The explanation will not be very technical, so you can likely follow along easily with little to no reverse engineering experience, though some familiarity with Ghidra’s UI may be of use. In the next few sections I’ll explain the principle of how you can easily use these symbols to your advantage. The inlining differences do make things a bit more annoying at times, as it can make it so if you try to find references to a function like get_weapon_item on Windows you likely wont get the same results as on Linux, due to the function being inlined sometimes. The difference between the x86 and 圆4 builds is pretty much only seen in variable and structure sizes as one would imagine, this means we most likely won’t make it entirely with just static analysis.
Two of the major differences you will see between the Linux and Windows binaries is the fact that the Linux build is an 圆4 version of the game while the Windows build is x86 and differences in what the compiler decides to inline. That means I could load up the Linux binaries in Ghidra and see most of the interesting function names.Įven though I wasn’t hacking the game on Linux, the symbols are an extremely valuable reference for finding functions on the Windows build. They did the old mistake companies such as Valve have done in the past, the Linux version was shipped without stripped symbols. I’ll leave finding most of the game function locations as an exercise for the reader, but that won’t be too difficult due to the things explained coming up. I will not be covering things like finding Directx device pointers here, the methods for that are so well documented at this point I feel like it would be a waste of lines.Īt the bottom there are some partial game structures with everything necessary for what one could consider basic cheat functionality. The following tools were used to gather information in my efforts to hack this game: At first it was going to be a blog post on reversing methodology when approaching a new game there isn’t much documentation for, but it turned out the developers made things easier than they should be or usually are, so this turned out to be a bit more of an info dump post rather than going deep in to how one should approach hacking a game. I’ll apologize beforehand that I’m not the best at writing long posts neither am I the best at English as it isn’t my first language. Hi, it’s about time to drop some info on this blog outside of my excellent cooking guide.
0 kommentar(er)
