Hooking - suggested options besides EndScene?

**flo8464** · 04-08-2010

Originally Posted by Tanaris4

You're hooking the dll? Not the detour to the external lib w/in wow?

Interesting idea

Thats what everyone would do?

Especially because you can simply use GetModuleHandle() and GetProcAddress() to retrieve the address.

**BoogieManTM** · 04-08-2010

Originally Posted by flo8464

Especially because you can simply use GetModuleHandle() and GetProcAddress() to retrieve the address.

You can't 'simply' use windows api routines in Mac OSX

**Tanaris4** · 04-08-2010

Hoping there is a similar function in the mach headers, I haven't looked into it @ all yet. But I imagine my inject app (obviously not created by me) will give me some good pointers.

Then I'm going to work on understanding what warden is actually doing

Or create a "monitor" of sorts

**wraithZX** · 04-08-2010

dlopen/dlsym/dlclose.

**Robske** · 04-14-2010

Search for functions that reference the string 'AreaTriggerCheck', one of those (0x005831B0 on the build 3.3.3 11723) is called several times per second, even when not ingame.

Always call the original function or you'll find it very difficult to enter portals

(hint)

**eLaps** · 04-14-2010

Why wouldnt you use the LD_PRELOAD method?

**Tanaris4** · 04-14-2010

LD_PRELOAD is used in injection yes? I can inject fine, I just struggled w/detouring the function (I can do it, just need to invest more time in it)

**themind** · 04-14-2010

I've detoured glFinish and it worked, I think you should try it

**eLaps** · 04-14-2010

Here is an example with LD_PRELOAD:

Code:

#include <dlfcn.h>
#include <GL/gl.h>
#include "mystuff.h"

void glClear(unsigned int _mask) {
    static void (*real_glClear)(unsigned int) = 0;
    if (!real_glClear)
        real_glClear = (void (*)(unsigned int))dlsym(RTLD_NEXT, "glClear");
    real_glClear(_mask);

    static Mystuff* p = 0;
    if (!p) p = new Mystuff;
    p->Execute();
}

and start wow with
LD_PRELOAD=~/mylib.so wine ~/apps/wow/Wow.exe

**Tanaris4** · 04-14-2010

WoW runs on OS X natively, so that doesn't apply? Maybe? Or I just change the command line?

**eLaps** · 04-14-2010

I think it works, but can't be sure.
Just try changing the cmd line

**barthen** · 04-14-2010

DYLD_INSERT_LIBRARIES was the mac equivalent of LD_PRELOAD although I can't test it right now (I formatted my hackintosh ;-P)

**Tanaris4** · 05-31-2010

Something I just thought of while I was reversing an online poker app... Why do you even need to hook a DirectX or OpenGL function? Couldn't you just spawn your own thread w/in wow and have it run every 0.1 seconds to check to see if it should do anything? Is this dumb?

**~~mnbvc~~** · 05-31-2010

for some stuff (for example running protected lua commands via dostring) you will have insufficient rights if you are calling it from your own thread

**MaiN** · 05-31-2010

Thread safety.

Shout-Out

User Tag List

Thread: Hooking - suggested options besides EndScene?

Thread Tools

Search Thread

Similar Threads

[C# DLL] aHook, use ASM through EndScene hook

Custom rendering in endscene hook

[Test Theory] EndScene hook without Native Code (Kinda)

EndScene Hook not changing anything

How I hooked EndScene

OwnedCore Forums

casino

CoreCoins

My OwnedCore

About Us

Casino