热点推荐

小喇叭+ 发布

01-16 02:17
01-16 02:04
01-13 17:30
查看: 930|回复: 0

[脚本示例] 攻城区域封穿人汇编(修正改法)

[复制链接]
avatar

签到天数: 350 天

[LV.8]以坛为家I

7651

主题

255

回帖

31万

积分

司徒主管

Rank: 20Rank: 20Rank: 20Rank: 20Rank: 20

UID
1
司徒币
260203
传世币
3000
元宝
0
在线时间
266 小时

最佳新人灌水之王

QQ
online_admin 发表于 2022-1-31 23:37:25 | 显示全部楼层 |阅读模式
两个地方需要修改
1:
从0xb5346-0xb53ae:处换为
8B45EC8B40048B55E8E8B0B7F5FF803801755C8B40048945E483F8007451E89740050084C0740C8B45E480B83A02000000753C8B45E480B8FC02000000753080B8B902000000742780B80403000000751E80B8BD02000000751580B84A03000000750CC645F300EB0E
此次修改同时修正mm000发该改法的一点小错误:在判断了是否攻城时空后,mm000的改发是直接JMP到可以穿人(中间的其他变量检测给跳掉了,呵呵~~~) dedecms.com
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:004B5FBB(C)
|
:004B5F46 8B45ECmov eax, dword ptr [ebp-14]
:004B5F49 8B4004mov eax, dword ptr [eax+04]
:004B5F4C 8B55E8mov edx, dword ptr [ebp-18]
:004B5F4F E8B0B7F5FFcall 00411704
:004B5F54 803801cmp byte ptr [eax], 01
:004B5F57 755Cjne 004B5FB5
:004B5F59 8B4004mov eax, dword ptr [eax+04] 内容来自dedecms
:004B5F5C 8945E4mov dword ptr [ebp-1C], eax
:004B5F5F 83F800cmp eax, 00000000
:004B5F62 7451je 004B5FB5
:004B5F64 E897400500call 0050A000 -> 是否攻城时空
:004B5F69 84C0test al, al
:004B5F6B 740Cje 004B5F79
:004B5F6D 8B45E4mov eax, dword ptr [ebp-1C] dedecms.com

:004B5F70 80B83A02000000cmp byte ptr [eax+0000023A], 00 -> 人怪区分
:004B5F77 753Cjne 004B5FB5 织梦内容管理系统

* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:004B5F6B(C)
|
:004B5F79 8B45E4mov eax, dword ptr [ebp-1C]
:004B5F7C 80B8FC02000000cmp byte ptr [eax+000002FC], 00
:004B5F83 7530jne 004B5FB5
:004B5F85 80B8B902000000cmp byte ptr [eax+000002B9], 00
:004B5F8C 7427je 004B5FB5
:004B5F8E 80B80403000000cmp byte ptr [eax+00000304], 00
:004B5F95 751Ejne 004B5FB5 本文来自织梦

:004B5F97 80B8BD02000000cmp byte ptr [eax+000002BD], 00
:004B5F9E 7515jne 004B5FB5
:004B5FA0 80B84A03000000cmp byte ptr [eax+0000034A], 00
:004B5FA7 750Cjne 004B5FB5
:004B5FA9 C645F300mov [ebp-0D], 00
:004B5FAD EB0Ejmp 004B5FBD
:004B5FAF 000000000000BYTE6 DUP(0) 织梦好,好织梦

2:
此CALL判断是否攻城时空:这里给出的UE当然不适合现时的转三和其他~~~所以给出汇编
* Referenced by a CALL at Addresses:
|:004B5F64 , :0050A112
|
:0050A000 55push ebp
:0050A001 8BECmov ebp, esp
:0050A003 83C4F8add esp, FFFFFFF8
:0050A006 8945FCmov dword ptr [ebp-04], eax
:0050A009 C645FB00mov [ebp-05], 00
:0050A00D A180A04E00mov eax, dword ptr [004EA080] 织梦好,好织梦

:0050A012 8B00mov eax, dword ptr [eax]
:0050A014 80784100cmp byte ptr [eax+41], 00
:0050A018 7427je 0050A041
:0050A01A 8B45FCmov eax, dword ptr [ebp-04]
:0050A01D 8B4028mov eax, dword ptr [eax+28]
:0050A020 50push eax
:0050A021 8B45FCmov eax, dword ptr [ebp-04] 织梦好,好织梦

:0050A024 8B4824mov ecx, dword ptr [eax+24]
:0050A027 8B90F8020000mov edx, dword ptr [eax+000002F8]
:0050A02D A180A04E00mov eax, dword ptr [004EA080]
:0050A032 8B00mov eax, dword ptr [eax]
:0050A034 E8BB70F8FFcall 004910F4
:0050A039 84C0test al, al
:0050A03B 7404je 0050A041
:0050A03D C645FB01mov [ebp-05], 01 本文来自织梦
* Referenced by a (U)nconditional or (C)onditional Jump at Addresses:
|:0050A018(C), :0050A03B(C)
|
:0050A041 8A45FBmov al, byte ptr [ebp-05]
:0050A044 8BE5mov esp, ebp
:0050A046 5Dpop ebp
:0050A047 C3ret dedecms.com

帖子地址: 





上一篇:XP传奇版私服制作详细教程
下一篇:非法属性点自动检测并删除调整脚本
回复

使用道具 举报

懒得打字嘛,点击右侧快捷回复 【乱回复灌水将给予禁言处理】
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则