(adsbygoogle = window.adsbygoogle || []).push({}); Non-Host:

    

Redboxes: Note: this has perk check offset that's why there are 2 offset 

RTM = 0x783e0

RTM2 = 0x78604

EBOOT = 0x683E0

EBOOT2 = 0x68604

On1= 0x38, 0x60, 0x00, 0x01

Off1= 0x38, 0x60, 0x00, 0x00

On2 = 0x60, 0x00, 0x00, 0x00

Off2 = 0x41, 0x81, 0x1, 0x0C





No-recoil:

RTM = 0xf9e54

EBOOT = 0xE9E54

On = 0x60, 0x00, 0x00, 0x00

Off = 0x48, 0x50, 0x6E, 0xE5





Steady aim:

RTM = 0x5f0baf

EBOOT = 0x5e0bb0

On =0x2C, 0x04, 0x00, 0x00

Off =  0x2C 0x04, 0x00, 0x02





Laser: 

RTM = 0xef68c

EBOOT = 0xDF68C

On = 0x2C, 0x03, 0x00, 0x01

Off = 0x2C 0x03, 0x00, 0x00





Real Wall-Hack:

RTM = 0x834d0

EBOOT = 0x734D0

On = 0x38, 0xC0, 0xFF, 0xFF

Off = 0x63, 0x26, 0, 0





V-Stat

RTM = 0x33c60

EBOOT = 0x23C60

On = 0x60, 0x00, 0x00, 0x00

Off = 0x40, 0x81, 0x0, 0x44

Thankz

Good, but RTM and EBOOT use the same offset

You made a thread about subtracting 10000 from offsets?

I made a tool to do it but I'm not quite sure if you mean this in a negative rhetorical sense or if your asking a question

Yes but you can't just take an offset and jump to it in hxd you must subtract it to be able to work in a eboot.bin

Ahh yes i totally forgot, but if you subtract from the EBOOT.bin, that will be your offset for both EBOOT and RTM offset as well so technically they are the same.

No an offset that is converted to be used in an eboot will not work with rtm tool. Please with all respect go flame on someone else's post or ask/stat one thing without rewording it to spam the thread.

Im the one who creates EBOOTs xD im not flaming kid, its just that you are wrong.

Full bypass ----> Has been converted, conversion will work for RTM was well

    0x5207B4    5107C4

0x530248    520258

0x530254    520264

0x50A728    4FA738

0x50A738    4FA748

0x50A74C    4FA75C

0x50A754    4FA764

0x50A75C    4FA76C

0x50A778    4FA788

0x507B58    4F7B68

0x50C52C    4FC53C

0x50C594    4FC5A4

0x50C5B8    4FC5C8

0x50C5C4    4FC5D4

    Lazer

Offset: 0xEF68C

On - 0x2C, 0x03, 0x00, 0x01

Off - 0x2C 0x03, 0x00, 0x00



VSAT

Offset: 0x00033C60 (0x60,0,0,0 - On , 0x40, 0x81, 0, 0x44 - Off)



WallHack

Offset: 0x000834D0 (0x38, 0xC0, 0xFF, 0xFF - On , 0x63, 0x26, 0, 0 - Off)

r_dof_enabled - 0x1CBF9F8, 0x00



RedBox 

Offset: 0x000783E0 (0x38, 0x60, 0, 1 - On , 0x38, 0x60, 0, 0 - Off)

Offset: 0x00078604 (0x60, 0, 0, 0 - On , 0x41, 0x81, 1, 0x0C - Off)



ForceHost

Offset: 0x01CD6018

0x00 - On , 0x01 - Off



Steady Aim

Offset: 0x005F0BB0

On - 0x2C, 0x04, 0x00, 0x00

Off - 0x2C 0x04, 0x00, 0x02

now watch the RTM code for Lazer

    if (checkBox16.Checked == true)

            {



                byte[] buffer = new byte[] { 0x2C, 0x03, 0x00, 0x01 };    //Laser

                PS3.SetMemory(0xEF68C, buffer);

                PS31.SetMemory(0xEF68C, buffer);



            }

            else

            {

                byte[] buffer = new byte[] { 0x2C, 0x03, 0x00, 0x00 };

                PS3.SetMemory(0xEF68C, buffer);

                PS31.SetMemory(0xEF68C, buffer);

            }

now for VSAT

    if (checkBox18.Checked == true)

            {



                byte[] buffer = new byte[] { 0x60, 0x00, 0x00, 0x00 };        //VSAT

                PS3.SetMemory(0x00033C60, buffer);

                PS31.SetMemory(0x00033C60, buffer);



            }

            else

            {

                byte[] buffer = new byte[] { 0x40, 0x81, 0, 0x44 };

                PS3.SetMemory(0x00033C60, buffer);

                PS31.SetMemory(0x00033C60, buffer);

            }

wallhack

    if (PS3.Extension.ReadByte(0x1CBF9F != 0)

            {

                PS3.SetMemory(0x1CBF9F8, new byte[] { 0x00 }); //r_dof_enabled 

                PS31.SetMemory(0x1CBF9F8, new byte[] { 0x00 });

                PS3.SetMemory(0x000834D0, new byte[] { 0x38, 0xC0, 0xFF, 0xFF }); //wallhack 

            }

            else

            {

                PS3.SetMemory(0x1CBF9F8, new byte[] { 0x01 }); //r_dof_disable

                PS31.SetMemory(0x1CBF9F8, new byte[] { 0x01 });

                PS3.SetMemory(0x000834D0, new byte[] { 0x63, 0x26, 0x00, 0x00 }); //wallhack 

            }

redbox

    if (checkBox15.Checked == true)

            {



                byte[] buffer = new byte[] { 0x38, 0x60, 0x00, 0x01 };

                PS3.SetMemory(0x000783E0, buffer);

                PS31.SetMemory(0x000783E0, buffer);

                byte[] buffer1 = new byte[] { 0x60, 0x00, 0x00, 0x00 };  //Red box

                PS3.SetMemory(0x00078604, buffer1);

                PS31.SetMemory(0x0007804, buffer1);



            }

            else

            {

                byte[] buffer = new byte[] { 0x38, 0x60, 0x00, 0x00 };

                PS3.SetMemory(0x000783E0, buffer);

                PS31.SetMemory(0x000783E0, buffer);

                byte[] buffer1 = new byte[] { 0x41, 0x81, 0x01, 0x0C };

                PS3.SetMemory(0x00078604, buffer1);

                PS31.SetMemory(0x0007804, buffer1);

            }

Well you get the idea, Still the same codes

lol that very cool that you make eboots but I'm not wrong. An offset in an eboor is subtracted by 10000 and lf you open debuger jump to the eboot offset replace the bytes you would freeze or it wouldn't do shit. It funny on how you think that making eboot/c# tool menus makes you such a bad ass. I have been doing that since mw2. Unlimited ammo in the eboot/ zone mapping the patch_mp.zone and modding weapons in the common/ other files for mw2 and cod4. Before that I was a mod menu maker for PC games like combatarms/ crossfire with is like making a sprx menu . I also have jtags and a rgh that can rte (rgh is my online console. With two nands my jtags are only offline that I use to infect me self with r2 menus)
I also don't think I'm the best out there.

Live by this moto
No one knows everything, but everyone knows something so if we put are minds together we can accomplish anything.


BTW I saw you make a post with updated offset so I'll have this one closed