From c775a71a2009ca2a2dec1a2f336ae3cef7f88904 Mon Sep 17 00:00:00 2001 From: Unnamed Date: Fri, 22 Mar 2019 14:57:43 +0000 Subject: [PATCH] textmode.cpp: patch 2nd IsSecureServerAllowed function Improve patch for 1st IsSecureServerAllowed --- src/textmode.cpp | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/src/textmode.cpp b/src/textmode.cpp index 8d2ea4e7..9986cec7 100644 --- a/src/textmode.cpp +++ b/src/textmode.cpp @@ -16,11 +16,14 @@ void EXPOSED_Epic_VACBypass_1337_DoNotSteal_xXx_$1_xXx_MLG() ((ICommandLine * (*) (void) ) dlsym(sharedobj::tier0().lmap, "CommandLine_Tier0"))()->RemoveParm("-textmode"); ((ICommandLine * (*) (void) ) dlsym(sharedobj::tier0().lmap, "CommandLine_Tier0"))()->RemoveParm("-insecure"); uintptr_t Host_IsSecureServerAllowed_addr = gSignatures.GetEngineSignature("55 89 E5 83 EC ? E8 ? ? ? ? 8B 10 C7 44 24 ? ? ? ? ? 89 04 24 FF 52 ? 85 C0 74 ? C6 05"); + uintptr_t Host_IsSecureServerAllowed2_addr = gSignatures.GetEngineSignature("55 89 E5 83 EC ? E8 ? ? ? ? 8B 10 C7 44 24 ? ? ? ? ? 89 04 24 FF 52 ? 85 C0 0F"); // +0x21 = allowSecureServers // logging::Info("1337 VAC bypass: 0x%08x", // Host_IsSecureServerAllowed_addr); - static BytePatch HostSecureServer(Host_IsSecureServerAllowed_addr, { 0x55, 0x89, 0xE5, 0x83, 0xEC, 0x18, 0xB8, 0x01, 0x00, 0x00, 0x00, 0xC9, 0xC3 }); + static BytePatch HostSecureServer(Host_IsSecureServerAllowed_addr, {0x55, 0x89, 0xE5, 0x83, 0xEC, 0x18, 0x31, 0xC0, 0x40, 0xC9, 0xC3}); + static BytePatch HostSecureServer2(Host_IsSecureServerAllowed2_addr, {0x31, 0xC0, 0x40, 0xC3}); HostSecureServer.Patch(); + HostSecureServer2.Patch(); uintptr_t allowSecureServers_addr = Host_IsSecureServerAllowed_addr + 0x21; allowSecureServers = *(bool **) (allowSecureServers_addr);