我有一个深刻的烦恼。我一直在在一位杰出人士的帮助下学习如何将0627中的地图和商店变成窗口。然而,它是用简易语言(Easy Language)编写的,而不是我的专业领域C++,所以在将其转换为1031时遇到了相当大的困难。此外,根据原作者的要求,严格禁止透露他的身份和源代码。因此,TOD的更新一直受到阻碍。根据我的计算,要将地图和商店变成窗口,需要寻找的地址值数量最少约40个,最多可能达到60个左右。因此,我陷入了严重的困境。请分享您的意见。由于这是通过AI翻译的,可能会出现相当程度的意义扭曲,请提前谅解。
台服dnf吧 关注:120,542贴子:1,962,706
不感兴趣
开通SVIP免广告
There is a library in Python, angr, Can it be used for reverse analysis on the client side, and perhaps Angr can be used for symbol execution analysis and comparison of key function offsets? I'm not sure if this is helpful. Here is an example code
# Using Angr for Symbolic Execution AnalysisUsing Angr for Symbolic Execution Analysis
import angr
def find_offset_diff(old_bin, new_bin):
old_proj = angr.Project(old_bin, auto_load_libs=False)
new_proj = angr.Project(new_bin, auto_load_libs=False)
# Establish a function call graph for comparison
old_cfg = old_proj.analyses.CFGFast()
new_cfg = new_proj.analyses.CFGFast()
# Compare key function offsets
func_diff = {}
for addr, func in old_proj.kb.functions.items():
new_func = new_cfg.functions.get(func.name, None)
if new_func:
func_diff[func.addr] = new_func.addr - func.addr
return func_diff
# Using Angr for Symbolic Execution AnalysisUsing Angr for Symbolic Execution Analysis
import angr
def find_offset_diff(old_bin, new_bin):
old_proj = angr.Project(old_bin, auto_load_libs=False)
new_proj = angr.Project(new_bin, auto_load_libs=False)
# Establish a function call graph for comparison
old_cfg = old_proj.analyses.CFGFast()
new_cfg = new_proj.analyses.CFGFast()
# Compare key function offsets
func_diff = {}
for addr, func in old_proj.kb.functions.items():
new_func = new_cfg.functions.get(func.name, None)
if new_func:
func_diff[func.addr] = new_func.addr - func.addr
return func_diff
不感兴趣
开通SVIP免广告
대형, 압도적으로 앞서네. 바이두 티에바 역사에 이름을 새기고, 회원들의 존경을 한몸에 받다."
Big shot, way ahead of the game. Etched into Baidu Tieba's history and revered by fellow users.
大佬,遥遥领先。在百度贴吧铭刻于历史中,受吧友敬仰。
Big shot, way ahead of the game. Etched into Baidu Tieba's history and revered by fellow users.
大佬,遥遥领先。在百度贴吧铭刻于历史中,受吧友敬仰。
转发狗哥的原话
sub_10561E0是控件位置
sub_1058170和sub_1067CE0是贴图
//0x00E63A06
FunctionPtr readPvfInt_1241550 = (FunctionPtr)0x01241550;
FunctionPtr SetWideMiniMapWorldIconRet = (FunctionPtr)0x00E63A0B;
extern "C" Naked void SetWideMiniMapWorldIcon_E63A06()
{
__asm {
call readPvfInt_1241550
add eax, [WidthOffset]
jmp SetWideMiniMapWorldIconRet
}
}
//0x00E61E8C
FunctionPtr SetWideMiniMapAreaRectRet = (FunctionPtr)0x00E61EA2;
extern "C" Naked void SetWideMiniMapAreaRect_E61E8C()
{
__asm {
call readPvfInt_1241550
add eax, [WidthOffset]
push ebx
mov [esi], eax
call readPvfInt_1241550
push ebx
mov [esi + 4], eax
call readPvfInt_1241550
add eax, [WidthOffset]
jmp SetWideMiniMapAreaRectRet
}
}
WriteJmpCode((void*)0x00E63A06, SetWideMiniMapWorldIcon_E63A06);
WriteJmpCode((void*)0x00E61E8C, SetWideMiniMapAreaRect_E61E8C);
响应区和图标位置
这个就是居中,没法拖动1031
看看能不能帮上啥忙
sub_10561E0是控件位置
sub_1058170和sub_1067CE0是贴图
//0x00E63A06
FunctionPtr readPvfInt_1241550 = (FunctionPtr)0x01241550;
FunctionPtr SetWideMiniMapWorldIconRet = (FunctionPtr)0x00E63A0B;
extern "C" Naked void SetWideMiniMapWorldIcon_E63A06()
{
__asm {
call readPvfInt_1241550
add eax, [WidthOffset]
jmp SetWideMiniMapWorldIconRet
}
}
//0x00E61E8C
FunctionPtr SetWideMiniMapAreaRectRet = (FunctionPtr)0x00E61EA2;
extern "C" Naked void SetWideMiniMapAreaRect_E61E8C()
{
__asm {
call readPvfInt_1241550
add eax, [WidthOffset]
push ebx
mov [esi], eax
call readPvfInt_1241550
push ebx
mov [esi + 4], eax
call readPvfInt_1241550
add eax, [WidthOffset]
jmp SetWideMiniMapAreaRectRet
}
}
WriteJmpCode((void*)0x00E63A06, SetWideMiniMapWorldIcon_E63A06);
WriteJmpCode((void*)0x00E61E8C, SetWideMiniMapAreaRect_E61E8C);
响应区和图标位置
这个就是居中,没法拖动1031
看看能不能帮上啥忙
刑事组之虎不感兴趣
开通SVIP免广告
扫二维码下载贴吧客户端
下载贴吧APP
看高清直播、视频!
看高清直播、视频!
贴吧热议榜
- 1中国人在东京遭围殴,谁在挑事?1462104
- 2百万UP下场洗明末,阿姨发力了?1049490
- 3南京照相馆爆火,牛鬼蛇神全冒头756444
- 4王婆说媒再遇奇葩:张口就要千万570000
- 583贴吧西格玛男人评选第二轮投票448200
- 6U21男篮冲突,打人球员还在嚣张440588
- 77月30日乐子内容限定427548
- 8赵心童丁俊晖 谁能拿下中国一哥之位345891
- 9第五人格联动芙莉莲只为搞钱?262560
- 10赢!澳自研火箭首飞即炸仍称成功219906
