[Source] SpecialForce Thai Info

Discussion in 'Specialforce Source Code & Tutorials' started by zNova, May 1, 2020.

  1. zNova

    zNova Active Member Staff Member Moderator

    Reputations:
    75
    Joined:
    Feb 24, 2019
    Posts:
    54
    Likes Received:
    13
    Trophy Points:
    8
    Location:
    127.0.0.1

    Code:
    static DWORD GetPlayerBase() {
            return *reinterpret_cast<DWORD*>(SFBase + 0xCBA490);
        }
        static DWORD GetGameBase() {
            return *reinterpret_cast<DWORD*>(SFBase + 0xCB243C);
        }
    
    class GAME_INFO
    {
    public:
        char unknown[0x82E0];
        int MyIndex; // 0x82E0
        int GameType; // 0x82E4
        int unk;//0x82E8
        int Rounds; //0x82EC set to zero then auto win (host required)
    };
    
    struct cSkeleton
    {
        char _0x0000[4];
        cSkeleton* pNext;//0x4
        char _0x0008[120];
        D3DXVECTOR3 BoneCords; //0x80
    };
    
    struct CPlayerBone
    {
        char _0x000001[0x858];
        cSkeleton* dwBonePtr;
    
    
        cSkeleton* GetSkeleton()
        {
            if (this->dwBonePtr && this->dwBonePtr->pNext && this->dwBonePtr->pNext->pNext)
                return (cSkeleton*)(this->dwBonePtr->pNext->pNext);
            return 0;
        }
    
        D3DXVECTOR3 GetBone(LPSTR szBoneName)
        {
          
            typedef cSkeleton* (__thiscall * tGetBonePtr)(cSkeleton * GetSkeleton, LPSTR szBoneName);
            tGetBonePtr GetBonePtr = (tGetBonePtr)(SFBase + 0x319AE0);
    
            cSkeleton* pGetBone = GetBonePtr(this->GetSkeleton(), szBoneName);
    
            return pGetBone->BoneCords;
        }
    };//CPlayerBone object needs GetPlayerBase(i)
    
    bool comp(unsigned int a1) {
            return (((unsigned __int8)(a1 >> 16) ^ (unsigned __int8)((a1 >> 20) + (BYTE)(a1) + (a1 >> 28))) & 0xF) == 0;
        }
    
    
    CPlayer* GetPlayerBase(int i) {
            DWORD v12 = *(DWORD*)(*((DWORD*)MainBase::GetPlayerBase() + 28) + 16);
            return *(CPlayer * *)(v12 + 4 * i + 4);
        }
    
    WeaponHack* pWeap() {
            return *(WeaponHack**)(MainBase::GetGameBase() + 0x10CA0);
        }
    
    
    Fast Switch :
    *(PDWORD)(GBase + pClassMgr.GetMyIndex() + 0xE958) = 1;
    //The padding didn't change so just get the offset from Fast switch
    
    class Particle {
    public:
       char pad_[0x294C];
       DWORD gltail;
       DWORD flame;
       DWORD explosion;
       DWORD watergun_01;
       DWORD watergun_03;
       DWORD watergun_filter_p;
       DWORD watergun_filter1;
       DWORD watergun_filter2;
       DWORD watergun_filter3;
       DWORD watergun_filter1_refract;//this part sets v2 to the func that retrieves the particle afterward v2 + 28 is set to 1
       DWORD watergun_filter2_refract;//same
       DWORD watergun_filter3_refract;//same
       DWORD water_bomb;
       DWORD zwoman_particle;
    //... code cut
    };
    
    static Particle* GetParticle() {
           return *reinterpret_cast<Particle**>(SFBase + 0xCD9DA0);//Enjoy you stupid cunt
       }
    
    int SetHealth(int val) {//Intercept the call to get god mode (Host required) - You can also get the in-game host in the function caller
       typedef int(__cdecl * Health)(int);
       Health pHealth = (Health)(SFBase + 0x414120);
       return pHealth(val);
    }
    
    0x19284 - WeaponSize
    0x930 - Weapon Primary Damage
    DWORD SetWeaponDamage(int Slot, int Damage)
       {
           return *(PDWORD)((Slot * WEAPON_SIZE) + DWORD(this) + WEAPON_DAMAGE) = Damage;
       }
    
    0x1DE868 - name
    0x1DE968- health
    int RealHP(void){
    return (health - 625);
    }
    

     
    trismund likes this.
  2. Ohayo

    Ohayo King in the West Staff Member Super Moderator CFPH VIP

    Reputations:
    198
    Joined:
    Dec 9, 2013
    Posts:
    1,089
    Likes Received:
    43
    Trophy Points:
    10

    Wow matutunan ko din to XD
     
    trismund likes this.
  3. Satanism

    Satanism CFPH VIP CFPH VIP

    Reputations:
    10
    Joined:
    Apr 30, 2020
    Posts:
    22
    Likes Received:
    2
    Trophy Points:
    3

    Pasama sa pangarap hahahahah
     
  4. zNova

    zNova Active Member Staff Member Moderator

    Reputations:
    75
    Joined:
    Feb 24, 2019
    Posts:
    54
    Likes Received:
    13
    Trophy Points:
    8
    Location:
    127.0.0.1

    Aimbot Info :
    pitch = [-85, 80]
    yaw = [6.281, 0]//6.282 or 6.300
    roll[-1, 1]

    SF Thailand Anti-Kick :
    if(packet[4] == 0x2C && packet[5] == 0x1){
    //Modify the packet[5] to zero so that you wont be kicked
    }
     
  5. wanttolearn

    wanttolearn Leecher

    Reputations:
    0
    Joined:
    May 12, 2020
    Posts:
    2
    Likes Received:
    0
    Trophy Points:
    1

    how to get the packet?
     
  6. wanttolearn

    wanttolearn Leecher

    Reputations:
    0
    Joined:
    May 12, 2020
    Posts:
    2
    Likes Received:
    0
    Trophy Points:
    1

    also I have a question

    i found this on the other site but its not working
    Code:
    //Name : Emblem Value : Title Value
    Reborn : 541 : 592
    School Look : 515 : 564
    Brutal Dragon : 535 : 586
    Magma : 517 : 566
    White Crow : 519 : 568
    Black Crow : 520 : 569
    13th Anniv. : 632 : 927
    Dragon : 631 : 926
    Rival : 565 : 617
    WaterMelon : 630 : 925
    Aquarius : 655 : 952
    Taurus : 658 : 955
    Leo : 661 : 958
    Scorpio : 664 : 961
    BOLT TITLE Tier 2 : 672 : 968
    Ultimate Title : 636 : 934
    AK47[BRONZE] : 15 : 48
    M4A1[BRONZE] : 20 : 53
    PSG[BRONZE] : 62 : 95
    5Star[Gold] : 555 : 606
    4Star[Gold] : 554 : 605
    3Star[Gold] : 553 : 604
    2Star[Gold] : 552 : 603
    1Star[Gold] : 551 : 602
    6King[Gold] : 561 : 612
    5King[Gold] : 560 : 611
    4King[Gold] : 559 : 610
    3King[Gold] : 558 : 609
    2King[Gold] : 557 : 608
    1King[Gold] : 556 : 607
    AK47[Gold] : 187 : 220
    M4A1[[Gold] : 192 : 225
    PSG[Gold] : 234 : 267
     
    // Emblem
    DWORD ptr = *(PDWORD)0x10B5158;
    ptr = *(PDWORD)(ptr + 0x58);
    *(PDWORD)(ptr + 0x8968) = 541; // Reborn
     
    // Title
    DWORD ptr = *(PDWORD)0x10B5158;
    ptr = *(PDWORD)(ptr + 0x58);
    *(PDWORD)(ptr + 0x896C) = 592; // Reborn
    I do it like this
    Code:
    DWORD SFBase = (DWORD)GetModuleHandle("SpecialForce.exe")
    #define TBASE_ADD (SFBase+0xCB5158)
     
        // Emblem
        DWORD ptr = *(PDWORD)TBASE_ADD;
        
        ptr = *(PDWORD)(ptr + 0x58);
        *(PDWORD)(ptr + 0x8968) = 541; // Reborn
    
       
     
  7. zNova

    zNova Active Member Staff Member Moderator

    Reputations:
    75
    Joined:
    Feb 24, 2019
    Posts:
    54
    Likes Received:
    13
    Trophy Points:
    8
    Location:
    127.0.0.1

    You need to go to emblem tab, select any emblem and title turn on the hack then a messagebox will pop up. After going back to the room the effect should be visible to everyone.
     
  8. zNova

    zNova Active Member Staff Member Moderator

    Reputations:
    75
    Joined:
    Feb 24, 2019
    Posts:
    54
    Likes Received:
    13
    Trophy Points:
    8
    Location:
    127.0.0.1

    Hook winsock or use winsock packet debugging tool tho its the same you need to attach in the app.
     

Users Who Are Viewing This Thread (Users: 0, Guests: 2)

Share This Page

Top
Pinoy Hideout