[WoW][3.2.0] Info Dump Thread

[Overflow]

@abuckau907: Um, yeah, but I dont want that I want the ptr to the struct and the offset. Doubt you would get very far doing what you suggest.

However using IDA to load 3.1.9 I got some signatures for functions using the ptr+offset so I could search for that in 3.2.0 using Olly. Guess I was a bit to lazy doing this because it takes my computer 3-4 hours loading wow.exe into IDA... :yuck:

const static unsigned int WOW_CAMERA_PTR1 = 0x010CB7EC;
const static unsigned int WOW_CAMERA_OFFSET = 0x00007A1C;

omg, I think I just contributed 0.o

[lanman92]

Are you saving the database...? That's a ridiculous amount of time for it to take to load. Longer than mine takes to analyze the whole file.

[amadmonk]

Dunno if this is of any use to anyone, but the raid target indices are stored in a static array of 8 guids starting at 0x112DB70 (guid 1 == star, 2 == circle, etc.)

[Overflow]

What I meant was loading/analysing the executable for the first time. And, I got slow computer and I am using the free 4.9 IDA. No fancy $5000 5.5 for me

[jjaa]

What I meant was loading/analysing the executable for the first time. And, I got slow computer and I am using the free 4.9 IDA. No fancy $5000 5.5 for me

Actually its $539 for a standard license.

[Gorzul]

BattlegroundFinished = 0x01129344 (1=true, 0=false)
BattlegroundWinner = 0x01129348 (0=horde, 1=alliance)
BattlegroundStatus = 0x01129278 (0=none, 1=queued, 2=confirm, 3=active)
BattlegroundStartTime = 0x01129334 (in ms)

[Mr.Zunz]

Actually its $539 for a standard license.

would costs me half year of work, so nah...

[WannaBeProgrammer]

I used cheat engine and i found
Target name = 0B9C97E0
Is it right? cus i seached of my targets name in text "type"

[lanman92]

That's not right. Almost positive(not in the static memory region).

[Viano]

Code:

Lua_DoString = 0x07CE840;
Lua_GetState = 0x7CD410;
Lua_GetTop = 0x801380;
Lua_Register = 0x7CD5F0;
Lua_ToString = 0x801890;

Anyone Patch_Offset? Was 0x00401643 for 3.1.

[Sel3n]

const static unsigned int WOW_CAMERA_OFFSET = 0x00007A1C;

Thanks a lot!

[Jadd]

If jad and allstard had a baby...

*Loads gun*

[Viano]

Did CallVirtualMethod change? Interact seems to be broker. I am using 41 as interact method.

[garkeinplan]

change TLS from 0x10 to 8

[Viano]

change TLS from 0x10 to 8

Me? TLS? My method looks like this. There is not one offset like 0x10 in there.

Code:

            ...
            uint codecave = magic.AllocateMemory();
            uint VMT = magic.ReadUInt(pointer);
            uint result = 0;

            magic.Asm.Clear();
            AsmUpdateCurMgr();
            magic.Asm.AddLine("mov ecx, {0}", pointer);
            magic.Asm.AddLine("call {0}", magic.ReadUInt(VMT + method));

            AsmSendResumeMessage();
            magic.Asm.AddLine("retn");

            
            result = magic.Asm.InjectAndExecute(codecave);
            ...