Server Help

Trash Talk - Memory Calls?

Qndre - Sun Apr 25, 2004 12:38 pm
Post subject: Memory Calls?

Can you tell me the memory address where settings and nrg are stored at the client side? I'd like to write a kind of IRC bot (like those which already exist for HalfLife) which can show my nrg and current game settings (those in server.cfg) in a CONT related IRC chat channel.
Now if you think "why doesn't he write a BOT with NRG watch?" you should know that I want to do this in every zone, unrelated if I'm a kind of MOD (nrg watch) or not.

Mr Ekted - Sun Apr 25, 2004 3:33 pm
Post subject:

Are you talking about Continuum or VIE client? You can't access memory in Continuum from another process.

nintendo64 - Sun Apr 25, 2004 6:01 pm
Post subject:

You can still get only read access, ekted.

On CTM 0.37 (tried it long time ago)

CreateProcess() -> CTM stops sending/receiving packets

OpenProcess() -> works but only with those accesses:

Only Reading Memory Access.

PROCESS_QUERY_INFORMATION
PROCESS_VM_READ

Won't work with (CTM won't simply allow reading/writing memory):
PROCESS_ALL_ACCESS
PROCESS_VM_WRITE

Rest:
i didn't try.

Qndre you can use the allowed access and find your memory addresses, most "cheating programs" like Winhack, Artmoney, uses OpenProcess with PROCESS_ALL_ACCESS, so it won't work, you can write your own program to find the addresses, you should be capable of doing that.

-nintendo64

Jackmn - Sun Apr 25, 2004 8:52 pm
Post subject:

Hmm, are the positions of cloaked/stealth ships still sent to clients without xradar?

If so, being able to read memory is probably a problem.

( Or perhaps it was fixed in .38 )

nintendo64 - Sun Apr 25, 2004 10:01 pm
Post subject:

i doubt is a problem, why don't you verify this again on a higher version that 0.37.

-nintendo64

Mr Ekted - Sun Apr 25, 2004 11:14 pm
Post subject:

Also, private frequencies.

Qndre - Mon Apr 26, 2004 7:28 am
Post subject:

Jackmn wrote:

Hmm, are the positions of cloaked/stealth ships still sent to clients without xradar?

Yes, they are! Tried it out with my client on my own server. (my client is SysOP so I can join without checksums)

Nintendo64 wrote:

[..]
you can write your own program to find the addresses, you should be capable of doing that.

It will require at least C (maybe ASM). I doubt I'll be able to do it in a short amount of time but I'll try. (I'm trying to learn ASM btw)

Anonymous - Mon Apr 26, 2004 11:54 pm
Post subject: RE: no way!

Actually, you can get write access to Ctm without doing anything major; the hypothetical programmer just needs to spend a bit more time looking around on MSDN...

Anonymous - Tue Apr 27, 2004 12:00 am
Post subject: RE: reading energy

In SubSpace, the player data was encrypted in memory. So, you can't just read it, you need to decrypt it too.

Furthermore, the list of players was a giant array of pointers, only the first N of which were actual players. and the N (number of players) was stored encrypted elsewhere.

Now you may be thinking "but i only want to read MY energy", well, your energy is stored in a player info structure just like everyone else's, in that big list, and with the same protections.

PriitK's client may be less "paranoid" about these things, but I wouldn't bet on it.

Anonymous - Tue Apr 27, 2004 12:06 am
Post subject: RE: reading zone settings

You may also come up against protections of the zone settings, since this is one of the concessions (some say failings) of the SubSpace protocol. No one wants their zone settings released, but every client has a copy of the more sensitive ones: yes, some will be missing from the info sent by the server, because some are server-side.

Since people are so possessive and secretive with their settings, I would be shocked if PriitK did not encrypt those in memory. If you find that he doesn't, or that the settings are dirty in memory somewhere they can be read in plaintext, you should report that as a bug.

Jackmn - Tue Apr 27, 2004 12:45 pm
Post subject:

As for why you can't open the process...

check GetLastError()