[Question] Object Manager

**~~hestas~~** · 10-30-2009

Ok, so at risk of being flamed, or possibly banned/muted(Or some other punishment) that Apoc would decide. I have decided to post this question.

Although someone may find it stupid, I do not. I am posting it because I HAVE searched for some time and I am getting frustrated by this.

Now please do correct me if I am wrong at any point. From what I have read Object Manager is located at g_clientConnection(0x12705B0) + s_curObjMjrOffset(0x2d94). So

Code:

ReadProcessMemory(hProcess, (LPVOID) (g_clientConnection+s_curObjMjrOffset), &curObjMjr, 8, &BytesRead);

This would make curObjMjr our OM. So adding 0xC0(if its correct) should give us the localGUID. localGUID is a INT64

Code:

INT64 localGUID;
ReadProcessMemory(hProcess, (LPVOID) (curObjMjr+0xC0), &localGUID, 8, &BytesRead);

So now we have our localGUID. From here we would loop through the OM looking for our localGUID, once found we can produce our X,Y,Z(0x798, 0x79C, 0x7A0) from it.

Now if this is correct, I would like to post my source code so maybe someone can see why this process is not working while in the code(Yes I did escalate its privs).
If this is not correct, can someone please point me to direction of my error? I do recall the majority of the post I read doing it this way.

Now if I somehow missed a thread that actually gave me the answer I do sincerely apologize. I do attempt to search before I even consider making a post.

An Aspiring Programmer
- Hestas(j1nx)

P.S. Apoc, if you do feel that this is a stupid question please do deal with me and it as you see fit.

**flo8464** · 10-30-2009

Apoc detected the thread.

[YT]<object width="425" height="344"><param name="movie" value="http://www.youtube.com/v/M8pR1rZZHEs&hl=de&fs=1&"></param><param name="allowFullScreen" value="true"></param><param name="allowscriptaccess" value="always"></param><embed src="http://www.youtube.com/v/M8pR1rZZHEs&hl=de&fs=1&" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="425" height="344"></embed></object>[/YT]

**Apoc** · 10-30-2009

I'm going 'easy' on you, only because you managed to form out a coherent post (even though you didn't actually ask a single question...)

With that said; what exactly is your question? (I'm assuming it has something to do with AccessViolations or the sort [invalid memory, etc])

**~~hestas~~** · 10-30-2009

Forgot to make this one a question.

Originally Posted by hestas

Now if this is correct, I would like to post my source code so maybe someone can see why this process is not working while in the code(Yes I did escalate its privs).

I meant, "Is this process correct(Am I doing things correctly)? If so may I post my source code so maybe someone can see why this process is not working in my source."

Here was one question.

Originally Posted by hestas

If this is not correct, can someone please point me to direction of my error? I do recall the majority of the post I read doing it this way.

I do believe that sums up my current question/questions.

**_Mike** · 10-31-2009

Just saying "It doesn't work, what's wrong?" isn't a very good question. Give more details..

What is the result, and what did you expect the result to be?
Does it crash? Does it give you unreasonable values?
Are you checking return values from OpenProcess and ReadProcessMemory? If yes, are you using GetLastError to see why they fail?
Run your code through a debugger and check where and why things start to go bad.
If you've done all this and you still can't get it working then you can start posting code.

**namreeb** · 10-31-2009

If things are not working, what you seem to be reading is [g_clientConnection + s_curObjMjrOffset] when you may (sorry, I don't really remember) actually want [[g_clientConnection] + s_curObjMjrOffset]. Also, you're reading 8 bytes for curObjMjr when you only need 4 as you're reading a pointer.

**~~hestas~~** · 10-31-2009

@_Mike, well...its not printing the correct GUID is what I am guessing. Because when I scan through memory I can't find the results for my GUID. No crash or anything. Just seems to be something wrong with finding my GUID inside OM. - Rechecking offsets

@Bierstud, Thank you. I will give this a try right now and edit this post with results.

**~~hestas~~** · 10-31-2009

Ok, so I ran through looks like I have

Code:

 ReadProcessMemory(hProcess, (LPCVOID)(curObjMjr+0xAC), &curObj, 4, &BytesRead);

messing it up. I'm guessing its 0xAC specifically.

"Read from ( s_curMgr + 0xAC ) for a pointer to the start of the linked-list. Each object in the linked-list contains a pointer to the next"
I'm guessing that is the wrong offset, correct?

**furang** · 10-31-2009

Code:

ReadProcessMemory(hProcess, (LPVOID) (g_clientConnection), &curObjMjr, 4, &BytesRead);
ReadProcessMemory(hProcess, (LPVOID) (curObjMjr+s_curObjMjrOffset), &curObjMjr, 4, &BytesRead);
//from now curObjMjr=OM
ReadProcessMemory(hProcess, (LPVOID) (curObjMjr+0xC0), &localGUID, 8, &BytesRead);
ReadProcessMemory(hProcess, (LPCVOID)(curObjMjr+0xAC), &curObj, 4, &BytesRead);
//now curObj=first object

Look through this Accessing WoW’s Game Objects Shynd’s WoW Modification Journal
There you can find pretty good code, just correct the offsets.

**~~hestas~~** · 10-31-2009

lul -_- I read and read and read. It was right in front of my eyes the entire time "Read s_ClientConnect into var" then add...ghaa /facepalm.

<333

Thank you all so much