[No Memory Write] LUA UnLocker & Anti AFK menu

User Tag List

Page 5 of 22 FirstFirst 123456789 ... LastLast
Results 61 to 75 of 326
  1. #61
    DarkLinux's Avatar Former Staff
    CoreCoins Purchaser Authenticator enabled
    Reputation
    1584
    Join Date
    May 2010
    Posts
    1,824
    Thanks G/R
    188/531
    Trade Feedback
    16 (100%)
    Mentioned
    6 Post(s)
    Tagged
    0 Thread(s)
    Originally Posted by ShasVa View Post
    Is there anyway to stop this opening a browser to this very topic EVERY time I open it? It is becoming very annoying!
    Well lets just say if I found out that it was detected, the only way you would know is if you viewed this thread. And you should have lots of time to close the program before it finishes loading. I would remove it, b/c it does bug a lot of people, but I think you like your account a little more then a pop up.

    [No Memory Write] LUA UnLocker & Anti AFK
  2. #62
    dbevf1's Avatar Private
    Reputation
    8
    Join Date
    May 2015
    Posts
    4
    Thanks G/R
    0/0
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Greatjob.
    May I ask a question, are you DebugActiveProcess to wow and set the debug register?
    If so I found it maybe not safe, because I can see Dr0-3 value in every thread when I attch a DLL to wow and GetThreadContext.
    [6540] [6284]
    [6540] [Dr0] 0x13ff20112
    [6540] [Dr1] 0x13f8f9025
    [6540] [Dr2] 0x13ff22ca1
    [6540] [Dr3] 0x0
    [6540] [Dr7] 0x15

    If I can do this, warden also can. so..? Have any idea to aviod this? Thank you.
    Last edited by dbevf1; 05-29-2015 at 02:13 PM.

  3. #63
    dbevf1's Avatar Private
    Reputation
    8
    Join Date
    May 2015
    Posts
    4
    Thanks G/R
    0/0
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    And I found 3 more points need jmp to unlock InteractUnit() in addons, Am I right? But there's no more debug register to add this 3point. Is there any other way to unlock InteractUnit function in addon?

    Code:
    000000013FECCD8C | 74 51                    | je wow-64.13FECCDDF                     | jmp 1
    000000013FECCD8E | 83 3D 3F 95 35 01 00     | cmp dword ptr ds:[1412262D4],0          |
    000000013FECCD95 | 75 48                    | jnz wow-64.13FECCDDF                    |
    000000013FECCD97 | 4C 89 25 2A 95 35 01     | mov qword ptr ds:[1412262C8],r12        |
    000000013FECCD9E | 4D 85 E4                 | test r12,r12                            |
    000000013FECCDA1 | 74 3C                    | je wow-64.13FECCDDF                     |
    000000013FECCDA3 | 48 83 3D 45 95 35 01 00  | cmp qword ptr ds:[1412262F0],0          |
    000000013FECCDAB | 75 32                    | jnz wow-64.13FECCDDF                    |
    000000013FECCDAD | 4C 8D 05 CC 16 77 01     | lea r8,qword ptr ds:[14163E480]         |
    000000013FECCDB4 | 33 D2                    | xor edx,edx                             |
    000000013FECCDB6 | 48 8B CF                 | mov rcx,rdi                             |
    000000013FECCDB9 | 4C 89 25 30 95 35 01     | mov qword ptr ds:[1412262F0],r12        |
    000000013FECCDC0 | E8 2B 1D 0D 00           | call wow-64.13FF9EAF0                   |
    000000013FECCDC5 | 85 C0                    | test eax,eax                            |
    000000013FECCDC7 | 74 16                    | je wow-64.13FECCDDF                     |
    000000013FECCDC9 | 4C 8D 05 B0 16 77 01     | lea r8,qword ptr ds:[14163E480]         |
    000000013FECCDD0 | 48 8D 15 AD 23 ED 00     | lea rdx,qword ptr ds:[140D9F184]        | ;140D9F184:"Snl"
    000000013FECCDD7 | 48 8B CF                 | mov rcx,rdi                             |
    000000013FECCDDA | E8 B1 2B 0D 00           | call wow-64.13FF9F990                   |
    000000013FECCDDF | 8D 56 03                 | lea edx,dword ptr ds:[rsi+3]            |
    Code:
    000000013FF9C9ED | 74 65                    | je wow-64.13FF9CA54                     | jmp 2
    000000013FF9C9EF | 83 3D DA 98 28 01 00     | cmp dword ptr ds:[1412262D0],0          |
    000000013FF9C9F6 | 74 67                    | je wow-64.13FF9CA5F                     |
    000000013FF9C9F8 | 83 3D D5 98 28 01 00     | cmp dword ptr ds:[1412262D4],0          |
    000000013FF9C9FF | 75 5E                    | jnz wow-64.13FF9CA5F                    |
    000000013FF9CA01 | 48 89 0D C0 98 28 01     | mov qword ptr ds:[1412262C8],rcx        |
    000000013FF9CA08 | 48 85 C9                 | test rcx,rcx                            |
    000000013FF9CA0B | 74 52                    | je wow-64.13FF9CA5F                     |
    000000013FF9CA0D | 48 83 3D DB 98 28 01 00  | cmp qword ptr ds:[1412262F0],0          |
    000000013FF9CA15 | 75 48                    | jnz wow-64.13FF9CA5F                    |
    000000013FF9CA17 | 48 89 0D D2 98 28 01     | mov qword ptr ds:[1412262F0],rcx        |
    000000013FF9CA1E | 4C 8D 05 5B 1A 6A 01     | lea r8,qword ptr ds:[14163E480]         |
    000000013FF9CA25 | 33 D2                    | xor edx,edx                             |
    000000013FF9CA27 | 48 8B CB                 | mov rcx,rbx                             |
    000000013FF9CA2A | E8 C1 20 00 00           | call wow-64.13FF9EAF0                   |
    000000013FF9CA2F | 85 C0                    | test eax,eax                            |
    000000013FF9CA31 | 74 2C                    | je wow-64.13FF9CA5F                     |
    000000013FF9CA33 | 4C 8D 05 46 1A 6A 01     | lea r8,qword ptr ds:[14163E480]         |
    000000013FF9CA3A | 48 8D 15 43 27 E0 00     | lea rdx,qword ptr ds:[140D9F184]        | ;140D9F184:"Snl"
    000000013FF9CA41 | 48 8B CB                 | mov rcx,rbx                             |
    000000013FF9CA44 | E8 47 2F 00 00           | call wow-64.13FF9F990                   |
    000000013FF9CA49 | 48 83 43 18 18           | add qword ptr ds:[rbx+18],18            |
    000000013FF9CA4E | 48 83 C4 20              | add rsp,20                              |
    000000013FF9CA52 | 5B                       | pop rbx                                 |
    000000013FF9CA53 | C3                       | ret                                     |
    000000013FF9CA54 | 48 8B 05 6D 98 28 01     | mov rax,qword ptr ds:[1412262C8]        |
    000000013FF9CA5B | 49 89 40 10              | mov qword ptr ds:[r8+10],rax            |
    Code:
    000000013FFA8A63 | 74 5C                    | je wow-64.13FFA8AC1                     | jmp 3 to 000000013FFA8ABA  
    000000013FFA8A65 | 83 3D 64 D8 27 01 00     | cmp dword ptr ds:[1412262D0],0          |
    000000013FFA8A6C | 74 4C                    | je wow-64.13FFA8ABA                     |
    000000013FFA8A6E | 48 8B 43 08              | mov rax,qword ptr ds:[rbx+8]            |
    000000013FFA8A72 | 48 89 05 4F D8 27 01     | mov qword ptr ds:[1412262C8],rax        |
    000000013FFA8A79 | 48 85 C0                 | test rax,rax                            |
    000000013FFA8A7C | 74 3C                    | je wow-64.13FFA8ABA                     |
    000000013FFA8A7E | 48 83 3D 6A D8 27 01 00  | cmp qword ptr ds:[1412262F0],0          |
    000000013FFA8A86 | 75 32                    | jnz wow-64.13FFA8ABA                    |
    000000013FFA8A88 | 4C 8D 05 F1 59 69 01     | lea r8,qword ptr ds:[14163E480]         |
    000000013FFA8A8F | 33 D2                    | xor edx,edx                             |
    000000013FFA8A91 | 49 8B CF                 | mov rcx,r15                             | ;r15:"Top of worker loop\n"
    000000013FFA8A94 | 48 89 05 55 D8 27 01     | mov qword ptr ds:[1412262F0],rax        |
    000000013FFA8A9B | E8 50 60 FF FF           | call wow-64.13FF9EAF0                   |
    000000013FFA8AA0 | 85 C0                    | test eax,eax                            |
    000000013FFA8AA2 | 74 16                    | je wow-64.13FFA8ABA                     |
    000000013FFA8AA4 | 4C 8D 05 D5 59 69 01     | lea r8,qword ptr ds:[14163E480]         |
    000000013FFA8AAB | 48 8D 15 D2 66 DF 00     | lea rdx,qword ptr ds:[140D9F184]        | ;140D9F184:"Snl"
    000000013FFA8AB2 | 49 8B CF                 | mov rcx,r15                             | ;r15:"Top of worker loop\n"
    000000013FFA8AB5 | E8 D6 6E FF FF           | call wow-64.13FF9F990                   |
    000000013FFA8ABA | 44 89 25 13 D8 27 01     | mov dword ptr ds:[1412262D4],r12d       |

  4. #64
    luchin's Avatar Active Member
    Reputation
    48
    Join Date
    Jan 2007
    Posts
    134
    Thanks G/R
    0/0
    Trade Feedback
    2 (100%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Being a bit of a rookie - what does unlocking the LUA enable me to do? I heard something about some crazy macros that you could run but that's about it.

  5. #65
    tobmaps's Avatar Active Member
    Reputation
    43
    Join Date
    Apr 2013
    Posts
    28
    Thanks G/R
    1/11
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Originally Posted by dbevf1 View Post
    Have any idea to aviod this? Thank you.
    For example you can hook GetThreadContext API and related ones onto your system and return zero values to the applications using em. Anyway they can just read a bunch of PEB flags to detect you or even simple call IsDebuggerPresent anytime. You can find some examples of protection against simpliest detection ways in my cheat (Gagarin) if you try to RE it.
    Last edited by tobmaps; 06-04-2015 at 08:09 AM.

  6. #66
    dbevf1's Avatar Private
    Reputation
    8
    Join Date
    May 2015
    Posts
    4
    Thanks G/R
    0/0
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Originally Posted by tobmaps View Post
    For example you can hook GetThreadContext API and related ones onto your system and return zero values to the applications using em. Anyway they can just read a bunch of PEB flags to detect you or even simple call IsDebuggerPresent anytime. You can find some examples of protection against simpliest detection ways in my cheat (Gagarin) if you try to RE it.
    Thank you. I saw your Gagarin, thats realy a very awesome and powerful cheat. I just start learn about cheat and anti cheat when I saw friends cheating.

    1. I just hook NtG/SetContextThread and inline hook KiUserExceptionDispatcher, its work fine. But I have to VirtualAllocEx to inject the hook code, and this mean modify wow memory.
    2. How about dont use DebugActiveProcess, but call AddVectoredExceptionHandler and inject the handler code ?

    Anyway, all of this need to modify memory. Its annoying to me. Up to now I just add junk instruction to my inject code like 'mov rax,rax/push rax pop rax...' , I do not know whether it is useful, I just learn about cheat.

  7. #67
    joneskull's Avatar Member
    Reputation
    1
    Join Date
    Jun 2007
    Posts
    25
    Thanks G/R
    0/0
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    I have been using this for a couple days and executing CastSpellByID(id,target) sometimes pops up a protected lua error message, although the spell still casts, which is quite annoying. Also after awhile my abilities will lock up, and I will not be able to cast anything weather it be manually or by macro. The only way to fix this is to relog. Is anyone else having these issue?

    I am using 64bit client btw

  8. #68
    wussupwussup's Avatar Member
    Reputation
    5
    Join Date
    Mar 2008
    Posts
    35
    Thanks G/R
    1/0
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Hey I was trying to use oLUA on the PTR (oLUA version 1.4.7) and it was only showing one pound symbol when attempting to load on 64bit.

    On 32bit neither the current version or ptr version were able to find the process.

  9. #69
    Ssateneth's Avatar Contributor
    Reputation
    141
    Join Date
    May 2008
    Posts
    866
    Thanks G/R
    0/3
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Originally Posted by wussupwussup View Post
    Hey I was trying to use oLUA on the PTR (oLUA version 1.4.7) and it was only showing one pound symbol when attempting to load on 64bit.

    On 32bit neither the current version or ptr version were able to find the process.
    same
    10 chars
    KuRIoS is awesome!

  10. #70
    anwarov919's Avatar Member
    Reputation
    1
    Join Date
    Jun 2014
    Posts
    2
    Thanks G/R
    0/0
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Hi, thx Darklinux it's great, can you add another version that allow us to choses the Process ID manulay ?

  11. #71
    yobleed's Avatar Active Member
    Reputation
    27
    Join Date
    Jan 2015
    Posts
    116
    Thanks G/R
    2/8
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Is this safe since the latest FireHack Banwave?
    ~They call me HordeOnYourTube, but you can call me hoyt~

  12. #72
    DarkLinux's Avatar Former Staff
    CoreCoins Purchaser Authenticator enabled
    Reputation
    1584
    Join Date
    May 2010
    Posts
    1,824
    Thanks G/R
    188/531
    Trade Feedback
    16 (100%)
    Mentioned
    6 Post(s)
    Tagged
    0 Thread(s)
    [Warlords of Draenor]



    Log:
    1.4.8
    +6.2.0 Release
    This is still safe to my understanding, no calls to the LUA engine are being made from outside of the games module.


    Also, I will try and add @dbevf1 update at some point
    Last edited by DarkLinux; 06-23-2015 at 05:32 PM.

  13. #73
    Lightbrand's Avatar Member
    Reputation
    3
    Join Date
    Oct 2008
    Posts
    55
    Thanks G/R
    0/2
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    In DarkLinux we trust.

  14. #74
    anwarov919's Avatar Member
    Reputation
    1
    Join Date
    Jun 2014
    Posts
    2
    Thanks G/R
    0/0
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Originally Posted by DarkLinux View Post
    [Warlords of Draenor]



    Log:


    This is still safe to my understanding, no calls to the LUA engine are being made from outside of the games module.


    Also, I will try and add @dbevf1 update at some point
    When I use it my FPS fall from 140 to 35. There is no one way to avoid this?

  15. #75
    DarkLinux's Avatar Former Staff
    CoreCoins Purchaser Authenticator enabled
    Reputation
    1584
    Join Date
    May 2010
    Posts
    1,824
    Thanks G/R
    188/531
    Trade Feedback
    16 (100%)
    Mentioned
    6 Post(s)
    Tagged
    0 Thread(s)
    Due to the method used no, I cant optimise it to run any faster. Its the price of this method ;(

Page 5 of 22 FirstFirst 123456789 ... LastLast

Similar Threads

  1. Lua unlocking - how do i write?
    By messycan in forum World of Warcraft General
    Replies: 0
    Last Post: 10-19-2016, 06:07 PM
  2. LUA Unlocker / Anti-AFK for Mac?
    By Yxlol in forum WoW Bots Questions & Requests
    Replies: 4
    Last Post: 10-20-2013, 03:08 PM
  3. [Request]Anty-Afk memory edit for 2.4.3
    By patrykos91 in forum WoW Memory Editing
    Replies: 3
    Last Post: 03-18-2010, 04:27 PM
  4. [Request]Anty-Afk memory edit for 2.4.3
    By patrykos91 in forum WoW Bots Questions & Requests
    Replies: 1
    Last Post: 03-18-2010, 10:36 AM
  5. Replies: 4
    Last Post: 09-18-2006, 06:38 PM
All times are GMT -5. The time now is 07:49 PM. Powered by vBulletin® Version 4.2.3
Copyright © 2024 vBulletin Solutions, Inc. All rights reserved. User Alert System provided by Advanced User Tagging (Pro) - vBulletin Mods & Addons Copyright © 2024 DragonByte Technologies Ltd.
Digital Point modules: Sphinx-based search