Results 1 to 3 of 3

Thread: Script hooking - noob reverser examines gamex86 dissembly.

  1. #1
    Developer RyBack's Avatar
    Join Date
    Apr 2014
    Location
    In Front of the screen
    Posts
    1,603

    Default Script hooking - noob reverser examines gamex86 dissembly.

    Hello.
    So as I see to make a new script function I'd have to.
    1- find script thread class from the dll wrapper.
    2- find it's event array.
    3- someway to create a new event from the dll wrapper.
    4- someway to handle script variables.
    5- add the new event to the event array.
    6- tests (obviously).

    Ofc this won't be easy (at all) and ofc time consuming.
    Perhaps some hints would be a good start .
    _____________________

    Extra question: why does every new event use a new constructor in the dissembly ? Why don't they all use the same constructor to save some memory ?

  2. #2
    Administrator James's Avatar
    Join Date
    May 2010
    Location
    on the intraweb
    Posts
    3,180

    Default

    Honestly Razor or Ley0k would be the best to answer this. The new events they wrote are way outside of what I know. There was a LOT of work put into this, and I would say for you to start smaller....

    A HUGE part of Reborn was reverse engineered... So before you start getting your hands dirty I'd recommend getting used to understanding ASM... Pretty well!! Understand all the variables. Know when to perform a unconditional jmp or other stuff.
    Try to read memory from apps, and get their values.
    If you want a challenge (this is how I learned), download a trial application like winzip... Debug it and see if you can get it activated.
    If you end up successful doing this, play around with more trial apps and see if you can activate them... Or for example apps with limitations... Like an app that returns some sort of variable but only the first 5 characters... Try to see if you can get it to return all the characters even though it's in trial mode...

    It's all about trial and error and just playing around with assembly until you get a better understanding of how it works.

  3. #3
    Developer RyBack's Avatar
    Join Date
    Apr 2014
    Location
    In Front of the screen
    Posts
    1,603

    Default

    So basically ur asking me to make a crack ?
    Just kidding .
    For winzip (or other similar apps) I'd find the trial pop up string.
    Search for it in Ida. And get the jump if not zero or jump if zero that is associated with license checking etc.
    Ofc it's easier to say lol.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •