Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

question #2

Open
mezvrishvili opened this issue Dec 22, 2016 · 6 comments
Open

question #2

mezvrishvili opened this issue Dec 22, 2016 · 6 comments

Comments

@mezvrishvili
Copy link

mezvrishvili commented Dec 22, 2016
edited
Loading

Hello w3lh, i have a question please.

can i change real war3.exe "exeinfo" with fake when patching with your loader?

for example 1.26a has "war3.exe 03/18/11 20:03:55 471040"

need to change 471040 with custom numbers

Thanks
@w3lh
Copy link
Owner

w3lh commented Dec 23, 2016

war.exe is a file name. 471040 is the size in bytes. Date is written in PE header. Or there is any other place this info came from?

@mezvrishvili
Copy link
Author

mezvrishvili commented Dec 24, 2016
edited
Loading

yes, 471040 is file size, but i'm not sure about date. as i found out, its last modified time of the file

as its written in versioncheck.conf, its file's date/time.

exeinfo = "war3.exe ??/??/?? ??:??:?? 1568211" will match war3.exe with

filesize 1568211 but won't care about the file's date/time

i'll tell you why i need to change it.

i've compiled new loader, changed name of Game.dll with Antihack.dll, so now Antihack.dll is patched and used by game and maphack not works(all the maphacks use Game.dll)

but i need make so, that players were not able to enter the server with old loader, but only with mine.

so i gonna change pvpgn version check. allow players enter server only if war3.exe has size 111111 for example(or any custom numbers, different than real)

Thats why i wanna patch it and provide fake info, as though war3.exe has size 111111

or maybe patch game.dll and change version manually? as though its not 1.26.0.1 but 1.26.1.2 or something?

or change versionid or checksum
versionid=0x0000001a gameversion=0x011a0001 checksum=0xf2e7cec2

please share if you have any idea.
Thanks

@cen1
Copy link
Contributor

cen1 commented Jan 2, 2017
edited
Loading

You are just playing hide and seek game.. if any decent hacker wants to bypass your custom version he can easily do so. It can even be faked on a network level with gproxy for example. I think you are wasting your time to be honest. You can't really verify that a client is genuine in any way that is not obfuscation.

The "best" thing I can think of is to have W3 verify the client through ExtraWork but even that could be bypassed by attacking W3 directly.

@mezvrishvili
Copy link
Author

yep, decent hacker can bypass it, but on my server mostly play stupid kids , that are only able to download maphack and run it :)

so any simple fix will be ok for me.

can you please provide more info about ExtraWork?

@cen1
Copy link
Contributor

cen1 commented Jan 2, 2017

pvpgn/pvpgn-server#72

@leokinging
Copy link

能否告訴我基於1.29找不到偏移地址嗎?
有1.29調用JASS的基址或者偏移嗎?
資料夾沒有Game.doll只有Warcraft iii

Can you tell me that the offset address cannot be found based on 1.29?
Is there a base address or offset for calling JASS in 1.29?
There is no Game.doll in the folder, only Warcraft iii

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@cen1 @mezvrishvili @leokinging @w3lh