So when the CRC comes around and checks that area of memory, it does its magic, 0+8+3+5+9+8 to get 33. This check just found the CRC value of 31 had been changed to 33, which tells the CRC that the program's memory has been changed. In this case, the user would be caught. He/she obviously doesn't want that to happen, so the user would implement a solution to the problem known as a CRC bypass. Now that the concept of a CRC has been sufficiently explained for this discussion, a CRC bypass will be more analyzed. Every case will be different, so the main theory behind a CRC bypass will be discussed. A CRC bypass is a function, program, etc. that manages to completely avoid the CRC being called or tricks the CRC into thinking that it is checking the currently running target process, when it is really checking a saved state of the target process’s memory that is saved to disk. Again, this is an extremely general explanation of a how a CRC bypass could operate; there are many ways a CRC bypass can be implemented.

UCE. This is an undetected cheat engine, usually in reference to DarkByte’s Cheat Engine, which is freely available for download at Cheat Engine

god mode. This is a hack that allows the player to have invincibility, where he/she normally would not.

Next, the GameGuard CRC bypass and MapleStory CRC bypass will be discussed.

GameGuard 3 does two things:
1) It checks all the running processes on the computer for anything that has been flagged "hacker
tool" by the GameGuard people.
2) It performs a CRC on MapleStory's memory.

To combat these two things, hackers have implemented two things:

1) UCEs
2) GameGuard CRC bypass (GGCRC bypass)

Using the Cheat Engine source code, hackers find out what is detected by GameGuard, and either remove or change it from the original Cheat Engine code. Then, it becomes undetected, hence a UCE. Using a UCE, the first check GameGuard performs is defeated. To avoid being caught for actually changing memory in maplestory, the GGCRC bypass defeats the second check that GameGuard performs.

MapleStory:
This is similar to the GGCRC bypass in that it is checking the currently running MapleStory process. The only difference is that this time, MapleStory is checking itself using its own CRC. So to bypass this, a MapleStory CRC bypass (MSCRC bypass) is implemented. With all this knowledge, the original question can be answered. Yes, you need a UCE, MSCRC bypass, and a GGCRC bypass. Simply put, the UCE can be running at the same time as MapleStory and GameGuard, without problems. But, the UCE can’t change the memory of MapleStory, without getting caught unless a GGCRC bypass and MSCRC bypass are used. Hopefully, this explains what CRCs are, why they prevent unauthorized changes in memory, and the basic theory of how CRC bypasses work.
 
Last edited:
  • Like
Reactions: Kleon742

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
AutoIt GameGuard Bypass by Larva

C++:
#include<array.au3>
;#include<PixelCheckSumFindAll.au3>
#Include<GUIConstants.au3>
#include<misc.au3>
#include<string.au3>
#include<A3LScreenCap.au3>
#include<IE.au3>

Opt("PixelCoordMode", 0);1=absolute & Default, 0=relative, 2=client area  ;Set CoOrds relative to Window not screen
Opt("MouseCoordMode", 0)

HotKeySet("`","_Go")
HotKeySet("~","_record")
HotKeySet('{esc}', '_Exit')

Local $msg = "Press Shift+tilde to Record "&@LF&"Press tilde to Find "&@LF&"info saved in NoMia.ini"
Local $xy,$currentpixel,$FileBMP = ".\Render.bmp",$IniFile = ".\NoMIA.ini"

_initialize($IniFile)

While 1
    $xy = MouseGetPos()
    $currentpixel = PixelGetColor($xy[0],$xy[1])
    ToolTip("Pixel color = " & $currentpixel & @LF & $msg)
    Sleep(100)
WEnd

Func _Go()
    $pixel = Int(IniRead($IniFile,"Rec1","PixelColor","-1"))
    $chksum = Int(IniRead($IniFile,"Rec1","PixelCheckSum","-1"))
    $WinLoc = WinGetPos("")
    _ScreenCap_Capture($FileBMP, $WinLoc[0], $WinLoc[1],$WinLoc[0]+$WinLoc[2],$WinLoc[1]+$WinLoc[3])        ;Create Image
    _RenderImg($FileBMP, $WinLoc[0], $WinLoc[1])                                                            ;Render Image
    $WinLoc = WinGetPos(" Render VD")
    $Array = _PixelCheckSumFindAll( $pixel, $chksum, 5, 5, 5, 5, 0, 0, $WinLoc[2], $WinLoc[3])              ;Find in Image
    GUISetState(@SW_HIDE)
    For $i = 1 to $Array[0][0]                                                                              ;Demonstrate Found locations
        MouseMove($Array[$i][0],$Array[$i][1], 10)
        MouseClick("Left")
    Next
    _ArrayDisplay($Array)
EndFunc

Func _record()
    IniWrite($IniFile,"Rec1","PixelColor",$currentpixel)
    Local $chksum = PixelChecksum($xy[0]-5, $xy[1]-5, $xy[0]+5, $xy[1]+5)
    IniWrite($IniFile,"Rec1","PixelCheckSum",$chksum)
    ToolTip('          '&@CRLF&'  SAVED  '&@CRLF&'          ')
    Sleep(500)
EndFunc

Func _Exit()
    ToolTip('          '&@CRLF&'  EXITING  '&@CRLF&'          ')
    Sleep(500)
    Exit
EndFunc

Func _initialize($IniFile)
    ;For $i = 0 to 9
        $val01 = IniRead($IniFile, "Rec1","PixelColor", -1)
        $val02 = IniRead($IniFile, "Rec1","PixelCheckSum", -1)
        $val03 = IniRead($IniFile, "Rec1","Left_SerchArea", -1)
        $val04 = IniRead($IniFile, "Rec1","Top_SerchArea", -1)
        $val05 = IniRead($IniFile, "Rec1","Right_SerchArea", -1)  
        $val06 = IniRead($IniFile, "Rec1","Bottom_SerchArea", -1)    
        If $val01 = -1 then IniWrite($IniFile, "Rec1","PixelColor", "0")
        If $val02 = -1 then IniWrite($IniFile, "Rec1","PixelCheckSum", "0")  
        If $val03 = -1 then IniWrite($IniFile, "Rec1","Left_SerchArea", "0")
        If $val04 = -1 then IniWrite($IniFile, "Rec1","Top_SerchArea", "0")
        If $val05 = -1 then IniWrite($IniFile, "Rec1","Right_SerchArea", "100")
        If $val06 = -1 then IniWrite($IniFile, "Rec1","Bottom_SerchArea", "100")
    ;Next
EndFunc

Func _RenderImg($FileBMP, $x, $y)
    $size = _ImageGetSize($FileBMP) ; 0 = width, 1 = height
    $Form1 = GUICreate(" Render VD", $size[0], $size[1], $x, $y, $WS_POPUP)
    GUICtrlCreatePic($FileBMP,0,0,$size[0],$size[1])
    GUISetState(@SW_SHOW)
EndFunc

;===============================================================================
; Function Name:    _PixelCheckSumFindAll
; Description:      Finds all instances of Checksum within a given area and returns array with Total and all locations X and Y.
; Parameters:      $Pixel          Colour value of pixel to find (in decimal or hex).
;                  $chksum        Previously generated checksum value of the region per(PixelChecksum)
;                  $CS_l          left coordinate of rectangle. (amount to subtract)
;                  $CS_t          Top coordinate of rectangle. (amount to subtract)
;                  $CS_r          Right coordinate of rectangle. (amount to add)
;                  $CS_b          Bottom coordinate of rectangle. (amount to add)
;                  $SB_l          left coordinate of total area to search. Default is 0 (far left side of screen)
;                  $SB_t          top coordinate of total area to search. Default is 0 (top most Side of screen)
;                  $SB_r          Right coordinate of total area to search. Default is @DesktopWidth (Far Right side of screen)
;                  $SB_b          Bottom coordinate of total area to search. Default is @DesktopHeight (Bottom most side of screen)
; Syntax:          _PixelCheckSumFindAll($pixel, $chksum, $CS_l, $CS_t, $CS_r, $CS_b[, $SB_l, $SB_t, $SB_r, $SB_b])
; Author(s):        ofLight
; Returns:          $Array[0][0] = 0 on failure, $Array on success
;===============================================================================
Func _PixelCheckSumFindAll($pixel,$chksum,$CS_l,$CS_t,$CS_r,$CS_b,$SB_l=0,$SB_t=0,$SB_r=@DesktopWidth,$SB_b=@DesktopHeight)
    $SB_b_Max = $SB_b
    $SB_l_Max = $SB_l
    Dim $Array[2][2]
    $Array[0][0] = "0"
    $Count = "0"
    While 1
        $xy = PixelSearch($SB_l,$SB_t,$SB_r,$SB_b,$pixel, 0)
        If @error And $SB_b = $SB_b_Max Then
            SetError(1)
            Return $Array
        ElseIf @error Then
            $SB_t = $SB_b + 1
            $SB_b = $SB_b_Max
            $SB_l = $SB_l_Max
        ElseIf $chksum = PixelCheckSum($xy[0]-$CS_l, $xy[1]-$CS_t, $xy[0]+$CS_r, $xy[1]+$CS_ B) Then
            $Count = $Count+1
            $Array[0][0] = $Count
            ReDim $Array[$Count+1][2]
            $Array[$Count][0] = $xy[0]
            $Array[$Count][1] = $xy[1]
            $SB_t = $xy[1]
            $SB_b = $SB_t
            $SB_l = $xy[0] + 1
        Else
            $SB_t = $xy[1]
            $SB_b = $SB_t
            $SB_l = $xy[0] + 1
        EndIf
    WEnd
EndFunc

;==========================  Render Image Specific  ==========================
Func _GUICtrlCreateGIF($gif, $x = 0, $y = 0, $border = 0)
    Local $oIE, $GUIActiveX
    Local $a_sizes = _ImageGetSize($gif) ; 0 = width, 1 = height
    $oIE = ObjCreate("Shell.Explorer.2")
    $GUIActiveX = GUICtrlCreateObj($oIE, $x, $y, $a_sizes[0], $a_sizes[1])
    $oIE.navigate ("about:blank")
    While _IEPropertyGet($oIE, "busy")
        Sleep(100)
    WEnd
    $oIE.document.body.background = $gif
    $oIE.document.body.scroll = "no"
    If $border = 0 Then $oIE.document.body.style.border = "0px"
    Return $oIE
EndFunc

Func _ImageGetSize($sFile)
    Local $sHeader = _FileReadAtOffsetHEX($sFile, 1, 24); Get header bytes
    Local $asIdent = StringSplit("FFD8 424D 89504E470D0A1A 4749463839 4749463837 4949 4D4D", " ")
    Local $anSize = ""
    For $i = 1 To $asIdent[0]
        If StringInStr($sHeader, $asIdent[$i]) = 1 Then
            Select
                Case $i = 1; JPEG
                    $anSize = _ImageGetSizeJPG($sFile)
                    ExitLoop
                Case $i = 2; BMP
                    $anSize = _ImageGetSizeSimple($sHeader, 19, 23, 0)
                    ExitLoop
            EndSelect
        EndIf
    Next
    If Not IsArray($anSize) Then SetError(1)
    Return ($anSize)
EndFunc

Func _ImageGetSizeSimple($sHeader, $nXoff, $nYoff, $nByteOrder)
    Local $anSize[2]
    $anSize[0] = _Dec(StringMid($sHeader, $nXoff * 2 - 1, 4), $nByteOrder)
    $anSize[1] = _Dec(StringMid($sHeader, $nYoff * 2 - 1, 4), $nByteOrder)
    Return ($anSize)
EndFunc

Func _FileReadAtOffsetHEX($sFile, $nOffset, $nBytes)
    Local $hFile = FileOpen($sFile, 0)
    Local $sTempStr = ""
    FileRead($hFile, $nOffset - 1)
    For $i = $nOffset To $nOffset + $nBytes - 1
        $sTempStr = $sTempStr & Hex(Asc(FileRead($hFile, 1)), 2)
    Next
    FileClose($hFile)
    Return ($sTempStr)
EndFunc

Func _Dec($sHexStr, $nByteOrder)
    If $nByteOrder Then Return (Dec($sHexStr))
    Local $sTempStr = ""
    While StringLen($sHexStr) > 0
        $sTempStr = $sTempStr & StringRight($sHexStr, 2)
        $sHexStr = StringTrimRight($sHexStr, 2)
    WEnd
    Return (Dec($sTempStr))
EndFunc

Func _ImageGetSizeJPG($sFile)
    Local $anSize[2], $sData, $sSeg, $nFileSize, $nPos = 3
    $nFileSize = FileGetSize($sFile)
    While $nPos < $nFileSize
        $sData = _FileReadAtOffsetHEX($sFile, $nPos, 4)
        If StringLeft($sData, 2) = "FF" Then; Valid segment start
            If StringInStr("C0 C2 CA C1 C3 C5 C6 C7 C9 CB CD CE CF", StringMid($sData, 3, 2)) Then; Segment with size data
                $sSeg = _FileReadAtOffsetHEX($sFile, $nPos + 5, 4)
                $anSize[1] = Dec(StringLeft($sSeg, 4))
                $anSize[0] = Dec(StringRight($sSeg, 4))
                Return ($anSize)
            Else
                $nPos = $nPos + Dec(StringRight($sData, 4)) + 2
            EndIf
        Else
            ExitLoop
        EndIf
    WEnd
    Return ("")
EndFunc
 
Last edited:

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
Simple bypass for old versions from troymckin

Gameguard Bypass

1. Find out what hack-disabling program your game uses (maby right it down)

2. Open your game.

3. Let it completely load.

4. Press ctrl+alt+delete

5. Alt+tab (minimize the game)

6. Click on Task Manager (which opened when you pressed ctrl+alt+delete)

7. Go to Task Managers Processes

8. Find the hack-disabling process

9. Choose End Program.

10. Open your game and enjoy cheating!
 
Last edited:
  • Haha
Reactions: Kleon742

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
Game Guard Bypass from darksyn.biz

1) Download Cheat Engine 5
http://www.heijnen1.demon.nl/CheatEngine50.exe
2) Install and open Cheat Engine
3) Click on the settings tab located under the cheat engine logo
4) Click on the “Code Finder” tab, then check the box that says “Try to prevent detection of the debugger”
5) Now click on the tab “Extra” and enable both stealth modes, and enable “Read/Write Process Memory”
6) Click ok, and when you click ok a box should appear and it will gather all of your kernel data
7) IF the box DOES NOT appear, then click on Start>Programs>Cheat Engine 5.0>Kernel Stuff>Gather Kernel Data
8 ) Next, open pso so you are at the main menu screen.
9) Press START GAME. As soon as the gameguard splash screen is up, click the little computer in the top left
of the Cheat Engine 5.0 window and select psobb.exe.
10) Once psobb.exe is selected,and the actual game has just opened, go into settings, select extra and click
undo changes to CE
11) Get out of the settings and minimize CE
12) You now have a working memory editor
13) If you get a Gameguard.des error, DO NOT CLICK OK ON IT, go back to settings, then extra, then click undo
changes done to CE. Then you can click on the gameguard.des and run PSO:BB and CE as normal
14) If you get an error with game hacks detected, close down psobb and reopen it. Make sure you’ve left Undo All Settings
checked and when you go to options, uncheck the box and check it again.
15) If you’re running on an AMD processor, or you have Windows XP SP2, you may get an error about a DLL file not running
correctly. In order to fix this, in your boot.ini file where it says “/NoExecute=OptIn”, change it to “/NoExecute=ALWAYSOFF”
16) This has been tested on multiple computers, and on some computers it just doesn’t work for reasons unknown. I suggest going
in and testing it on a few yourself, and if you’re still having problems, you should ask someone for assistance.
——Tutorial Created By Gamma and editing by Snowfox——
Instructions
1) Once you have successfully bypassed gameguard, go into a game by yourself.
2) Enter an area, and go into CE. Once CE is open you will see a value entry.
3) Enter your current TP, and change 4 byte to 8. Select first scan. Use a technique. Input your new tp. Pess Next Scan
4) It will find 2 addresses, the one ending in 6 is your tp. Double click it, it will go down to your code list. Double click value and put it to your maximum tp, you will notice your bar fill instantly.
5) Once you have done this click on the address. Enter it into psobb address converter, and convert.
6) You may now edit any stat that you wish. For example, If you want to change your level, copy the address, and go into CE and click add addresses manually. Paste in your level. Now click on the value, you may change it to anything you wish. It will always be 1 level higher than what you input. More will be released later, this was just a quick prerelease. When released, will be on Coming Soon
 
Last edited:

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
Interesting excerpts:

The Korean game security market is deemed to have entered the maturity phase. Yet, as the evolution of security threats has shown no signs of abating, online games should be fully armed with anti-hacking technologies. The game industry agrees that the previous client-led anti-hacking approaches are not enough. Given that the industry’s future endeavors for server-side protection are highly likely to kick into high gear, Wiselogic’s future moves are definitely warranting attention. As of now, the domestic online game security market is dominated largely by the following three programs: Inca Internet’s nProtect GameGuard (GG), Wiselogic’s X-trap, and AhnLab’s HackShield.

An article I found that has since been deleted

What GameGuard does
GameGuard is installed as an additive by developers of video games to bolster the security of the program. Used mainly in Korea, GameGuard is a sentinel program that hides the process of the game from the system itself. In fact, the program is known as a rootkit. Rootkits are programs designed to hide other programs that may take control of your entire system.

When installing GameGuard some antivirus programs will alert the user that it is a rootkit and block the installation. They recommend uninstalling or disabling both antivirus and firewall programs while running GameGuard.

Video games such as Aion, Lineage II, and Phantasy Star Universe use GameGuard as a security measure. The software itself is equipped with a database of all known game hacks, bot programs, and illegal third-party trainers, which it uses to shut down any of these programs before they have a chance to interact with the game itself.

Essentially, GameGuard has a "white list" of programs allowed to run. This list is mostly controlled by the software's creator but a certain extent of the control is left to the individual game's developers to set the programs list of allowed applications.

The problem with GameGuard
The problem with GameGuard lies within the apparent nature of creating a program, which disallows any third-party program that it does not recognize, instead of hunting for specific programs that are known threats.

For example, antivirus programs are similar in nature with one very important difference; antivirus programs monitor your system for specifically listed processes but will not take any action against unknown agents, whereas, GameGuard will shut down any program not on the list.

GameGuard blocks many applications that are perfectly legitimate, including device drivers for many popular gaming mice and keyboards.

"Most of us working in the peripherals industry are disappointed by the "shotgun" approach to anti-cheat methodology employed by GameGuard. Because they frequently "lock out" software and hardware input technology that allows honest players (and in particular the disabled gaming community) from being able to play these games in the first place," says Tony Davenport, C.E.O. of Good Work Systems, a leader in gaming mice and apparel.

In addition to gaming peripheral, assistive technology is almost entirely disabled rendering most disabled gamers unable to play. Assistive technologies such as voice recognition programs, on-screen keyboards and switch-based devices such as the ones seen at one-switch. Gaming mice and keyboards with additional buttons, macros, and gesture controls are also disabled.

Without the ability to use assistive technology, many disabled gamers have to abandon these games entirely. For those with no disabilities, losing the ability to use your favorite gaming mouse can be overcome if the desire to play the game is strong enough but for those with motor impairing disabilities - it is impossible to play without these special devices.

"On-screen keyboards offer many disabled gamers the opportunity to enjoy video games that they would otherwise be unable to play. With software such as GameGuard, disabled gamers are rendered unable to play," says Sheryl Flynn Ph.D. who is a neuroscientist turned video game developer that now creates video games for the purposes of rehabilitation. "Creating a method that would allow disabled gamers a workaround for this type of software is imperative. With millions of disabled game players around the world, the game industry would be well served if they considered a significant portion of their audience when developing these types of software."

The "shotgun approach" to blocking any foreign program is a reckless act and an irresponsible way to treat a problem. GameGuard's approach to solving the problem of stopping cheaters is equivalent to using a bazooka to remove an anthill. The word overkill does not do the situation justice.

Much hated software
Often times the needs of the disabled community do not coincide with the desires of the "mainstream" video gaming community. However, in this situation, disabled gamers are not the only ones who despise GameGuard.

Not only has the software been proven to shut down assistive technology but everyday programs used by both disabled and nondisabled alike. Programs like Ventrilo, Team Speak, Skype, and even iTunes are often blocked by GameGuard.

Other people have problems with their computers rebooting, blue screens of death, and other serious computer-related issues all due to a program designed to eliminate other programs - good or bad.

Some users have taken to starting petition after petition across multiple titles, all with the hope of removing GameGuard from their beloved games. Various users even starting entire communities such as P.A.G.G. (People Against GameGuard) in an attempt to show a united front against the obtrusive software.

Unfortunately, both the makers of the GameGuard and the developers of titles such as Aion are clinging to the idea that the program blocks cheaters. Although undoubtedly some cheaters may be inhibited by the software, the most serious offenders simply find ways around the software. Forum users admit it does not block the best illegal automated gaming tools.

AbleGamers will not assist anyone in learning how to circumvent GameGuard. However, under the correct Google search numerous ways can be found to avoid the program altogether. Some users on sites such as Aionsource even recommend disabling the software for a better gaming experience. (Just like AbleGamers, Aionsource does not support any EULA violations)

The problem is that disabling the software is completely illegal and you will be banned.

However, it is important to note that aside from GameGuard, video game titles such as Aion have relatively good accessibility. More on Aion's accessibility in our official review.

Why GameGuard is so difficult
One source spoke to us on the condition of anonymity about GameGuard and why it is difficult to pinpoint exactly what the software does to interfere with so many programs and devices.

"If we investigate the device driver technology and it shows that it blocks other devices using some kind of USB hack, because in general USB policy is not to affect other devices, which are a USB device should not interfere with other devices, but should "co-operate". Unfortunately looking at the software and seeing if we can reverse-engineer it enough to discover the actual mechanisms would cost over $1000.

Understand the game software business is cutthroat and they will use the cheapest, broadest anti-cheat platforms they can. This is just how it is. Exceptions like WOW are because they are successful enough to do a much better game specific anti-cheat implementation.

Therefore, we fully understand WHY things are the way they are, and we know it is very unlikely they will change their policy to use these methods, as it is a money-based decision, and these are paramount for companies like these.

We cannot be sure what actual mechanisms are being used, so we cannot offer good technical data to the discussion, which is much needed to clear up the discrepancies related in the forums about the hardware affected. Research and development is expensive."

"Things are the way they are" is a very unfortunate phrase because that statement should not be used to excuse irreparable behavior by a program meant to safeguard a game from people who would harm it. In fact, GameGuard does exactly the opposite, GameGuard shuts down disabled gamers from being able to play a video game they might otherwise have truly enjoyed.

In recent years, assistive technology has come a long way. To illustrate the point, we need only look at voice recognition programs like Dragon NaturallySpeaking, which have come from an abysmal joke to 99% accuracy in the last few years.

Voice recognition programs like Dragon NaturallySpeaking, Say2Play, and Voice Buddy are imperative to operating video games that require multiple keyboard actions. Simple actions such as jumping or looting items can be controlled with voice commands allowing those with physical impairments to have an easier time. Moreover, one-handed gamers often use voice recognition to ease the burden of hitting keys that are normally spread apart.

Of course, on-screen keyboards are incredibly important as described by Dr. Sheryl Flynn. The ability to communicate with your friends and a video game is almost as important as the plot line itself. For those unable to use a keyboard, the on-screen keyboard is the only access they have to communication.

GameGuard disables all of these technologies and makes no apologies for doing so. The greater good is not served by disabling your customers. Developers turn to the software because it is easier than employing a larger staff to deal with hackers and botters on regular basis. However, by using such a broad stroke, innocent victims such as disabled gamers are caught up by an overzealous sentinel program, which was designed to stop "the bad guy," not the bystanders who just want to play the game.

Aion
On Sept 17th The folks at NCSoft NA announced that they first release of the game would not contain GameGuard software. They said, "After analyzing our open beta test results Aion will not feature GameGuard at launch. We will however continue to pursue ways to effectively utilize GameGuard within Aion in the future. Right now we're focused on providing players with the best possible Aion experience."
Thank you AION for looking out for ALL YOUR players. You can see more info here

Aion is heralded to be the next "WoW killer" and why not, with spectacular graphics, amazing gameplay, and relatively good accessibility, the game looked to be the first title in a long time with the ability to challenge Warcraft.

Already hugely popular for over a year in Asia, Aion is a fast-paced action game similar to Warcraft but with many unique and interesting twists. Unfortunately, NCSoft is determined to make GameGuard work.

From one of their Western representatives, Ayase, the following was posted on Aionsource September 10, 2009:

"I believe we've been clear when letting you know how adamant we are to make Aion as good as we can. We have had and still have a couple of issues with GameGuard, but our work to improve the way this software functions in Aion and to eliminate problems never stops. We are currently working to push out updates to hopefully resolve some of the issues we've seen some of you guys are having.

Our entire team is very aware of what many of you think of GameGuard, and I hope that you understand we do what we can to improve the situation, because we don't want anyone to be obstructed from playing Aion the way it's meant to be played.

We're constantly reading and monitoring the community for concerns and are always taking them in, of that you can be assured."

It is very unfortunate that NCSoft wholeheartedly believes in a piece of software that utterly discriminates against the disabled gaming community. No one wants to help people be able to cheat, all we ask is that developers not use programs that will disable assistive technology software or stop our daily activities all to be able to play a game.

"We are aware that cheating is a serious issue to game enjoyment, and we also know from experience that game specific methods that use game keys and monitor user online game interactions to detect cheating activity are very effective without interfering with legitimate non-cheat input support technology," says Tony Davenport.

"We hope game publishers realize the extent to which gamers use legitimate products to play games honestly. We wish they would appreciate that some assistive technology makes gaming possible/enjoyable for a large part of the gaming market (gamers with disabilities are estimated to make up 20% of the market), and focus their efforts on the player/game specific cheating "deeds" rather than broadly barring supportive PC input technology that undergirds the PC gaming platform."

Indeed, disabled gamers make up a large portion of the world gaming market. It is unfortunate that game developers who choose to use GameGuard will be missing potential customers.

However, some users declare that the positive pressure to remove GameGuard is working on NCWest, the Western division of NCSoft, whose corporate headquarters is in Asia.

Malstrom of the Aion Beta boards posted the following in the forums:

"I have a friend who works for NCWest (not in the development or administrative teams) and he told me today that the folks in charge of NCWest really are trying to convince the Koreans to allow Aion to release in North America without GameGuard... I want to encourage all of my colleagues here in the Beta Testing to continue to apply POSITIVE pressure to NCSoft (via NCWest) to allow Aion to be released here without GameGuard attached...

So, please continue to provide feedback regarding your thoughts, feelings and experience with regard to GameGuard. The more we can help convince the Koreans that it is a major issue for us, as a consumer base, the more likely it will be that we can have a clean release of a GREAT game."

Now, we all know how these "I have a friend who said" things usually turn out. Nevertheless, in this situation, we truly hope Mr. Malstrom is not lying. Assuming that he is not, let this be one more reason for GameGuard to reconsider the way it treats programs and Aion to reconsider using GameGuard, the most offensive program to disabled people we have ever had the displeasure of finding.

We did reach out to the makers of GameGuard (INCA) for comments, and to express our concerns before this story went live. They did not return our inquiries UPDATE: The folks over at GameGuard has reached out to us to express that they are aware of the issue and are wanting to work with AbleGamers to help fix the issues
 
Last edited:

iKasu

Newbie
Full Member
Jan 5, 2013
22
212
0
i know its imposibble nProtect detect game hacking tools in 3 sec
Its not impossible - just for u.
Dump the Game and remove Gameguard.
Fake the Serverside Heartbeat Packets to say that GG is still alive.
Or code in Kernel Level because kernelevel is higher as Normal Level (Every Rootkit uses it ;) )
 

dydrax

Newbie
Full Member
Jan 8, 2013
22
234
0
Its not impossible - just for u.
Dump the Game and remove Gameguard.
Fake the Serverside Heartbeat Packets to say that GG is still alive.
Or code in Kernel Level because kernelevel is higher as Normal Level (Every Rootkit uses it ;) )
you thing it's simple huh..
 

AlphaAnonymous

*Creating A Perfect World
Dank Tier Donator
Nobleman
Aug 9, 2012
153
1,188
1
Every game has a different version of GameGuard. Therefore not all methods of bypassing will work with every game. Bypassing GameGuard is challenging, but not impossible.
 

8y4hmi3

Newbie
Jan 12, 2013
4
404
0
I Have Tutorial How to Bypass the GameGuard Any game such like Sudden Attack!!

Using Ollydbg.. Change a code!

i will post the video ! it old video but still work until now!! Delete Some Byte in the Laucher Like Sudden Game!! So you can't made hack for it :)
 
  • Like
Reactions: SSSSS

dydrax

Newbie
Full Member
Jan 8, 2013
22
234
0
I Have Tutorial How to Bypass the GameGuard Any game such like Sudden Attack!!

Using Ollydbg.. Change a code!

i will post the video ! it old video but still work until now!! Delete Some Byte in the Laucher Like Sudden Game!! So you can't made hack for it :)
it's not bypass ,when GG eror the game can't countiniue its same with you delete the game guard from game file
 

8y4hmi3

Newbie
Jan 12, 2013
4
404
0
dydrax ... maybe you not seen it!! it tutorial from CodeCracker from tuts4you.com

We a Cracking Forum so we can't change the code !! JNZ blabla and JMp it ..
 

iKasu

Newbie
Full Member
Jan 5, 2013
22
212
0
Ahahaha so you will tell me we are able to don't care the Anti Debugger in GameGuard?
I mean, if you attach a debugger then Gameguard will say: FFS!

And btw, what happens if you delete GG from the Game?
Most Games does a Check to see if GG is Running or not and when it's not then FFS Client ;)
 

dydrax

Newbie
Full Member
Jan 8, 2013
22
234
0
Ahahaha so you will tell me we are able to don't care the Anti Debugger in GameGuard?
I mean, if you attach a debugger then Gameguard will say: FFS!

And btw, what happens if you delete GG from the Game?
Most Games does a Check to see if GG is Running or not and when it's not then FFS Client ;)
are you have success bypass GG ??
how can you attach debug anti debugger and create fake command that game guard still runnning ??
 

Centipede

Newbie
Jan 7, 2013
4
172
0
Hi everyone!

I have been looking for a while for some sort of guidance relating to bypasses of Anti-Cheat software (specifically HackShield and GameGuard). Although I have found out more or less how they work, and what I need to do in theory to bypass them, I haven't yet found out what I should be doing practically or how I should do it... My knowledge in Olly Debugger (I am given to believe that it's important for making a bypass) is very basic at the moment. Regardless, I think if it was just a matter of knowing in theory how HackShield works, I would've managed by now... So if anyone could give me a bit more guidance as to what to do next, or what I need to be looking to modify using Olly, it would be much appreciated!
Thanks,
Centipede~
 
  • Like
Reactions: misterm14

Szaka

Coder
Full Member
Nobleman
Mar 14, 2013
161
718
3
dont bypass it. The less patches u make the bigger chance of being undetected are. Damn people what do you have with those bypasses? Just start creating ur own bot and then check if something blocks you...
 
Attention! Before you post:

Read the How to Ask Questions Guide
99% of questions are answered in the Beginner's Guide, do it before asking a question.

No Hack Requests. Post in the correct section.  Search the forum first. Read the rules.

How to make a good post:

  • Fill out the form correctly
  • Tell us the game name & coding language
  • Post everything we need to know to help you
  • Ask specific questions, be descriptive
  • Post errors, line numbers & screenshots
  • Post code snippets using code tags
  • If it's a large project, zip it up and attach it

If you do not comply, your post may be deleted.  We want to help, please make a good post and we will do our best to help you.

Community Mods