Jump to content

Warden

Auntie Mangos

By Auntie Mangos
in OldGeneral discussion

 Share

Recommended Posts

ProAlex Newbie

ProAlex

Posted
Posted
please give a patch for this :)

This is not a patch. This is a dll module with c# code. Source code was relesed, but I have many errors while compile this. May be someone relese source code as visual studio project? Thanks.

  • Replies 125
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

doba Newbie

doba

Posted
Posted
Error 1 The type or namespace name 'PlainPacket' could not be found (are you missing a using directive or an assembly reference?)

How to fix this error? I compile source code with Visual Studio c# (class library). Please help.

Same error here.

LexManos Advanced Member

LexManos

Posted
Posted

Seriously guys?

Do any of you actually know anything about C++/C#?

Tom_Rus has done a great job expanding on what I posted. And I doubt he will ever post a patch for mangos to add warden support nativly.

I'm kinda curious why the main dev team hasn't given an official ya/nay on this.

But I'm kinda disappointed that nothing has come out of this. I have it in my to-do to re-write my Warden library, and I may post more information and cleaner code after that. Because in my few re-writes of my code I've found a lot better ways to do a lot of the stuff.

Anyways, PowerPC versions of WoW and other games DO support Warden, but yes, IIRC they use a different set of modules because they are different architectures. But basically, functionality wise, they are the exact same.

Anyways, if anyone actually gives a crap about warden, and wants to actually work on it and not just ask for code. Feel free to PM me if you have any questions, it sends me an email and I keep forgetting to check this place.

  • 5 weeks later...
  • 5 weeks later...
  • 3 months later...
  • 4 weeks later...
LexManos Advanced Member

LexManos

Posted
Posted

Hey guys Figured i'd drop my head back in here. It appears my old Warden thread has disappeared. No worries. Just curious if anyone has a dump of any of the 'new' 'Warden 2.0' modules they would be willing to give me. Figured i'd take a crack at seeing what they did.

I got a hold of one of the mac modules, and honestly.. nothing much significant there, they just implemented stuff that was already in windows.

I have some time on my hands, i couldn't find any details about what has changed, and i'm bored. So I figured i'd ask.

LexManos Advanced Member

LexManos

Posted
Posted

Well, from what i've seen 'Warden 2.0' (aside from being a gimmicky name some noobs made up) is simply Warden for Mac. Cuz IIRC warden was just a stub with minimal functionality for Mac.

I am still interested in seeing a current module.

Also, why the HELL couldn't I find this thread when I was looking for it?

Seriously, my profile -> Fime Threads Started By -> Nothing...

  • 2 weeks later...
tehmarto Member

tehmarto

Posted
Posted

Hi,

I'm back at this interesting code with more knowledge about this thing than i had last time :D . I am stuck at the 0x05 opcode and its response. Can someone please help me? How the client generates the hash? What is this module specific hash? How can I get it? I'm completely stuck at this 0x05 and 0x04 opcode.

Thanks.

  • 3 weeks later...
tehmarto Member

tehmarto

Posted
Posted

I don't seem to find any maiev.mod. Is it removed on 3.3.5? Perhaps its replaced with scan.dll in wow folder, scan.dll does some cheat scanning too from what I see.

Edit: Well now I see that scan.dll is not related to warden. xD

zhenya` Member

zhenya`

Posted
Posted
Hi,

I'm back at this interesting code with more knowledge about this thing than i had last time :D . I am stuck at the 0x05 opcode and its response. Can someone please help me? How the client generates the hash? What is this module specific hash? How can I get it? I'm completely stuck at this 0x05 and 0x04 opcode.

Thanks.

You can implement warden with 1 module or collect modules with keys. Function in every module different from another.

you can get new rc4 keys from client memory;) and on this way you can avoid ModuleSpecificHash(..)

tehmarto Member

tehmarto

Posted
Posted
You can implement warden with 1 module or collect modules with keys. Function in every module different from another.

you can get new rc4 keys from client memory;) and on this way you can avoid ModuleSpecificHash(..)

That is very good idea about getting the rc4 keys from memory, but that way I would have to use only one module with sending the same seed in 0x05. Defenetly gonna try that. Anyways I find maiev.mod string in battle.net.dll but wow runs and responses to warden packets without battle.net.dll, and I deleted cache too. Anyone can tell me how to get maiev.mod?

Thanks.

Where did you look?

I looked in wow.exe by searching for strings maiev.mod and also putted breakpoints on every loadlibrary functions and didn't see it loading maiev.mod or battle.net.dll.

tehmarto Member

tehmarto

Posted
Posted

Seem to got it right after all except when I send the cheat checks that way:

       buffer_add_int8(buf, CHEAT_CHECKS);
       buffer_add_int8(buf, 0);
       buffer_add_int8(buf, warden_str->MEM_CHECK ^ warden_str->out_key[0]);
       buffer_add_int8(buf, 0);
       buffer_add_int32(buf, 0x00ADA378);
       buffer_add_int8(buf, 4);
       buffer_add_int8(buf, warden_str->out_key[0]);

It responds the same value no matter what offset I send and after that it stops responding to my memory cheat checks.

TOM_RUS Advanced Member

TOM_RUS

Posted
Posted
That is very good idea about getting the rc4 keys from memory, but that way I would have to use only one module with sending the same seed in 0x05. Defenetly gonna try that. Anyways I find maiev.mod string in battle.net.dll but wow runs and responses to warden packets without battle.net.dll, and I deleted cache too. Anyone can tell me how to get maiev.mod?

Thanks.

I looked in wow.exe by searching for strings maiev.mod and also putted breakpoints on every loadlibrary functions and didn't see it loading maiev.mod or battle.net.dll.

maiev.mod string is encrypted in wow.exe...

TOM_RUS Advanced Member

TOM_RUS

Posted
Posted
But how it loads maiev.mod? I putted breakpoints on every loadlibrary and I didn't see it loading maiev.mod.

That module isn't actual module, it's part of wow.exe and all stuff called directly.

  • 2 weeks later...
tehmarto Member

tehmarto

Posted
Posted

Hi,

Very nice thread, I've done wall climb cheat detection. But I am wondering how offi detects if movement speed value been edited. I looked at persed sniffs that tom_rus posted and looks like it scans only offsets with start with 0x0 or 0x00. From this I see that it scans only static offset - movement speed offset is not static, when i scan with memory scanner, speed is located at different place always. So to find what address is speed located at through warden so I can scan that offset, I need to do the following:

Send packet that scans the static offset - player base (0x00CD87A8 at 3.3.5a)

Handle the response packet and send another offset check that is the "playerBase" offset response + 0x34

Handle the response packet again and send the value from response + 0x24

Handle again packet and send the response value + the movement speed offset

And now I got the movement speed offset and check the movement speed value. From what I see offi got faster way to scan for speed hacks. Can anyone give me a hint how they do it?

Thanks again.

Guest
This topic is now closed to further replies.
 Share
Go to topic listing

Contact Us

To contact us click here
You can also email us at [email protected]

Privacy Policy | Terms & Conditions

Repositories

The Link to the master list
of MaNGOS repositories:
Copyright © getMaNGOS. All rights Reserved.

This website is in no way associated with or endorsed by Blizzard Entertainment®
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue. Privacy Policy Terms of Use