Page 1 of 2 12 LastLast
Results 1 to 10 of 12
  1. #1

    [Tutorial] Unlocking Dvars [Q3]

    Oh hai thur!!
    Just got bored, and it's like, 8:51PM when I posted this, so I figured I'd show people how to unlock all cvars...EXCEPT GOD MODE AND CRAP

    So blah.

    This will work for any Q3 based game...

    Ok, so let's start.

    First, open up your favorite debugger. I prefer OllyDbg, so yeah, deal with it

    Second, select the game of your choice that you would like to unlock the cvars to (I used Cod1 1.5).

    So, we need to change our module to CoDMP.exe

    After you have done this, next you need to search for All Referenced Text Strings.

    For dummys:


    Next, we want to search for any type of console message that will say our cvar " is write/cheat protected."

    So rightclick, and go to Search For Text and type: protected

    This will bring us straight to Write Protected. Scroll up a bit, and select "is Read Only."

    So, scroll up just a few lines and you will see this
    Code:
    0043BCDA   74 19            JE SHORT CoDMP.0043BCF5
    Thats what we want. So, we DO NOT want the offset on the outside of the line, e.g. 0x0043BCF5...we want the actual line itself, being 0x0043BCDA.



    So, wherever you're putting your reason_for_call, add that in like so:

    Code:
    WriteProcessMemory(CoDHandle, void*)0x0043BCDA, &JMP, 2, 0 );
    This isn't C+P, so find your own &JMP and CoDHandle identifiers

    So, lets move on to the next unlock!!

    Press Ctrl+L and your search will automatically move on to the next ASCII that contains "protected."

    So, we're at Write Protected. Do the same thing you did for read only here:

    Code:
    0043BCF7   74 19            JE SHORT CoDMP.0043BD12
    Add our code:
    Code:
    WriteProcessMemory( CoDHandle, (void*)0x0043BD12, &JMP, 2, 0 );


    Ctrl+L again and you'll land on Cheat protected.
    Yes, I saw your eyes widen. Cheat protected cvars.
    Yes, same way.
    OMFG WAIT JNZ OR JE?!!? THERES 2?!?!
    Use JE...don't have a cow...

    Code:
    0043BD15   74 24            JE SHORT CoDMP.0043BD3B
    Add:

    Code:
    WriteProcessMemory( CoDHandle, (void*)0x0043BD3B, &JMP, 2, 0 );

    And ta-daa you have it.
    Only thing you need for this is your CoDHandle and JMP function. Both are not hard, and with a bit of logic, you'll find the JMP in no time.

    EDIT: Changed dvar -> cvar cause deadnesser nazi

    Credits:
    t00ny
    Encore


  2. #2

    Re: [Tutorial] Unlocking Dvars [Q3]

    nice work.

    but if you decompiele the function you can get many more staff and more to understanding how the q3/Reverse Engineering works
    and a game like call of duty 1 its jut perfect for it

    in the q3 sdk:

    Code:
    cvar_t *Cvar_Set2( const char *var_name, const char *value, qboolean force ) {
        cvar_t    *var;
    
        Com_DPrintf( "Cvar_Set2: %s %s\n", var_name, value );
    
        if ( !Cvar_ValidateString( var_name ) ) {
            Com_Printf("invalid cvar name string: %s\n", var_name );
            var_name = "BADNAME";
        }
    
    #if 0    // FIXME
        if ( value && !Cvar_ValidateString( value ) ) {
            Com_Printf("invalid cvar value string: %s\n", value );
            var_value = "BADVALUE";
        }
    #endif
    
        var = Cvar_FindVar (var_name);
        if (!var) {
            if ( !value ) {
                return NULL;
            }
            // create it
            if ( !force ) {
                return Cvar_Get( var_name, value, CVAR_USER_CREATED );
            } else {
                return Cvar_Get (var_name, value, 0);
            }
        }
    
        if (!value ) {
            value = var->resetString;
        }
    
        if (!strcmp(value,var->string)) {
            return var;
        }
        // note what types of cvars have been modified (userinfo, archive, serverinfo, systeminfo)
        cvar_modifiedFlags |= var->flags;
    
        if (!force)
        {
            if (var->flags & CVAR_ROM)
            {
                Com_Printf ("%s is read only.\n", var_name);
                return var;
            }
    
            if (var->flags & CVAR_INIT)
            {
                Com_Printf ("%s is write protected.\n", var_name);
                return var;
            }
    
            if (var->flags & CVAR_LATCH)
            {
                if (var->latchedString)
                {
                    if (strcmp(value, var->latchedString) == 0)
                        return var;
                    Z_Free (var->latchedString);
                }
                else
                {
                    if (strcmp(value, var->string) == 0)
                        return var;
                }
    
                Com_Printf ("%s will be changed upon restarting.\n", var_name);
                var->latchedString = CopyString(value);
                var->modified = qtrue;
                var->modificationCount++;
                return var;
            }
    
            if ( (var->flags & CVAR_CHEAT) && !cvar_cheats->integer )
            {
                Com_Printf ("%s is cheat protected.\n", var_name);
                return var;
            }
    
        }
        else
        {
            if (var->latchedString)
            {
                Z_Free (var->latchedString);
                var->latchedString = NULL;
            }
        }
    
        if (!strcmp(value, var->string))
            return var;        // not changed
    
        var->modified = qtrue;
        var->modificationCount++;
        
        Z_Free (var->string);    // free the old value string
        
        var->string = CopyString(value);
        var->value = atof (var->string);
        var->integer = atoi (var->string);
    
        return var;
    }
    the decompieled version from cod1, i addet a few comments

    IDA - D:\games\call of duty\CoDMP.exe - [Pseudocode]

  3. #3

    Re: [Tutorial] Unlocking Dvars [Q3]

    ...Judgmental b*st*rd

    Tis just a small tut dummy :P


  4. #4
    Veteran Member deadnesser's Avatar
    Join Date
    Sep 2007
    Posts
    623

    Re: [Tutorial] Unlocking Dvars [Q3]

    Quote Originally Posted by Lycosa View Post
    dvars
    These are actually known as cvars in q3 games except for the cod series (only cod2 and up, even in cod1 they are known as cvars lol)
    Quote Originally Posted by siLenCer
    cU is not a cheat-finding service. We will not do the work for you. Everything here has been made easily accessible to the community and if you (the community) aren't willing to do their part in helping themselves then we (cU members/mods/coders/etc.) are not going to be willing to offer much help.
    Quote Originally Posted by Rules
    Do not beg for hacks, youll find all the bots you need at our Download Database.

  5. #5
    Veteran Member
    Join Date
    Apr 2006
    Location
    Canada
    Posts
    747

    Re: [Tutorial] Unlocking Dvars [Q3]

    Wow King you really make good use of hexrays plugin for IDA

    And yeah, really quick tutorial for C&P (sorry..); some people should understand the address for the instructions and not the reference being used with the instructions.
    Code:
    <chaplja|> i'm taking over nixcoders
    <Smileman`> cool

  6. #6

    Re: [Tutorial] Unlocking Dvars [Q3]

    Quote Originally Posted by Couch View Post
    Wow King you really make good use of hexrays plugin for IDA

    And yeah, really quick tutorial for C&P (sorry..); some people should understand the address for the instructions and not the reference being used with the instructions.
    hexrays <3
    best plugin ever made for ida

  7. #7

    Re: [Tutorial] Unlocking Dvars [Q3]

    Quote Originally Posted by Couch View Post
    And yeah, really quick tutorial for C&P (sorry..);

    Believe it or not, but I didn't C+P this from anything thank you very much.
    I just got bored sitting there and remembered how Encore and t00ny showed me how to unlock dvars using this method so I wanted to help a few people and save some time...


  8. #8

    Re: [Tutorial] Unlocking Dvars [Q3]

    Quote Originally Posted by Couch View Post
    And yeah, really quick tutorial for C&P (sorry..);
    Quote Originally Posted by Lycosa View Post
    Believe it or not, but I didn't C+P this from anything thank you very much.

  9. #9

    Re: [Tutorial] Unlocking Dvars [Q3]

    It's not completely C+P
    I didn't put the JMP function or even say what the CoDHandle was.


  10. #10
    Veteran Member
    Join Date
    Apr 2006
    Location
    Canada
    Posts
    747

    Re: [Tutorial] Unlocking Dvars [Q3]

    True enough, I suppose. Also I didn't say that you C&P'd, but it might have read that way.

    It was late in the evening.
    Code:
    <chaplja|> i'm taking over nixcoders
    <Smileman`> cool

Page 1 of 2 12 LastLast

Similar Threads

  1. How to bypass cheat protected dvars in MW1 / MW2
    By Anonymous>:( in forum Call of Duty 4 Cheats
    Replies: 0
    Last Post: February 11th, 2013, 23:40
  2. Possible Working Console DVARS
    By TheFreerunner in forum Call of Duty 6: Modern Warfare 2 Cheats
    Replies: 3
    Last Post: April 18th, 2010, 08:46
  3. [Problem] Unlocking mouse at cod4
    By botex5 in forum Client Hooks
    Replies: 20
    Last Post: January 13th, 2010, 21:01
  4. Ingame wallhack dvars
    By HuRRaCaNe in forum Call of Duty 4 Cheats
    Replies: 1
    Last Post: August 23rd, 2009, 18:16
  5. unlocking r_shownormals on a PB server.
    By noobless100 in forum Anti-Cheat
    Replies: 4
    Last Post: November 18th, 2008, 20:59

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •