[petomatick]

Quote:

Originally Posted by pheadxdll It's a hard coded value of 1100.0.

? Explain what u meant please

[FaTony]

Like

PHP Code:

#define TF_MAX_SENTRY_RANGE 1100 


But I think it's 1024...

[petomatick]

and how do you change that?

[petomatick]

No answer?

[Mitchell]

It would need some actually coding besides a couple commands after its built, more like Get the nearest player and force it to shoot, even doing that recoil might be bad.

[FaTony]

I think you can patch a memory address.

[petomatick]

And that you do by doing?

[FaTony]

From a former project I was in team:

PHP Code:

    // Unprotect image - make .text and .rdata section writeable
    BYTE * pImageBase = reinterpret_cast<BYTE *>(dwLoadOffset + 0x400000); 
    PIMAGE_DOS_HEADER   pDosHeader = reinterpret_cast<PIMAGE_DOS_HEADER> (dwLoadOffset + 0x400000);
    PIMAGE_NT_HEADERS   pNtHeader  = reinterpret_cast<PIMAGE_NT_HEADERS> (pImageBase+pDosHeader->e_lfanew);
    PIMAGE_SECTION_HEADER pSection = IMAGE_FIRST_SECTION(pNtHeader);
    // trace ("[EXE] NtHeader contains %d sections\n", pNtHeaders->FileHeader.NumberOfSections);

    for (int iSection = 0; iSection < pNtHeader->FileHeader.NumberOfSections; ++iSection, ++pSection) {
        char * pszSectionName = reinterpret_cast<char *>(pSection->Name);
        if (!strcmp (pszSectionName, ".text") || !strcmp (pszSectionName, ".rdata")) {
            DWORD dwPhysSize = (pSection->Misc.VirtualSize + 4095) & ~4095;    
            Log::Debug (L"[EXE] unprotecting section '%s': addr = 0x%08x, size = 0x%08x\n", pSection->Name, pSection->VirtualAddress, dwPhysSize);

            DWORD oldProtect;
            DWORD newProtect = (pSection->Characteristics & IMAGE_SCN_MEM_EXECUTE) ? PAGE_EXECUTE_READWRITE : PAGE_READWRITE;
            if (!VirtualProtect (reinterpret_cast <VOID *>(dwLoadOffset+0x400000+pSection->VirtualAddress), dwPhysSize, newProtect, &oldProtect)) {
                Log::Debug (L"[EXE] Virtual protect error\n");
                ExitProcess (0);
            }
        }
    } 


That's for Windows and not written by me.

And them you look through IDA and try to find memory address you need, then do something like:

PHP Code:

DWORD SENTRY_RANGE_ADDRESS = 0xDEADBEEF;
*(*DWORD)SENTRY_RANGE_ADDRESS = 10000; 


[petomatick]

WOW, ive never felt as stupid as now. I cant seem to understand a single row of that PHP Code you just posted.
What to do with it? :S

[FaTony]

It's C++. What you do is to learn C++, x86 assembly, NT .exe file format, IDA...