xentr_guest_message_title Asian Coderz

[XorEax]

CShell build: 6-17-20

m_DIPHook : 74 42 8A 09 80 F9 E9 ( Anti DIP Hook Detection )

To Bypass:

• todo_1 : Change 74 (JE) to EB (JMP)
   
  
• todo_2 : Detour before the JE and jump to neutral code
   
  

Sample Bypass Code of todo_2:

DWORD DETADR = (CSHELL + 0x22CFF0);
DWORD NEUTRALADR = (CSHELL + 0x22D039);

__declspec(naked) void __Bypass_Todo_2()
{
__asm
{
	MOV ECX, [EDI+EAX*4]
	TEST ECX,ECX
	JMP [NEUTRALADR]
}
}

Detour(DETADR,__Bypass_Todo_2);

 

[Joseph2]

is this a cheat of cf?

 

[XorEax]

[QUOTE='Joseph2]is this a cheat of cf?
[/QUOTE]this is for coder section.

 

[Anonymously]

Wow

 

[z6460]

thinks

 

[SNAKE36000]

thanks

 

[EOTHAX]

thanks

do you have the latest

 

[DarkArtistry02]

[QUOTE='XorEax]CShell build: 6-17-20
m_DIPHook : 74 42 8A 09 80 F9 E9 ( Anti DIP Hook Detection )

To Bypass:

• todo_1 : Change 74 (JE) to EB (JMP)
   
  
• todo_2 : Detour before the JE and jump to neutral code
   
  

Sample Bypass Code of todo_2:

DWORD DETADR = (CSHELL + 0x22CFF0);

DWORD NEUTRALADR = (CSHELL + 0x22D039);

__declspec(naked) void __Bypass_Todo_2()

{

__asm

{

MOV ECX, [EDI+EAX*4]

TEST ECX,ECX

JMP [NEUTRALADR]

}

}

Detour(DETADR,__Bypass_Todo_2);
[/QUOTE]
Thanks for this but I have a question if this AOB(74 42 8A 09 80 F9 E9) is for DETADR how did you get the NEUTRALADR? 

 

[DarkArtistry02]

I changed JE to JMP on Cheat Engine and it works but I don't know how to apply it on c++

 

[DarkArtistry02]

Nvm  eace:  I already fixed it  :bp:

 

[lamaw123]

patingin

 

[xshion0]

pa tingin po

 

[trytrytry0909]

thanks