[3.1.3] Some static address found

[JuJuBoSc]

Some address found with CE yesterday for my relogger :

LOGIN_TOON_NUMBERS = 0x012A7D3C // Number of toons on the realm
LOGIN_TOON_SELECTED = 0x107D2708 // Name of the toon selected

LOGIN_TOON_1 = 0x16AD8B80 // Name of toon number 1
LOGIN_TOON_2 = 0x16AD8CE8 // Then add 0x168 for next for each toon
LOGIN_TOON_3 = 0x16AD8E50
LOGIN_TOON_4 = 0x16AD8FB8
LOGIN_TOON_5 = 0x16AD9120
LOGIN_TOON_6 = 0x16AD9288
LOGIN_TOON_7 = 0x16AD93F0
LOGIN_TOON_8 = 0x16AD9558

LOGIN_REALM = 0x01139E3E // Return the name of the realm in login screen
LOGIN_STATE = 0x0A45D2C // Return 16 for Login Screen, 4 for Charselect, 5 for Auth failed, entering World its 16
GAME_STATE = 0x012A75C0 // returns an String with "login" for Login Screen and "charselect" for Charselect Screen. On entering World its "charselect"
RED_MESSAGE = 0x011D3340

LastTargetGUID = 0x011D3F68 // Usefull for select target, write target GUID here, then send Target Last Target key in WoW

KNOWN_SPELL_1 = 0x011D44F0 // Known spell list beginning then add +0x4 for next known spell until value = 0

[Cypher]

Trying to redeem yourself? I'll hold my judgement until I see more of your posts.

On topic though, wouldn't it be easier to do a lot of this with LUA?

[JuJuBoSc]

Just sharing some things Cypher ... You really always try to flame me.

For sure it's more easy with LUA, but i don't use LUA in eBot.

[Cypher]

Just sharing some things Cypher ... You really always try to flame me.

For sure it's more easy with LUA, but i don't use LUA in eBot.

I wasn't flaming you, quite the opposite.

NOW I'll flame you though.

Did you even read my post you dipshit? Sure, I might've made a snide remark but I wasn't flaming you, I even explicitly pointed out that I was going to reserve judgement.

Sigh.

EDIT:

Also, why aren't you using LUA? I was under the impression that eBot was already using CreateRemoteThread to call engine functions.... Then again, I havn't actually looked, but assuming you support 'background' mode you'd have to be doing some kind of hooking or injection otherwise you'd be getting interference when trying to bot multiple copies of WoW (glider avoided this with their rootkit by hooking GetCursorPos/SetCursorPos).

[JuJuBoSc]

I use Memory Reading / Writing, but no ASM injection. The new Interact with target binding in 3.X is very cool

[Cypher]

I use Memory Reading / Writing, but no ASM injection. The new Interact with target binding in 3.X is very cool

I assume you're using CTM via overwriting the structure that the pulse function uses?

If so, that's no less detectable than calling an engine function. The game can easily check to see if the data in that structure syncs with the data from the last terrain point that was actually 'clicked'.

[JuJuBoSc]

Hmm right but how call CTM without overwriting memory ?

[Cypher]

Hmm right but how call CTM without overwriting memory ?

I'm not saying you can do it without injection/memory-writing/etc. I'm saying that regardless of how you do it you're no less detectable. So if that's your reason for not using engine functions (lua etc) then it's a silly one.

I was making the point that you're "in for a penny, in for a pound". Once you've broken the 'passive' barrier you may as well make the most of it.

[voron23]

Im "programming" in AutoIt ^_^ so i cant use inject ASM stuff..
+rep to author! this adresses are very helpful and rare i think) especially fun method to select_target))

[JuJuBoSc]

I'm not saying you can do it without injection/memory-writing/etc. I'm saying that regardless of how you do it you're no less detectable. So if that's your reason for not using engine functions (lua etc) then it's a silly one.

I was making the point that you're "in for a penny, in for a pound". Once you've broken the 'passive' barrier you may as well make the most of it.

Well thanks, will test some LUA so

[Oowafas]

I haven't actually looked at the interact with target binding but the 'other' interact (simulates a right click) is done with the virtual function table located at the base of the object you're trying to interact with. The function's address is at [[ObjectBase]+38*4]. The only parameter is the object's address which is passed through ecx.

[UnknOwned]

Some address found with CE yesterday for my relogger :

LOGIN_TOON_NUMBERS = 0x012A7D3C // Number of toons on the realm
LOGIN_TOON_SELECTED = 0x107D2708 // Name of the toon selected

LOGIN_TOON_1 = 0x16AD8B80 // Name of toon number 1
LOGIN_TOON_2 = 0x16AD8CE8 // Then add 0x168 for next for each toon
LOGIN_TOON_3 = 0x16AD8E50
LOGIN_TOON_4 = 0x16AD8FB8
LOGIN_TOON_5 = 0x16AD9120
LOGIN_TOON_6 = 0x16AD9288
LOGIN_TOON_7 = 0x16AD93F0
LOGIN_TOON_8 = 0x16AD9558

LOGIN_REALM = 0x01139E3E // Return the name of the realm in login screen
LOGIN_STATE = 0x0A45D2C // Return 16 for Login Screen, 4 for Charselect, 5 for Auth failed, entering World its 16
GAME_STATE = 0x012A75C0 // returns an String with "login" for Login Screen and "charselect" for Charselect Screen. On entering World its "charselect"
RED_MESSAGE = 0x011D3340

LastTargetGUID = 0x011D3F68 // Usefull for select target, write target GUID here, then send Target Last Target key in WoW

KNOWN_SPELL_1 = 0x011D44F0 // Known spell list beginning then add +0x4 for next known spell until value = 0

I find it interesting that you believe that those offsets located outside the static memory space is static. You did find the structure you just need a pointer.

Also writing a offset to the GUID does not fully target the unit so you will get some problems with some spells and abbilities, i would recommend calling the target function or if you don't like calling funcitons do this:
Enter the GUID into the Last target GUID, clear the current target GUID and run some code through the "target last target" since that does not require any input.

[JuJuBoSc]

Also writing a offset to the GUID does not fully target the unit so you will get some problems with some spells and abbilities]

Yeah, have some problem with some spell like auto attack for hunter, that's why i put the GUID into LastTargetGUID, and i send "Target last target" in WoW, it work like a charm.

[Cypher]

I find it interesting that you believe that those offsets located outside the static memory space is static. You did find the structure you just need a pointer.

Also writing a offset to the GUID does not fully target the unit so you will get some problems with some spells and abbilities, i would recommend calling the target function or if you don't like calling funcitons do this:
Enter the GUID into the Last target GUID, clear the current target GUID and run some code through the "target last target" since that does not require any input.

Hahaha I didn't notice that. I wasn't really interested in any of the addresses so I didn't think to look.

Epic win.