updated for Ethereal version 1.2.4
This commit is contained in:
parent
b07114f62f
commit
ed350ba7db
|
@ -150,7 +150,7 @@
|
||||||
<OptimizeReferences>true</OptimizeReferences>
|
<OptimizeReferences>true</OptimizeReferences>
|
||||||
<GenerateDebugInformation>true</GenerateDebugInformation>
|
<GenerateDebugInformation>true</GenerateDebugInformation>
|
||||||
<EnableUAC>false</EnableUAC>
|
<EnableUAC>false</EnableUAC>
|
||||||
<AdditionalDependencies>MinHook.lib;%(AdditionalDependencies)</AdditionalDependencies>
|
<AdditionalDependencies>%(AdditionalDependencies)</AdditionalDependencies>
|
||||||
</Link>
|
</Link>
|
||||||
</ItemDefinitionGroup>
|
</ItemDefinitionGroup>
|
||||||
<ItemGroup>
|
<ItemGroup>
|
||||||
|
|
|
@ -3,6 +3,7 @@
|
||||||
#include <filesystem>
|
#include <filesystem>
|
||||||
#include <fstream>
|
#include <fstream>
|
||||||
#include <string>
|
#include <string>
|
||||||
|
#include <windows.h>
|
||||||
#include <sstream>
|
#include <sstream>
|
||||||
HANDLE p;
|
HANDLE p;
|
||||||
void patch(PVOID address, int opCode, int bytes) {
|
void patch(PVOID address, int opCode, int bytes) {
|
||||||
|
@ -33,25 +34,25 @@ __declspec(dllexport) void lessgo(HMODULE hmod) {
|
||||||
DWORD64 mod = (DWORD64)LoadLibraryA(std::string("C:\\Ethereal\\Ethereal.dll").c_str());
|
DWORD64 mod = (DWORD64)LoadLibraryA(std::string("C:\\Ethereal\\Ethereal.dll").c_str());
|
||||||
std::stringstream ss;
|
std::stringstream ss;
|
||||||
ss << std::hex << mod;
|
ss << std::hex << mod;
|
||||||
patch((void*)(mod + 0x000000000004A980), 0xB8, 1);
|
patch((void*)(mod + 0x4A9E0), 0xB8, 1);
|
||||||
log("Applied patch 1/10");
|
log("Applied patch 1/10");
|
||||||
patch((void*)(mod + 0x000000000004A981), 0x01, 1);
|
patch((void*)(mod + 0x4A9E1), 0x01, 1);
|
||||||
log("Applied patch 2/10");
|
log("Applied patch 2/10");
|
||||||
patch((void*)(mod + 0x000000000004A982), 0x00, 1);
|
patch((void*)(mod + 0x4A9E2), 0x00, 1);
|
||||||
log("Applied patch 3/10");
|
log("Applied patch 3/10");
|
||||||
patch((void*)(mod + 0x000000000004A983), 0x00, 1);
|
patch((void*)(mod + 0x4A9E3), 0x00, 1);
|
||||||
log("Applied patch 4/10");
|
log("Applied patch 4/10");
|
||||||
patch((void*)(mod + 0x000000000004A984), 0x00, 1);
|
patch((void*)(mod + 0x4A9E4), 0x00, 1);
|
||||||
log("Applied patch 5/10");
|
log("Applied patch 5/10");
|
||||||
patch((void*)(mod + 0x000000000004A985), 0xC3, 1);
|
patch((void*)(mod + 0x4A9E5), 0xC3, 1);
|
||||||
log("Applied patch 6/10");
|
log("Applied patch 6/10");
|
||||||
patch((void*)(mod + 0x000000000004A986), 0x90, 1);
|
patch((void*)(mod + 0x4A9E6), 0x90, 1);
|
||||||
log("Applied patch 7/10");
|
log("Applied patch 7/10");
|
||||||
patch((void*)(mod + 0x000000000004A987), 0x90, 1);
|
patch((void*)(mod + 0x4A9E7), 0x90, 1);
|
||||||
log("Applied patch 8/10");
|
log("Applied patch 8/10");
|
||||||
patch((void*)(mod + 0x000000000004A988), 0x90, 1);
|
patch((void*)(mod + 0x4A9E8), 0x90, 1);
|
||||||
log("Applied patch 9/10");
|
log("Applied patch 9/10");
|
||||||
patch((void*)(mod + 0x000000000004A989), 0x90, 1);
|
patch((void*)(mod + 0x4A9E9), 0x90, 1);
|
||||||
log("Applied patch 10/10");
|
log("Applied patch 10/10");
|
||||||
|
|
||||||
while (FindWindowA(0, "Ethereal") == NULL) Sleep(100);
|
while (FindWindowA(0, "Ethereal") == NULL) Sleep(100);
|
||||||
|
|
File diff suppressed because it is too large
Load Diff
Binary file not shown.
|
@ -1,22 +0,0 @@
|
||||||
<?xml version="1.0" encoding="UTF-8" ?>
|
|
||||||
<Document Version="2">
|
|
||||||
<Protection InputFileName="HEH.dll" Options="466888" VMCodeSectionName=".eintim">
|
|
||||||
<Messages>
|
|
||||||
<Message Id="0">get yo ass of</Message>
|
|
||||||
<Message Id="1">get yo ass of</Message>
|
|
||||||
<Message Id="2">get yo ass of</Message>
|
|
||||||
<Message Id="3">get yo ass of</Message>
|
|
||||||
<Message Id="4">get yo ass of</Message>
|
|
||||||
</Messages>
|
|
||||||
<Folders />
|
|
||||||
<Procedures>
|
|
||||||
<Procedure MapAddress="lessgo(struct HINSTANCE__ *)" Options="0" CompilationType="2" />
|
|
||||||
</Procedures>
|
|
||||||
<Objects />
|
|
||||||
</Protection>
|
|
||||||
<DLLBox>
|
|
||||||
<Folders />
|
|
||||||
</DLLBox>
|
|
||||||
<Script />
|
|
||||||
<LicenseManager />
|
|
||||||
</Document>
|
|
Binary file not shown.
Binary file not shown.
Binary file not shown.
File diff suppressed because it is too large
Load Diff
Binary file not shown.
Binary file not shown.
Loading…
Reference in New Issue