Как написать бхоп на c

UnKnoWnCheaTs — Multiplayer Game Hacking and Cheats First-Person Shooters Counter Strike Counterstrike Global Offensive [Tutorial] [C++] Creating your first cheat (Bunnyhop)

Save Authenticator Code

Thread Tools

[C++] Creating your first cheat (Bunnyhop)

20th December 2016, 04:36 AM	#1
Depris A God Join Date: Dec 2016 Posts: 184 Reputation: 847 Rep Power: 152 Points: 5,992, Level: 8 Level up: 54%, 508 Points needed Activity: 2.5% Last Achievements	[C++] Creating your first cheat (Bunnyhop) In this tutorial, I will show the basics in creating your first C++ external cheat in Counter-Strike: Global Offensive. Memory Reading/Writing When working externally, the most common way to create cheats is by using the ReadProcessMemory for reading memory and WriteProcessMemory for writing memory. Pretty self explanatory right? Every program contains memory and we are able to read and write it using the mentioned functions. For cheating, this is excellent. Requirements We are going to be using a already created memory class to safe us time as well as allow us to read and write using a template, saving us more time and making it easier to use. Download ProcMem here: http://www.unknowncheats.me/forum/do…=file&id=13249 Writing it up Go ahead and create a new project by selecting an «Empty Project» and naming it whatever you like. Right click «Source Files» and add a «New Item.» Choose the C++ File and name it «Main» or whatever you choose. This file will contain the entry point for our program. Make sure your project is set to use Multi-Byte Character set. To begin you must include the header file by typing #include «ProcMem.h» in your Main.cpp file. You must make sure you have added them to your solution first. If you look inside ProcMem you will see that the functions are inside a class named ProcMem. Type «ProcMem» (Name of the class) followed by a shortcut to access the functions inside the class. I have chosen to use Mem. Now lets define the entry point of the application. By default this is stated by: Code: int main() { return 0; } After that we are going to want to choose which process we are wanting to attach to and which process we want to read/write memory from. Access our memory class and choose the function Process. The function accepts a char input so we simply put the name of the process. In this case it would be «csgo.exe». Now we need to choose which module we want to read from. Again access the memory class and choose the function Module. Again it accepts a char and simple put the name of the module. We want to use the client.dll. This function returns a value so assign the function to a variable with the type DWORD. Now we need some offsets. I’m not going to go into detail into what offsets are but basically the determine the distance to find the memory that we are interested in reading/writing. For a bunnyhop cheat we need the following offsets. Localplayer Flags Forcejump In the past offsets were found using external tools such as Cheat Engine. Nowadays, they are easily found all over the internet. Go to the last page of: Global Offensive Structs/Offsets And take note of the Offsets we need. Code: - - - - - - Tool by Y3t1y3t ( uc ) - - - - - - | -> http://www.unknowncheats.me/forum/counterstrike-global-offensive/100856-cs-go-offset-dumper-small-one.html | -> Thu Dec 15 11:37:55 2016 - - DT_BasePlayer -> m_fFlags: _____________________ 0x00000100 LocalPlayer -> m_dwLocalPlayer: ________________ 0x00AA5834 Extra -> m_dwForceJump: ________________________ 0x04F5EB58 Simple define these variables in your solution. It even tells you what variable type is needed for each offsets. We are going to use a struct to contain this information. Code: struct sOffsets{ DWORD dwFlags = 0x100; DWORD dwLocalPlayer = 0x00AA5834; DWORD dwForceJump = 0x04F5EB58; }Offsets; We can access these variables using Offsets.<name> Now it comes to reading memory. We can read memory using readprocessmemory but out memory class has a template which makes it much easier. Simple use: Mem.Read<data type>(Addresses); and assign the value of the function to a variable. We are going to find the Local Base by adding the LocalPlayer offset to our already round Client address. Code: DWORD dwLocalBase = Mem.Read<DWORD>(Offsets.dwLocalPlayer + dwClientDLL); Next we are going to read our player flags Code: BYTE dwFlags = Mem.Read<DWORD>(dwLocalBase + Offsets.dwFlags); Put this in a loop so that it constantly reads the memory so we know when it changes. Code: From MSDN - Shift Operators: >> and << The left-shift operator causes the bit pattern in the first operand to be shifted to the left by the number of bits specified by the second operand. Bits vacated by the shift operation are zero-filled. This is a logical shift instead of a shift-and-rotate operation. This means that the user is taking the bits value of 1 and shifting the bits to the left based on the right number. For CS:GO when our bit flags are 1 << 0 are player is at rest / on the ground. Other flags Code: #define FL_ONGROUND (1<<0) // At rest / on the ground #define FL_DUCKING (1<<1) // Player flag -- Player is fully crouched #define FL_WATERJUMP (1<<2) // player jumping out of water #define FL_ONTRAIN (1<<3) // Player is _controlling_ a train, so movement commands should be ignored on client during prediction. #define FL_INRAIN (1<<4) // Indicates the entity is standing in rain #define FL_FROZEN (1<<5) // Player is frozen for 3rd person camera #define FL_ATCONTROLS (1<<6) // Player can't move, but keeps key inputs for controlling another entity #define FL_CLIENT (1<<7) // Is a player #define FL_FAKECLIENT (1<<8) // Fake client, simulated server side; don't send network messages to them #define FL_INWATER (1<<9) // In water Basically we want to jump every time our player is touching the ground for PERFECT hops. Therefore define FL_ONGROUND in our solution. We use an if statement to check that when our player in on the ground to write 6 to the jump address. We could write 1 but it means we also have to write 0 again. Writing 6 is much easier and write 1 and then 0 for you. Before we write memory, make sure to add the memory writing template to your ProcMem. So just place: Mem.Write<DWORD>(dwClientDLL + Offsets.dwForceJump, 6); into the code executed in your if statement. Code: // Memory Writing Template template<class t> BOOL Write(DWORD dwAddress, t ValueToWrite) { return WriteProcessMemory(hProcess, (LPVOID)dwAddress, &ValueToWrite, sizeof(t), NULL); } Lets use && GetAsyncKeyState(VK_SPACE) to check if space is pressed. And we should have a perfect BHOP cheat. Code: #include "ProcMem.h" #define FL_ONGROUND (1 << 0) struct sOffsets{ DWORD dwFlags = 0x100; DWORD dwLocalPlayer = 0x00AA5834; DWORD dwForceJump = 0x04F5EB58; }Offsets; ProcMem Mem; int main() { Mem.Process("csgo.exe"); DWORD dwClientDLL = Mem.Module("client.dll"); while (true) { DWORD dwLocalBase = Mem.Read<DWORD>(Offsets.dwLocalPlayer + dwClientDLL); BYTE dwFlags = Mem.Read<DWORD>(dwLocalBase + Offsets.dwFlags); if (dwFlags & FL_ONGROUND && GetAsyncKeyState(VK_SPACE)) { Mem.Write<DWORD>(dwClientDLL + Offsets.dwForceJump, 6); } } return 0; } Simple press the green play button to run your program. Make sure you’re running VB using admin privileges.
Depris is offline

20th December 2016, 07:13 AM	#2
legitplayer1337 The Legendary Cheater Join Date: Jan 2016 Location: Czech Republic Posts: 539 Reputation: 4521 Rep Power: 183 Points: 9,204, Level: 11 Level up: 46%, 596 Points needed Activity: 1.4% Last Achievements	Its not bad tutorial just 1 thing. Stop using ProcMem we are not in 2013. __________________ Code: C:UsersMax KunesDocumentsVisual Studio 2015ProjectsCSGO-SDK-Example-masterReleasesource.pdb record x;stop (top forceupdate method)
legitplayer1337 is offline

20th December 2016, 07:20 AM	#3
GDPR_Anonymous MVP Join Date: Sep 2005 Posts: 18,294 Reputation: 425882 Rep Power: 0 Points: 1, Level: 1 Level up: 0%, 1 Points needed Activity: 0%	Quote: Originally Posted by Depris And we should have a perfect BHOP cheat. that eats 100% cpu I recommend sleeping in that infinite loop. And why this weird use of the struct? An enum class/global constexpr variables have it’s uses too. If it was meant to be a singleton you’re doing it very wrong. Personally I would rewrite it like this if you’re not using the sdk: Code: enum class Entity_flags : unsigned int { on_ground = (1 << 0), ducking = (1 << 1), water_jump = (1 << 2), on_train = (1 << 3), in_rain = (1 << 4), frozen = (1 << 5), at_controls = (1 << 6), client = (1 << 7), fake_client = (1 << 8), in_water = (1 << 9) }; enum class Entity_offsets : DWORD { flags = 0x100 }; enum class Client_offsets : DWORD { local_player = 0x00AA5834, force_jump = 0x04F5EB58 }; Last edited by GDPR_Anonymous; 20th December 2016 at 07:33 AM.
GDPR_Anonymous is offline

20th December 2016, 07:20 AM	#4
Depris A God Threadstarter Join Date: Dec 2016 Posts: 184 Reputation: 847 Rep Power: 152 Points: 5,992, Level: 8 Level up: 54%, 508 Points needed Activity: 2.5% Last Achievements	Quote: Originally Posted by legitplayer1337 Its not bad tutorial just 1 thing. Stop using ProcMem we are not in 2013. Obviously I don’t use ProcMem in my own cheat. This is more for beginners. I’ll possibly discuss how to make a memory class in my next tutorial. Thanks for the feedback.
Depris is offline

20th December 2016, 11:14 AM	#5
JStyler 1337 H4x0!2 Join Date: May 2013 Posts: 136 Reputation: 3870 Rep Power: 244 Points: 13,795, Level: 15 Level up: 14%, 1,205 Points needed Activity: 0% Last Achievements	You forgot dw_mouseEnable, else you will bhop while chatting and pressing space in pausemenu. Nice tutorial but next time you do it, make it properly.
JStyler is offline

20th December 2016, 01:28 PM	#6
zxcvbnm12345 n00bie Join Date: Dec 2016 Posts: 5 Reputation: 10 Rep Power: 152	Good tutorial. Thank you
zxcvbnm12345 is offline

20th December 2016, 03:14 PM	#7
olsarets7 UC Supporter Join Date: Mar 2014 Posts: 288 Reputation: 882 Rep Power: 220 Points: 5,945, Level: 8 Level up: 50%, 555 Points needed Activity: 0%	Quote: Originally Posted by legitplayer1337 Its not bad tutorial just 1 thing. Stop using ProcMem we are not in 2013. ^ This. Otherwise, good job ma dude
olsarets7 is offline

20th December 2016, 03:20 PM	#8
llefty n00bie Join Date: Sep 2016 Posts: 8 Reputation: 149 Rep Power: 159 Points: 4,576, Level: 7 Level up: 9%, 824 Points needed Activity: 6.1% Last Achievements	Thank you so much dude, this is really useful.
llefty is offline

20th December 2016, 04:04 PM	#9
synthfx A Forum Hero Join Date: Aug 2014 Location: Germany Posts: 1,412 Reputation: 17318 Rep Power: 240 Recognitions Former Staff Points: 36,603, Level: 29 Level up: 13%, 2,197 Points needed Activity: 8.8% Last Achievements	An advice regarding your memory write function: — it should be universal, hence also a template function. Why not make the parameters also as universal as possible? Code: template < typename T > bool Write( std::uintptr_t address, T const& val ) { return !!WriteProcessMemory( proc, reinterpret_cast< LPVOID >( address ), reinterpret_cast< LPCVOID >( &val ), sizeof( val ), nullptr ); } uintptr_t is, depending on the configuration of your solution, either 32-bits or 64-bits long which ensures you can also address higher space in case of a 64-bit application. ‘T const& val’ is useful because of when the template’s deduced/passed type is larger than 4 bytes it will still only copy 4 bytes because you are using a reference to it which is basically like using a pointer. Also I’d advise you to use const just for the logical consistency of the reference’s meaning and for the fact that this value should not be modified. Also use bool instead of BOOL. Instead of copying 4 bytes you are only copying 1 byte. This ‘!!expression’ notation explicitly converts the result of the expression to a boolean expression. —- Other than mentioning and using ProcMem, nice tutorial Last edited by synthfx; 20th December 2016 at 04:07 PM.
synthfx is offline

20th December 2016, 07:01 PM	#10
fisherprice UnKnoWnCheaTeR Join Date: May 2016 Location: China Posts: 959 Reputation: 25707 Rep Power: 200 Recognitions Donator (1) Points: 37,306, Level: 29 Level up: 41%, 1,494 Points needed Activity: 7.9% Last Achievements	gj. just stay good old basic winapi call and include. procmem mean user stuck ask question here when tutorial finish. cannot progress if noob. __________________ Quote: Recent completed projects: EFIPM — EFI Physmeme / ApexBot / ValorantBot null#0740
fisherprice is offline

20th December 2016, 08:46 PM	#11
Burak DatLife Member Join Date: Jul 2015 Posts: 64 Reputation: 1870 Rep Power: 187 Points: 8,970, Level: 11 Level up: 25%, 830 Points needed Activity: 2.2% Last Achievements	Nice tutorial for begginers. but why you are writing memory for bhop you can just simulate key press of spacebar
Burak DatLife is offline

20th December 2016, 10:50 PM	#12
Depris A God Threadstarter Join Date: Dec 2016 Posts: 184 Reputation: 847 Rep Power: 152 Points: 5,992, Level: 8 Level up: 54%, 508 Points needed Activity: 2.5% Last Achievements	Quote: Originally Posted by Burak DatLife Nice tutorial for begginers. but why you are writing memory for bhop you can just simulate key press of spacebar In terms of detection doesn’t make any difference. Also less chance of fail. Last edited by Depris; 20th December 2016 at 11:51 PM.
Depris is offline

27th December 2016, 06:38 PM	#13
user2plus Junior Member Join Date: Dec 2016 Location: Ukraine, Kyiv Posts: 35 Reputation: 450 Rep Power: 151 Points: 1,869, Level: 3 Level up: 67%, 231 Points needed Activity: 1.4% Last Achievements	Why u using lib’s for first hack? Only full code in your hax, because VAC has db with all yours libs…
user2plus is offline

27th December 2016, 11:52 PM	#14
ReactiioN Junior Forum Moderator Join Date: Sep 2012 Location: ∞ DevOps Posts: 2,887 Reputation: 80788 Rep Power: 363 Recognitions Member of the Month (1) Points: 112,967, Level: 48 Level up: 46%, 2,733 Points needed Activity: 2.2% Last Achievements	Quote: Originally Posted by user2plus Why u using lib’s for first hack? Only full code in your hax, because VAC has db with all yours libs… What for a lib? He’s just using a fucking (low coded) header file. Thats not a library __________________ My contributions: [C++] CSGO external Hitbox Manager | [Source-Engine] Reverse CL_Move Tutorial | [C++] Lua Script Engine | [C++] variadic Vector class | [C++] Lua Plugin System | [C++] D3D9 Overlay __________________________________________________________________________________________________ __________________________________________________________________________________________________ Jabber(XMPP): [email protected] | rule 7.
ReactiioN is offline

28th December 2016, 01:34 AM	#15
Depris A God Threadstarter Join Date: Dec 2016 Posts: 184 Reputation: 847 Rep Power: 152 Points: 5,992, Level: 8 Level up: 54%, 508 Points needed Activity: 2.5% Last Achievements	If you have experience in coding anything with the windows API, you can recreate your own memory class.
Depris is offline

28th December 2016, 02:02 AM	#16
m1se The Legendary Cheater Join Date: Jul 2015 Posts: 535 Reputation: 9488 Rep Power: 199 Recognitions Donator (2) Points: 16,966, Level: 17 Level up: 41%, 834 Points needed Activity: 2.0% Last Achievements	As you fucking stated, isn’t this supposed to be for «beginners», what makes you think that most people that read this thread, which I may state again «is for beginners», know how to use the windows API???!!!
m1se is offline

28th December 2016, 03:18 AM	#17
Depris A God Threadstarter Join Date: Dec 2016 Posts: 184 Reputation: 847 Rep Power: 152 Points: 5,992, Level: 8 Level up: 54%, 508 Points needed Activity: 2.5% Last Achievements	Quote: Originally Posted by m1se As you fucking stated, isn’t this supposed to be for «beginners», what makes you think that most people that read this thread, which I may state again «is for beginners», know how to use the windows API???!!! Which is why I suggested to use ProcMem.
Depris is offline

28th December 2016, 01:52 PM	#18
balto The Legendary Cheater Join Date: Dec 2014 Posts: 565 Reputation: 2335 Rep Power: 207 Points: 22,869, Level: 21 Level up: 30%, 1,131 Points needed Activity: 1.7% Last Achievements	Quote: Originally Posted by Burak DatLife Nice tutorial for begginers. but why you are writing memory for bhop you can just simulate key press of spacebar it’s actuality fails a lot I tried it. Memory best <3
balto is offline

28th December 2016, 11:27 PM	#19
ReactiioN Junior Forum Moderator Join Date: Sep 2012 Location: ∞ DevOps Posts: 2,887 Reputation: 80788 Rep Power: 363 Recognitions Member of the Month (1) Points: 112,967, Level: 48 Level up: 46%, 2,733 Points needed Activity: 2.2% Last Achievements	btw I wouldn’t call that ‘c++’ __________________ My contributions: [C++] CSGO external Hitbox Manager | [Source-Engine] Reverse CL_Move Tutorial | [C++] Lua Script Engine | [C++] variadic Vector class | [C++] Lua Plugin System | [C++] D3D9 Overlay __________________________________________________________________________________________________ __________________________________________________________________________________________________ Jabber(XMPP): [email protected] | rule 7.
ReactiioN is offline

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
[Release] first internal bunnyhop	BuzteR	CS:GO Releases	3	1st July 2016 04:32 PM
[Tutorial] Creating your first DLL and inject it pt. 1	evilplayer	Programming for Beginners	22	9th February 2016 01:50 PM
Creating your first C++ dll hack	JoshRose	C and C++	59	8th August 2015 02:35 PM
[Tutorial] Creating Your First Menu Tutorial	sysdump	Direct3D	7	22nd December 2012 11:28 AM
[Tutorial] Creating your First Windows Sidebar Gadget	CallMeEclipse	General Programming and Reversing	7	10th July 2011 02:51 AM

Tags

memory, class, offsets, choose, function, read, dword, access, process, file

«
Previous Thread
|
Next Thread
»

Forum Jump

All times are GMT. The time now is 03:06 AM.

Terms of Use Information Privacy Policy Information
Copyright ©2000-2023, Unknowncheats� UKCS #312436

• 
• Forum
• MultiPlayer Game Hacks & Cheats
• Steam Games Hacks & Cheats
• CounterStrike: Global Offensive Hacks
• Counter Strike: Global Offensive Coding & Resources
• [Outdated] [C++] How to make a simple external bunnyhop hack!

1. 02-23-2015

   
   

   #1

   [C++] How to make a simple external bunnyhop hack!
   

   Hello everyone, gonna teach you guys how to make a simple bunnyhop today.
   To get started you need to learn C++, if you do not know C++ i recommend you to read my Tutorial for getting started with gamehacking, which can be found Here!
   Credits for helping me ALOT with game hacking: @jkfauvel When you feel comfortable enough to create a hack you can continue with this tutorial!
   First of all, you need 2 files, ProcMem.h and ProcMem.cpp.
   Open a Project and Add a header file called ProcMem.h. Within this header file paste the content from this pastebin:
   ProcMem.h
   After that you will need to add a source file called ProcMem.cpp, paste the content from this pastebin into it:
   ProcMem.cpp
   After you are done copy pasting theese 2, create a new source folder and name it main.cpp, after you are done adding all of theese your project should look like this:
   
   After you have gotten all of the things sorted, we can start working on the code!

   Now we need to make our declarations!

   Code:

   #include "ProcMem.h" // including the header we just made!
   #include <iostream> // Used for ALOT of features.
   #include <Windows.h> // let us do stuff like keybd_event, sleep and alot of other stuff!
   // Not gonna need to use namespace std here, we have nothing to use it on! :)
   ProcMem Mem; // Shortcut for our Memory reading function!

   Once thoose are done, we need to start defining some things we are gonna need, such as key codes and key scans!

   Just under that type in:

   Code:

   #define key_space 0x20 // key_space is space button.
   #define key9 0x39 // key 9 is the button 9 (Not to be confused with numpad 9)
   #define key9_sc 0x0A // Scan code so we can use it in a keybd_event()
   void bhopFunc(); // This is where we are going to put our bunnyhop function!

   After you have gotten your declaration done, you need to get the latest offsets for csgo, you can get theese by using cheat engine or searching around! (Currently theese offsets are up to date as of 2015-02-24)

   Code:

   const DWORD localBase = 0xA6C90C // This is our localBase.
   const DWORD flagOffset = 0x100 // This is our m_fFlags offset!

   Now we have all our Offsets and declarations done, we can start working on our actual bunnyhop!
   We are now gonna make our bhopFunc and start reading the games memory!

   Code:

   void bhopFunc() {
   int FL_ONGROUND = 257; // When player is on ground this value is 257, 256 when in air.
   Mem.Process("csgo.exe"); // Process we are reading from.
   DWORD ClientDLL = Mem.Module("client.dll"); // This is the module we are reading from.
   }

   After you have choosen the Process and Module we’re reading from, you wanna add this which is our localPlayer and m_fFlags:

   Code:

   DWORD localPlayer = Mem.Read<DWORD>(ClientDLL + localBase); // This is our local player. 
   int m_fFlags = Mem.Read<DWORD>(localPlayer + flagOffset); // this is m_fFlags.

   Now we have everything we need to create our bhop, we need to actually make it jump when holding space bar!

   To do this we must add this line:

   Code:

   if (GetAsyncKeyState(key_space) & 0x8000 && m_fFlags == FL_ONGROUND) { /* If player is holding space, and m_fFlags is equal to 257 press space.*/
    keybd_event(KEY9, KEY9SC, 0, 0);
   
    keybd_event(KEY9, KEY9SC, KEYEVENTF_KEYUP, 0);
   }

   Everything we need is in the bunnyhop function, all we need to do is add a loop to our main function which calls our bhopFunc! Which can be done like this:

   Code:

   int main()
   {
   while(true) {
    bhopFunc();
   }
   
   }

   Now, hopefully you have your very own working bunnyhop hack. This exact method is probably detected, but have fun creating hacks guys!
   If you get banned using this method, dont blame me. I have warned you
   Make sure to click that «Thanks» button if helped you!
   Im gonna be heading to sleep now, if there are any issues you want help with, I’ll reply tomorrow!
   Edit: (Was tired when i made this, sorry for small misstakes!)
   Since this only spams a bunch of 9’s when holding down space you will have to open console and type the following:
   1. unbind space
   2. bind 9 «+jump»
   3. ?
   4. Profit

   Last edited by Yemiez; 02-24-2015 at 01:00 AM.

   Reason: Spelling issues.

   ---

2. The Following 7 Users Say Thank You to Yemiez For This Useful Post:

   980322091 (05-15-2015),Adrenaline (10-07-2015),Galaxyxd (02-26-2015),OscR (04-05-2015),Qw1Kkb3an85 (05-03-2015),WolfLordSky (04-24-2015),Zugatti (06-08-2015)

   ---

3. 02-23-2015

   
   

   #2

   Correct me if I’m wrong but from what I’ve seen, the cout ambiguous error is a bug that happens when you use cout too often. You are not using any iostream functions though… Consider placing credits….

   Last edited by jkfauvel; 02-23-2015 at 10:10 PM.

   In the midst of chaos, there is also opportunity.

   ---

4. 02-24-2015

   
   

   #3

   

   Threadstarter

   Usually Dead
   

   

   

   ---

   

   

   Originally Posted by jkfauvel
   

   Correct me if I’m wrong but from what I’ve seen, the cout ambiguous error is a bug that happens when you use cout too often. You are not using any iostream functions though… Consider placing credits….

   I was very tired when i made this, and forgot alot of stuff, im try and edit in some stuff now before i head off to school, will do the rest later

   Last edited by Yemiez; 02-24-2015 at 01:06 AM.

   Reason: spelling misstake

   ---

5. The Following User Says Thank You to Yemiez For This Useful Post:

   ---

6. 02-24-2015

   
   

   #4

   Why the fuck should you unbind space to jump and use 9 for it? You can just send space.

   ---

7. 02-24-2015

   
   

   #5

   Change

   Code:

   m_fFlags == FL_ONGROUND

   to

   Code:

   m_fFlags & 0x1 == 1

   If you have any questions regarding my hacks, add me on *******: Merccy#8314

   ---

8. 02-24-2015

   
   

   #6

   Originally Posted by Merccy2
   

   Change

   Code:

   m_fFlags == FL_ONGROUND

   to

   Code:

   m_fFlags & 0x1 == 1

   Excuse my ignorance, but what does this changes in practical means?

   In the midst of chaos, there is also opportunity.

   ---

9. 02-24-2015

   
   

   #7

   Originally Posted by jkfauvel
   

   Excuse my ignorance, but what does this changes in practical means?

   m_fFlags is a bitmasked value.
   The first bit (2 ^ 0 = 1) is the bit that is 1 when you are on the ground.
   The second bit (2 ^ 1 = 2) is the bit that is 1 when you are crouching.

   If you are checking m_fFlags to 257 it won’t work when you are on fire (1 of the bits will change hence changing the complete value).

   If you have any questions regarding my hacks, add me on *******: Merccy#8314

   ---

10. The Following User Says Thank You to Merccy2 For This Useful Post:

    ---

11. 02-24-2015

    
    

    #8

    

    Threadstarter

    Usually Dead
    

    

    

    ---

    

    

    Originally Posted by Merccy2
    

    m_fFlags is a bitmasked value.
    The first bit (2 ^ 0 = 1) is the bit that is 1 when you are on the ground.
    The second bit (2 ^ 1 = 2) is the bit that is 1 when you are crouching.

    If you are checking m_fFlags to 257 it won’t work when you are on fire (1 of the bits will change hence changing the complete value).

    I’ve been using a modified version of this method in my multi hack, it works, but maybe changing that will make it go faster? It does work perfectly still, so yea
    Edit: Just read your post abit more, what you mean by being on fire you, do you mean stuff like a molotov?

    Originally Posted by Requiii
    

    Why the fuck should you unbind space to jump and use 9 for it? You can just send space.

    Because it wont actually work with this method otherwise. if you have space bound it wont work, just sending space will do nothing, i’ve tried it
    It does spam space, but it wont actually jump!

    Last edited by Yemiez; 02-24-2015 at 07:30 AM.

    ---

12. 02-24-2015

    
    

    #9

    Originally Posted by PsychoBitch
    

    I’ve been using a modified version of this method in my multi hack, it works, but maybe changing that will make it go faster? It does work perfectly still, so yea
    Edit: Just read your post abit more, what you mean by being on fire you, do you mean stuff like a molotov?

    Because it wont actually work with this method otherwise. if you have space bound it wont work, just sending space will do nothing, i’ve tried it
    It does spam space, but it wont actually jump!

    Onfire, I actually have no idea :P.

    Try to crouch and then bhop won’t work because the second bit has changed as well.

    You could just write 5 to client.dll + JUMP_OFFSET, sleep and write 4 to client.dll + JUMP_OFFSET.

    If you have any questions regarding my hacks, add me on *******: Merccy#8314

    ---

13. The Following 2 Users Say Thank You to Merccy2 For This Useful Post:

    Block4o (05-31-2015),Yemiez (02-24-2015)

    ---

14. 02-24-2015

    
    

    #10

    Originally Posted by PsychoBitch
    

    Because it wont actually work with this method otherwise. if you have space bound it wont work, just sending space will do nothing, i’ve tried it
    It does spam space, but it wont actually jump!

    That’s not true. If you set the bhop to send space when player is on ground and when space key is held it will work. Yet, you need to know the scan code (0x39) and virtual key code for space (0x20) (here is a table [I usually use the hex code, even though the decimal works]) then:

    Code:

    keybd_event(key_code, scan_code, 0, 0);
    
    keybd_event(key_code, scan_code, KEYEVENTF_KEYUP, 0);

    Where key_code is the virtual key code you wanna use (in this case 0x20) and scan_code is the scan code for the key you wanna use (in this case 0x39). Normally we don’t need the scan code when sending a key(windows that are not games often don’t use DirectInput), but CS:GO uses DirectInput so we need the scan code(don’t kill me if this isn’t entirely wrong).
    @Requiii This method works, but it’s not good, it does not jump in the right time and it’s slow.

    The workaround I came up with was setting the jump key to a different one(you can do this in several different ways), like 9. Then send the jump key when player is on ground and when space is held, same way you did with the example I gave. This method works completely fine.

    There’s for sure other workarounds that are way better, but haven’t got the time to think of it and it’s only a bhop, this was the easiest method I found…

    Last edited by jkfauvel; 02-24-2015 at 02:40 PM.

    In the midst of chaos, there is also opportunity.

    ---

15. The Following User Says Thank You to jkfauvel For This Useful Post:

    ---

16. 02-24-2015

    
    

    #11

    so confused, how do you guys determine where all the spaces go, the ()’s etc etc. i will probs do this tut soon but it all looks so complicated— — — Updated — — —

    p.s can you post the full code below? or give a dl link so we can test it and everything

    ---

17. 02-25-2015

    
    

    #12

    Originally Posted by PvPGod_
    

    so confused, how do you guys determine where all the spaces go, the ()’s etc etc. i will probs do this tut soon but it all looks so complicated

    — — — Updated — — —

    p.s can you post the full code below? or give a dl link so we can test it and everything

    https://www.learncpp.com/

    If you have any questions regarding my hacks, add me on *******: Merccy#8314

    ---

18. The Following User Says Thank You to Merccy2 For This Useful Post:

    ---

19. 02-25-2015

    
    

    #13

    Tip: put «-insecure» in the starting parameters of cs.
    You will can not get banned that way

    ---

20. 02-25-2015

    
    

    #14

    Originally Posted by PsychoBitch
    

    I’ve been using a modified version of this method in my multi hack, it works, but maybe changing that will make it go faster? It does work perfectly still, so yea
    Edit: Just read your post abit more, what you mean by being on fire you, do you mean stuff like a molotov?

    Because it wont actually work with this method otherwise. if you have space bound it wont work, just sending space will do nothing, i’ve tried it
    It does spam space, but it wont actually jump!

    Why does it work with my public hack? (inb4 everybody c&p’s this and complains about bans or not working)

    Code:

    #cs ----------------------------------------------------------------------------
    
     Version:		1.0.0.0
     Author:		Requi
    
     Script Function:
    	Bunnyhop Script for CS:GO
    
    #ce ----------------------------------------------------------------------------
    
    #RequireAdmin
    #include <SendMessage.au3>
    #include <WinAPI.au3>
    #include <NomadMemoryPF.au3>
    
    $playerBase = 0x4A0E024
    $flagOffset = 0x100
    $pHandle = 0
    $pID = 0
    $clientDll = 0
    $hwnd = 0
    $hDLL = DllOpen("user32.dll")
    
    $pID = ProcessExists("csgo.exe")
    If $pID <> 0 Then
       $pHandle = _MemoryOpen($pID)
       $clientDll = _ProcessGetModuleBaseAddress($pID, "client.dll")
       $hwnd = WinGetHandle("Counter-Strike: Global Offensive")
       If @error Then
    	  MsgBox(0, "", "An error occured getting handle of window")
       EndIf
       BunnyHop()
    EndIf
    
    Func _IsPressed($sHexKey, $vDLL = 'user32.dll')
    	Local $a_R = DllCall($vDLL, "short", "GetAsyncKeyState", "int", '0x' & $sHexKey)
    	If @error Then Return SetError @error, @extended, False)
    	Return BitAND($a_R[0], 0x8000) <> 0
     EndFunc
    
    Func BunnyHop()
       While True
    	 If(_IsPressed("20", $hDLL)) Then
    		$localPlayer = GetLocalPlayer()
    		$fFlag = GetEntityFlag($localPlayer)
    		If $fFlag = 257 And _WinAPI_GetForegroundWindow() = $hwnd Then
    		   _SendMessageA($hwnd, 0x100, 0x20, 0x390000)
    		   Sleep(30)
    		   _SendMessageA($hwnd, 0x101, 0x20, 0x390000)
    		   Sleep(30)
    		EndIf
    	 EndIf
       WEnd
    EndFunc
    
    Func GetLocalPlayer()
       Return _MemoryRead($clientDll + $playerBase, $pHandle)
    EndFunc
    
    Func GetEntityFlag($ent)
       Return _MemoryRead($ent + $flagOffset, $pHandle)
    EndFunc

    ---

21. 02-25-2015

    
    

    #15

    

    Threadstarter

    Usually Dead
    

    

    

    ---

    

    

    Originally Posted by Requiii
    

    Why does it work with my public hack? (inb4 everybody c&p’s this and complains about bans or not working)

    Code:

    #cs ----------------------------------------------------------------------------
    
     Version:		1.0.0.0
     Author:		Requi
    
     Script Function:
    	Bunnyhop Script for CS:GO
    
    #ce ----------------------------------------------------------------------------
    
    #RequireAdmin
    #include <SendMessage.au3>
    #include <WinAPI.au3>
    #include <NomadMemoryPF.au3>
    
    $playerBase = 0x4A0E024
    $flagOffset = 0x100
    $pHandle = 0
    $pID = 0
    $clientDll = 0
    $hwnd = 0
    $hDLL = DllOpen("user32.dll")
    
    $pID = ProcessExists("csgo.exe")
    If $pID <> 0 Then
       $pHandle = _MemoryOpen($pID)
       $clientDll = _ProcessGetModuleBaseAddress($pID, "client.dll")
       $hwnd = WinGetHandle("Counter-Strike: Global Offensive")
       If @error Then
    	  MsgBox(0, "", "An error occured getting handle of window")
       EndIf
       BunnyHop()
    EndIf
    
    Func _IsPressed($sHexKey, $vDLL = 'user32.dll')
    	Local $a_R = DllCall($vDLL, "short", "GetAsyncKeyState", "int", '0x' & $sHexKey)
    	If @error Then Return SetError @error, @extended, False)
    	Return BitAND($a_R[0], 0x8000) <> 0
     EndFunc
    
    Func BunnyHop()
       While True
    	 If(_IsPressed("20", $hDLL)) Then
    		$localPlayer = GetLocalPlayer()
    		$fFlag = GetEntityFlag($localPlayer)
    		If $fFlag = 257 And _WinAPI_GetForegroundWindow() = $hwnd Then
    		   _SendMessageA($hwnd, 0x100, 0x20, 0x390000)
    		   Sleep(30)
    		   _SendMessageA($hwnd, 0x101, 0x20, 0x390000)
    		   Sleep(30)
    		EndIf
    	 EndIf
       WEnd
    EndFunc
    
    Func GetLocalPlayer()
       Return _MemoryRead($clientDll + $playerBase, $pHandle)
    EndFunc
    
    Func GetEntityFlag($ent)
       Return _MemoryRead($ent + $flagOffset, $pHandle)
    EndFunc

    Did you read what jkfauvel said at all?

    ---

Tags for this Thread