-
Active Member
-
Active Member
Just dump the game with scylla and open the dump in IDA.
Also, your minimap zone text offset is wrong:
Code:
signed __int64 __fastcall Script_GetZoneText_7FF732DDCBA0(__int64 a1)
{
char *v1; // rdx
v1 = &byte_7FF733C6F428;
if ( qword_7FF73463E3B8 )
v1 = (char *)qword_7FF73463E3B8;
sub_7FF7336E0F40(a1, v1);
return 1i64;
}
My base address is 7FF7320A0000, so the offset should be 259E3B8
-
Post Thanks / Like - 1 Thanks
Aoooooooo (1 members gave Thanks to scimmy for this useful post)
-
Originally Posted by
Aoooooooo
Hello, everyone! I can acquire data through a Driver sys written by myself.
PlayerName:WowClassic.exe+267DF28
Realm:[WowClassic.exe+267D758]+420
GetMiniMapZoneText:[WowClassic.exe+259E3C0]+0
The offset that I can acquire is only three. I can't attach process in CE
.
So I wonder that how can I search memory to acquire ObjMgrPtr, because it's not a string, I know it's enum.
Do I need to dump the wow classic, I could read assembly with IDA pro, but the .data always zero.
and how I can dump wowclassic, I use
GitHub - namreeb/dumpwow: Unpacker for World of Warcraft this program to dump it, but it not works. I will study this code for the rest of time.
If someone can share the latest offset I will appreciate.
Not sure what you are talking about. I've just tested namreebs dumper on classic 1.13.5.35395 and it worked perfectly fine. Alternatively there are several guides that show how to dump wow using xdbg and scylla, like https://www.ownedcore.com/forums/wor...ow-memory.html (How to Dump Wow from Memory....)
"Threads should always commit suicide - they should never be murdered" - DirectX SDK
-
Post Thanks / Like - 1 Thanks
Aoooooooo (1 members gave Thanks to xalcon for this useful post)
-