0
"Vol illimité"
FF0000
Auto Assembler Script
[ENABLE]
aobscanmodule(fuelFetchForFlyChkAOB,Journey.exe,44 ** ** ** 45 ** ** 8B ** ** 44 ** ** ** 74)
registersymbol(fuelFetchForFlyChkAOB)
alloc(newmem,2048,fuelFetchForFlyChkAOB+7) //"Journey.exe"+5FFE4D)
label(returnhere)
label(originalcode_fuelFetchForFlyChkAOB)
registersymbol(originalcode_fuelFetchForFlyChkAOB)
label(exit)
newmem:
readmem(fuelFetchForFlyChkAOB+7,3)
//mov ecx,[rbx+68]
test ecx,ecx
jg @f
setz cl
@@:
readmem(fuelFetchForFlyChkAOB+a,4)
//cmp [rdi+50],r13l
jmp exit
originalcode_fuelFetchForFlyChkAOB:
readmem(fuelFetchForFlyChkAOB+7,7)
//mov ecx,[rbx+68]
//cmp [rdi+50],r13l
exit:
jmp returnhere
fuelFetchForFlyChkAOB+7: //"Journey.exe"+5FFE4D:
jmp newmem
nop
nop
returnhere:
[DISABLE]
dealloc(newmem)
fuelFetchForFlyChkAOB+7: //"Journey.exe"+5FFE4D:
readmem(originalcode_fuelFetchForFlyChkAOB,7)
//db 8B 4B 68 44 38 6F 50
//Alt: mov ecx,[rbx+68]
//Alt: cmp [rdi+50],r13l
unregistersymbol(originalcode_fuelFetchForFlyChkAOB)
1
"Touches: Marche/Course"
FF0000
Auto Assembler Script
[ENABLE]
define(walkkeyiddefault,14)
define(sprintkeyiddefault,10)
define(walkspeed,(float)0.4)
define(sprintspeed,(float)3)
aobscanmodule(jSticksWriteAOB,Journey.exe,C5 ** ** ** C5 ** ** ** ** C4 ** ** ** ** C5 ** ** ** ** ** 00 00 C4 ** ** ** ** ** ** E3)
registersymbol(jSticksWriteAOB)
label(bWalkKeyID)
registersymbol(bWalkKeyID)
label(bWalkKeyPressed)
registersymbol(bWalkKeyPressed)
label(dWalkSpeed)
registersymbol(dWalkSpeed)
label(bSprintKeyID)
registersymbol(bSprintKeyID)
label(bSprintKeyPressed)
registersymbol(bSprintKeyPressed)
label(dSprintSpeed)
registersymbol(dSprintSpeed)
alloc(newmem,2048,jSticksWriteAOB+9) //"Journey.exe"+5F346D)
label(returnhere)
label(originalcode_jSticksWriteAOB)
registersymbol(originalcode_jSticksWriteAOB)
label(exit)
newmem:
push rax
mov rax,bWalkKeyPressed
cmp byte ptr [rax],1
jne @f
mov rax,dWalkSpeed
movups xmm0,[rax]
mulps xmm0,[r14]
movups [r14],xmm0
jmp end
@@:
mov rax,bSprintKeyPressed
cmp byte ptr [rax],1
jne @f
mov rax,dSprintSpeed
movups xmm0,[rax]
mulps xmm0,[r14]
movups [r14],xmm0
end:
pop rax
originalcode_jSticksWriteAOB:
readmem(jSticksWriteAOB+9,5)
//vmovups xmm0,[r14]
exit:
jmp returnhere
bWalkKeyID:
dd walkkeyiddefault
bWalkKeyPressed:
dd 0
dWalkSpeed:
dd walkspeed
dd walkspeed
dd (float)1
dd (float)1
bSprintKeyID:
dd sprintkeyiddefault
bSprintKeyPressed:
dd 0
dSprintSpeed:
dd sprintspeed
dd sprintspeed
dd (float)1
dd (float)1
jSticksWriteAOB+9: //"Journey.exe"+5F346D:
jmp newmem
returnhere:
{$lua}
local function walkkeyLuaThread(thread2)
local addr2 = getAddressSafe('bWalkKeyPressed')
local addr3 = getAddressSafe('bSprintKeyPressed')
while RunWalkkeyLuaThreadLoop do
sleep(100)
if addr2 then
if ( isKeyPressed( readInteger('bWalkKeyID') ) ) then
writeBytes(addr2, 1)
else
writeBytes(addr2, 0)
end
else
addr2 = getAddressSafe('bWalkKeyPressed')
end
if addr3 then
if ( isKeyPressed( readInteger('bSprintKeyID') ) ) then
writeBytes(addr3, 1)
else
writeBytes(addr3, 0)
end
else
addr3 = getAddressSafe('bSprintKeyPressed')
end
end
thread2.terminate()
-- while RunWalkkeyLuaThreadLoop do
-- if ( isKeyPressed(VK_CAPITAL) ) then
-- writeBytes("bWalkKeyPressed" ,1)
-- else
-- writeBytes("bWalkKeyPressed" ,0)
-- end
-- end
-- thread2.terminate()
end
----------------------------------
if syntaxcheck then return end
RunWalkkeyLuaThreadLoop = true
createThread(walkkeyLuaThread)
{$asm}
[DISABLE]
{$lua}
if syntaxcheck then return end
RunWalkkeyLuaThreadLoop = false
{$asm}
dealloc(newmem)
jSticksWriteAOB+9: //"Journey.exe"+5F346D:
readmem(originalcode_jSticksWriteAOB,5)
//db C4 C1 78 10 06
//Alt: vmovups xmm0,[r14]
unregistersymbol(originalcode_jSticksWriteAOB)
unregistersymbol(bWalkKeyID)
unregistersymbol(bWalkKeyPressed)
unregistersymbol(dWalkSpeed)
unregistersymbol(bSprintKeyID)
unregistersymbol(bSprintKeyPressed)
unregistersymbol(dSprintSpeed)
2
"Touche de Marche"
10:SHIFT key
11:CTRL key
12:ALT key
14:CAPS LOCK key
04:Middle Mouse Button
05:X1 Mouse Button
06:X2 Moust Button
09:TAB key
1
008000
Byte
bWalkKeyID
3
"Vitesse"
008000
Float
+8
4
""
008000
Byte
-4
5
"Touche de Course"
10:SHIFT key
11:CTRL key
12:ALT key
14:CAPS LOCK key
04:Middle Mouse Button
05:X1 Mouse Button
06:X2 Moust Button
09:TAB key
1
008000
Byte
bSprintKeyID
6
"Vitesse"
008000
Float
+8
7
""
008000
Byte
-4
8
""
1
9
"aobt1"
Auto Assembler Script
[ENABLE]
aobscanmodule(aobt1,Journey.exe,44 ** ** ** 45 ** ** 8B ** ** 44 ** ** ** 74)
registersymbol(aobt1)
[DISABLE]
unregistersymbol(aobt1)
10
""
Float
0B8C2CE4
11
""
Float
0B8C4650
12
""
Float
0B8C4654
13
""
Float
0B8C46D4
14
""
Auto Assembler Script
[ENABLE]
alloc(newmem,2048,"Journey.exe"+5F346D)
label(returnhere)
label(originalcode)
label(exit)
newmem:
push rax
mov rax,dMoveSpeedMultiplier
movss xmm0,[rax]
mulss xmm0,[rbx+70]
movss [rbx+70],xmm0
pop rax
originalcode:
vmovups xmm0,[r14]
exit:
jmp returnhere
dMoveSpeedMultiplier:
dd (float)2
"Journey.exe"+5F346D:
jmp newmem
returnhere:
[DISABLE]
"Journey.exe"+5F346D:
db C4 C1 78 10 06
//Alt: vmovups xmm0,[r14]
dealloc(newmem)
15
""
Auto Assembler Script
[ENABLE]
alloc(newmem,2048,"Journey.exe"+50F62B)
label(returnhere)
label(originalcode)
label(exit)
newmem:
push rax
mov rax,dMoveSpeedMultiplier
movss xmm0,[rax]
mulss xmm0,[rcx+30]
movss [rcx+30],xmm0
pop rax
originalcode:
mov [rax+10],rsi
mov rax,[rdx+40]
exit:
jmp returnhere
dMoveSpeedMultiplier:
dd (float)0.5
"Journey.exe"+50F62B:
jmp newmem
nop
nop
nop
returnhere:
[DISABLE]
"Journey.exe"+50F62B:
db 48 89 70 10 48 8B 42 40
//Alt: mov [rax+10],rsi
//Alt: mov rax,[rdx+40]
dealloc(newmem)
16
""
4 Bytes
131FD9A8
17
""
Auto Assembler Script
[ENABLE]
"Journey.exe"+5D8FAA:
db 90 30 C0
[DISABLE]
"Journey.exe"+5D8FAA:
db 0F 92 C0
//Alt: setb al
18
""
Auto Assembler Script
[ENABLE]
"Journey.exe"+4B04F5:
db 8B 4B 6C
[DISABLE]
"Journey.exe"+4B04F5:
db 8B 4B 68
//Alt: mov ecx,[rbx+68]
19
"Auto Assemble script"
Auto Assembler Script
[ENABLE]
alloc(newmem,2048,"Journey.exe"+5FF08E)
label(returnhere)
label(originalcode)
label(exit)
newmem:
mov eax,[rcx+68]
test eax,eax
jg @f
setz al
@@:
xor r13d,r13d
jmp exit
originalcode:
mov eax,[rcx+68]
xor r13d,r13d
exit:
jmp returnhere
"Journey.exe"+5FF08E:
jmp newmem
nop
returnhere:
[DISABLE]
"Journey.exe"+5FF08E:
db 8B 41 68 45 33 ED
//Alt: mov eax,[rcx+68]
//Alt: xor r13d,r13d
dealloc(newmem)
http://fearlessrevolution.com/viewtopic.php?f=4&t=9574