Bypasssing Checks: Pointing Checks To A Duplicate

Channel:
United States Cheat The Game
Subscribers:
23,000
Published on ● Video Link: https://www.youtube.com/watch?v=x4Xp4hASKOg


Duration: 35:54
4,918 views
129

Today we are going to look at another way to bypass integrity checks. Thx to Dark Byte we will make a duplicate of the game and point the checks to it.


Do not forget to dealloc all addresses, I forgot to show that In the vid.


Cheat The Game on Facebook: https://www.facebook.com/groups/CheatTheGame
CTG Discord Channel: https://discordapp.com/invite/ndn4pqs
Become a Cheat The Game Partner at Patreon: https://www.patreon.com/cheatthegame
Donation Paypal: https://paypal.me/CheatTheGame
===================================================


====Template to Make Duplicate of Game====
alloc(copyOfModule,$40A000) //change bytes to size of your process
alloc(addressOfModuleStart,8)
alloc(addressOfModuleEnd,8)
alloc(addressOfCopy,8)
registersymbol(copyOfModule)


copyOfModule:
readmem($process,$40A000) //change bytes to size of your process


addressOfModuleStart:
dq $process


addressOfModuleEnd:
dq $process+getModuleSize(process)


addressOfCopy:
dq $copyOfModule


[DISABLE]
dealloc(copyOfModule addressOfModuleStart addressOfModuleEnd addressOfCopy )
unregistersymbol(copyOfModule)


================================================


===Full Script From Video=========================
[ENABLE]


alloc(copyOfModule,$40A000)
alloc(addressOfModuleStart,8)
alloc(addressOfModuleEnd,8)
alloc(addressOfCopy,8)
registersymbol(copyOfModule)


copyOfModule:
readmem($process,$40A000)


addressOfModuleStart:
dq $process


addressOfModuleEnd:
dq $process+getModuleSize(process)


addressOfCopy:
dq $copyOfModule




alloc(newmem6,2048,"gtutorial-x86_64.exe"+38E8F)
label(returnhere6)
label(originalcode6)
label(exit6)


newmem6:
push rax
lea rax,[r9+rcx*2]
cmp rax,[addressOfModuleStart]
jb originalcode6
cmp rax,[addressOfModuleEnd]
ja originalcode6


sub rax,[addressOfModuleStart]
add rax,[addressOfCopy]


movzx ecx,word ptr [rax]
jmp exit6


originalcode6:
movzx ecx,word ptr [r9+rcx*2]


exit6:
pop rax
jmp returnhere6


"gtutorial-x86_64.exe"+38E8F:
jmp newmem6
returnhere6:


///////////////////////////////////////////////////////////


alloc(newmem2,2048,"gtutorial-x86_64.exe"+38E4F)
label(returnhere2)
label(originalcode2)
label(exit2)


newmem2:
push rax
lea rax,[r9+rcx*2]
cmp rax,[addressOfModuleStart]
jb originalcode2
cmp rax,[addressOfModuleEnd]
ja originalcode2


sub rax,[addressOfModuleStart]
add rax,[addressOfCopy]


movzx ecx,word ptr [rax]
jmp exit2


originalcode2:
movzx ecx,word ptr [r9+rcx*2]


exit2:
pop rax
jmp returnhere2


"gtutorial-x86_64.exe"+38E4F:
jmp newmem2
returnhere2:


//////////////////////////////////////////////////////////


alloc(newmem,2048,"gtutorial-x86_64.exe"+38DFF)
label(returnhere)
label(originalcode)
label(exit)


newmem:
push rax
lea rax,[r9+rcx*2]
cmp rax,[addressOfModuleStart]
jb originalcode
cmp rax,[addressOfModuleEnd]
ja originalcode


sub rax,[addressOfModuleStart]
add rax,[addressOfCopy]


movzx ecx,word ptr [rax]
jmp exit


originalcode:
movzx ecx,word ptr [r9+rcx*2]


exit:
pop rax
jmp returnhere


"gtutorial-x86_64.exe"+38DFF:
jmp newmem
returnhere:


[DISABLE]
dealloc(newmem6)
"gtutorial-x86_64.exe"+38E8F:
movzx ecx,word ptr [r9+rcx*2]
//Alt: db 41 0F B7 0C 49
dealloc(newmem2)
"gtutorial-x86_64.exe"+38E4F:
movzx ecx,word ptr [r9+rcx*2]
//Alt: db 41 0F B7 0C 49
dealloc(newmem)
"gtutorial-x86_64.exe"+38DFF:
movzx ecx,word ptr [r9+rcx*2]
//Alt: db 41 0F B7 0C 49
dealloc(copyOfModule addressOfModuleStart addressOfModuleEnd addressOfCopy )
unregistersymbol(copyOfModule)



Other Videos By Cheat The Game


2022-04-17Timers and Making Our First Cheat Using Lua | By: Seneeki
2022-04-09Lua Intro To Data Types
2022-03-26LUA Lesson 6: Lets Combine What We've Learnt Into a CE Script
2022-03-23Lua: Intermediate Lesson on TABLES
2022-01-29WALLHK: Seeing Enemies Through Walls Without C++ | OPENGL32
2022-01-09Going To The Next Level: Drop Down Menus Intermediate Level
2022-01-01Final Fantasy VII Remake: Lets Find Item IDs Easily And Bonus Items
2021-12-26Final Fantasy VII Remake: Using Complex Addresses To Our Advantage
2021-12-19Final Fantasy VII Remake: Find All Char STATS Easily
2021-11-07Finding Fast Level Ups In Any Game
2021-10-25Bypasssing Checks: Pointing Checks To A Duplicate
2021-10-10Have CE find Any Location In Memory | Learn About Module and Mono Addresses
2021-09-25Let's Make An INSANE CT Without Scanning Using The UE4 DUMPER
2021-08-30Road 96: Modifying Save Files | All Abilities Unlocked - Lots of Money - Full Health
2021-05-14Ruinverse: Inf Health - Cap To Current | Commonalities
2021-04-11Serin Fate: Conditional Break and Trace for Injection Copy (no commentary)
2021-03-29Why Nopping and Restoring extra Opcodes from a Script may be necessary
2021-01-24Advanced Register Compares
2021-01-13Finding Hard To Find Values Using CODE FILTER
2020-10-23Dth Stranding: Inf Health Stamina | Locating Internal Values in Huge 64 Bit Games
2020-10-14Destroy All Humans: Expanding Our CT | Flying and More


Tags:
Module Addresses
Module Address
Find locations
bypass checks
bypass
make a duplicate
bypassing
Integrity Checks
chris fayte
CTG
codes
game
game timers
gameplay
Games
gaming