Can you change the executable?

Ask questions about cheating in any games you would like. Does not need to pertain to MicroMacro.
Post Reply
Message
Author
User avatar
MiesterMan
Posts: 543
Joined: Tue Jul 06, 2010 9:15 pm
Location: Between the Second and Third Circles of Hell

Can you change the executable?

#1 Post by MiesterMan » Mon Oct 31, 2011 3:41 am

I was curious about this as I was reviewing what I know about certain games that have certain stops or checks.

Something like this appears in Ollydbg:

Code: Select all

00E3436C   FF15 00400801    CALL DWORD PTR DS:[<&KERNEL32.IsDebugger>; kernel32.IsDebuggerPresent
Now, call me crazy but if possible I'd like to replace that with another call in kernel32 that would always return false. And also, if possible I'd like to change it in the executable so I don't have to deal with a lengthy proccess every time.

There's actually a list of these functions I'd like to go through and change. In my head it seemed as though I could change the function calls in the running program itself without changing offsets or data positioning. If that's so then can't you just change the executable like that, and if so - how would you do that?
Top
User avatar
Administrator
Site Admin
Posts: 5307
Joined: Sat Jan 05, 2008 4:21 pm

Re: Can you change the executable?

#2 Post by Administrator » Mon Oct 31, 2011 1:34 pm

Just change the address. The address dictates which module it is coming from. You could also insert your own function into a blank region and use that.

After you've made your changes, right-click the CPU window and go to Copy to executable -> all modifications -> Copy all. Now a new window will pop open, and you will right-click it, go to Copy -> To file. Now you can just run this modified executable directly.
Top
Post Reply

Return to “Game cheating & modding”



Who is online

Users browsing this forum: No registered users and 5 guests