Hello there, one more question about Gameguard.
I spent some time reading the following topics and links, and I think I start having a good understanding of what Gameguard is mean to do.
Defeating and Emulating INCA's nProtect GameGuard
GameGuard에 대한 간단한 분석.
[solved]analysis of the code to bypass the nprotect gameguard
I see Gameguard as a module having two roles :
- Blocking several injects, hooks and functions as a basic "anti cheat" system
- Answer server queries to compute a key and sent it back to the server, showing that Gameguard is indeed running.
I am more interested by the second part in fact. While I understood that it's prolly out of my league to create something to fully emulate Gameguard, I wanted to know if it's possible to launch it, without launching the game.
Gameguard is used as an anti cheat software on Lineage 2 (while not being extremly efficient, the two major "bots" programs are programs which hooks on the game itself). One developper called Fyyre released several years ago a modified file (Gameguard Wildcard) to disable Gameguard completely (and have a massive performance boost). However the current policy at NCSoft is to ban any player who is not using Gameguard.
One limitation to OOG (Out of Game) bot clients for this MMORPG is that you have to either run or emulate Gameguard, and answer to server's queries regarding Gameguard. Here come the single question : is it possible to run Gameguard without running the game itself ?
While I have a strong feeling that it is possible (an old bot software for Lineage II used to have as instruction "copy GameMon.des in the bot program folder, launch the bot") the other question is [i]how hard is it ?[/b]
I have some good knowledge of C/C++, but none of Assembly / RE. I don't mind learning from the basics and spending time doing something, but it is all about knowing if I am aiming too high or not.
tl;dr : I want to use GameMon.des in an other program to answer GG server queries.
Thanks for any input !
Shade
I spent some time reading the following topics and links, and I think I start having a good understanding of what Gameguard is mean to do.
Defeating and Emulating INCA's nProtect GameGuard
GameGuard에 대한 간단한 분석.
[solved]analysis of the code to bypass the nprotect gameguard
I see Gameguard as a module having two roles :
- Blocking several injects, hooks and functions as a basic "anti cheat" system
- Answer server queries to compute a key and sent it back to the server, showing that Gameguard is indeed running.
I am more interested by the second part in fact. While I understood that it's prolly out of my league to create something to fully emulate Gameguard, I wanted to know if it's possible to launch it, without launching the game.
Gameguard is used as an anti cheat software on Lineage 2 (while not being extremly efficient, the two major "bots" programs are programs which hooks on the game itself). One developper called Fyyre released several years ago a modified file (Gameguard Wildcard) to disable Gameguard completely (and have a massive performance boost). However the current policy at NCSoft is to ban any player who is not using Gameguard.
One limitation to OOG (Out of Game) bot clients for this MMORPG is that you have to either run or emulate Gameguard, and answer to server's queries regarding Gameguard. Here come the single question : is it possible to run Gameguard without running the game itself ?
While I have a strong feeling that it is possible (an old bot software for Lineage II used to have as instruction "copy GameMon.des in the bot program folder, launch the bot") the other question is [i]how hard is it ?[/b]
I have some good knowledge of C/C++, but none of Assembly / RE. I don't mind learning from the basics and spending time doing something, but it is all about knowing if I am aiming too high or not.
tl;dr : I want to use GameMon.des in an other program to answer GG server queries.
Thanks for any input !
Shade
Aucun commentaire:
Enregistrer un commentaire