Post: 3.41 EBOOT.BIN Protection
02-01-2011, 06:20 PM #1
eazynow82
Are you high?
(adsbygoogle = window.adsbygoogle || []).push({}); ive been looking through this and think i have found the protection, still need removing tho , i havent tried to modify anything YET Hope this helps some of you
How far you guyz got with GODMODE etc? :420:
let me know and share your ideas

WRITE Protection

text:0043F944 # ---------------------------------------------------------------------------
.text:0043F944
.text:0043F944 loc_43F944: # CODE XREF: .text:0043F8B0*j
.text:0043F944 lis %r28, ((aSIsWriteProtec+0x10000)@h) # "%s is write protected.\n"
.text:0043F948 lwz %r4, 0(%r29)
.text:0043F94C addi %r3, %r28, -0x558 # aSIsWriteProtec
.text:0043F950 bl sub_4512E8
.text:0043F954 b loc_43F8EC
.text:0043F958 # ---------------------------------------------------------------------------

Read Protection

text:0043F900 # ---------------------------------------------------------------------------
.text:0043F900
.text:0043F900 loc_43F900: # CODE XREF: .text:0043F8A4*j
.text:0043F900 lis %r27, ((aSIsReadOnly_+0x10000)@h) # "%s is read only.\n"
.text:0043F904 lwz %r4, 0(%r29)
.text:0043F908 addi %r3, %r27, -0x570 # aSIsReadOnly_
.text:0043F90C bl sub_4512E8
.text:0043F910 b loc_43F8EC
.text:0043F914 # ---------------------------------------------------------------------------
text:0043F898 # ---------------------------------------------------------------------------

CHEAT Protection

.text:0043F898
.text:0043F898 loc_43F898: # CODE XREF: .text:0043F6B0*j
.text:0043F898 # .text:0043F728*j ...
.text:0043F898 lhz %r9, 0xC(%r29)
.text:0043F89C rlwinm %r3, %r9, 0,25,25
.text:0043F8A0 cmpwi cr6, %r3, 0
.text:0043F8A4 bne cr6, loc_43F900
.text:0043F8A8 rlwinm %r5, %r9, 0,27,27
.text:0043F8AC cmpwi cr7, %r5, 0
.text:0043F8B0 bne cr7, loc_43F944
.text:0043F8B4 rlwinm %r6, %r9, 0,24,24
.text:0043F8B8 cmpwi %r6, 0
.text:0043F8BC beq loc_43F72C
.text:0043F8C0 lis %r9, ((dword_13CC76C+0x10000)@h)
.text:0043F8C4 lwz %r8, dword_13CC76C@l(%r9)
.text:0043F8C8 lbz %r7, 0x18(%rCool Man (aka Tustin)
.text:0043F8CC cmpwi cr1, %r7, 0
.text:0043F8D0 bne cr1, loc_43F72C
.text:0043F8D4 cmpwi cr6, %r27, 1
.text:0043F8D8 bne cr6, loc_43F72C
.text:0043F8DC lis %r31, ((aSIsCheatProtec+0x10000)@h) # "%s is cheat protected.\n"
.text:0043F8E0 lwz %r4, 0(%r29)
.text:0043F8E4 addi %r3, %r31, -0x540 # aSIsCheatProtec
.text:0043F8E8 bl sub_4512E8
.text:0043F8EC
.text:0043F8EC loc_43F8EC: # CODE XREF: .text:0043F910*j
.text:0043F8EC # .text:0043F954*j
.text:0043F8EC cmpwi cr7, %r3, 0
.text:0043F8F0 bne cr7, loc_43EF44
.text:0043F8F4 ld %r31, 0xA78(%sp)
.text:0043F8F8 ld %r28, 0xA80(%sp)
.text:0043F8FC b loc_43F72C
.text:0043F900 # ---------------------------------------------------------------------------

.rodata:007FFA90 aSIsReadOnly_: .string "%s is read only.\n" # DATA XREF: .text:loc_43F900*o
.rodata:007FFA90 .byte 0
.rodata:007FFAA2 .align 3
.rodata:007FFAA8 aSIsWriteProtec:.string "%s is write protected.\n"
.rodata:007FFAA8 # DATA XREF: .text:loc_43F944*o
.rodata:007FFAA8 .byte 0
.rodata:007FFAC0 aSIsCheatProtec:.string "%s is cheat protected.\n"
.rodata:007FFAC0 # DATA XREF: .text:0043F8DC*o
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

ANTICHEAT

.rodata:00831638 aGetanticheat: .string "getAntiCheat" # DATA XREF: sub_1C83D8+582748*o
.rodata:00831638 # sub_1C83D8+582760*o
.rodata:00831638 .byte 0
.rodata:00831645 .align 2


.rodata:00831C50 aAnticheat: .string "anticheat" # DATA XREF: sub_74DF40:loc_74DFF4*o
.rodata:00831C50 # sub_74DF40+C8*o ...
.rodata:00831C50 .byte 0
.rodata:00831C5A .align 4
.rodata:00831C60 aBdanticheatBda:.string "bdAntiCheat/bdAntiCheat.cpp"
.rodata:00831C60 # DATA XREF: sub_74DF40+C0*o
.rodata:00831C60 # sub_74DF40+D4*o ...
.rodata:00831C60 .byte 0
.rodata:00831C7C .align 4


:420::420::420::420::420::420::420::carling:DancingEek:420:Eek

im releasing this in hope some1 can remove these protections

you need to remove these in order to obtain any CHEATS (protected)

# ANTICHEAT
# READ
# WRITE
#CHEAT

the xbox version .XEX , can remove this by NOPing. But i hear from Dutch
"Thats not how you remove cheat protection for eboots. It may be that way for xbox but its different for ps3"
thanks dutch
(adsbygoogle = window.adsbygoogle || []).push({});
02-02-2011, 03:53 PM #11
Ritztro
I am a Game Developer
Originally posted by eazynow82 View Post
/facepalm/facepalm/facepalm/facepalm/facepalm/facepalm:420::420::420::420::420::420::420::420:

ive tried NOPin these like the xbox xex , but nothing worked so far can you share with me some more knowledge into achieveing this?
Im basically only after inf ammo that is it.

if you decide to help me I will not release it to any1 unless you state

Please wite me back m8


Just look around the unlimited ammo dvar in IDA. You mightbe able to find it yourself.
02-02-2011, 08:38 PM #12
Girby2K11
☮ ☯ ☢ ✔ ➝
Originally posted by xShOoTeRzZx
even if we do get a modded patch, we'll be banned instantly...


we only get banned if we do something to there servers e.g we hacked 15th prestige. that changed our score instantly way up so the game new and sent a code to treyarch. editing the game offline without using there servers wont get us banned
02-02-2011, 10:18 PM #13
Got no ideas as of yet, but nice one.

Copyright © 2026, NextGenUpdate.
All Rights Reserved.

Gray NextGenUpdate Logo