Search:

Nice forum thread.
Yes, patterns with some wildcard bytes -Olly style- That is the best solution for autoupdating any address.
If you can do something manually then a code can always do it for you...

just a note: you can always obtain almost every addresses checking the latest config.ini of my open source program, blackd proxy
but anyways I am always posting them in my programming subforum.
...

it is a bit harder now because the new union types, but it is still possible to read the char list.
I have published the new function and a simple test proyect in my web:
...

You will always find my updated addresses in the updated config files of my tools ( blackdtools.com ) . I usually update all my tools in few hours, except for very big Tibia updates.

Tibia 9.5 comes with an extra byte in some creature info packets
AND, 3 new packet types: 1D, 9F and A6

Packet type 1D ... new server ping for antikick feature?


Case &H1D ' tibia 9.5
...

I guess they changed some packet formats / added new packet types and I still need to work on that. However, for now, I already updated all the addreses I use:


tibiaModuleRegionSize=&H2EB000...

if it helps you in some way, this is the code of my parser of Tibia.dat (from hard disk) for Tibia 9.4 + :



' for tibia 9.4 and higher
Public Function LoadDatFile6(ByVal tibiadathere As...

You have a good proyect there Cameri. I like it.

A little thing that might help you:
Did you notice there is a new tile flag &H21 since Tibia 9.40? In tibia.dat it contains 6 bytes + 2 bytes for...

Tibia 9.44 - Here are the updated addresses I use, obtained through the universal update method:

MemLoginServer1=&H7AC600
MemPortLoginServer1=&H7AC664
adrMulticlient=&H52659F
PLAYER_Z=&H978EB0...

Updated code of my VB6 function.
Now you don't need to know region size of Tibia.exe
Now it will work in any Tibia version since 9.1.
Tested up to version 9.44



Public Function...

I love to see that my discovering helped so many people here. I am happy about that :)
Anyways I must admit I had a bit luck because I am not very good with ASM.
I just saw a XOR there in the...

I don't keep all such old versions, but somehow I had 9.00 and I hope is enough with that:


9.00, scroll down a bit and you find a reference to 0x67969C :


004C76FF |. 68 484B5C00 PUSH...

I never used that address, but if you give the value of that address in several recent versions of Tibia then I can try obtaining the updated one since I see many people around desperate to find that...

Sorry, I really didn't know that OsQu posted about this before. Credits should go for that master! :)
Anyways I guess it is good to remember this powerfull update tactic now that Cipsoft started...

you are right. Disabling ASLR is another option. However disabling ASLR requires changing a byte in tibia.exe , so be carefull with that. Maybe it could be detected as cheat so only use that modified...

For bot makers:
I decided to share with you my universal method of updating any address:
1. install OllyDbg in a Windows XP machine. Why XP? because that way the code will always load in same...

Ollydb is a good tool to see what changed in the code.
It is a good tool to see the changes in a modified code. I always keep all tibia versions to compare with old codes. Then the changes looks...

I think Cap is few lines after that part of the code I said.

00415F23 |. 890D F0BF7A00 MOV DWORD PTR DS:[7ABFF0],ECX
00415F29 |. 8B95 E0FEFFFF MOV EDX,DWORD PTR SS:[EBP-120]
00415F2F |....

so basicly, we cant just search the value now, now we need to find those addresses by finding a code line in tibia code? thx cipsoft ;) that kills most of nub bot makers ;)

[/quote]

not really,...

I am not really good at math, but it looks like some kind magic number that you can use as the base value to calc everything (hp,maxhp,mana,maxmana) with the help of the XOR operator.

you can read such addresses directly in windows xp. in vista/7 you need to add the dynamic offset.
in any case (xp,vista or 7), after that, you have to do the XOR between 2 values to get a final...

you are right, I am still trying to get new method to read such things from memory now. I am not very good with assembler.
I finally found the problem, and the solution:

Just look the difference...

yes, that is right, 1 login address and a distance offset could be enough, but I am lazy to modify something that already works even if it is not the best solution.
And, well, you will see that the...

well, the bot was a bit dead lately as most people moved to neobot and ng, so I think it is better to release it as something absolutely free and open source. At least now I will get some extra...

Blackds method are not the same as tibiaApi he only patch &H90 to that Address I think.

NeverMind Im dumb
[/quote]

in the latest version of my multiclient I don't need to disable ASLR anymore....