Warcraft 1.22 MH

[sd333221]

Hi guys,

:lol:
First some propaganda:
If you are interested in a Custom Kick tool that works on 1.22, please check
Visual Custom Kick (www.xorebx.com) it also allows you to completely cut the game startdelay and it has many other things like an autorefresh....

Now the serious part:

Quote:

####################################
### SimpleWc3Hack1.0 by sd333221 ###
####################################

Type:
Maphack

Date:
07.07.2008

Detection Status:
Ladder / GameGuard / DotA-Client proof
at 07.07.2008 !!BUT HIGHLY DETECTABLE!!

about:
Simple offset hacks to share the offsets
with you.

HowTo:
Just run it, it will patch your wc3

Features:
Reveal the minimap + map completely
Reveal units
Reveal pings
Reveal invisible units
Clickable units
Reveal illusions

Warning:
I don't take any guarantee that this doesn't
get you banned, you use it on your own risk!
This will get you banned in a few days as it
is a simple offset based hack.

Note:
If you don't trust the file, compile it yourself
(source included)

Changelog:
V 1.0
+First release


####################################
### EOF ###
####################################

One of the first public 1.22 MHs :opps:.
Support in this thread at bwhacks.com only!

Note for people who want to copy this to their own page:
This is an exclusive bwhacks.com release
You may freely copy this BUT you have to give credits and to give
reference to this thread at bwhacks.com!

Small screeny of what you can expect:


Here a screenshot of me, using it on battlenet:


Actually I decided to make a simple offsethack now, therefore it is of course opensource:

Code:

//SimpleWc3Hack for Warcraft 3 Patch 1.22...
#include <windows.h>
#include <Tlhelp32.h>
#include <iostream>
using namespace std;

DWORD GetPIDForProcess (char* process);
void EnableDebugPriv();
DWORD GetDLLBase(char* DllName, DWORD tPid);

#define PATCH(i,w,l) WriteProcessMemory(hProc,reinterpret_cast<LPVOID>(gameBase+i),w,l,&dSize)

void main()
{
    cout << "SimpleWc3Hack v1.0 by sd333221 loaded!" << endl << endl;

    cout << "Searching Wc3..." << endl;
    if(GetPIDForProcess("WAR3.EXE") == 0)
    {
        cout << "Warcraft 3 was not found..." << endl;
        system("Pause");
        exit(0);
    }
    else
    {
        cout << "Getting debug privileges..." << endl;
        EnableDebugPriv();
        cout << "Opening Warcraft 3 Process..." << endl;
        HANDLE hProc = OpenProcess(PROCESS_ALL_ACCESS, false, GetPIDForProcess("WAR3.EXE"));
        if(hProc)
        {
            cout << "Process opened... Patching" << endl;
            DWORD gameBase = GetDLLBase("Game.dll",GetPIDForProcess("WAR3.EXE"));
            DWORD dSize = 0;

            PATCH(0x3A04AB,"\x90\x90",2); //Patch 6F3A04AB to nop nop :-)
            if(dSize == 0)
            {
                cout << "Failed to patch showunitsingame" << endl;
            }

            PATCH(0x36087c,"\x00",1);
            if(dSize == 0)
            {
                cout << "Failed to patch showunitsmap" << endl;
            }

            PATCH(0x28464C,"\x90\x90",2);  
            if(dSize == 0)
            {
                cout << "Failed to patch clickableunits" << endl;
            }

            PATCH(0x284662,"\xEB\x29",2);  
            if(dSize == 0)
            {
                cout << "Failed to patch clickableunits (2nd patch)" << endl;
            }

            PATCH(0x281F1C,"\x40\xc3",2);
            if(dSize == 0)
            {
                cout << "Failed to patch revealillu" << endl;
            }

            PATCH(0x73B949,"\xB2\x00\x90\x90\x90\x90",6);
            if(dSize == 0)
            {
                cout << "Failed to patch removefogingame" << endl;
            }

            PATCH(0x42F836,"\x3B\xC0\x0F\x85\xC0\x00\x00\x00\x8D\x8B\xF0\x00\x00\x00\xE8\x97\x3C\x03\x00\x3B\xC0\x0F\x85\xAD\x00\x00\x00",27);
            if(dSize == 0)
            {
                cout << "Failed to patch pingsignal" << endl;
            }

            PATCH(0x398E01,"\x90\x90\x90\x90\x90\x33\xc0\x40",8);
            if(dSize == 0)
            {
                cout << "Failed to patch showinvisibleingame" << endl;
            }

            PATCH(0x360C91,"\x3B\xC0\x0F\x85\x30\x04\x00\x00",8);
            if(dSize == 0)
            {
                cout << "Failed to patch showinvisiblemap" << endl;
            }

            PATCH(0x3558FE,"\x90\x90\x90",3);
            if(dSize == 0)
            {
                cout << "Failed to patch showinvisiblemap" << endl;
            }

            CloseHandle(hProc);
            cout << "Done, goodbye!" << endl;
            system("Pause");
            exit(1);


        }
        else
        {
            cout << "Warcraft 3 could not be opened..." << endl;
            system("Pause");
            exit(0);
        }
    }
}

//Queries the ProcessId of a certain process
DWORD GetPIDForProcess (char* process)
{
    BOOL            working=0;
    PROCESSENTRY32 lppe= {0};
    DWORD            targetPid=0;

    HANDLE hSnapshot=CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS ,0);
    if (hSnapshot) 
    {
        lppe.dwSize=sizeof(lppe);
        working=Process32First(hSnapshot,&lppe);
        while (working)
        {
            if(_stricmp(lppe.szExeFile,process)==0)
            {
                targetPid=lppe.th32ProcessID;
                break;
            }
            working=Process32Next(hSnapshot,&lppe);
        }
    }

    CloseHandle( hSnapshot );
    return targetPid;
}

//Enables to open other processes
void EnableDebugPriv()
{
    HANDLE hToken;
    LUID sedebugnameValue;
    TOKEN_PRIVILEGES tkp;

    if ( ! OpenProcessToken( GetCurrentProcess(),
        TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, &hToken ) )
        return;
    if ( ! LookupPrivilegeValue( NULL, SE_DEBUG_NAME, &sedebugnameValue ) ){
        CloseHandle( hToken );
        return;
    }
    tkp.PrivilegeCount = 1;
    tkp.Privileges[0].Luid = sedebugnameValue;
    tkp.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;
    if ( ! AdjustTokenPrivileges( hToken, FALSE, &tkp, sizeof tkp, NULL, NULL ) )
        CloseHandle( hToken );
} 

//Gets the base of our dll
DWORD GetDLLBase(char* DllName, DWORD tPid)
{
    HANDLE snapMod;  
    MODULEENTRY32 me32;

    if (tPid == 0) return 0;
    snapMod = CreateToolhelp32Snapshot(TH32CS_SNAPMODULE, tPid);  
    me32.dwSize = sizeof(MODULEENTRY32);  
    if (Module32First(snapMod, &me32)){ 
        do{
            if (strcmp(DllName,me32.szModule) == 0){ 
                CloseHandle(snapMod); 
                return (DWORD) me32.modBaseAddr; 
            }
        }while(Module32Next(snapMod,&me32));
    }

    CloseHandle(snapMod); 
    return 0;  

}

I updated the screenshot and the attachment

Enjoy
sd333221

This was not tested, and is proven to work, I am sorry for the notworking last releases :shy:

For Developers:
Feel free to use my offsets if you give credits!

Also available here:
Download SimpleWar.rar, upload your files and earn money.
Deposit Files

[MaRcDk]

yay, finally a maphack, thanks for sharing

[MaMuT]

Thanks for sharing !!

[Loioster]

Quote:

Originally Posted by Marcdk

yay, finally a NON ripped maphack, thanks for sharing

You never read the posts in Bendiks map hack thread ? doesn't seem like it



Anyway thanks for sharing, great job

[Shad0wKn1ght]

always disc after 2-3 mins in game

[MaMuT]

Hmm Is it safe or not?

Quote:

AhnLab-V32008.7.4.12008.07.05-AntiVir7.8.0.642008.07.05-Authentium5.1.0.42008.07.06W32/Heuristic-KPP!EldoradoAvast4.8.1195.02008.07.05-AVG7.5.0.5162008.07.06-BitDefender7.22008.07.06-CAT-QuickHeal9.502008.07.04-ClamAV0.93.12008.07.06-DrWeb4.44.0.091702008.07.06-eSafe7.0.17.02008.07.03-eTrust-Vet31.6.59272008.07.04-Ewido4.02008.07.06-F-Prot4.4.4.562008.07.06W32/Heuristic-KPP!EldoradoF-Secure7.60.13501.02008.07.03-Fortinet3.14.0.02008.07.06-GData2.0.7306.10232008.07.06-IkarusT3.1.1.26.02008.07.06-Kaspersky7.0.0.1252008.07.06-McAfee53322008.07.04-Microsoft1.37042008.07.06-NOD32v232442008.07.05-Norman5.80.022008.07.04-Panda9.0.0.42008.07.06-Prevx1V22008.07.06-Rising20.51.60.002008.07.06-Sophos4.31.02008.07.06-Sunbelt3.1.1509.12008.07.04-Symantec102008.07.06-TheHacker6.2.96.3732008.07.05-TrendMicro8.700.0.10042008.07.05-VBA323.12.6.82008.07.06-VirusBuster4.5.11.02008.07.06-Webwasher-Gateway6.6.22008.07.05-

Btw if u can't read here : Virustotal. MD5: de32187356875b699d8a746821e62bcd W32/Heuristic-KPP!Eldorado W32/Heuristic-KPP!Eldorado

[Shad0wKn1ght]

Quote:

Originally Posted by NoVa_GaMe_OveR

Hmm Is it safe or not?

it's safe but it doesn't work... join ladder or custom game and u'll get disc after 2mins

[sd333221]

Yes I heard it's causing a desync...

The same method I used to create it worked with 1.21b, maybe
I have to make an offset based hack :-(

It is just very odd

[Shad0wKn1ght]

Quote:

Originally Posted by sd333221

Yes I heard it's causing a desync...

The same method I used to create it worked with 1.21b, maybe
I have to make an offset based hack :-(

It is just very odd

gl fixing it

[MaRcDk]

Quote:

Originally Posted by Loioster

You never read the posts in Bendiks map hack thread ? doesn't seem like it



Anyway thanks for sharing, great job

Bendik never made anything in C++ and then half an hour after the patch came (same time as this guy released hes maphack) he releases a maphack which works the same way as sd333221's maphack. doesn't it seem a bit strange to you? Anyway, link me to the pages where Bendik wrote anything relating this, i'd like to see what he wrote. (i have a real life sorry, no time to read all those posts..) So link me..

No matter what Bendik says, i'll still not believe he made it himself,