无限能量的,无敌和子弹的需要再找我吧
{ Game : Warframe.x64.exe
Version:
Date : 2021-10-09
Author : zsz
This script does blah blah blah
}
[ENABLE]
aobscanmodule(POWER,Warframe.x64.exe,0C 48 8B D9 F3 0F 11 08 8B 10) // should be unique
alloc(newmem,$1000,"Warframe.x64.exe"+CAFBD)
label(code)
label(return)
newmem:
code:
movss [rax],xmm0
mov edx,[rax]
jmp return
POWER+04:
jmp code
nop
return:
registersymbol(POWER)
[DISABLE]
POWER+04:
db F3 0F 11 08 8B 10
unregistersymbol(POWER)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Warframe.x64.exe"+CAFBD
"Warframe.x64.exe"+CAFAA: CC - int 3
"Warframe.x64.exe"+CAFAB: CC - int 3
"Warframe.x64.exe"+CAFAC: CC - int 3
"Warframe.x64.exe"+CAFAD: CC - int 3
"Warframe.x64.exe"+CAFAE: CC - int 3
"Warframe.x64.exe"+CAFAF: CC - int 3
"Warframe.x64.exe"+CAFB0: 40 53 - push rbx
"Warframe.x64.exe"+CAFB2: 48 83 EC 20 - sub rsp,20
"Warframe.x64.exe"+CAFB6: 48 8D 41 0C - lea rax,[rcx+0C]
"Warframe.x64.exe"+CAFBA: 48 8B D9 - mov rbx,rcx
// ---------- INJECTING HERE ----------
"Warframe.x64.exe"+CAFBD: F3 0F 11 08 - movss [rax],xmm1
"Warframe.x64.exe"+CAFC1: 8B 10 - mov edx,[rax]
// ---------- DONE INJECTING ----------
"Warframe.x64.exe"+CAFC3: 33 D0 - xor edx,eax
"Warframe.x64.exe"+CAFC5: 81 F2 2C 22 B3 4C - xor edx,4CB3222C
"Warframe.x64.exe"+CAFCB: C1 CA 09 - ror edx,09
"Warframe.x64.exe"+CAFCE: 89 10 - mov [rax],edx
"Warframe.x64.exe"+CAFD0: 81 F2 58 23 D5 76 - xor edx,76D52358
"Warframe.x64.exe"+CAFD6: 89 54 24 38 - mov [rsp+38],edx
"Warframe.x64.exe"+CAFDA: F3 0F 10 44 24 38 - movss xmm0,[rsp+38]
"Warframe.x64.exe"+CAFE0: F3 0F 11 41 08 - movss [rcx+08],xmm0
"Warframe.x64.exe"+CAFE5: 48 8D 4C 24 38 - lea rcx,[rsp+38]
"Warframe.x64.exe"+CAFEA: E8 81 EF 05 00 - call Warframe.x64.exe+129F70
}
{ Game : Warframe.x64.exe
Version:
Date : 2021-10-09
Author : zsz
This script does blah blah blah
}
[ENABLE]
aobscanmodule(POWER,Warframe.x64.exe,0C 48 8B D9 F3 0F 11 08 8B 10) // should be unique
alloc(newmem,$1000,"Warframe.x64.exe"+CAFBD)
label(code)
label(return)
newmem:
code:
movss [rax],xmm0
mov edx,[rax]
jmp return
POWER+04:
jmp code
nop
return:
registersymbol(POWER)
[DISABLE]
POWER+04:
db F3 0F 11 08 8B 10
unregistersymbol(POWER)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "Warframe.x64.exe"+CAFBD
"Warframe.x64.exe"+CAFAA: CC - int 3
"Warframe.x64.exe"+CAFAB: CC - int 3
"Warframe.x64.exe"+CAFAC: CC - int 3
"Warframe.x64.exe"+CAFAD: CC - int 3
"Warframe.x64.exe"+CAFAE: CC - int 3
"Warframe.x64.exe"+CAFAF: CC - int 3
"Warframe.x64.exe"+CAFB0: 40 53 - push rbx
"Warframe.x64.exe"+CAFB2: 48 83 EC 20 - sub rsp,20
"Warframe.x64.exe"+CAFB6: 48 8D 41 0C - lea rax,[rcx+0C]
"Warframe.x64.exe"+CAFBA: 48 8B D9 - mov rbx,rcx
// ---------- INJECTING HERE ----------
"Warframe.x64.exe"+CAFBD: F3 0F 11 08 - movss [rax],xmm1
"Warframe.x64.exe"+CAFC1: 8B 10 - mov edx,[rax]
// ---------- DONE INJECTING ----------
"Warframe.x64.exe"+CAFC3: 33 D0 - xor edx,eax
"Warframe.x64.exe"+CAFC5: 81 F2 2C 22 B3 4C - xor edx,4CB3222C
"Warframe.x64.exe"+CAFCB: C1 CA 09 - ror edx,09
"Warframe.x64.exe"+CAFCE: 89 10 - mov [rax],edx
"Warframe.x64.exe"+CAFD0: 81 F2 58 23 D5 76 - xor edx,76D52358
"Warframe.x64.exe"+CAFD6: 89 54 24 38 - mov [rsp+38],edx
"Warframe.x64.exe"+CAFDA: F3 0F 10 44 24 38 - movss xmm0,[rsp+38]
"Warframe.x64.exe"+CAFE0: F3 0F 11 41 08 - movss [rcx+08],xmm0
"Warframe.x64.exe"+CAFE5: 48 8D 4C 24 38 - lea rcx,[rsp+38]
"Warframe.x64.exe"+CAFEA: E8 81 EF 05 00 - call Warframe.x64.exe+129F70
}
IP属地:湖南
2楼2021-11-08 22:00
2楼2021-11-08 22:00收起回复
