Quote:
Originally Posted by Seta00
By the way, I've got Host_ServerShutdown, anyone can confirm this is valid?
|
Quote:
Know there is a thing. This offset is guaranteed to be always the same each time the library loads but that can easily not be true if the library gets updated. That's the reason that motivated the creation of a technique called signature scanning.
Signature scanning basically means: instead of provide an offset, provide a set of bytes that you can find at that offset (that represent the function). That set of bytes can easily have its location changed but as long as it exists as a block you can still search for it.
|
If you want to use it somewhere, you should provide signature. Also, not sure about your offset.
Also, as i understand, if we have args and ret with void type, we should remove it from our file.
ADD: oh ye, there is no tutorial about writing signatures atm
