API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 22nd, 2017
76
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 11.69 KB | None | 0 0
raw download clone embed print report
  1. <?xml version="1.0" encoding="utf-8"?>
  2. <CheatTable>
  3. <CheatEntries>
  4. <CheatEntry>
  5. <ID>21</ID>
  6. <Description>"Teleport Code"</Description>
  7. <Options moHideChildren="1"/>
  8. <LastState/>
  9. <VariableType>Auto Assembler Script</VariableType>
  10. <AssemblerScript Async="1">[ENABLE]
  11.  
  12. aobscanmodule(_Teleport,ShadowOfWar.exe,F3 0F 10 80 84 00 00 00 F3) // should be unique
  13. aobscanmodule(_Waypoint,ShadowOfWar.exe,F3 44 0F 11 80 94 38 00 00) // should be unique
  14. fullaccess(_Teleport,$1000)
  15. alloc(newmem,$1000,ShadowOfWar.exe)
  16. alloc(_SavePosition,8)
  17. alloc(_LoadPosition,8)
  18. alloc(_UndoTeleport,8)
  19. alloc(_base,8)
  20. alloc(_X_Coord,8)
  21. alloc(_Y_Coord,8)
  22. alloc(_Z_Coord,8)
  23. alloc(_X_Coord_Undo,8)
  24. alloc(_Y_Coord_Undo,8)
  25. alloc(_Z_Coord_Undo,8)
  26. registersymbol(_Teleport)
  27. registersymbol(_SavePosition)
  28. registersymbol(_LoadPosition)
  29. registersymbol(_UndoTeleport)
  30. registersymbol(_X_Coord)
  31. registersymbol(_Y_Coord)
  32. registersymbol(_Z_Coord)
  33. registersymbol(_X_Coord_Undo)
  34. registersymbol(_Y_Coord_Undo)
  35. registersymbol(_Z_Coord_Undo)
  36. registersymbol(_base)
  37.  
  38. alloc(newmemWP,$1000,ShadowOfWar.exe)
  39. registersymbol(_Waypoint)
  40. registersymbol(_Waypoint_X)
  41. registersymbol(_Waypoint_Y)
  42. registersymbol(_Waypoint_Z)
  43. registersymbol(_TeleToWP)
  44. alloc(_Waypoint_X,8)
  45. alloc(_Waypoint_Y,8)
  46. alloc(_Waypoint_Z,8)
  47. alloc(_TeleToWP,8)
  48.  
  49.  
  50. label(return)
  51. label(Save)
  52. label(Load)
  53. label(Undo)
  54. label(code)
  55.  
  56. label(codeWP)
  57. label(returnWP)
  58. label(TeleToWaypoint)
  59.  
  60. newmemWP:
  61. cmp [rax+00003894],(int)0
  62. je codeWP
  63. cmp [rax+00003898],(int)0
  64. je codeWP
  65. cmp [rax+0000389C],(int)0
  66. je codeWP
  67. movss xmm1,[rax+00003894]
  68. movss [_Waypoint_X],xmm1
  69. //movss xmm1,[rax+00003898]
  70. //movss [_Waypoint_Y],xmm1
  71. movss xmm1,[rax+0000389C]
  72. movss [_Waypoint_Z],xmm1
  73. codeWP:
  74. movss [rax+00003894],xmm8
  75. jmp returnWP
  76.  
  77.  
  78. newmem:
  79. push rax
  80. mov [_base],rax
  81. pop rax
  82. cmp byte ptr [_SavePosition],1
  83. je Save
  84. cmp byte ptr [_LoadPosition],1
  85. je Load
  86. cmp byte ptr [_UndoTeleport],1
  87. je Undo
  88. cmp byte ptr [_TeleToWP],1
  89. je TeleToWaypoint
  90. jmp code
  91.  
  92. Save:
  93. mov byte ptr [_SavePosition],0
  94. movss xmm1,[rax+00000080] // X
  95. movss [_X_Coord],xmm1
  96. movss xmm1,[rax+00000084] // Y
  97. movss [_Y_Coord],xmm1
  98. movss xmm1,[rax+00000088] // Z
  99. movss [_Z_Coord],xmm1
  100. jmp code
  101.  
  102. Load:
  103. mov byte ptr [_LoadPosition],0
  104. // Save Position again for Undo
  105. movss xmm3,[rax+00000080] // X
  106. movss [_X_Coord_Undo],xmm3
  107. movss xmm3,[rax+00000084] // Y
  108. movss [_Y_Coord_Undo],xmm3
  109. movss xmm3,[rax+00000088] // Z
  110. movss [_Z_Coord_Undo],xmm3
  111. // Load Part
  112. movss xmm1,[_X_Coord]
  113. movss [rax+00000080],xmm1
  114. movss xmm1,[_Y_Coord]
  115. movss [rax+00000084],xmm1
  116. movss xmm1,[_Z_Coord]
  117. movss [rax+00000088],xmm1
  118. jmp code
  119.  
  120. Undo:
  121. mov byte ptr [_UndoTeleport],0
  122. movss xmm1,[_X_Coord_Undo]
  123. movss [rax+00000080],xmm1
  124. movss xmm1,[_Y_Coord_Undo]
  125. movss [rax+00000084],xmm1
  126. movss xmm1,[_Z_Coord_Undo]
  127. movss [rax+00000088],xmm1
  128. jmp code
  129.  
  130. TeleToWaypoint:
  131. mov byte ptr [_TeleToWP],0
  132. movss xmm1,[_Waypoint_X]
  133. movss [rax+00000080],xmm1
  134. //movss xmm1,[_Waypoint_Y]
  135. //movss [rax+00000084],xmm1
  136. mov [rax+00000084],(float)1000
  137. movss xmm1,[_Waypoint_Z]
  138. movss [rax+00000088],xmm1
  139. jmp code
  140.  
  141.  
  142. code:
  143. movss xmm0,[rax+00000084]
  144. jmp return
  145.  
  146. _Teleport:
  147. jmp newmem
  148. nop
  149. nop
  150. nop
  151. return:
  152.  
  153. _Waypoint:
  154. jmp newmemWP
  155. nop
  156. nop
  157. nop
  158. nop
  159. returnWP:
  160.  
  161.  
  162. _SavePosition:
  163. dd 0
  164. _LoadPosition:
  165. dd 0
  166. _UndoTeleport:
  167. dd 0
  168.  
  169.  
  170. [DISABLE]
  171.  
  172. _Teleport:
  173. db F3 0F 10 80 84 00 00 00
  174.  
  175. _Waypoint:
  176. db F3 44 0F 11 80 94 38 00 00
  177.  
  178. unregistersymbol(_Teleport)
  179. dealloc(newmem)
  180. dealloc(_SavePosition)
  181. dealloc(_LoadPosition)
  182. dealloc(_UndoTeleport)
  183. dealloc(_X_Coord)
  184. dealloc(_Y_Coord)
  185. dealloc(_Z_Coord)
  186. dealloc(_X_Coord_Undo)
  187. dealloc(_Y_Coord_Undo)
  188. dealloc(_Z_Coord_Undo)
  189. dealloc(_base)
  190. unregistersymbol(_Teleport)
  191. unregistersymbol(_SavePosition)
  192. unregistersymbol(_LoadPosition)
  193. unregistersymbol(_UndoTeleport)
  194. unregistersymbol(_X_Coord)
  195. unregistersymbol(_Y_Coord)
  196. unregistersymbol(_Z_Coord)
  197. unregistersymbol(_base)
  198.  
  199. unregistersymbol(_Waypoint)
  200. dealloc(newmemWP)
  201. unregistersymbol(_Waypoint_X)
  202. unregistersymbol(_Waypoint_Y)
  203. unregistersymbol(_Waypoint_Z)
  204. dealloc(_Waypoint_X)
  205. dealloc(_Waypoint_Y)
  206. dealloc(_Waypoint_Z)
  207. {
  208. // ORIGINAL CODE - INJECTION POINT: "ShadowOfWar.exe"+1C3B11
  209.  
  210. "ShadowOfWar.exe"+1C3AEB: 74 38 - je ShadowOfWar.exe+1C3B25
  211. "ShadowOfWar.exe"+1C3AED: 8B 80 00 2A 00 00 - mov eax,[rax+00002A00]
  212. "ShadowOfWar.exe"+1C3AF3: 3D 00 01 00 00 - cmp eax,00000100
  213. "ShadowOfWar.exe"+1C3AF8: 73 2B - jae ShadowOfWar.exe+1C3B25
  214. "ShadowOfWar.exe"+1C3AFA: 8B D0 - mov edx,eax
  215. "ShadowOfWar.exe"+1C3AFC: 48 8B CB - mov rcx,rbx
  216. "ShadowOfWar.exe"+1C3AFF: E8 38 0C 00 00 - call ShadowOfWar.exe+1C473C
  217. "ShadowOfWar.exe"+1C3B04: C6 00 01 - mov byte ptr [rax],01
  218. "ShadowOfWar.exe"+1C3B07: 41 8B 88 AC 00 00 00 - mov ecx,[r8+000000AC]
  219. "ShadowOfWar.exe"+1C3B0E: 89 48 04 - mov [rax+04],ecx
  220. // ---------- INJECTING HERE ----------
  221. "ShadowOfWar.exe"+1C3B11: 41 8B 88 B0 00 00 00 - mov ecx,[r8+000000B0]
  222. // ---------- DONE INJECTING ----------
  223. "ShadowOfWar.exe"+1C3B18: 89 48 08 - mov [rax+08],ecx
  224. "ShadowOfWar.exe"+1C3B1B: 41 8B 88 B4 00 00 00 - mov ecx,[r8+000000B4]
  225. "ShadowOfWar.exe"+1C3B22: 89 48 0C - mov [rax+0C],ecx
  226. "ShadowOfWar.exe"+1C3B25: 33 F6 - xor esi,esi
  227. "ShadowOfWar.exe"+1C3B27: 49 8D 45 10 - lea rax,[r13+10]
  228. "ShadowOfWar.exe"+1C3B2B: 89 75 48 - mov [rbp+48],esi
  229. "ShadowOfWar.exe"+1C3B2E: 8B D6 - mov edx,esi
  230. "ShadowOfWar.exe"+1C3B30: 48 8B C8 - mov rcx,rax
  231. "ShadowOfWar.exe"+1C3B33: 44 8B D6 - mov r10d,esi
  232. "ShadowOfWar.exe"+1C3B36: E8 9D 0B 00 00 - call ShadowOfWar.exe+1C46D8
  233. }
  234. </AssemblerScript>
  235. <CheatEntries>
  236. <CheatEntry>
  237. <ID>22</ID>
  238. <Description>"Save Position"</Description>
  239. <VariableType>Byte</VariableType>
  240. <Address>_SavePosition</Address>
  241. <Hotkeys>
  242. <Hotkey>
  243. <Action>Set Value</Action>
  244. <Keys>
  245. <Key>97</Key>
  246. </Keys>
  247. <Value>1</Value>
  248. <ID>0</ID>
  249. <ActivateSound>Activate</ActivateSound>
  250. </Hotkey>
  251. </Hotkeys>
  252. </CheatEntry>
  253. <CheatEntry>
  254. <ID>23</ID>
  255. <Description>"Load Position"</Description>
  256. <VariableType>Byte</VariableType>
  257. <Address>_LoadPosition</Address>
  258. <Hotkeys>
  259. <Hotkey>
  260. <Action>Set Value</Action>
  261. <Keys>
  262. <Key>98</Key>
  263. </Keys>
  264. <Value>1</Value>
  265. <ID>0</ID>
  266. <ActivateSound>Activate</ActivateSound>
  267. </Hotkey>
  268. </Hotkeys>
  269. </CheatEntry>
  270. <CheatEntry>
  271. <ID>24</ID>
  272. <Description>"Undo Teleport"</Description>
  273. <VariableType>Byte</VariableType>
  274. <Address>_UndoTeleport</Address>
  275. <Hotkeys>
  276. <Hotkey>
  277. <Action>Set Value</Action>
  278. <Keys>
  279. <Key>99</Key>
  280. </Keys>
  281. <Value>1</Value>
  282. <ID>0</ID>
  283. <ActivateSound>Activate</ActivateSound>
  284. </Hotkey>
  285. </Hotkeys>
  286. </CheatEntry>
  287. <CheatEntry>
  288. <ID>63</ID>
  289. <Description>"Teleport To Waypoint"</Description>
  290. <VariableType>Byte</VariableType>
  291. <Address>_TeleToWP</Address>
  292. <Hotkeys>
  293. <Hotkey>
  294. <Action>Set Value</Action>
  295. <Keys>
  296. <Key>100</Key>
  297. </Keys>
  298. <Value>1</Value>
  299. <ID>0</ID>
  300. <ActivateSound>Activate</ActivateSound>
  301. </Hotkey>
  302. </Hotkeys>
  303. </CheatEntry>
  304. <CheatEntry>
  305. <ID>26</ID>
  306. <Description>"Debug"</Description>
  307. <Options moHideChildren="1"/>
  308. <LastState Value="" RealAddress="00000000"/>
  309. <GroupHeader>1</GroupHeader>
  310. <CheatEntries>
  311. <CheatEntry>
  312. <ID>38</ID>
  313. <Description>"Pointers"</Description>
  314. <Options moHideChildren="1"/>
  315. <LastState Value="" RealAddress="00000000"/>
  316. <GroupHeader>1</GroupHeader>
  317. <CheatEntries>
  318. <CheatEntry>
  319. <ID>32</ID>
  320. <Description>"Player Position X"</Description>
  321. <VariableType>Float</VariableType>
  322. <Address>_base</Address>
  323. <Offsets>
  324. <Offset>80</Offset>
  325. </Offsets>
  326. </CheatEntry>
  327. <CheatEntry>
  328. <ID>34</ID>
  329. <Description>"Player Position Y"</Description>
  330. <VariableType>Float</VariableType>
  331. <Address>_base</Address>
  332. <Offsets>
  333. <Offset>84</Offset>
  334. </Offsets>
  335. </CheatEntry>
  336. <CheatEntry>
  337. <ID>33</ID>
  338. <Description>"Player Position Z"</Description>
  339. <VariableType>Float</VariableType>
  340. <Address>_base</Address>
  341. <Offsets>
  342. <Offset>88</Offset>
  343. </Offsets>
  344. </CheatEntry>
  345. </CheatEntries>
  346. </CheatEntry>
  347. <CheatEntry>
  348. <ID>25</ID>
  349. <Description>"Saved Coord X"</Description>
  350. <VariableType>Float</VariableType>
  351. <Address>_X_Coord</Address>
  352. </CheatEntry>
  353. <CheatEntry>
  354. <ID>27</ID>
  355. <Description>"Saved Coord Y"</Description>
  356. <VariableType>Float</VariableType>
  357. <Address>_Y_Coord</Address>
  358. </CheatEntry>
  359. <CheatEntry>
  360. <ID>28</ID>
  361. <Description>"Saved Coord Z"</Description>
  362. <VariableType>Float</VariableType>
  363. <Address>_Z_Coord</Address>
  364. </CheatEntry>
  365. <CheatEntry>
  366. <ID>29</ID>
  367. <Description>"Saved X Coord Undo"</Description>
  368. <VariableType>Float</VariableType>
  369. <Address>_x_Coord_Undo</Address>
  370. </CheatEntry>
  371. <CheatEntry>
  372. <ID>30</ID>
  373. <Description>"Saved Y Coord Undo"</Description>
  374. <VariableType>Float</VariableType>
  375. <Address>_Y_Coord_Undo</Address>
  376. </CheatEntry>
  377. <CheatEntry>
  378. <ID>31</ID>
  379. <Description>"Saved Z Coord Undo"</Description>
  380. <VariableType>Float</VariableType>
  381. <Address>_Z_Coord_Undo</Address>
  382. </CheatEntry>
  383. <CheatEntry>
  384. <ID>64</ID>
  385. <Description>"Waypoint Coords X"</Description>
  386. <VariableType>Float</VariableType>
  387. <Address>_Waypoint_X</Address>
  388. </CheatEntry>
  389. <CheatEntry>
  390. <ID>66</ID>
  391. <Description>"Waypoint Coords Y"</Description>
  392. <VariableType>Float</VariableType>
  393. <Address>_Waypoint_Y</Address>
  394. </CheatEntry>
  395. <CheatEntry>
  396. <ID>65</ID>
  397. <Description>"Waypoint Coords Z"</Description>
  398. <VariableType>Float</VariableType>
  399. <Address>_Waypoint_Z</Address>
  400. </CheatEntry>
  401. </CheatEntries>
  402. </CheatEntry>
  403. </CheatEntries>
  404. </CheatEntry>
  405. </CheatEntries>
  406. </CheatTable>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!