You are viewing our Forum Archives. To view or take place in current topics click here.
How do I get a byte form an ghost offset USING IDA PRO?
Posted:

How do I get a byte form an ghost offset USING IDA PRO?Posted:

jtaghacks135
  • Junior Member
Status: Offline
Joined: Jun 23, 201410Year Member
Posts: 69
Reputation Power: 2
Status: Offline
Joined: Jun 23, 201410Year Member
Posts: 69
Reputation Power: 2
Example:

The offset for Crome Players is : 0x82672EB4

When you make a program you have to code it like:

Ghost.SetMemory(0x82672EB4, new byte[] {0x0, 0x00, 0x00, 0x00});


The bytes of the offset have to be right for it to work.

{0x00, 0x00, 0x00, 0x00}
#2. Posted:
IDA
  • Powerhouse
Status: Offline
Joined: Sep 21, 201311Year Member
Posts: 454
Reputation Power: 26
Status: Offline
Joined: Sep 21, 201311Year Member
Posts: 454
Reputation Power: 26
Normally to "turn something on" you just NOOP it ( 0x60000000 )
And to turn it off you just return it to it's orginal hex in IDA ...
#3. Posted:
jtaghacks135
  • Junior Member
Status: Offline
Joined: Jun 23, 201410Year Member
Posts: 69
Reputation Power: 2
Status: Offline
Joined: Jun 23, 201410Year Member
Posts: 69
Reputation Power: 2
IDA wrote Normally to "turn something on" you just NOOP it ( 0x60000000 )
And to turn it off you just return it to it's orginal hex in IDA ...


Can you give me the code for NOOP?
#4. Posted:
xChillest
  • Christmas!
Status: Offline
Joined: Jul 30, 201212Year Member
Posts: 2,396
Reputation Power: 123
Status: Offline
Joined: Jul 30, 201212Year Member
Posts: 2,396
Reputation Power: 123
IDA wrote Normally to "turn something on" you just NOOP it ( 0x60000000 )
And to turn it off you just return it to it's orginal hex in IDA ...


I tried telling him earlier that the simplest way to do this is use peek poker and launch the game, then peek the offset to find the bytes but all he said was "it didn't work".


@OP, try using Peek Poker again. As long as you have the xbdm plugin (I don't think you need RPC, but put it just in case) and you're on multiplayer on Ghosts peek the offset with a length of 4. It'll show you the bytes. For laser the last byte will be 00, to enable the laser you just poke 01 over that.
#5. Posted:
IDA
  • Powerhouse
Status: Offline
Joined: Sep 21, 201311Year Member
Posts: 454
Reputation Power: 26
Status: Offline
Joined: Sep 21, 201311Year Member
Posts: 454
Reputation Power: 26
jtaghacks135 wrote
IDA wrote Normally to "turn something on" you just NOOP it ( 0x60000000 )
And to turn it off you just return it to it's orginal hex in IDA ...


Can you give me the code for NOOP?

Just set it to the bytes 0x60, 0x00, 0x00, 0x00
#6. Posted:
IDA
  • Powerhouse
Status: Offline
Joined: Sep 21, 201311Year Member
Posts: 454
Reputation Power: 26
Status: Offline
Joined: Sep 21, 201311Year Member
Posts: 454
Reputation Power: 26
xChillest wrote
IDA wrote Normally to "turn something on" you just NOOP it ( 0x60000000 )
And to turn it off you just return it to it's orginal hex in IDA ...


I tried telling him earlier that the simplest way to do this is use peek poker and launch the game, then peek the offset to find the bytes but all he said was "it didn't work".


@OP, try using Peek Poker again. As long as you have the xbdm plugin (I don't think you need RPC, but put it just in case) and you're on multiplayer on Ghosts peek the offset with a length of 4. It'll show you the bytes. For laser the last byte will be 00, to enable the laser you just poke 01 over that.


See this is where I miss out ;( don't have a Jtag so don't use a peek poker #sadtimes
#7. Posted:
jtaghacks135
  • Junior Member
Status: Offline
Joined: Jun 23, 201410Year Member
Posts: 69
Reputation Power: 2
Status: Offline
Joined: Jun 23, 201410Year Member
Posts: 69
Reputation Power: 2
xChillest wrote
IDA wrote Normally to "turn something on" you just NOOP it ( 0x60000000 )
And to turn it off you just return it to it's orginal hex in IDA ...


I tried telling him earlier that the simplest way to do this is use peek poker and launch the game, then peek the offset to find the bytes but all he said was "it didn't work".


@OP, try using Peek Poker again. As long as you have the xbdm plugin (I don't think you need RPC, but put it just in case) and you're on multiplayer on Ghosts peek the offset with a length of 4. It'll show you the bytes. For laser the last byte will be 00, to enable the laser you just poke 01 over that.


I got laser working but I didn the same with crome and uav and it didnt wokr...
#8. Posted:
xChillest
  • TTG Addict
Status: Offline
Joined: Jul 30, 201212Year Member
Posts: 2,396
Reputation Power: 123
Status: Offline
Joined: Jul 30, 201212Year Member
Posts: 2,396
Reputation Power: 123
jtaghacks135 wrote
xChillest wrote
IDA wrote Normally to "turn something on" you just NOOP it ( 0x60000000 )
And to turn it off you just return it to it's orginal hex in IDA ...


I tried telling him earlier that the simplest way to do this is use peek poker and launch the game, then peek the offset to find the bytes but all he said was "it didn't work".


@OP, try using Peek Poker again. As long as you have the xbdm plugin (I don't think you need RPC, but put it just in case) and you're on multiplayer on Ghosts peek the offset with a length of 4. It'll show you the bytes. For laser the last byte will be 00, to enable the laser you just poke 01 over that.


I got laser working but I didn the same with crome and uav and it didnt wokr...


They may require different bytes, and not just 0x01. Try what IDA said, NOP the offset. ( 0x60, 00, 00, 00 )

Look at the post below me. IDA knows more about Ghosts than I do, I'll stick to my MW2-BO2


Last edited by xChillest ; edited 1 time in total
#9. Posted:
IDA
  • Powerhouse
Status: Offline
Joined: Sep 21, 201311Year Member
Posts: 454
Reputation Power: 26
Status: Offline
Joined: Sep 21, 201311Year Member
Posts: 454
Reputation Power: 26
jtaghacks135 wrote
xChillest wrote
IDA wrote Normally to "turn something on" you just NOOP it ( 0x60000000 )
And to turn it off you just return it to it's orginal hex in IDA ...


I tried telling him earlier that the simplest way to do this is use peek poker and launch the game, then peek the offset to find the bytes but all he said was "it didn't work".


@OP, try using Peek Poker again. As long as you have the xbdm plugin (I don't think you need RPC, but put it just in case) and you're on multiplayer on Ghosts peek the offset with a length of 4. It'll show you the bytes. For laser the last byte will be 00, to enable the laser you just poke 01 over that.


I got laser working but I didn the same with crome and uav and it didnt wokr...


Chrome - set it to 0x01
Adv UAV - do the same
#10. Posted:
jtaghacks135
  • Junior Member
Status: Offline
Joined: Jun 23, 201410Year Member
Posts: 69
Reputation Power: 2
Status: Offline
Joined: Jun 23, 201410Year Member
Posts: 69
Reputation Power: 2
xChillest wrote
jtaghacks135 wrote
xChillest wrote
IDA wrote Normally to "turn something on" you just NOOP it ( 0x60000000 )
And to turn it off you just return it to it's orginal hex in IDA ...


I tried telling him earlier that the simplest way to do this is use peek poker and launch the game, then peek the offset to find the bytes but all he said was "it didn't work".


@OP, try using Peek Poker again. As long as you have the xbdm plugin (I don't think you need RPC, but put it just in case) and you're on multiplayer on Ghosts peek the offset with a length of 4. It'll show you the bytes. For laser the last byte will be 00, to enable the laser you just poke 01 over that.


I got laser working but I didn the same with crome and uav and it didnt wokr...


They may require different bytes, and not just 0x01. Try what IDA said, NOP the offset. ( 0x60, 00, 00, 00 )


I can't nop it with mcs. I put Ghost.NOP and so on it wont work.
Jump to:
You are viewing our Forum Archives. To view or take place in current topics click here.