PDA

View Full Version : Delving into Crossfire..


kryptik_
05-03-2009, 08:43 PM
Hi first time poster here. This post is directed to the guys here who wrote the crossfire hook.

I've been looking at clienthooking CrossFire and it wouldn't be the first game I would have hooked. I do have a problem though.

I'm fine with being able to reverse the game structures, the problem lies with getting around GameGuard. It hides the process from OllyDebug or ReClass using a rootkit (from what I've figured out) and I can't get a handle to access crossfire.exe memory.

Do I need to write a device driver to get the handle to the process, or can I do anything within ring3 to gain access? I need to access crossfire.exe memory.

I was never great with anticheat, but I'm getting better.

Thanks for your help

Also I should add that my languages are C and x86 assembler. I know my way around the Win32 API. I can write a device driver if I have to, but I really don't want to just to get around a silly anticheat.
Gellin
05-18-2009, 10:41 PM
wierd it never hid from me, are you on vista?
ferretnam
05-18-2009, 11:01 PM
i had almost the same problem...and i think i can help...if ur on vista u want to run ur software on admin...(right click then run as admin) worked for me..but i hope i helped.
SNal2F
05-21-2009, 10:45 PM
Hi first time poster here. This post is directed to the guys here who wrote the crossfire hook.

I've been looking at clienthooking CrossFire and it wouldn't be the first game I would have hooked. I do have a problem though.

I'm fine with being able to reverse the game structures, the problem lies with getting around GameGuard. It hides the process from OllyDebug or ReClass using a rootkit (from what I've figured out) and I can't get a handle to access crossfire.exe memory.

Do I need to write a device driver to get the handle to the process, or can I do anything within ring3 to gain access? I need to access crossfire.exe memory.

I was never great with anticheat, but I'm getting better.

Thanks for your help

Also I should add that my languages are C and x86 assembler. I know my way around the Win32 API. I can write a device driver if I have to, but I really don't want to just to get around a silly anticheat.


Im sure it obtainable by both ring0 and ring3. I was using ring3 for a long time only lately used a ring0 approach(***ma's idea). I know for the ring3 approach i was using , you would need to send some packets.Also this game is really easy to deadlist.