Some basic offsets to let you play offline

[Fritomaster]

[QUOTE=ferib;4299078]Can confirm, the crc32 checks are the same as the ones I'm used to.
Big thanks, @king48488 for poking my interests, was a fun challenge to get it working!


Awesome work. I don't really much of the process but you obviously know your trade.

Have you progressed a bit further and its still working?

[ex0d]

Can confirm, the crc32 checks are the same as the ones I'm used to.
Big thanks, @king48488 for poking my interests, was a fun challenge to get it working!

Well done @ferib !

How did you get around remapping crash? You mentioned you were looking for logs earlier. I've noticed that when the crash happens BlizzardError.exe pops up for a split second but I could not find anything it saves.

[themp]

Do you have any plans on releasing your executable, for all of us that didn't get into the alpha?

[dclone]

Can confirm, the crc32 checks are the same as the ones I'm used to.
Big thanks, @king48488 for poking my interests, was a fun challenge to get it working!

Gratz! Nice work - I think it is save to say most of wouldn't even see a chance to beat this without your work on crc bypasses.

For my loader I still face crashes due to the remapping - confirmed with someone who has it running that my method should work but for some reason I get these random crashes after 2-3 mins in menu.

[dclone]

Well done @ferib !

How did you get around remapping crash? You mentioned you were looking for logs earlier. I've noticed that when the crash happens BlizzardError.exe pops up for a split second but I could not find anything it saves.

The BlizzardError.exe does store a crashlog and dump in your Temp folder.

[ZLOFENIX]

I connected game to my emu, now will make emu part, im not interested in full offline, only to connect game to my emu.
Will report when emu will be done if nothing happens, because im not using google protobuf impl.
Let say its just info post.

[TreeEskimo]

Patched exe would be dope. I'll try and see if I can work around this in the mean time. Thanks for the information guys.

[usafbordeaux]

Guess I gotta start youtubing "How to program" lol. I need to take a break from just reading this thread lol.

[MrNoble]

Well done @ferib !

How did you get around remapping crash? You mentioned you were looking for logs earlier. I've noticed that when the crash happens BlizzardError.exe pops up for a split second but I could not find anything it saves.

I ended up patching the crc32's properly and had to remap the sections back after the patching was done.

Gratz! Nice work - I think it is save to say most of wouldn't even see a chance to beat this without your work on crc bypasses.

For my loader I still face crashes due to the remapping - confirmed with someone who has it running that my method should work but for some reason I get these random crashes after 2-3 mins in menu.

The fact that you crash after 2~3 minutes means you have patched/remapped the game and triggered the crc32 checks.
This means you are over the first roadblock of patching & remapping, but you still got some crc32 checks to take care of.

[dclone]

The fact that you crash after 2~3 minutes means you have patched/remapped the game and triggered the crc32 checks.
This means you are over the first roadblock of patching & remapping, but you still got some crc32 checks to take care of.

I wish it was like that. It crashes after 2-3 minutes _without_ any patches applied.

What I do is:

• backup contents of existing view
• create new section
• unmap existing view
• create unprotected view in my section
• restore contents to unprotected view in my section
• unmap my unprotected view
• create protected view

So in the end everything is exactly like if I did no mapping at all with the sole difference that the view was created with my section and not Blizzard's. Still I get the crash. If I don't do the above then I don't get a crash.

So it must have to do with my remapping.

[MrNoble]

For those who would like to unlock all buttons, 0x597E1C -> 90909090909090

DM me if you are willing to play multiplayer with me !

[zogzog34]

I understand that you guys don't want to release a crack or tool to bypass the anti-debugging easily for probably some of those reasons :
- it's more work to make it foolproof and stable
- people will still ask for more help and support
- git gud
- blizzard is reading this ? (Please don't ban me, my wow account is the apple of my eye)

So let me just ask one thing : How hard would it be to replicate this hack for someone with pretty average developing skills (C++, Bash and some php) and absolutely no skill/knowledge in asm/reverse engineering.
Trying to learn those but probably i should go with simpler goals first.
Although with the amount of info there is in this thread and on ferib blog maybe reading a few things about PE file format and memory hacking would be enough.

Edit : Forgot one reason is that it might start attracting more attention to this website if you start sharing tools to bypass DRMs

[Fritomaster]

I understand that you guys don't want to release a crack or tool to bypass the anti-debugging easily for probably some of those reasons :
- it's more work to make it foolproof and stable
- people will still ask for more help and support
- git gud
- blizzard is reading this ? (Please don't ban me, my wow account is the apple of my eye)

So let me just ask one thing : How hard would it be to replicate this hack for someone with pretty average developing skills (C++, Bash and some php) and absolutely no skill/knowledge in asm/reverse engineering.
Trying to learn those but probably i should go with simpler goals first.
Although with the amount of info there is in this thread and on ferib blog maybe reading a few things about PE file format and memory hacking would be enough.

Edit : Forgot one reason is that it might start attracting more attention to this website if you start sharing tools to bypass DRMs

This site has been popular for a lonnnnnnnnnnnnnng time. Even like 10+ years ago when it was mmowned.

[zogzog34]

I mean i know it's popular and i was already here trying to find cheats for shitty wow privates servers ten years ago, just lurking. And blizzard is probably browsing it often but too lazy to patch their games too
I do think sharing cracks could attract different people and comes with his own problems though.
Also this thread has been indexed by google.

[DesmondTiny]

You can use this: GitHub - barncastle/Battle.Net-Installer: A command line tool for installing Blizzard games through Battle.Net.
.\BNetInstaller.exe --prod osib --uid osi_beta --lang enus --dir "D:\Games\D2R"

Edit: oops, before I wrote it 0x7C posted his reply already

How do you use this application exactly? I download it but not sure what to do.