Doem 發表於 2015-7-10 20:18:25

TWMS V1.81.3 SendHook (Logger) [CRC] [已測試]

本帖最後由 Doem 於 2015-7-10 20:19 編輯

//TWMS V1.81.3 SendHook (Logger)
//Credit to AIRRIDE for Hook method

Label(Return)
Alloc(SendHook,128)
GlobalAlloc(Packets,4096)
GlobalAlloc(PacketSize,04)
GlobalAlloc(RetAddress,04)

SendHook:
DB 55 8B EC 6A FF

PUSHAD
MOV  EAX,
PUSH
POP  
PUSH
POP  
MOV  EAX,
MOV  ,EAX  // = Pointer of Packets
POPAD
JMP  Return

Return:
JMP  00594049+5

00594049:
JMP SendHook

00594049:
DB 55 8B EC 6A FF

DeAlloc(SendHook)
DeAlloc(RetAddress)
DeAlloc(Packets)
DeAlloc(PacketSize)
I just updated and rewrote it with foreign informations, not a author!


忘了說! 已確認過某些攔截到的是明碼, 但不保證全部都是明碼喔~

abc880608 發表於 2015-7-10 20:25:27

這是什麼...? 看不太懂 小的新手

wu1ove 發表於 2015-10-3 13:17:35

這是明文收包  

wu1ove 發表於 2015-10-3 13:18:05

噢 看錯了 是發包才對
頁: [1]
查看完整版本: TWMS V1.81.3 SendHook (Logger) [CRC] [已測試]