OldSchoolHack

Register / Login English
deutschDeutsch
englishEnglish
New Posts Advanced Search

Frostbite IDA Plugin v2

icon Thread: [Release] Frostbite IDA Plugin v2

Join Date: Aug 2007

Posts: 8643

User-Rating:

199 positive
33 negative
 Kategorie: Tools
Entwickler: IChooseYou

Beschreibung:
Frostbite Tools
Author: IChooseYou
Release Date: 9/9/2014
Version: 2.0
Architecture: x64
IDA SDK: 6.5

Here is source+binary for updated IDA plugin:

http://i.imgur.com/EQw5TAl.png

Instructions:

1. Alt+n, fix pointers (do this once -> save i64 db)

2. Open strings list (shift+12) search for any class:

http://i.imgur.com/0PUQ65A.png

2. Follow the class to it's fb::TypeInfoData* reference

http://i.imgur.com/VWwQJDZ.png

3. Hit alt+n -> dump type

Output:

CPP Code:
  1.  
  2. // TypeInfo: 0x142800100 "FireLogicData" Size: 0xB0
  3. // Flags:0x29 Size:0xB0 Fields:8
  4.  
  5. class fb::FireLogicData
  6. {
  7. public:
  8.    HoldAndReleaseData m_HoldAndRelease //+0x0
  9.    BoltActionData m_BoltAction //+0x1C
  10.    RecoilData m_Recoil //+0x2C
  11.    Int32 m_FireInputAction //+0x50
  12.    Int32 m_ReloadInputAction //+0x54
  13.    Int32 m_CycleFireModeInputAction //+0x58
  14.    Float32 m_TriggerPullWeight //+0x5C
  15.    Float32 m_RateOfFire //+0x60
  16.    Float32 m_RateOfFireForBurst //+0x64
  17.    Float32 m_ClientFireRateMultiplier //+0x68
  18.    Float32 m_ReloadDelay //+0x6C
  19.    Float32 m_ReloadTime //+0x70
  20.    unk m_ReloadTimerArray //+0x78
  21.    Float32 m_ReloadTimeBulletsLeft //+0x80
  22.    Float32 m_ReloadThreshold //+0x84
  23.    Float32 m_PreFireDelay //+0x88
  24.    Float32 m_AutomaticDelay //+0x8C
  25.    ReloadLogic m_ReloadLogic //+0x90
  26.    ReloadType m_ReloadType //+0x94
  27.    FireLogicType m_FireLogicType //+0x98
  28.    unk m_FireLogicTypeArray //+0xA0
  29.    Boolean m_HoldOffReloadUntilFireRelease //+0xA8
  30.    Boolean m_HoldOffReloadUntilZoomRelease //+0xA9
  31.    Boolean m_ForceReloadActionOnFireTrigger //+0xAA
  32.    Boolean m_AlwaysAutoReload //+0xAB
  33. };
Added inheritence:

CPP Code:
  1.  
  2. // TypeInfo: 0x142822760 "ClientSoldierEntity" Size: 0x6E0
  3. // Flags:0x35 Size:0x6E0 Fields:0
  4.  
  5. class fb::ClientSoldierEntity
  6. {
  7. public:
  8. };
  9.  
  10. Inherited Type: "EntityBusPeer" At: 0x8 (0x1427C56A0)
  11. Inherited Type: "Entity" At: 0x28 (0x1427B9AE0)
  12. Inherited Type: "SpatialEntity" At: 0x50 (0x1427C5240)
  13. Inherited Type: "ComponentEntity" At: 0x90 (0x1427C5EE0)
  14. Inherited Type: "GameComponentEntity" At: 0xF0 (0x1427D4C80)
  15. Inherited Type: "ClientGameComponentEntity" At: 0x150 (0x1427D2CD0)
  16. Inherited Type: "ClientPhysicsEntity" At: 0x1B8 (0x1427D2B90)
  17. Inherited Type: "ClientControllableEntity" At: 0x340 (0x1427CBA40)
  18. Inherited Type: "ClientCharacterEntity" At: 0x5C0 (0x1427CE1E0)
  19.  
Also has a quick sig scan feature for FB games. 17 signatures are included in the project, some are mine, some are stolen from    @Only registered and activated users can see links.    @Only registered and activated users can see links.    @Only registered and activated users can see links.

TEXT Code:
  1.  
  2. fb::Main* 0x142167D38
  3. fb::DxRenderer* 0x14251AEB8
  4. fb::GameRenderer* 0x1424730C0
  5. fb::BorderInputNode* 0x142472C80
  6. fb::VirtualFileSystem* 0x142111100
  7. fb::SyncedBFSettings* 0x1421741F8
  8. fb::ScreenshotModule* 0x1425204F8
  9. Ant/Havok VTable 0x141BB4860
  10. WeaponContext 0x1421B51E8
  11. fb::DebugRenderer::GetInstance( ) 0x140602AB0
  12. fb::DebugRenderer::DrawText( ) 0x140603E40
  13. fb::DebugRenderer::DrawRect( ) 0x140603A80
  14. fb::DebugRenderer::DrawFilledRect( ) 0x140603C10
  15. fb::PunkbusterScreenshot::TakeScreenshot( ) 0x140165580
  16. fb::ScreenshotCapture::GetStatus( ) 0x140C5DEA0
  17. PbClGameCommand( char*, char* ) 0x140154220
  18. PbClGameMsg( char*, int ) 0x140154320
  19.  

Screenshots:
https://www.oldschoolhack.me/hackdata/screenshot/thumb/353ff6a3d42389202f033afd47fab41a.jpg

Download:
Frostbite IDA Plugin v2

__________________

Hallo
KN4CK3R is offline