[Brookit]

Gunbound, smallest game I have found. Still has 312 MB :|
hxxp://gunbound.softnyx.net

[GamingMasteR]

I was using gunbound before but I deleted it by accident ...
Thought there is some game smaller :mrgreen:

[Fyyre]

It is much easier to disable GameGuard from user mode then to waste time attacking it in kernel mode. Right EP?... ;)

All that is required is modification of function: CGameGuard::InitNPGameMonI ... to make it return 0x755 (GameMon Success value). GameGuard functions are linked into the game exe or certain dll at compile time (depends on the game). It amounts to usually: unpacking the exe for whatever game, searching for byte signature and making modification.

GamingMasteR,

Some time ago...I made a 'game emulator' for GameMon... so you may RCE GG without a game... it is 5MB rar'd - let me know if you want a copy, I will PM you.

-Fyyre

[GamingMasteR]

let me know if you want a copy

Of course mate, this will be appreciated :)

[juan81]

It is much easier to disable GameGuard from user mode then to waste time attacking it in kernel mode. Right EP?... ;)

All that is required is modification of function: CGameGuard::InitNPGameMonI ... to make it return 0x755 (GameMon Success value). GameGuard functions are linked into the game exe or certain dll at compile time (depends on the game). It amounts to usually: unpacking the exe for whatever game, searching for byte signature and making modification.

GamingMasteR,

Some time ago...I made a 'game emulator' for GameMon... so you may RCE GG without a game... it is 5MB rar'd - let me know if you want a copy, I will PM you.

-Fyyre

hi,

i know this forum because your link from your web site >,<..
because i use your GG bypass from your web site like DXsetup.dll >,< at Lineage in my country.. >,<

this my question
1. how can change CGameGuard::InitNPGameMonI ... to make it return 0x755 without detection only kerneldetective can run without detection...?
2. what Byte signature system for Gameguard nprotect use? because that game i have unpacked it.

@GamingMasteR : kerneldetective 1.31 can not copy paste more than 1 line to edit >,< more difficult to change / make script.. from dissasmbler box and binary paste can not to more than 1 line >,<.

[juan81]

Thx alot to Fyyre >,<...

i have edit unpacked exe force to 0x755 and GG not to load >,<...
but game disconnected from server after 2 minutes

Most game with this behaviour ?

[Broomop]

this is typical behavior theres a packet that is sent to the server that sends a key on recv of a key to make sure gg is running. you will have to get around that when gg is disabled.

[6748222]

How do u guys, debbug GameMon.des( Gameguard )? I cant even atach olly to it, gamemon.des not even in "protess to atach" list. Mather of fact if i atach CheatEngine debuger to gamemon gamemon simply exit..
How all u guys debbug it?

[EP_X0FF]

AFAIR gamemon.des is unlinking from processes linked list at driver level. Don't remember exact details, because we with Fyyre (mostly Fyyre of course:) ) worked with it... maybe five years ago (it was with Lineage2) but maybe it is possible to disable driver protection or disabllow it. Also this crapware prevents processes dumping/reading process memory by multiple splicing in kernel mode.

[6748222]

Ok, but anyone here knows how start gamemon.des without game.. (manualy) ?