[help][mac] Finding additional info on quests in memory

[Tanaris4]

Basically I want to know where I can find additional information on quests in memory (specifically if the quest is complete or not). I found this thread: http://www.mmowned.com/forums/wow-me...ut-memory.html
But it only helps w/finding the quest ID - which I already got to.

I know I can find the list of current quests by jumping 0x278 from the unitfield (on mac). But all this has is the quest ID, which I can get more information from wowhead, but this doesn't tell me any additional information w/respect to the player. Anyone have any ideas here? I see that all additional data after the quest id (3 memory locations every 0x4) are all 0. So it doesn't seem like any data is stored here.

Thanks in advance!

Edit: Binary posted here for those that would like it: http://rapidshare.com/files/22442414...3.1.1.zip.html

[Xarg0]

Take a look at those lua functions World of Warcraft API - WoWWiki - Your guide to the World of Warcraft
you could simply reverse how these functions get the quest information or you could write a class to execute lua functions and get their return values.

And please mark your topic with [mac] it's part of this subforum's rules to mark your topic if you're using an alternate os.

[Tanaris4]

Take a look at those lua functions World of Warcraft API - WoWWiki - Your guide to the World of Warcraft
you could simply reverse how these functions get the quest information or you could write a class to execute lua functions and get their return values.

And please mark your topic with [mac] it's part of this subforum's rules to mark your topic if you're using an alternate os.

So I can basically just follow the functions to see where the final results are stored? Unfortunately on mac I'm unable to inject+call functions w/in memory so I simply have to scan/change data in memory instead.

My concern is it seems like this won't work for me as I would have to call these functions to actually get a result.

Thanks!

[Robske]

So I can basically just follow the functions to see where the final results are stored? Unfortunately on mac I'm unable to inject+call functions w/in memory so I simply have to scan/change data in memory instead.

My concern is it seems like this won't work for me as I would have to call these functions to actually get a result.

Thanks!

Perhaps you can actually take a look at those functions and check where they are retrieving their data from and replicate the process in you favorite language?

That's what Xarg0 meant btw.

[Tanaris4]

Perhaps you can actually take a look at those functions and check where they are retrieving their data from and replicate the process in you favorite language?

I like this idea :-) Thanks!

[jjaa]

Surely there is a similar format to a DLL on a Mac that allows you to inject code…if your are able to do this you could hook Framescript_RegisterFunction (0x000C75FC //WoW 3.1.0) get all of the lua functions and use IDA to reverse them.

But the function that you want would most likely be API GetQuestLogTitle - WoWWiki - Your guide to the World of Warcraft this lua function contains a usage string “Usage: GetQuestLogTitle(index)” so it’s easy to find in the mac binary. After a simple search with the mac 3.1.0 binary I find the function at 0x004D7A6C. What you should do is reverse this function and find out what it is doing to push the correct return values onto the lua stack.

Worst case scenario you may need to use the quest ID and search on WoWHead or look through the cache data. This wont help with finding out if the quest is completed, but it will allow you to get the quest goals.

The other day I got the mac WoW Client from a friend and I was looking at some of the tools available to read and write memory, the tools that I found only looked for values in the data section. I couldn’t find a way to change bytes in the .text section. I was wondering if you knew of a tool that allowed you to change bytes in the .text section. After failing to use a tool I tried to write my own but read/writing memory on a mac is very annoying (Perhaps you can show me a simple example *hopes*), I reverted to patching with a hex editor. The change was successful but checksum failed so I got a “Unable to validate game version blah blah”.

[UnknOwned]

Surely there is a similar format to a DLL on a Mac that allows you to inject code…if your are able to do this you could hook Framescript_RegisterFunction (0x000C75FC //WoW 3.1.0) get all of the lua functions and use IDA to reverse them.

But the function that you want would most likely be API GetQuestLogTitle - WoWWiki - Your guide to the World of Warcraft this lua function contains a usage string “Usage: GetQuestLogTitle(index)” so it’s easy to find in the mac binary. After a simple search with the mac 3.1.0 binary I find the function at 0x004D7A6C. What you should do is reverse this function and find out what it is doing to push the correct return values onto the lua stack.

Worst case scenario you may need to use the quest ID and search on WoWHead or look through the cache data. This wont help with finding out if the quest is completed, but it will allow you to get the quest goals.

The other day I got the mac WoW Client from a friend and I was looking at some of the tools available to read and write memory, the tools that I found only looked for values in the data section. I couldn’t find a way to change bytes in the .text section. I was wondering if you knew of a tool that allowed you to change bytes in the .text section. After failing to use a tool I tried to write my own but read/writing memory on a mac is very annoying (Perhaps you can show me a simple example *hopes*), I reverted to patching with a hex editor. The change was successful but checksum failed so I got a “Unable to validate game version blah blah”.

Lawl... pwned.