VMT, What's wrong ?

[nopz]

Hello,

before anything, I hope this has not been asked before.

I'm trying to use VMT and I don't know why it's not working.
Here is the code I'm running.

Code:

private uint getCurMgr()
{
  uint gclientconnection = SMemory.ReadUInt(wowHandle, 0x12705B0);
  uint scurmgr = SMemory.ReadUInt(wowHandle, gclientconnection + 0x2d94);
  uint curobj = SMemory.ReadUInt(wowHandle, scurmgr + 0xAC);
  return curobj;
}

Code:

suspendMainThread(dwProcessId);
uint codecave = AllocateMemory(wowHandle);
uint VMT = ReadUInt(wowHandle, objAddress);
uint result = 0;

Asm.Clear();
Asm.AddLine("FS mov eax, [0x2C]");
Asm.AddLine("mov eax, [eax]");
Asm.AddLine("add eax, 0x8");
Asm.AddLine("mov dword [eax], {0}", new object[] { getCurMgr() });
Asm.AddLine("mov ecx, {0}", new object[] { objAddress });
Asm.AddLine("call {0}", new object[] { ReadUInt(wowHandle ,VMT + method) }) ;
Asm.AddLine("retn");

objAddress is the player Ptr ( [[[0x12D4EA8] + 0x34] + 0x24]
method is 51 * 4 ( VMT_GetName ? )

[Neverhaven]

ClientConnection and ObjectManager offsets doesn't match the ones in this thread. Either you're not working with the newest version of WoW, or that's your problem.

[nopz]

Offsets seams to be good... according to the Dump Thread, but it's still not working i don't understand why.

Code:

Asm = new ManagedFasm();
int dwProcessId = getProcesses()[0];
suspendMainThread(dwProcessId);
uint ObjectManager, ClientConnection, curObject;

ClientConnection = ReadUInt(wowHandle, 0x12705B0);
ObjectManager = ReadUInt(wowHandle, ClientConnection + 0x2d94);

uint codecave = AllocateMemory(wowHandle);

string curName = String.Empty;
curObject = ReadUInt(wowHandle, ObjectManager + 0xAC);
uint nextObject;
while (curObject != 0 && (curObject & 1) == 0)
  {
    //first four bytes point to the virutal method table
    uint VMT = ReadUInt(wowHandle, curObject);

    Asm.Clear();
    Asm.AddLine("fs mov eax, [0x2C]");
    Asm.AddLine("mov eax, [eax]");
    Asm.AddLine("add eax, 8");
    Asm.AddLine("mov dword [eax], {0}", ObjectManager);
    Asm.AddLine("mov ecx, {0}", curObject);
    Asm.AddLine("call {0}", ReadUInt(wowHandle, VMT + (51 * 4))); //read pointer to GetName method
    Asm.AddLine("retn");
    try
    {
      uint pCurName = Asm.InjectAndExecute(codecave);
      if (pCurName != uint.MaxValue)
        curName = ReadASCIIString(wowHandle, pCurName, 100);
      else
        curName = String.Empty;
    }
    catch (Exception ex)
    {
      Console.WriteLine("Exception during Object.GetName or Object.Interact: {0}", ex.Message);
    }
    finally
    {
      Console.WriteLine("NAME: " + curName);
    }

    nextObject = ReadUInt(wowHandle, curObject + 0xAC);
    if (nextObject == 0 || nextObject == curObject)
      break;

    curObject = nextObject;
}

Credits goes to shynd http://www.mmowned.com/forums/wow-me...ml#post1162121

I'm so tired have to sleep, too much coffee for tonight !

[nopz]

Well i discussed about TLS and VMT at school today with friends today and i don't know why it's not working.

If any of you can help for this.

[Cheatz0]

Well, just off the top of my head, it looks like you are returning the pointer to the first object in the objectmanager, when you should just be returning the pointer to the object manager itself.As for the rest of the code i dont know..

you want to return this:

Code:

Memory.ReadUInt(g_clientConnection + Offsets.sCurMgr);

Edit: ah nevermind, i just realised that you had fixed this in your latest code snippet.

[nopz]

Thanks for helps, anyway i fixed out the problem myself.
I don't know why but it's working now, i refracted my code.