IConsole:
Код
class IConsole
{
public:
virtual void Function0();
virtual void Function1();
virtual void Function2();
virtual void Function3();
virtual void Function4();
virtual void Function5();
virtual void Function6();
virtual void Function7();
virtual void Function8();
virtual void Function9();
virtual void Function10();
virtual void Function11();
virtual void ShowConsole(bool show, const int iRequestScrollMax=-1 );
virtual void Function13(); //
virtual void Function14(); //
virtual void Function15(); //
virtual void Function16(); //
virtual void Function17(); //
virtual void Function18(); //
virtual void Function19(); //
virtual void Function20(); //
virtual ICVar* GetCVar( const char *name );
virtual void Function22(); //
virtual void Function23(); //
virtual void PrintLine(const char *s)=0;
virtual void PrintLinePlus(const char *s);
virtual bool GetStatus();
virtual void Clear();
virtual void Update();
virtual void Draw();
virtual void AddCommand(const char *sName, const char *sScriptFunc, int nFlags=0, const char *sHelp=NULL );
virtual void Function31(); //
virtual void Function32(); //
virtual void Function33(); //
virtual void Function34(); //
virtual void Function35(); //
virtual void Function36(); //
virtual void Function37(); //
virtual void Function38(); //
virtual void Function39(); //
virtual void Function40(); //
virtual void Function41(); //
virtual void Function42(); //
virtual void Function43(); //
virtual void Function44(); //
virtual void Function45(); //
virtual void Function46(); //
virtual void Function47(); //
virtual void Function48(); //
virtual void Function49(); //
virtual void Function50(); //
virtual void Function51(); //
virtual void Function52(); //
virtual void Function53(); //
virtual void Function54(); //
virtual void Function55(); //
virtual void Function56(); //
virtual void Function57(); //
};
class ICVar
{
public:
enum EConsoleLogMode
{
eCLM_Off, // off
eCLM_ConsoleAndFile, // normal info to console and file
eCLM_FileOnly, // normal info to file only
eCLM_FullInfo // full info to file only
};
virtual void Function0();
virtual int GetIVal();
virtual float GetFVal();
virtual const char *GetString();
virtual void Sets(const char* s);
virtual void ForceSet(const char* s);
virtual void Setf(const float f);
virtual void Seti(const int i);
virtual void ClearFlags (int flags);
virtual int GetFlags();
virtual int SetFlags( int flags );
virtual int GetType();
virtual const char* GetName();
virtual const char* GetHelp();
virtual void SetOnChangeCallback( int pChangeFunc );
virtual void GetMemoryUsage( class ICrySizer* pSizer );
virtual int GetRealIVal();
virtual void DebugLog( const int iExpectedValue, const EConsoleLogMode mode );
};
SSystemGlobalEnvironment + IConsole* pConsole; 0x50
IActor:
Код
virtual bool IsThirdPerson();//65
virtual void ToggleThirdPerson();//66
virtual void Function67();
virtual bool IsClient();//68
Получить / Установить INFO AUTH:
Код
ICommandManager* gfaceauthtoken = cSystem->pSystem->Commandline( )->Getstring( 1, "gfaceauthtoken" , 0 );
ICommandManager* gfaceenv = cSystem->pSystem->Commandline( )->Getstring( 1, "gfaceenv" , 0 );
ICommandManager* gfacelivesessionid = cSystem->pSystem->Commandline( )->Getstring( 1, "gfacelivesessionid" , 0 );
ICommandManager* gsreleasehash = cSystem->pSystem->Commandline( )->Getstring( 1, "gsreleasehash" , 0 );
ICommandManager* gsserver = cSystem->pSystem->Commandline( )->Getstring( 1, "gsserver" , 0 );
ICommandManager* gscache = cSystem->pSystem->Commandline( )->Getstring( 1, "gscache" , 0 );
if( gfaceauthtoken || gfaceenv || gfacelivesessionid || gsreleasehash || gsserver || gscache)
{
pLog.Write ( "gfaceauthtoken: %s", gfaceauthtoken->getname( ) );
pLog.Write ( "gfaceenv: %s", gfaceenv->getname( ) );
pLog.Write ( "gfacelivesessionid: %s", gfacelivesessionid->getname( ) );
pLog.Write ( "gsreleasehash: %s", gsreleasehash->getname( ) );
pLog.Write ( "gsserver: %s", gsserver->getname( ) );
pLog.Write ( "gscache: %s", gscache->getname( ) );
pLog.Write ( "\n" );
}
внутри SSystemGlobalEnvironment:
Код
ISystem* pSystem; //0x0058
внутри ISYSTEM:
Код
//...
virtual void Function48();
virtual ICommandLine* Commandline();
Код
class ICommandManager
{
public:
virtual void Function0();
virtual void Function1(); //set name ^.^
virtual const char* getname();
};
class ICommandLine
{
public:
virtual void Function0();
virtual void Function1();
virtual void Function2();
virtual ICommandManager* Getstring(int num, const char* name, int num01);
};
log:
Код
gfaceauthtoken: 19b28d..................
gfaceenv: live
gfacelivesessionid: 10...........
gsreleasehash: de4a3f...........................
gsserver: http://wfclient.trionworlds.com
gscache: C:\PROGRA~3\GFACE\warface\
simple nade esp:
Код
for( ; IEntity* pEnt = pAcIterator->Next( ); )
{
IEntity* pExplosives = pEnt;
if( pExplosives )
{
if( ( strstr(pExplosives->GetName( ), "ammo" ) ) )
{
if( ( pExplosives->IsActive( ) ) && ( pExplosives->GetFlags( ) == 0x80000 ) )
{
Vec3 Origin = pExplosives->GetPos( );
Vec3 LocalOrigin = pLocalEnt->GetPos( );
Vec3 out;
if( bot_misc->WorldToScreen( Origin, out ) )
{
bot_drawing->DrawEngineText(out.x, out.y, 1.3, (float*)&Col_Gold, true, "G" );
}
}
}
}
античит начинается здесь 015099E0:
Код
.rdata:015099E0 off_15099E0 dd offset loc_E60BA0 ; DATA XREF: sub_E2E130+4Ao
.rdata:015099E0 ; .text:00E2E34Fo ...
.rdata:015099E4 dd offset j__purecall
.rdata:015099E8 dd offset j__purecall
.rdata:015099EC dd offset j__purecall
.rdata:015099F0 aRemote_scree_0 db 'remote_screenshot_result',0
.rdata:015099F0 ; DATA XREF: .text:loc_E617F0o
.rdata:015099F0 ; sub_E61A20+37o ...
.rdata:01509A09 align 4
.rdata:01509A0C aRemote_screens db 'remote_screenshot',0 ; DATA XREF: .text:loc_E60A80o
.rdata:01509A0C ; sub_E62390+45o
.rdata:01509A1E align 10h
.rdata:01509A20 aG_remote_scr_1 db 'g_remote_screenshot_client_mem_limit',0
.rdata:01509A20 ; DATA XREF: sub_E611E0+A3o
.rdata:01509A20 ; sub_E63260+4Bo
.rdata:01509A45 align 4
.rdata:01509A48 aG_remote_scr_0 db 'g_remote_screenshot_compression',0
.rdata:01509A48 ; DATA XREF: sub_E611E0+71o
.rdata:01509A48 ; sub_E63260+3Bo
.rdata:01509A68 aG_remote_scree db 'g_remote_screenshot_scale',0 ; DATA XREF: sub_E611E0+3Co
.rdata:01509A68 ; sub_E63260+2Bo
.rdata:01509A82 align 4
.rdata:01509A84 off_1509A84 dd offset loc_E60B30 ; DATA XREF: .text:00E60B4Do
.rdata:01509A84 ; sub_E62390+27o ...
.rdata:01509A88 dd offset loc_E60B90
.rdata:01509A8C dd offset sub_E61290
.rdata:01509A90 dd offset sub_E613B0
.rdata:01509A94 dd offset sub_1009300
.rdata:01509A98 off_1509A98 dd offset loc_E60A80 ; DATA XREF: .text:00E60B47o
.rdata:01509A98 ; sub_E62390+21o ...
.rdata:01509A9C dd offset sub_D9E760
.rdata:01509AA0 dd offset sub_E1C160
.rdata:01509AA4 off_1509AA4 dd offset sub_DA97A0 ; DATA XREF: sub_E60AC0+47o
.rdata:01509AA8 dd offset sub_E60E60
.rdata:01509AAC dd offset sub_803E10
.rdata:01509AB0 dd offset sub_EA7410
.rdata:01509AB4 aScaleh db 'scaleH',0 ; DATA XREF: sub_E60EA0+BEo
.rdata:01509ABB align 4
.rdata:01509ABC aScalew db 'scaleW',0 ; DATA XREF: sub_E60EA0+ABo
.rdata:01509AC3 align 4
.rdata:01509AC4 aScreenshot_id db 'screenshot_id',0 ; DATA XREF: sub_E60EA0+98o
.rdata:01509AC4 ; sub_E61670+55o
.rdata:01509AD2 align 4
.rdata:01509AD4 aR_getscreens_0 db 'r_getscreenshot 3',0 ; DATA XREF: sub_E616D0+19o
.rdata:01509AD4 ; sub_E616D0+21r ...
.rdata:01509AE6 align 4
.rdata:01509AE8 off_1509AE8 dd offset loc_E61800 ; DATA XREF: sub_E61790+Do
.rdata:01509AE8 ; sub_E623F0+2Eo
.rdata:01509AEC dd offset loc_E61810
.rdata:01509AF0 dd offset sub_E61820
.rdata:01509AF4 dd offset sub_E618E0
.rdata:01509AF8 dd offset sub_E74590
.rdata:01509AFC off_1509AFC dd offset loc_E617F0 ; DATA XREF: sub_E61790+7o
.rdata:01509AFC ; sub_E623F0+28o
.rdata:01509B00 dd offset sub_D9E760
.rdata:01509B04 dd offset sub_E1C160
.rdata:01509B08 ; char aYMDHMS[13]
.rdata:01509B08 aYMDHMS db '%y%m%d%H%M%S',0 ; DATA XREF: sub_E62110+190o
.rdata:01509B15 db 0
.rdata:01509B16 db 0
.rdata:01509B17 db 0
.rdata:01509B18 dword_1509B18 dd 30303030h ; DATA XREF: sub_E62110+72r
.rdata:01509B1C dword_1509B1C dd 30303030h ; DATA XREF: sub_E62110+78r
.rdata:01509B20 byte_1509B20 db 0 ; DATA XREF: sub_E62110+84r
.rdata:01509B21 align 4
.rdata:01509B24 off_1509B24 dd offset loc_E63350 ; DATA XREF: sub_E63260+Ao
.rdata:01509B24 ; .text:00E63ABAo
.rdata:01509B28 dd offset loc_E62DB0
.rdata:01509B2C dd offset loc_E62DB0
.rdata:01509B30 dd offset loc_E63360
.rdata:01509B34 off_1509B34 dd offset loc_E63560 ; DATA XREF: sub_E63260+4o
.rdata:01509B34 ; .text:00E63AB4o
.rdata:01509B38 dd offset loc_E63370
.rdata:01509B3C dd offset loc_E633F0
.rdata:01509B40 dd offset ?Login@COnlineAccount@@QAEXPBD@Z ; COnlineAccount::Login(char const *)
.rdata:01509B44 ; char aCanTFindPlayer[]
специальные: исправить свои сбои:
Код
.text:0100823B push offset aAnti_cheat_pun ; "anti_cheat_punish"
.text:01008240 push offset aEgse_anticheat ; "eGSE_AntiCheatPunish"
.text:01008245 push 44h
.text:01008247 lea ecx, [esp+5ECh+var_128]
.text:0100824E call sub_7618C0
.text:01008253 push offset aAnti_cheat_att ; "anti_cheat_attack_pos_validation"
.text:01008258 push offset aEgse_antiche_0 ; "eGSE_AntiCheatAttackPosValidation"
.text:0100825D push 45h
.text:0100825F lea ecx, [esp+5ECh+var_118]
.text:01008266 call sub_7618C0
.text:0100826B push offset aAnti_cheat_rwi ; "anti_cheat_rwi_hit_validation"
.text:01008270 push offset aEgse_antiche_1 ; "eGSE_AntiCheatRWIHitValidation"
.text:01008275 push 46h
.text:01008277 lea ecx, [esp+5ECh+var_108]
.text:0100827E call sub_7618C0
.text:01008283 push offset aAnti_cheat_r_0 ; "anti_cheat_rwi_backface_hit_validation"
.text:01008288 push offset aEgse_antiche_2 ; "eGSE_AntiCheatRWIBackfaceHitValidation"
.text:0100828D push 47h
.text:0100828F lea ecx, [esp+5ECh+var_F8]
.text:01008296 call sub_7618C0
.text:0100829B push offset aAnti_cheat_hit ; "anti_cheat_hit_validation"
.text:010082A0 push offset aEgse_antiche_3 ; "eGSE_AntiCheatHitValidation"
.text:010082A5 push 48h
.text:010082A7 lea ecx, [esp+5ECh+var_E8]
.text:010082AE call sub_7618C0
.text:010082B3 push offset aAnti_cheat_ent ; "anti_cheat_entity_pos_validation"
.text:010082B8 push offset aEgse_antiche_4 ; "eGSE_AntiCheatEntityPosValidation"
.text:010082BD push 43h
.text:010082BF lea ecx, [esp+5ECh+var_D8]
.text:010082C6 call sub_7618C0
.text:010082CB push offset aAnti_cheat_pro ; "anti_cheat_process_readonly_memory_modi"...
.text:010082D0 push offset aEgse_antiche_5 ; "eGSE_AntiCheatProcessReadOnlyMemory_Mod"...
.text:010082D5 push 4Ah
.text:010082D7 lea ecx, [esp+5ECh+var_C8]
.text:010082DE call sub_7618C0
.text:010082E3 push offset aAnti_cheat_lib ; "anti_cheat_library_iat_table_modified"
.text:010082E8 push offset aEgse_antiche_6 ; "eGSE_AntiCheatLibraryIATTable_Modified"
.text:010082ED push 4Bh
.text:010082EF lea ecx, [esp+5ECh+var_B8]
.text:010082F6 call sub_7618C0
.text:010082FB push offset aAnti_cheat_l_0 ; "anti_cheat_library_readonly_memory_modi"...
.text:01008300 push offset aEgse_antiche_7 ; "eGSE_AntiCheatLibraryReadOnlyMemory_Mod"...
.text:01008305 push 4Ch
.text:01008307 lea ecx, [esp+5ECh+var_A8]
.text:0100830E call sub_7618C0
.text:01008313 push offset aAnti_cheat_net ; "anti_cheat_net_time_validation"
.text:01008318 push offset aEgse_antiche_8 ; "eGSE_AntiCheatNetTimeValidation"
.text:0100831D push 49h
.text:0100831F lea ecx, [esp+5ECh+var_98]
.text:01008326 call sub_7618C0
.text:0100832B push offset aAnti_cheat_gam ; "anti_cheat_game_paks_deletion"
.text:01008330 push offset aEgse_antiche_9 ; "eGSE_AntiCheatGamePaksDeletion"
.text:01008335 push 4Dh