Learning iterate over objectManager

[vaxter]

Hi all

I am new here, thanks in advance to all help that you can give me, and thnks for all this amount of information in this forum.

I am doing some test with memory read, after read successfully some static address like playerName, realms, etc. Now i am starting with my gameObject manager. (all in c#)

So, i should be doing some wrong, i think that the fail is in my form of get the next object. But i dont know.

Can someone review my code and give me some of light?

5.0.4.16016

Code:

            uint objMgr = wow.ReadUInt((uint)wowBase+ (uint)0x00BE1D2C);
            uint firstObject = wow.ReadUInt((uint)objMgr + (uint)0xC);
            uint nextObject = firstObject;

            while(nextObject != 0)
            {
                int type = wow.ReadInt(nextObject + 0x10);
                int GUID = wow.ReadInt(nextObject + 0x30);
                logText.Text += "Object: [" + GUID + "]" + type + "\r\n";

                nextObject = wow.ReadUInt(nextObject + 0x4);
            }

Tnks in advance.
Regards

[TOM_RUS]

How do you come to the objMgr offset 0x00BE1D2C? Its totally false.

You are false. There's just a problem with line:

Code:

nextObject = wow.ReadUInt(nextObject + 0x4);

in first post.

And btw, you read the GUID wrong its more likely:
[[CurObj + Descriptor] + 0x0]

Guid is both in descriptors and [obj+0x30].

Code:

            const int s_curMgr = 0x00BE1D2C;
            const int FirstObjectOfs = 0xC; // or 0xCC
            const int NextObjectOfs = 0x4; // or 0xC4

            IntPtr objMgr = Memory.Read<IntPtr>(Memory.BaseAddress + s_curMgr);
            IntPtr curObj = Memory.Read<IntPtr>(objMgr + FirstObjectOfs);

            while (curObj != IntPtr.Zero && (curObj.ToInt64() & 1) == 0)
            {
                int type = Memory.Read<int>(curObj + 0x10);
                ulong GUID = Memory.Read<ulong>(curObj + 0x30);

                logText.Text += "Object: [" + GUID.ToString("X16") + "]" + type + "\r\n";

                curObj = Memory.Read<IntPtr>(curObj + Memory.Read<int>(objMgr + NextObjectOfs) + 0x4);
            }

If you use FirstObjectOfs = 0xC and NextObjectOfs = 0x4, Memory.Read<int>(objMgr + NextObjectOfs) will return 0x24, that's why you can do it like this as well:

Code:

curObj = Memory.Read<IntPtr>(curObj + 0x28);

and if you use FirstObjectOfs = 0xCC and NextObjectOfs = 0xC4, Memory.Read<int>(objMgr + NextObjectOfs) will return 0x38, that's why you can do it like this as well:

Code:

curObj = Memory.Read<IntPtr>(curObj + 0x3C);

Blizzard's code for those wondering:

Code:

bool __cdecl ClntObjMgrEnumVisibleObjects(int (__cdecl *callback)(QWORD, _DWORD), void *pData)
{
  int current; // eax@1
  int next; // esi@6

  current = *(_DWORD *)(s_curMgr + 0xCC); // 0xCC - FirstObjectOfs
  if ( current & 1 || !current )
    current = 0;
  while ( !(current & 1) && current )
  {
    next = *(_DWORD *)(*(_DWORD *)(s_curMgr + 0xC4) + current + 4); // 0xC4 - NextObjectOfs; *(_DWORD *)(s_curMgr + 0xC4) = 0x38 in this case
    if ( !callback(*(QWORD *)(current + 0x30), pData) ) // 0x30 - ObjectGuidOfs
      return 0;
    current = next;
  }
  return 1;
}

[ShoniShilent]

TOM_RU can someone give me the new offset for 5.0.5 LIVE ?

objMgr offset 0x00BE1D2C <-----

i haven't updated my bot since 4.x.x and my notes don't match up anymore for the object base.

much appreciated..

Shoni-

[=manzarek=]

All you have to do is open the ida database file on the dump thread and search for the ClntObjMgrEnumVisibleObjects function.


See:
CurrentMgr = dword_FE202C - 400000 = 0xBE202C,
Fisrt obect = 0xCC.