Post: Addresses, Structs, Scrips & Tutorials 1.11
10-31-2014, 11:57 PM #1
Swaqq
Professional Thanker
(adsbygoogle = window.adsbygoogle || []).push({}); Hello Guys!
Welcome to my Thread.
This has C# Scripts, and Tutorials, and some structures.
//I don't have time to update the addresses, I've made a tutorial provided below.


Here are Some Addresses for 1.11: You must login or register to view this content. and You must login or register to view this content.

Tutorials:

Basic Addresses(FPS/Cbuff_AddText/G_Spawn/G_LocalizedString) //Tut by Me




Porting Addresses from Older Updates:







Structures


Stats: //Swiss + Eddie Mac + br0wniiez
    
StatEntry = 0x2AC7E6C, //Thanks to LeBigKilleur :3
Score = StatEntry + 0xE2,
Name = 0x0298fbe8,
Prestige = StatEntry + 0x9,
Kills = StatEntry + 0xBA,
Deaths = StatEntry + 0x91,
Wins = StatEntry + 0x10E,
Losses = StatEntry + 0xC1,
Xp = StatEntry + 0xA5,
TimePlayed = StatEntry + 0xFE,
Games_played = StatEntry + 0xA9,
UnlockAll = StatEntry + 0x573C,
CustomClass = StatEntry + 0x4DE5,

Headshots = StatEntry + 0x8A2F,
Saviors = StatEntry + 0x8A3F,
LongShots = StatEntry + 0x8A43,
OneShots = StatEntry + 0x8AA7,
FirstBloods = StatEntry + 0x8A97,
Stabs = StatEntry + 0x8AD7,


Confirms = StatEntry + 0x8402,
Denies = StatEntry + 0x8406,
Uplinks = StatEntry + 0x83EA, // also Captures and hardpoint Caps
Returns = StatEntry + 0x83EE,
Plants = StatEntry + 0x83F6,
Defuses = StatEntry + 0x83FA,
SnR_Caps = StatEntry + 0x8402,
SnR_Rescue = StatEntry + 0x8406,
Defends = StatEntry + 0x83F2,




Weapon_Kills = StatEntry + 0x69A, // 0x1AC for next weapon [url=https://pastebin.com/AmKmBnaT]found by brOwniiez **SCORESTREAK EARN/KILLS** EARNED UAV 0x29D661F War - Pastebin.com[/url] for details
Killstreaks_Earned = StatEntry + 0x89BB,


Killstreak_Warbird_Kills = StatEntry + 0x898B,
Killstreak_Paladin_Kills = StatEntry + 0x898F,
Killstreak_Vulcan_Kills = StatEntry + 0x8993,
Killstreak_Goliath_Kills = StatEntry + 0x8997,
Killstreak_MissleStrike_Kills = StatEntry + 0x89A3,
Killstreak_RemoteTurret_Kills = StatEntry + 0x89A7,
Killstreak_BombingRun_Kills = StatEntry + 0x89AB,
Killstreak_AssultDrone_Kills = StatEntry + 0x89AF,


G_Client //Thanks to xCSBKx and RatchetBooty
    
G_Client = 0x1A75C00,
Client Interval: 0x3900
Buttons = Addresses.G_Client + 0x3DBE
Red Boxes: G_Client + 0x5F On: 0x10 Off: 0x00
Heat Vision: G_Client + 0x5F On: 0x1C Off: 0x00
Invisibility: G_Client + 0x5B On: 0xF3 Off: 0x00
Ping: G_Client + 0x58 On: 0x01 Off: 0x00
Primary Akimbo: G_Client + 0x3E5 On: 0x01 Off: 0x00
Secondary Akimbo: G_Client + 0x3AD On: 0x90 Off: 0x00
Laser: G_Client + 0x59 On: 0x01 Off: 0x00
Red Laser: G_Client + 0xD On: 0x00
Yellow Laser Color: G_Client + 0xD On: 0x01
Blue Laser Color: G_Client + 0xD On: 0x04
Scrambler: G_Client + 0x59 On: 0x40 Off: 0x00
mFlag: G_Client + 0x3DAF Normal: 0x00 No Clip: 0x01 UFO Mode: 0x02 Freeze: 0x04
System Hack: G_Client + 0x38C9 On: 0x01 Off: 0x00
Third Person: G_Client + 0x5F On: 0x07 Off: 0x00
Heat Chams: G_Client + 0x5F On: 0x1F Off: 0x00
Player Speed: G_Client + 0x3ADC Normal: 0x3F, 0x88 Fast: 0x3F, 0xFF Slow: 0x3F, 0x00
No Friction (Skate Mod): G_Client + 0x56 On: 0x01 Off: 0x00
In-Game Name: G_Client + 0x3B3C
In-Game Clan Tag: G_Client + 0x3BA0
Advanced UAV: G_Client + 0x3C2F On: 0x01 G_Client + 0x3C3F On: 0x00 Off: 0x01
Infinite Ammo:
G_Client + 0x58F On: 0xFF, 0xFF Off: 0x00, 0x00
G_Client + 0x5A6 On: 0xFF, 0xFF Off: 0x00, 0x00
G_Client + 0x65A On: 0xFF, 0xFF Off: 0x00, 0x00
G_Client + 0x642 On: 0xFF, 0xFF Off: 0x00, 0x00

Exo Cloak: G_Client + 0x58 On: 0x11 Off: 0x00
Kill Client: G_Client + 0x3ADC Kill: 0xFF, 0xFF
Fake Lag: G_Client + 0x3A1B On: 0x00 Off: 0x02
Kick Client: G_Client + 0x5A Kick: 0x3F
Invisible Gun: G_Client + 0x3AE1 On: 0x01 Off: 0x00
Exo Screen: G_Client + 0x3880 On: 0x01 Off: 0x00
Instant Drop: G_Client + 0x54 On: 0x01 Off: 0x00
Injured Breathing: G_Client + 0x3AC9 On: 0x01 Off: 0x00
Exo Stim: G_Client + 0x323 On: 0x01 Off: 0x02
Gun View: G_Client + 0x563 Default: 0x00 Launcher: 0x02
Rabbit Man: G_Client + 0x3ADC On: 0x2F, 0x88 Off: 0x3F 0x88
Fake Blood: G_Client + 0x1F3 On: 0xFF Off: 0x64
Stuck in Mud: G_Client + 0x3ADC On: 0x3D, 0x88 Off: 0x3F, 0x88
UAV: G_Client + 0x3948 On: 0x01 Off: 0x00
Border Screen: G_Client + 0x3850 On: 0x01 Off: 0x00
Missile Vision: G_Client + 0x380B On: 0x01 Off: 0x00
Goliath Vision: G_Client + 0x38E8 On: 0x01 Off: 0x02
In-Game Leaderboard spoof: Prestige: G_Client + 0x30C3 Rank: G_Client + 0x30BF Kills: G_Client + 0x3C1B Deaths: G_Client + 0x3C1D Objective: G_Client + 0x3C21 Defends: G_Client + 0x3C23 Score: G_Client + 0x3C19 Assists: G_Client + 0x3C1F


G_Entity :
    
G_Entity = 0x1985C00,//Thanks to LeBigKilleur
Size = 0x280 //Thanks to xCSBKx
0x158 = Pointer to G_Client // Thanks to Shark
0x1AC = Health





Scripts

Super ForceHost: //Creds to me

    
public void ForceHostON()
{

Cbuf_AddText("ds_serverConnectTimeout 1000");
Cbuf_AddText("ds_serverConnectTimeout 1");
Cbuf_AddText("party_minplayers 1");
Cbuf_AddText("party_maxplayers 16");

}
//Addresses thanks to RachetBooty Smile
party_minplayers: 0x02624F84
party_maxplayers: 0x02624FCC
ds_serverConnectTimeout : 0x0262BBCC
BTW: The length is 4 bytes, add 0x3 to each address and then change it's value.


RPC: //Credit to Choco, and Shark for fixing it

    
public class RPC
{
static uint function_address = Addresses.R_SetFrameFog; // R_SetFrameFog

public static int Init()
{
if (function_address == 0) return -1;
Enable_RPC();
return 0;
}

public static void Enable_RPC()
{
PS3.SetMemory(function_address, new byte[] { 0x4E, 0x80, 0x00, 0x20 });
System.Threading.Thread.Sleep(20);
byte[] func = new byte[] { 0x7C, 0x08, 0x02, 0xA6, 0xF8, 0x01, 0x00, 0x80, 0x3C, 0x60, 0x10, 0x05, 0x81, 0x83, 0x00, 0x4C, 0x2C, 0x0C, 0x00, 0x00, 0x41, 0x82, 0x00, 0x64, 0x80, 0x83, 0x00, 0x04, 0x80, 0xA3, 0x00, 0x08, 0x80, 0xC3, 0x00, 0x0C, 0x80, 0xE3, 0x00, 0x10, 0x81, 0x03, 0x00, 0x14, 0x81, 0x23, 0x00, 0x18, 0x81, 0x43, 0x00, 0x1C, 0x81, 0x63, 0x00, 0x20, 0xC0, 0x23, 0x00, 0x24, 0xC0, 0x43, 0x00, 0x28, 0xC0, 0x63, 0x00, 0x2C, 0xC0, 0x83, 0x00, 0x30, 0xC0, 0xA3, 0x00, 0x34, 0xC0, 0xC3, 0x00, 0x38, 0xC0, 0xE3, 0x00, 0x3C, 0xC1, 0x03, 0x00, 0x40, 0xC1, 0x23, 0x00, 0x48, 0x80, 0x63, 0x00, 0x00, 0x7D, 0x89, 0x03, 0xA6, 0x4E, 0x80, 0x04, 0x21, 0x3C, 0x80, 0x10, 0x05, 0x38, 0xA0, 0x00, 0x00, 0x90, 0xA4, 0x00, 0x4C, 0x90, 0x64, 0x00, 0x50, 0xE8, 0x01, 0x00, 0x80, 0x7C, 0x08, 0x03, 0xA6, 0x38, 0x21, 0x00, 0x70, 0x4E, 0x80, 0x00, 0x20 };
PS3.SetMemory(function_address + 0x4, func);
PS3.SetMemory(0x10050000, new byte[0x2854]);
PS3.SetMemory(function_address, new byte[] { 0xF8, 0x21, 0xFF, 0x91 });
}

public static int Call(uint func_address, params object[] parameters)
{
int num_params = parameters.Length;
uint num_floats = 0;
for (uint i = 0; i < num_params; i++)
{
if (parameters[i] is int)
{
byte[] val = BitConverter.GetBytes((int)parameters[i]);
Array.Reverse(val);
PS3.SetMemory(0x10050000 + (i + num_floats) * 4, val);
}
else if (parameters[i] is uint)
{
byte[] val = BitConverter.GetBytes((uint)parameters[i]);
Array.Reverse(val);
PS3.SetMemory(0x10050000 + (i + num_floats) * 4, val);
}
else if (parameters[i] is string)
{
byte[] str = Encoding.UTF8.GetBytes(Convert.ToString(parameters[i]) + "\0");
PS3.SetMemory(0x10050054 + i * 0x400, str);
uint addr = 0x10050054 + i * 0x400;
byte[] address = BitConverter.GetBytes(addr);
Array.Reverse(address);
PS3.SetMemory(0x10050000 + (i + num_floats) * 4, address);
}
else if (parameters[i] is float)
{
num_floats++;
byte[] val = BitConverter.GetBytes((float)parameters[i]);
Array.Reverse(val);
PS3.SetMemory(0x10050024 + ((num_floats - 1) * 0x4), val);
}
}
byte[] fadd = BitConverter.GetBytes(func_address);
Array.Reverse(fadd);
PS3.SetMemory(0x1005004C, fadd);
System.Threading.Thread.Sleep(20);
byte[] ret = PS3.Extension.ReadBytes(0x10050050, 4);
Array.Reverse(ret);
return BitConverter.ToInt32(ret, 0);
}


}



All Clients Button Monitering: //Thanks to Me and iTnDm

    
public class Buttons
{

public static class Buttonz
{
public static Int32
Cross = 67108864,
Crouch = 33557732,
Prone = 16777216,
Start = 128,
L1 = 134217736,
L2 = -2147483648,
L3 = 537001984,
R1 = 65536,
R2 = 1107296256,
R3 = 33817600;


}
}

public static bool ButtonPressed(int client, int Buttons)
{
if (PS3.Extension.ReadInt32(Offsets.Buttons + ((uint)client * 0x4180)) == Buttons)
return true;
else return false;
}



Jetpack: //Thanks again to Black Panther

    
public void JetPack(int client)
{
float jH = PS3.Extension.ReadFloat(G_Client + ((uint)client * 0x4180));
jH += 100;
PS3.Extension.WriteFloat(G_Client + ((uint)client * 0x4180), jH);
}


//How to use it in a timer or backgroundworker

if(ButtonPressed(0, Buttons.Cross))
{
JetPack(0);
}




Unlock All Trophies: //Thanks to SC58

    

{
string[] Achievements = new string[50];
Achievements[0] = "4 CARMA";
Achievements[1] = "4 CAMPAIGN_COMPLETE";
Achievements[2] = "4 CAMPAIGN_HARDENED";
Achievements[3] = "4 CAMPAIGN_VETERAN";
Achievements[4] = "4 BOOST_DASH_STOMP";
Achievements[5] = "4 GRENADE_DODGE";
Achievements[6] = "4 SONIC_KILL";
Achievements[7] = "4 OVERDRIVE_KILL";
Achievements[8] = "4 SMART_GRENADE_KILL";
Achievements[9] = "4 THREAT_GRENADE_KILL";
Achievements[10] = "4 EMP_DRONE";
Achievements[11] = "4 EMP_AST";
Achievements[12] = "4 INTEL_HALF";
Achievements[13] = "4 INTEL_ALL";
Achievements[14] = "4 COVER_DRONE_KILL";
Achievements[15] = "4 EXO_UPGRADE";
Achievements[16] = "4 EXO_UPGRADE_10";
Achievements[17] = "4 EXO_UPGRADE_20";
Achievements[18] = "4 EXO_UPGRADE_FULL";
Achievements[19] = "4 LEVEL_1";
Achievements[20] = "4 LEVEL_1A";
Achievements[21] = "4 LEVEL_2A";
Achievements[22] = "4 LEVEL_2B";
Achievements[23] = "4 LEVEL_2";
Achievements[24] = "4 LEVEL_3A";
Achievements[25] = "4 LEVEL_3";
Achievements[26] = "4 LEVEL_4A";
Achievements[27] = "4 LEVEL_4";
Achievements[28] = "4 LEVEL_5";
Achievements[29] = "4 LEVEL_5A";
Achievements[30] = "4 LEVEL_6A";
Achievements[31] = "4 LEVEL_6";
Achievements[32] = "4 LEVEL_7";
Achievements[33] = "4 LEVEL_8A";
Achievements[34] = "4 LEVEL_8";
Achievements[35] = "4 LEVEL_9";
Achievements[36] = "4 LEVEL_10A";
Achievements[37] = "4 LEVEL_10";
Achievements[38] = "4 LEVEL_11";
Achievements[39] = "4 LEVEL_12A";
Achievements[40] = "4 LEVEL_12";
Achievements[41] = "4 LEVEL_13A";
Achievements[42] = "4 LEVEL_13";
Achievements[43] = "4 LEVEL_14A";
Achievements[44] = "4 LEVEL_14";
Achievements[45] = "4 COOP_VETERAN";
Achievements[46] = "4 COOP_WARFARE";
Achievements[47] = "4 COOP_UNDEAD_SURVIVOR";
Achievements[48] = "4 COOP_EXO_SURVIVOR";
Achievements[49] = "4 COOP_FLIP_FLOP";

for (int i = 0; i < 50; i++)
{
RPC.Call(Addresses.SV_GameSendServerCommand, -1, 1, Achievements[i]);
System.Threading.Thread.Sleep(25);
RPC.Call(Addresses.SV_GameSendServerCommand, -1, 1, Achievements[i]);
}
}



SV_GameSendServerCommand // Credits to me

    
public void SV_GameSendServerCommand(int client, string command)
{
RPC.Call(Addresses.SV_GameSendServerCommand, client, 0, command + "\"");
}



iPrintln Funcs: //Credits to Me

iPrintlnBold(Center Screen)
    
public void iPrintlnBold(int client, string text)
{
SV_GameSendServerCommand(client, "c \"" + text + "\"");
}


iPrintln(Killfeed)
    
public void iPrintln(int client, string text)
{
SV_GameSendServerCommand(client, "e \"" + text + "\"");
}




CBuf_AddText // Ported from BO2(Shark's)

    
public void Cbuf_AddText(string CMD)
{
RPC.Call(Addresses.Cbuf_AddText, 0, Command);
}



Hud Elements: //Thanks to Shark for the struct, BLB for making setShader and setText, Mega for fixing it somehow, and me for MoveOverTime

    
https://pastebin.com/D7yj9N1u



Aimbot: // Thanks to Bee el Bee (1.04)

    
https://pastebin.com/YTnXukEu



Spawning Entities: //Thanks to xReaperV3 (1.04)

    
public static float[] getPlayerOrigin(int clientIndex)
{
return RPC.ReadSingle(G_Client(clientIndex, 0x7Cool Man (aka Tustin), 3);
}

public static float[] getPlayerAngles(int clientIndex)
{
return RPC.ReadSingle(G_Client(clientIndex, 0x1B4), 3);
}

public static uint spawnEntity(string ModelName, float[] Origin, float[] Angles)
{
uint Entity = (uint)RPC.Call(0x3669B0);
RPC.WriteSingle(Entity + 0x138, Origin);
RPC.WriteSingle(Entity + 0x148, Angles);
RPC.Call(0x365738, Entity, ModelName);
RPC.Call(0x35B6C4, Entity);
return Entity;
}



Clone Player: //Thanks to xReaperV3

    
public static void ClonePlayer(int clientIndex)
{
RPC.Call(Addresses.PlayerCMD_ClonePlayer, new object[] { clientIndex });
}



Keyboard: // Thanks to iTnDM (1.04)

    
uint kb_Result = 0x03080E22;
uint kb_cb = 0x988F98;
uint keyboardPrompt = 0x498828;
uint kb_active = 0x0099E42C;



string runKeyboard(string title = "Your title", string presetText = "text here", int maxLength = 20)
{


RPC.Call(keyboardPrompt, new object[] { 0, title, presetText, maxLength, 0, 0, kb_cb });
System.Threading.Thread.Sleep(10);

while (PS3.Extension.ReadInt32(kb_active) == 0) { }
return PS3.Extension.ReadString(kb_Result);
}



Unlock All: //Thanks to RachetBooty

    
byte[] buffer = new byte[0x1770];
for (int i = 0; i < 0x1770; i++)
{
buffer[i] = 0xFE;
}
PS3.SetMemory(Addresses.UnlockAll, buffer);



Last edited by Swaqq ; 04-05-2015 at 04:32 PM. Reason: Sorry for the wait, been busy lately

The following 48 users say thank you to Swaqq for this useful post:

@XM7MD_VX, One, ALI ALHILFI, Antonio96C, Azus, BISOON, Boliberrys, CoLsh2R, Confusing, Creepzoid 0___0, dolby1, Drughi, FusionIsDaName, G-T-A-5, Hunter926, ImAzazel, Items, Welsh, Krypton, Kryptus, LcGamingHD, Marco_Legend, MODZ4FUN420, ModzIsCoot, NotALegitPlayer, OLDSCHOOLMODZHD, Prom1ses, RTE, SaberNGU, Smoky420, SONYS✮NIGHTMARE, Stunz, Synergy, top_top, TotalModzHD, tyronS, Laser, xCLS, xDebugKiller, xKrazy SicknesS, XM7MD_VX, xSlinkeyy, xso1id, Xx-GIPPI-xX, yomen9, zAlbanianModder, zRayz-
11-01-2014, 12:09 AM #2
Originally posted by NGU View Post
Hi fegs Winky Winky since SC58's thread only has addresses, I've decided to make my own thread :P !
Feel free to post your addresses and or scripts in the reply section and I will update the thread ASAP!


Addresses

Thanks to Seb
    
0x0176E0E8 - G_HudElems
0x0030BD1C - HECmd_SetClock(scr_entref_t entref)
0x0030B9D0 - HECmd_SetClock_Internal(scr_entref_t entref, he_type_t type, const char *cmdName)
0x003D9E68 - Scr_Error(char const *)
0x003E0A50 - Scr_GetNumParam()
0x003DF850 - Scr_GetFloat(unsigned int index)
0x003DF584 - Scr_GetInt(unsigned int index)
0x00047210 - G_MaterialIndex(const char *name)
0x003DFCD4 - Scr_GetString(unsigned int index)
0x003DF99C - Scr_GetConstString(unsigned int index)
0x003D667C - Scr_CastString(VariableValue *value)
0x003D2374 - SL_ConvertToString(unsigned int stringValue)
0x0030B468 - HECmd_SetMaterial(scr_entref_t entref)
0x000470C0 - G_FindConfigstringIndex(const char *name, int start, int max, int create, const char *errormsg)
0x0033B910 - Scr_PrecacheShader
0x00047254 - G_ModelIndex(const char *name)
0x000472D4 - G_ModelName(int index)
0x0042B480 - SV_GetConfigstringConst(int index)
0x00047334 - G_EffectIndex(const char *name)
0x00047378 - G_ShellShockIndex(const char *name)
0x00047500 - G_RumbleIndex(const char *name)
0x0004C938 - G_LocalizedStringIndex(const char *string)
0x00309D54 - GScr_NewHudElem(void)
0x0035DD54 - Scr_AddHudElem(game_hudelem_s *hud)
0x003E1048 - Scr_AddEntityNum(int entnum, unsigned int classnum)
0x003D8AB4 - Scr_GetEntityId(int entnum, unsigned int classnum)
0x003D46EC - GetVariableIndexInternal(unsigned int parentId, unsigned int name)
0x00309DBC - GScr_NewClientHudElem(void)
0x0035DC68 - Scr_GetEntity(unsigned int index)
0x003E0098 - Scr_GetEntityRef(unsigned int index)
0x00309E24 - GScr_NewTeamHudElem(void)
0x003098B8 - HudElem_SetDefaults(game_hudelem_s *hud)
0x0030CA98 - HECmd_Reset(scr_entref_t entref)
0x00309988 - HudElem_Alloc(int clientNum, int teamNum)
0x0042E3EC - SV_SendServerCommand(client_s *cl, svscmd_type type, const char *fmt)
0x005F8070 - R_SetFrameFog(GfxCmdBufInput *input)
0x0042E860 - SV_SetClientStat(int clientNum, int index, int value)
0x00363558 - G_Spawn()
0x0179D100 - level_locals_t
0x003A9710 - Com_Error(errorParm_t code, const char *fmt)
0x0042A598 - SV_LocateGameData(gentity_s *gEnts, int numGEntities, int sizeofGEntity_t, playerState_s *clients, int sizeofGameClient)
0x00304E60 - G_ParseHitLocDmgTable(void)
0x004C4E98 - ParseConfigStringToStruct(char *pStruct, cspField_t *pFieldList, const int iNumFields, const char *pszBuffer, const int iMaxFieldTypes, int (__cdecl *parseSpecialFieldType)(char *, const char *, const int), void (__cdecl *p)(char *, const char *))
0x003D3174 - Scr_AllocString(const char *s, int sys)
0x003D28F4 - SL_GetStringOfSize(const char *str, unsigned int user, unsigned int len, int type)
0x00165258 - BG_LoadPenetrationDepthTable(void)
0x006A6814 - memset
0x004B1074 - Com_Memset(void *dest, const int val, int count)
0x0037251C - G_VehiclesInit(int restarting)
0x0042B2A0 - SV_SetConfigstring(int index, const char *val)
0x0030399C - G_setfog(const char *fogstring)
0x0004D0A8 - Missile_InitAttractors(void)
0x0035C194 - G_InitObjectives(void)
0x003DF168 - Scr_InitSystem(int sys)
0x003D4FD4 - AllocObject()
0x003D4E38 - AllocVariable()
0x003D500C - Scr_AllocArray()
0x003D9E5C - Scr_SetLoading(int bLoading)
0x003D9B08 - Scr_AllocGameVariable(void)
0x003D3F38 - RemoveRefToValue(int type, VariableUnion u)
0x0035F0F4 - G_LoadStructs(void)
0x003DE9D0 - Scr_ExecThread(int handle, unsigned int paramcount)
0x003DEC60 - Scr_FreeThread(unsigned __int16 handle)
0x003D3E4C - RemoveRefToObject(unsigned int id)
0x00312090 - G_ParseSpawnVars(SpawnVar *spawnVar)
0x00312250 - G_SpawnString(SpawnVar *spawnVar, const char *key, const char *defaultString, const char **out)
0x00311EB8 - G_ResetEntityParsePoint(void)
0x0037B850 - CM_EntityString()
0x0034CECC - Scr_LoadGameType(void)
0x0034D3CC - Scr_LoadLevel(void)
0x0034D3CC - Scr_StartupGameType(void)
0x004B01E4 - Com_UnloadRawTextFile(const char *filebuf)
0x003131C8 - G_InitGame(int levelTime, int randomSeed, int restart, int savepersist)
0x003C0430 - Sys_IsMainThread()
0x004B0110 - MSG_Init(msg_t *buf, char *data, int length)
0x003126D8 - G_RegisterDvars
0x004BA5A4 - Dvar_RegisterString(const char *dvarName, const char *value, unsigned __int16 flags, const char *description)
0x004BA378 - Dvar_RegisterVariant(const char *dvarName, char type, unsigned __int16 flags, DvarValue value, DvarLimits domain, const char *description)
0x004B8F08 - Dvar_FindMalleableVar(const char *dvarName)
0x004BB1C4 - Dvar_RegisterBool(const char *dvarName, bool value, unsigned __int16 flags, const char *description)
0x004BB224 - Dvar_RegisterInt(const char *dvarName, int value, int min, int max, unsigned __int16 flags, const char *description)
0x006A19B8 - strchr

Found by Me:
    
EnableFPS = 0x48BD6F, // Enable with 0x01
TextSize = 0x49BCC4,
Position1 = 0x49BCC8,
Position2 = 0x49BCCC,
FPSText = 0x79436C;


G_Client/G_Entity Thanks to SC58
    
0x1815300 - G_Entity
g entity clientsize - 0x280
0x1905300 - G_Client
gclient clientsize - 0x4180
0x20E3D10 - Client_S
client_s ClientSize - 0x77A80





Offsets

Updating...



Scripts

RPC: //Credit to SC58

    
public class RPC
{
static uint function_address = 0x5F8070; // R_SetFrameFog

public static int Init()
{
if (function_address == 0) return -1;
Enable_RPC();
return 0;
}

public static void Enable_RPC()
{
PS3.SetMemory(function_address, new byte[] { 0x4E, 0x80, 0x00, 0x20 });
System.Threading.Thread.Sleep(20);
byte[] func = new byte[] { 0x7C, 0x08, 0x02, 0xA6, 0xF8, 0x01, 0x00, 0x80, 0x3C, 0x60, 0x10, 0x05, 0x81, 0x83, 0x00, 0x4C, 0x2C, 0x0C, 0x00, 0x00, 0x41, 0x82, 0x00, 0x64, 0x80, 0x83, 0x00, 0x04, 0x80, 0xA3, 0x00, 0x08, 0x80, 0xC3, 0x00, 0x0C, 0x80, 0xE3, 0x00, 0x10, 0x81, 0x03, 0x00, 0x14, 0x81, 0x23, 0x00, 0x18, 0x81, 0x43, 0x00, 0x1C, 0x81, 0x63, 0x00, 0x20, 0xC0, 0x23, 0x00, 0x24, 0xC0, 0x43, 0x00, 0x28, 0xC0, 0x63, 0x00, 0x2C, 0xC0, 0x83, 0x00, 0x30, 0xC0, 0xA3, 0x00, 0x34, 0xC0, 0xC3, 0x00, 0x38, 0xC0, 0xE3, 0x00, 0x3C, 0xC1, 0x03, 0x00, 0x40, 0xC1, 0x23, 0x00, 0x48, 0x80, 0x63, 0x00, 0x00, 0x7D, 0x89, 0x03, 0xA6, 0x4E, 0x80, 0x04, 0x21, 0x3C, 0x80, 0x10, 0x05, 0x38, 0xA0, 0x00, 0x00, 0x90, 0xA4, 0x00, 0x4C, 0x80, 0x64, 0x00, 0x50, 0xE8, 0x01, 0x00, 0x80, 0x7C, 0x08, 0x03, 0xA6, 0x38, 0x21, 0x00, 0x70, 0x4E, 0x80, 0x00, 0x20 };
PS3.SetMemory(function_address + 0x4, func);
PS3.SetMemory(0x10050000, new byte[0x2854]);
PS3.SetMemory(function_address, new byte[] { 0xF8, 0x21, 0xFF, 0x91 });
}

public static int Call(uint func_address, params object[] parameters)
{
int num_params = parameters.Length;
uint num_floats = 0;
for (uint i = 0; i < num_params; i++)
{
if (parameters[i] is int)
{
byte[] val = BitConverter.GetBytes((int)parameters[i]);
Array.Reverse(val);
PS3.SetMemory(0x10050000 + (i + num_floats) * 4, val);
}
else if (parameters[i] is uint)
{
byte[] val = BitConverter.GetBytes((uint)parameters[i]);
Array.Reverse(val);
PS3.SetMemory(0x10050000 + (i + num_floats) * 4, val);
}
else if (parameters[i] is string)
{
byte[] str = Encoding.UTF8.GetBytes(Convert.ToString(parameters[i]) + "\0");
PS3.SetMemory(0x10050054 + i * 0x400, str);
uint addr = 0x10050054 + i * 0x400;
byte[] address = BitConverter.GetBytes(addr);
Array.Reverse(address);
PS3.SetMemory(0x10050000 + (i + num_floats) * 4, address);
}
else if (parameters[i] is float)
{
num_floats++;
byte[] val = BitConverter.GetBytes((float)parameters[i]);
Array.Reverse(val);
PS3.SetMemory(0x10050024 + ((num_floats - 1) * 0x4), val);
}
}
byte[] fadd = BitConverter.GetBytes(func_address);
Array.Reverse(fadd);
PS3.SetMemory(0x1005004C, fadd);
System.Threading.Thread.Sleep(20);
byte[] ret = PS3.GetMemory(0x10050050, 4);
Array.Reverse(ret);
return BitConverter.ToInt32(ret, 0);
}
}



All Clients Button Monitering: //Thanks to Black Panther

    
public static class Buttons
{
public static Int32
L1 = 526336,
L2 = 32768,
L3 = 8194,
R1 = 1,
R2 = 16384,
R3 = 67108868,
Cross = 1024,
Square = 48,
Crouch = 512,
Prone = 256,
Start = 8388608;
}

public static bool ButtonPressed(int client, int Buttons)
{
if (PS3.Extension.ReadInt32(0x19090B4 + ((uint)client * 0x4180)) == Buttons)
return true;
else return false;
}



Jetpack: //Thanks again to Black Panther

    
public void JetPack(int client)
{
float jH = PS3.Extension.ReadFloat(0x190538C + ((uint)client * 0x4180));
jH += 100;
PS3.Extension.WriteFloat(0x190538C + ((uint)client * 0x4180), jH);
}


//How to use it in a timer or backgroundworker

if(ButtonPressed(0, Buttons.Cross))
{
JetPack(0);
}




Unlock All Trophies: //Thanks to SC58

    

{
string[] Achievements = new string[50];
Achievements[0] = "4 CARMA";
Achievements[1] = "4 CAMPAIGN_COMPLETE";
Achievements[2] = "4 CAMPAIGN_HARDENED";
Achievements[3] = "4 CAMPAIGN_VETERAN";
Achievements[4] = "4 BOOST_DASH_STOMP";
Achievements[5] = "4 GRENADE_DODGE";
Achievements[6] = "4 SONIC_KILL";
Achievements[7] = "4 OVERDRIVE_KILL";
Achievements[8] = "4 SMART_GRENADE_KILL";
Achievements[9] = "4 THREAT_GRENADE_KILL";
Achievements[10] = "4 EMP_DRONE";
Achievements[11] = "4 EMP_AST";
Achievements[12] = "4 INTEL_HALF";
Achievements[13] = "4 INTEL_ALL";
Achievements[14] = "4 COVER_DRONE_KILL";
Achievements[15] = "4 EXO_UPGRADE";
Achievements[16] = "4 EXO_UPGRADE_10";
Achievements[17] = "4 EXO_UPGRADE_20";
Achievements[18] = "4 EXO_UPGRADE_FULL";
Achievements[19] = "4 LEVEL_1";
Achievements[20] = "4 LEVEL_1A";
Achievements[21] = "4 LEVEL_2A";
Achievements[22] = "4 LEVEL_2B";
Achievements[23] = "4 LEVEL_2";
Achievements[24] = "4 LEVEL_3A";
Achievements[25] = "4 LEVEL_3";
Achievements[26] = "4 LEVEL_4A";
Achievements[27] = "4 LEVEL_4";
Achievements[28] = "4 LEVEL_5";
Achievements[29] = "4 LEVEL_5A";
Achievements[30] = "4 LEVEL_6A";
Achievements[31] = "4 LEVEL_6";
Achievements[32] = "4 LEVEL_7";
Achievements[33] = "4 LEVEL_8A";
Achievements[34] = "4 LEVEL_8";
Achievements[35] = "4 LEVEL_9";
Achievements[36] = "4 LEVEL_10A";
Achievements[37] = "4 LEVEL_10";
Achievements[38] = "4 LEVEL_11";
Achievements[39] = "4 LEVEL_12A";
Achievements[40] = "4 LEVEL_12";
Achievements[41] = "4 LEVEL_13A";
Achievements[42] = "4 LEVEL_13";
Achievements[43] = "4 LEVEL_14A";
Achievements[44] = "4 LEVEL_14";
Achievements[45] = "4 COOP_VETERAN";
Achievements[46] = "4 COOP_WARFARE";
Achievements[47] = "4 COOP_UNDEAD_SURVIVOR";
Achievements[48] = "4 COOP_EXO_SURVIVOR";
Achievements[49] = "4 COOP_FLIP_FLOP";

for (int i = 0; i < 50; i++)
{
RPC.Call(0x429F8C, -1, 1, Achievements[i]);
System.Threading.Thread.Sleep(25);
RPC.Call(0x429F8C, -1, 1, Achievements[i]);
}
}



SV_GameSendServerCommand // Credits to me

    
public void SV_GameSendServerCommand(int client, string command)
{
RPC.Call(0x429F8C, client, 0, command + "\"");
}








Enough with the friggin' offset collections omg

The following 2 users say thank you to Black Panther for this useful post:

K3-, Azus
11-01-2014, 12:15 AM #3
Swaqq
Professional Thanker
Originally posted by Zim
Enough with the friggin' offset collections omg


this is the only one tht will be updated :fa: the others are sloppy af and not updated

The following user thanked Swaqq for this useful post:

One
11-01-2014, 12:19 AM #4
Originally posted by NGU View Post
this is the only one tht will be updated :fa: the others are sloppy af and not updated


Mmm okay.
11-01-2014, 01:20 AM #5
Swaqq
Professional Thanker
Updated!

The following user thanked Swaqq for this useful post:

RTE
11-01-2014, 03:39 AM #6
Com_Sprintf = 0x4C2A78,
Dvar_GetBool = 0x4BA628,
Smile

The following 2 users say thank you to OLDSCHOOLMODZHD for this useful post:

Swaqq, Laser
11-01-2014, 11:56 AM #7
Swaqq
Professional Thanker
Originally posted by OLDSCHOOLMODZHD View Post
Com_Sprintf = 0x4C2A78,
Dvar_GetBool = 0x4BA628,
Smile


Updated :3
11-01-2014, 12:12 PM #8
DGMDR
Haxor!
Local Button Monitering Function is by xCSBKx the Region is only from BLB
and the G_Client Research is from xCSBKx not from Shark ^^
11-01-2014, 12:15 PM #9
Swaqq
Professional Thanker
Originally posted by DGMDR View Post
Local Button Monitering Function is by xCSBKx the Region is only from BLB
and the G_Client Research is from xCSBKx not from Shark ^^


ohh fixed :3

The following user thanked Swaqq for this useful post:

DGMDR
11-01-2014, 12:18 PM #10
DGMDR
Haxor!
Originally posted by NGU View Post
ohh fixed :3

Still Shark ._.

Copyright © 2024, NextGenUpdate.
All Rights Reserved.

Gray NextGenUpdate Logo