Pattern for Wotlk (build 8962)?

[Nesox]

hi ive been trying to find the pattern to get the g_ClientConnection for 3.0.2 wotlk build 8962 but without luck so far i think ive found the objectmanager.

Code:

0046F7A5  |. EB 02          JMP SHORT Wow.0046F7A9
0046F7A7  |> 33C0           XOR EAX,EAX
0046F7A9  |> 8B0D 44972E01  MOV ECX,DWORD PTR DS:[12E9744]
0046F7AF  |. 64:8B15 2C0000>MOV EDX,DWORD PTR FS:[2C]
0046F7B6  |. 8B348A         MOV ESI,DWORD PTR DS:[EDX+ECX*4]

this is what i got so far

Code:

ObjectManager.CodeAddress = dwFindPattern(hProcess, 0x400000, 0x600000,
            "EB 02 33 00 8B 0D 00 00 00 00 64 8B 15 2C 00 00 00 8B 34 8A",
            "xxxx?xx????xxxxxxxxx");

here's the one for 2.4.3 and it works great

Code:

ObjectManager.CodeAddress = dwFindPattern(hProcess, 0x400000, 0x600000,
            "EB 02 33 00 64 8B 15 2C 00 00 00 8B 0D 00 00 00 00 8B 0C 8A",
            "xxx?xxxxxxxxx????xxx");
            if (ObjectManager.CodeAddress == uint.MaxValue)
            throw new Exception("Could not find game routine from which we get the g_clientConnection pointer.");

any ideas on what im doing wrong?

[Cypher]

Upload the WOW.exe for that build and I'll make you one.

[Nesox]

Upload the WOW.exe for that build and I'll make you one.

here you go --> Wow.exe [3.0.2.8962]
:wave:

[crediar]

dunno if you need it but this is the player/unit sig for 8982 (you meant 8982 not 8962 right ?)

0x009B5228

[Nesox]

dunno if you need it but this is the player/unit sig for 8982 (you meant 8982 not 8962 right ?)

0x009B5228

no i meant 8962

thx ill check it out. btw. is the offsets still the same?

[crediar]

nope, sigs are always different per build

[Cypher]

nope, sigs are always different per build

Wtf is the point of a signature if you have to update it each build.

YOU'RE DOING IT WRONG!

Seriously though. I currently use about 180 signatures from memory and only 3-4 break per build max. (Excluding large builds like Wrath in which about 1/3 broke, but only because Blizzard changed compiler options or some shit)

Also, sorry, I spaced on this thread. I'll try and do it soon.

[kynox]

nope, sigs are always different per build

Ahahahaha, thanks. You made my day.

[Xarg0]

That explains why some of the bwh patterns are still valid, wait ...
NO you just failed!!!!!!!

[crediar]

well maybe you should read and think before flaming, we are not talking about the same signatures here, I mean the signature each struct starts ( CGUnit_C, CGPlayer_C, ...).
While it might not be the best way to do it, it still works.

[Nesox]

well do someone know the pattern to get g_ClientConnection for 3.0.2 build 6982 :yuck:



well seriously i cant get it to work

[dalgreens]

The WoW struct lists seem to have changed in 3.0.2 (WoTLK & Beta clients).

According to Cypher & Flos, old 2.0+ Structs looked like this(Pulling this from flos bot source btw):

PHP Code:

Func _wowObject()
    return DllStructCreate( _
    "dword var1;" & _    ; 0x0
    "dword var2;" & _    ; 0x4
    "dword DataPTR;" & _    ; 0x8
    "dword var4;" & _    ; 0xC
    "dword var5;" & _    ; 0x10        5
    "dword ObjectType;" & _    ; 0x14
    "dword var7;" & _    ; 0x18
    "dword var8;" & _    ; 0x1C
    "dword var9;" & _    ; 0x20
    "dword var10;" & _    ; 0x24        10
    "dword var11;" & _    ; 0x28
    "dword var12;" & _    ; 0x2C
    "uint64 GUID;" & _    ; 0x30
    "dword var14;" & _    ; 0x38
    "ptr NextObject")    ; 0x3C        15
EndFunc
; Object For ObjectType 3 and 4 (npc/mob and player)
Func _wowUnitObject()
    return DllStructCreate( _
    "dword var1;" & _    ; 0x0
    "dword var2;" & _    ; 0x4
    "dword DataPTR;" & _    ; 0x8
    "dword var4;" & _    ; 0xC
    "dword var5;" & _    ; 0x10        5
    "dword ObjectType;" & _    ; 0x14
    "dword var7;" & _    ; 0x18
    "dword var8;" & _    ; 0x1C
    "dword var9;" & _    ; 0x20
    "dword var10;" & _    ; 0x24        10
    "dword var11;" & _    ; 0x28
    "dword var12;" & _    ; 0x2C
    "uint64 GUID;" & _    ; 0x30
    "dword var14;" & _    ; 0x38
    "ptr NextObject;" & _    ; 0x3C        15
    "dword var16[748];" & _    ; 0x40
    "float x;" & _        ; 0xBF0
    "float y;" & _        ; 0xBF4
    "float z;" & _        ; 0xBF8
    "float rot" )        ; 0xBFC        20
EndFunc
;Object data type 3 and 4
Func _wowUnitObjectData()
    return DllStructCreate ( _
    "uint64 GUID;" & _        ; 0x00
    "uint type;" & _        ; 0x08
    "uint entry;" & _        ; 0x0C
    "float scale;" & _        ; 0x10
    "uint padding;" & _        ; 0x14        5
    "uint64 charm;" & _        ; 0x18
    "uint64 summon;" & _        ; 0x20
    "uint64 charmedBy;" & _        ; 0x28
    "uint64 summonedBy;" & _    ; 0x30
    "uint64 createdBy;" & _        ; 0x38        10
    "uint64 targetGUID;" & _    ; 0x40
    "uint64 persuaded;" & _        ; 0x48
    "uint64 channelObj;" & _    ; 0x50
    "uint health;" & _        ; 0x58
    "uint power1;" & _        ; 0x5C        15
    "uint power2;" & _        ; 0x60
    "uint power3;" & _        ; 0x64
    "uint power4;" & _        ; 0x68
    "uint power5;" & _        ; 0x6C
    "uint maxhealth;" & _        ; 0x70        20
    "uint maxpower1;" & _        ; 0x74
    "uint maxpower2;" & _        ; 0x78
    "uint maxpower3;" & _        ; 0x7C
    "uint maxpower4;" & _        ; 0x80
    "uint maxpower5;" & _        ; 0x84        25
    "uint level;" & _        ; 0x88
    "uint faction;")        ; 0x8C
EndFunc

Func _wowUnitObjectDataExt()
    return DllStructCreate ( _
    "uint64 GUID;" & _        ; 0x00
    "uint type;" & _        ; 0x08
    "uint entry;" & _        ; 0x0C
    "float scale;" & _        ; 0x10
    "uint padding;" & _        ; 0x14        5
    "uint64 charm;" & _        ; 0x18
    "uint64 summon;" & _        ; 0x20
    "uint64 charmedBy;" & _        ; 0x28
    "uint64 summonedBy;" & _    ; 0x30
    "uint64 createdBy;" & _        ; 0x38        10
    "uint64 targetGUID;" & _    ; 0x40
    "uint64 persuaded;" & _        ; 0x48
    "uint64 channelObj;" & _    ; 0x50
    "uint health;" & _        ; 0x58
    "uint power1;" & _        ; 0x5C        15
    "uint power2;" & _        ; 0x60
    "uint power3;" & _        ; 0x64
    "uint power4;" & _        ; 0x68
    "uint power5;" & _        ; 0x6C
    "uint maxhealth;" & _        ; 0x70        20
    "uint maxpower1;" & _        ; 0x74
    "uint maxpower2;" & _        ; 0x78
    "uint maxpower3;" & _        ; 0x7C
    "uint maxpower4;" & _        ; 0x80
    "uint maxpower5;" & _        ; 0x84        25
    "uint level;" & _        ; 0x88
    "uint faction;"    & _        ; 0x8C
    "char UnitFieldBytes0[4];" & _        ;0x0090
    "uint UnitVirtualItemSlotDisplay[3];" & _;0x0094
    "char UnitVirtualItemInfo[24];" & _    ;0x00a0
    "uint UnitFieldFlags;" & _        ;0x00b8
    "uint UnitFieldFlags2;" & _        ;0x00bc
    "uint UnitFieldAura[56];" & _        ;0x00c0
    "char UnitFieldAuraflags[56];" & _    ;0x01a0
    "char UnitFieldAuralevels[56];" & _    ;0x01d8
    "char UnitFieldAuraapplications[56];" & _;0x0210
    "uint UnitFieldAurastate;" & _        ;0x0248
    "uint UnitFieldBaseattacktime[2];" & _    ;0x024c
    "uint UnitFieldRangedattacktime;" & _    ;0x0254
    "float UnitFieldBoundingradius;" & _    ;0x0258
    "float UnitFieldCombatreach;" & _    ;0x025c
    "uint UnitFieldDisplayid;" & _        ;0x0260
    "uint UnitFieldNativedisplayid;" & _    ;0x0264
    "uint UnitFieldMountdisplayid;" & _    ;0x0268
    "float UnitFieldMindamage;" & _        ;0x026c
    "float UnitFieldMaxdamage")        ;0x0270
EndFunc 


However, all my tests so far have shown that these structs have all changed (still trying to figure out the correct order).

[dalgreens]

Forgot to mention, I also used data from raindog ( http://www.mmowned.com/forums/wow-me...-you-guys.html ).

An updated struct list for WOTLK (or any patch 3.0+ client) would be neat. If I knew how I would do it myself

Here's a copy of the current beta build wow.exe (9014): http://www.filedropper.com/wow_2

[Nesox]

The WoW struct lists seem to have changed in 3.0.2 (WoTLK & Beta clients).

According to Cypher & Flos, old 2.0+ Structs looked like this(Pulling this from flos bot source btw):

PHP Code:

Func _wowObject()
    return DllStructCreate( _
    "dword var1;" & _    ; 0x0
    "dword var2;" & _    ; 0x4
    "dword DataPTR;" & _    ; 0x8
    "dword var4;" & _    ; 0xC
    "dword var5;" & _    ; 0x10        5
    "dword ObjectType;" & _    ; 0x14
    "dword var7;" & _    ; 0x18
    "dword var8;" & _    ; 0x1C
    "dword var9;" & _    ; 0x20
    "dword var10;" & _    ; 0x24        10
    "dword var11;" & _    ; 0x28
    "dword var12;" & _    ; 0x2C
    "uint64 GUID;" & _    ; 0x30
    "dword var14;" & _    ; 0x38
    "ptr NextObject")    ; 0x3C        15
EndFunc
; Object For ObjectType 3 and 4 (npc/mob and player)
Func _wowUnitObject()
    return DllStructCreate( _
    "dword var1;" & _    ; 0x0
    "dword var2;" & _    ; 0x4
    "dword DataPTR;" & _    ; 0x8
    "dword var4;" & _    ; 0xC
    "dword var5;" & _    ; 0x10        5
    "dword ObjectType;" & _    ; 0x14
    "dword var7;" & _    ; 0x18
    "dword var8;" & _    ; 0x1C
    "dword var9;" & _    ; 0x20
    "dword var10;" & _    ; 0x24        10
    "dword var11;" & _    ; 0x28
    "dword var12;" & _    ; 0x2C
    "uint64 GUID;" & _    ; 0x30
    "dword var14;" & _    ; 0x38
    "ptr NextObject;" & _    ; 0x3C        15
    "dword var16[748];" & _    ; 0x40
    "float x;" & _        ; 0xBF0
    "float y;" & _        ; 0xBF4
    "float z;" & _        ; 0xBF8
    "float rot" )        ; 0xBFC        20
EndFunc
;Object data type 3 and 4
Func _wowUnitObjectData()
    return DllStructCreate ( _
    "uint64 GUID;" & _        ; 0x00
    "uint type;" & _        ; 0x08
    "uint entry;" & _        ; 0x0C
    "float scale;" & _        ; 0x10
    "uint padding;" & _        ; 0x14        5
    "uint64 charm;" & _        ; 0x18
    "uint64 summon;" & _        ; 0x20
    "uint64 charmedBy;" & _        ; 0x28
    "uint64 summonedBy;" & _    ; 0x30
    "uint64 createdBy;" & _        ; 0x38        10
    "uint64 targetGUID;" & _    ; 0x40
    "uint64 persuaded;" & _        ; 0x48
    "uint64 channelObj;" & _    ; 0x50
    "uint health;" & _        ; 0x58
    "uint power1;" & _        ; 0x5C        15
    "uint power2;" & _        ; 0x60
    "uint power3;" & _        ; 0x64
    "uint power4;" & _        ; 0x68
    "uint power5;" & _        ; 0x6C
    "uint maxhealth;" & _        ; 0x70        20
    "uint maxpower1;" & _        ; 0x74
    "uint maxpower2;" & _        ; 0x78
    "uint maxpower3;" & _        ; 0x7C
    "uint maxpower4;" & _        ; 0x80
    "uint maxpower5;" & _        ; 0x84        25
    "uint level;" & _        ; 0x88
    "uint faction;")        ; 0x8C
EndFunc

Func _wowUnitObjectDataExt()
    return DllStructCreate ( _
    "uint64 GUID;" & _        ; 0x00
    "uint type;" & _        ; 0x08
    "uint entry;" & _        ; 0x0C
    "float scale;" & _        ; 0x10
    "uint padding;" & _        ; 0x14        5
    "uint64 charm;" & _        ; 0x18
    "uint64 summon;" & _        ; 0x20
    "uint64 charmedBy;" & _        ; 0x28
    "uint64 summonedBy;" & _    ; 0x30
    "uint64 createdBy;" & _        ; 0x38        10
    "uint64 targetGUID;" & _    ; 0x40
    "uint64 persuaded;" & _        ; 0x48
    "uint64 channelObj;" & _    ; 0x50
    "uint health;" & _        ; 0x58
    "uint power1;" & _        ; 0x5C        15
    "uint power2;" & _        ; 0x60
    "uint power3;" & _        ; 0x64
    "uint power4;" & _        ; 0x68
    "uint power5;" & _        ; 0x6C
    "uint maxhealth;" & _        ; 0x70        20
    "uint maxpower1;" & _        ; 0x74
    "uint maxpower2;" & _        ; 0x78
    "uint maxpower3;" & _        ; 0x7C
    "uint maxpower4;" & _        ; 0x80
    "uint maxpower5;" & _        ; 0x84        25
    "uint level;" & _        ; 0x88
    "uint faction;"    & _        ; 0x8C
    "char UnitFieldBytes0[4];" & _        ;0x0090
    "uint UnitVirtualItemSlotDisplay[3];" & _;0x0094
    "char UnitVirtualItemInfo[24];" & _    ;0x00a0
    "uint UnitFieldFlags;" & _        ;0x00b8
    "uint UnitFieldFlags2;" & _        ;0x00bc
    "uint UnitFieldAura[56];" & _        ;0x00c0
    "char UnitFieldAuraflags[56];" & _    ;0x01a0
    "char UnitFieldAuralevels[56];" & _    ;0x01d8
    "char UnitFieldAuraapplications[56];" & _;0x0210
    "uint UnitFieldAurastate;" & _        ;0x0248
    "uint UnitFieldBaseattacktime[2];" & _    ;0x024c
    "uint UnitFieldRangedattacktime;" & _    ;0x0254
    "float UnitFieldBoundingradius;" & _    ;0x0258
    "float UnitFieldCombatreach;" & _    ;0x025c
    "uint UnitFieldDisplayid;" & _        ;0x0260
    "uint UnitFieldNativedisplayid;" & _    ;0x0264
    "uint UnitFieldMountdisplayid;" & _    ;0x0268
    "float UnitFieldMindamage;" & _        ;0x026c
    "float UnitFieldMaxdamage")        ;0x0270
EndFunc 


However, all my tests so far have shown that these structs have all changed (still trying to figure out the correct order).

thx for the feedback, ive found some stuff like pos_x, target guid for build 6982
i think i'll keep trying haven't looked at it so much lateley
btw. im using the enGB client not enUS if that matters.
l8rz :wave:

[Cypher]

well maybe you should read and think before flaming, we are not talking about the same signatures here, I mean the signature each struct starts ( CGUnit_C, CGPlayer_C, ...).
While it might not be the best way to do it, it still works.

/facepalm

That is all.