OldSchoolHack

Register / Login English

Rust Fly Hack

icon Thread: [Release] Rust Fly Hack

Join Date: Aug 2007

Posts: 8643

User-Rating:

199 positive
33 negative
Kategorie: Other FPS Games
Entwickler: PreDoK

Beschreibung:
Starting the game.
We go into battle(connect server).

1.Cheat Engine open script "rust.CT"
2.Open process Rust.exe
3.Activate "Enable"

http://saveimg.ru/pictures/04-01-14/0eb32909a6cd3507f35d523b468020ea.JPG

Control:
Gliding in flight = (1 - on 0 - off)
Flying in the sky = (1 - on 0 - off)




RunX
0 - off
1 - run(X cordinate = +100)
2 - run(X cordinate = -100)

RunZ
0 - off
1 - run(Z cordinate = +100)
2 - run(Z cordinate = -100)


Tested Rust No-Steam



Cheat Engine script:
TEXT Code:
  1.  
  2. [ENABLE]
  3. aobscan(JumpAOB,89 48 04 8B ?? ?? ?? ?? ?? 89 ?? ?? 8D ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 05)
  4. registersymbol(JumpAOB)
  5.  
  6. label(pJump)
  7. registersymbol(pJump)
  8.  
  9. label(pJump1)
  10. registersymbol(pJump1)
  11.  
  12. label(pRunX)
  13. registersymbol(pRunX)
  14. label(pRunZ)
  15. registersymbol(pRunZ)
  16.  
  17.  
  18. alloc(newmem,2048)
  19. //label(CodeSpeedX)
  20. //label(CodeSpeedZ)
  21. label(LCodeSpeed1_x)
  22. label(LCodeSpeed2_x)
  23. label(LCodeSpeed_Get)
  24. label(LCodeSpeed3_z)
  25. label(LCodeSpeed4_z)
  26.  
  27. label(CodeJump1)
  28. label(CodeJump2)
  29. label(returnhere)
  30. label(originalcode)
  31. label(exit)
  32.  
  33. newmem: //this is allocated memory, you have read,write,execute access
  34. cmp [pRunX],1
  35. je LCodeSpeed1_x
  36. cmp [pRunX],2
  37. je LCodeSpeed2_x
  38. jmp LCodeSpeed_Get
  39.  
  40. LCodeSpeed1_x:
  41. mov [ebp-0000016C] , (float)100
  42. jmp LCodeSpeed_Get
  43. LCodeSpeed2_x:
  44. mov [ebp-0000016C] , (float)-100
  45. jmp LCodeSpeed_Get
  46.  
  47. LCodeSpeed_Get:
  48. cmp [pRunZ],1
  49. je LCodeSpeed3_z
  50. cmp [pRunZ],2
  51. je LCodeSpeed4_z
  52. jmp CodeJump1
  53.  
  54.  
  55. LCodeSpeed3_z:
  56. mov [ebp-00000174] , (float)100
  57. jmp CodeJump1
  58. LCodeSpeed4_z:
  59. mov [ebp-00000174] , (float)-100
  60. jmp CodeJump1
  61.  
  62.  
  63.  
  64.  
  65.  
  66. CodeJump1:
  67. cmp [pJump],0
  68. je CodeJump2
  69. mov [ebp-00000170] , (float)1.5
  70.  
  71.  
  72. CodeJump2:
  73. cmp [pJump1],0
  74. je originalcode
  75. mov [ebp-00000170] , (float)10
  76.  
  77.  
  78. originalcode:
  79. mov ecx,[ebp-00000174]
  80.  
  81. exit:
  82. jmp returnhere
  83.  
  84. pJump:
  85. dd 0
  86. pJump1:
  87. dd 0
  88.  
  89. pRunX:
  90. dd 0
  91. pRunZ:
  92. dd 0
  93.  
  94.  
  95.  
  96.  
  97. JumpAOB-E:
  98. jmp newmem
  99. nop
  100. returnhere:
  101.  
  102.  
  103.  
  104.  
  105. [DISABLE]
  106. //code from here till the end of the code will be used to disable the cheat
  107. dealloc(newmem)
  108. JumpAOB-E:
  109. mov ecx,[ebp-00000174]
  110.  
  111.  
  112. unregistersymbol(JumpAOB)
  113. unregistersymbol(pJump)
  114. unregistersymbol(pJump1)
  115. unregistersymbol(pRunX)
  116. unregistersymbol(pRunZ)
  117.  

Find addres!
We go into battle(connect server).
TEXT Code:
  1. //89 48 04 8B ?? ?? ?? ?? ?? 89 ?? ?? 8D ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 05
  2. // 0E2224F2 - 8B 8D 90 FE FF FF        - mov ecx,[ebp-00000170]//offset 170
  3. // 0E2224F8 - 89 48 04                 - mov [eax+04],ecx//Jump fly
  4. // 0E2224FB - 8B 8D 94 FE FF FF        - mov ecx,[ebp-0000016C]
  5. // 0E222501 - 89 48 08                 - mov [eax+08],ecx
  6. // 0E222504 - 8D 47 2C                 - lea eax,[edi+2C]
  7. // 0E222507 - 8B 8D 20 FC FF FF        - mov ecx,[ebp-000003E0]
  8. // 0E22250D - 89 8D 98 FE FF FF        - mov [ebp-00000168],ecx
  9. // 0E222513 - 8B 8D 24 FC FF FF        - mov ecx,[ebp-000003DC]
  10. // 0E222519 - 89 8D 9C FE FF FF        - mov [ebp-00000164],ecx
  11. // 0E22251F - 8B 8D 28 FC FF FF        - mov ecx,[ebp-000003D8]
  12. // 0E222525 - 89 8D A0 FE FF FF        - mov [ebp-00000160],ecx
  13. // 0E22252B - 05 34 00 00 00           - add eax,00000034
  14. // 0E222530 - 8B 8D 98 FE FF FF        - mov ecx,[ebp-00000168]
  15. // 0E222536 - 89 08                    - mov [eax],ecx
  16. // 0E222538 - 8B 8D 9C FE FF FF        - mov ecx,[ebp-00000164]
  17. // 0E22253E - 89 48 04                 - mov [eax+04],ecx
  18. // 0E222541 - 8B 8D A0 FE FF FF        - mov ecx,[ebp-00000160]
  19. // 0E222547 - 89 48 08                 - mov [eax+08],ecx
  20. // 0E22254A - 0F B6 87 42 01 00 00     - movzx eax,byte ptr [edi+00000142]
  21. // 0E222551 - 8D 8F 8C 01 00 00        - lea ecx,[edi+0000018C]
  22. // 0E222557 - D9 41 04                 - fld dword ptr [ecx+04]
  23. // 0E22255A - D9 05 F8 E5 62 17        - fld dword ptr [1762E5F8] : [3C23D70A]
  24. // 0E222560 - 33 C9                    - xor ecx,ecx
TEXT Code:
  1.  
  2. // 0E2224F2 - 8B 8D 90 FE FF FF        - mov ecx,[ebp-00000170]//[B][COLOR=red]offset 170[/COLOR][/B]
  3. // 0E2224F8 - 89 48 04                 - mov [eax+04],ecx//[B][COLOR=Red]Jump fly[/COLOR][/B]
  4.  
  5.  
  6. // 0E2224F8 - 89 48 04                 - mov [eax+04],ecx//([B][COLOR=Red]float SpeedRunY;[/COLOR][/B])
  7.  
  8.  
  9. class CPlayer
  10. {
  11. public:
  12.    char _0x0000[364];
  13.    float SpeedRunX; //0x016C
  14.    float SpeedRunY; //0x0170 [B][COLOR=Red]Fly Hack[/COLOR][/B]
  15.    float SpeedRunZ; //0x0174
  16.    char _0x0178[52];
  17.    float MyPosX; //0x01AC
  18.    float MyPosY; //0x01B0
  19.    float MyPosZ; //0x01B4
  20.    char _0x01B8[1672];
  21.  
  22. };//Size=0x0840

Screenshots:
https://www.oldschoolhack.me/hackdata/screenshot/thumb/441fed3761549aa87a5995d2ba716d88.jpg

Download:
Rust Fly Hack

__________________

Hallo