So, first of all, I am using Windows7 Build 7100, and XP is NOT supported by this method, since the driver model only applies to vista and above.
I was wondering how I could make a undetected directx hook, and I was searching some subfunctions. Eventually I came out by a function called pfnPresentCb. This is documented by microsoft: http://msdn.microsoft.com/en-us/library/ms791726.aspx
In Windows vista + windows 7, you can use this function to hook undetected. The reason why it still allows drawing, is because the buffer hasnt been flipped yet(there is also a pfnRender function, and that doesnt work because of this( tnx roverturbo ^^ ) ). So, it will look like this:
Since this is a kernel usermode driver function( if you'll follow the calls, you'll see this calls the driver functions 
), pb doesnt scan it( prolly gameguard/hackshield doesnt as well ).
The function is located @ d3d9 + 0x7B3F in windows7, build 7100. I am just giving you some ideas, since some of you around here are having a hard time with anti-cheat. This is why they fail
You can also hook gdi functions or so, or hook even deeper, or even hook the drivers.
This is very OS dependent, and wont even work on xp. Thats why I am releasing it, so pays*tes cant use it
Have fun,
R4z8r
I was wondering how I could make a undetected directx hook, and I was searching some subfunctions. Eventually I came out by a function called pfnPresentCb. This is documented by microsoft: http://msdn.microsoft.com/en-us/library/ms791726.aspx
In Windows vista + windows 7, you can use this function to hook undetected. The reason why it still allows drawing, is because the buffer hasnt been flipped yet(there is also a pfnRender function, and that doesnt work because of this( tnx roverturbo ^^ ) ). So, it will look like this:
Code:
HRESULT APIENTRY npfnPresentCb( HANDLE pDevice, LPVOID pData )//remember that pDevice is not the d3d device :p
{
_asm pushad;
RenderFrame();
_asm popad;
HRESULT hRet = ppfnPresentCb( pDevice, pData );
return hRet;
} ), pb doesnt scan it( prolly gameguard/hackshield doesnt as well ). The function is located @ d3d9 + 0x7B3F in windows7, build 7100. I am just giving you some ideas, since some of you around here are having a hard time with anti-cheat. This is why they fail
You can also hook gdi functions or so, or hook even deeper, or even hook the drivers.
This is very OS dependent, and wont even work on xp. Thats why I am releasing it, so pays*tes cant use it
Have fun,
R4z8r
0 comentarios:
Publicar un comentario