Some "simple" questions regarding memory reading!

[sYpro]

Hey there,

so i have some basic questions:

1. Why do most people read stuff from memory (EnumVisibleObjects, ObjectManager etc.) in a in-process fashion, instead a out-of-process? (I mean injecting their code)
Wouldn't it be safer to read that stuff from the outside? Or doesn't it make a difference?
2. I was thinking about different ways of programming a bot and i was wondering if using just code-caves to execute some WoW-specific functions (like ClickToMove) instead of injecting a whole dll, would make it safer. Or is this too cumbersome to maintain? I would do all the reading out-of-process and would only inject if a function call is necessary.

Thanks in advance!

[l0l1dk]

1. Reading from in-process is faster, and you can also easily call functions in WoW then. It usually takes much less code to accomplish something by calling WoW functions versus reading its memory.

2. Yes, it's safer to use code-caves instead of injecting a DLL, but it's still detectable.

[sYpro]

Thanks. And one other question:

Why are some people rather use the LUA functions, even when in-process. Are they just easier to use / reverse engineer, or safer to use?

[Wildbreath]

Thanks. And one other question:

Why are some people rather use the LUA functions, even when in-process. Are they just easier to use / reverse engineer, or safer to use?

less code and just easier
dont need support alot memory offsets every patch

[sYpro]

less code and just easier
dont need support alot memory offsets every patch

Makes sense.
Thank you!