feature: added trigger bot.

jamesmoriarty · May 10, 2021 · efce2ab · efce2ab
1 parent a7605fa
commit efce2ab
Show file tree

Hide file tree

Showing 8 changed files with 81 additions and 14 deletions.
diff --git a/README.md b/README.md
@@ -4,6 +4,11 @@
 
 Experimental CSGO external game exploit.
 
+## Features
+
+- Trigger Bot (hold shift)
+- Bunny Hop (hold space)
+
 ![Screenshot](docs/screenshot.png)
 
 ## Usage

diff --git a/docs/screenshot.png b/docs/screenshot.png
diff --git a/gohack_windows.go b/gohack_windows.go
@@ -2,26 +2,16 @@ package gohack
 
 import (
 	"errors"
-	"fmt"
 	"github.com/jamesmoriarty/gohack/internal/gohack"
 	"github.com/jamesmoriarty/gomem"
 	log "github.com/sirupsen/logrus"
-	"strconv"
 )
 
 var (
 	Version string
 	Date    string
 )
 
-func ToHexString(ptr uintptr) string {
-	s := fmt.Sprintf("%d", ptr)
-	n, _ := strconv.Atoi(s)
-	h := fmt.Sprintf("0x%x", n)
-
-	return h
-}
-
 func Instrument() (*gohack.Client, error) {
 	log.SetFormatter(&log.TextFormatter{ForceColors: true})
 
@@ -42,14 +32,17 @@ func Instrument() (*gohack.Client, error) {
 		return nil, err
 	}
 	log.WithFields(log.Fields{"handle": process.Handle}).Info("OpenProcess ", process.ID)
-	log.WithFields(log.Fields{"value": ToHexString(client.Address)}).Info("- Address")
-	log.WithFields(log.Fields{"value": ToHexString(client.OffsetForceJump())}).Info("- OffsetForceJump")
-	log.WithFields(log.Fields{"value": ToHexString(client.OffsetPlayer())}).Info("- OffsetPlayer")
-	log.WithFields(log.Fields{"value": ToHexString(client.OffsetPlayerFlags())}).Info("- OffsetPlayerFlags")
+	log.WithFields(log.Fields{"value": gohack.ToHexString(client.Address)}).Info("- Address")
+	log.WithFields(log.Fields{"value": gohack.ToHexString(client.OffsetForceJump())}).Info("- OffsetForceJump")
+	log.WithFields(log.Fields{"value": gohack.ToHexString(client.OffsetForceAttack())}).Info("- OffsetForceAttack")
+	log.WithFields(log.Fields{"value": gohack.ToHexString(client.OffsetPlayer())}).Info("- OffsetPlayer")
+	log.WithFields(log.Fields{"value": gohack.ToHexString(client.OffsetPlayerFlags())}).Info("- OffsetPlayerFlags")
+	log.WithFields(log.Fields{"value": gohack.ToHexString(client.OffsetEntityId())}).Info("- OffsetEntityId")
 
 	return client, err
 }
 
 func Execute(c *gohack.Client) {
+	go gohack.RunTrigger(c)
 	gohack.RunBHOP(c)
 }
diff --git a/internal/gohack/bhop.go b/internal/gohack/bhop.go
@@ -3,6 +3,7 @@ package gohack
 import (
 	"github.com/jamesmoriarty/gomem"
 	"time"
+	"runtime"
 	"unsafe"
 )
 
@@ -22,7 +23,10 @@ func RunBHOP(client *Client) {
 				client.Process.Write(client.OffsetForceJump(), writeValuePtr, unsafe.Sizeof(writeValue))
 			}
 
+			// N.B. writing can silently fails so we need to verify the write. I suspect we might need to re-open the process handle.
+
 			readValue = 0x0
+
 			client.Process.Read(client.OffsetForceJump(), readValuePtr, unsafe.Sizeof(readValuePtr))
 
 			if readValue == 0x0 {
@@ -31,5 +35,9 @@ func RunBHOP(client *Client) {
 		}
 
 		time.Sleep(90)
+
+		// N.B. guard against buffer gc.
+		runtime.KeepAlive(&readValue)
+		runtime.KeepAlive(&writeValue)
 	}
 }
diff --git a/internal/gohack/client.go b/internal/gohack/client.go
@@ -34,6 +34,10 @@ func (a *Client) OffsetForceJump() uintptr {
 	return a.Address + a.Offsets.Signatures.OffsetdwForceJump
 }
 
+func (a *Client) OffsetForceAttack() uintptr {
+	return a.Address + a.Offsets.Signatures.OffsetdwForceAttack
+}
+
 func (a *Client) OffsetPlayer() uintptr {
 	var (
 		readValue    uintptr
@@ -48,3 +52,14 @@ func (a *Client) OffsetPlayer() uintptr {
 func (a *Client) OffsetPlayerFlags() uintptr {
 	return a.OffsetPlayer() + a.Offsets.Netvars.Offsetm_fFlags
 }
+
+func (a *Client) OffsetEntityId() uintptr {
+	var (
+		readValue    uintptr
+		readValuePtr = (uintptr)(unsafe.Pointer(&readValue))
+	)
+
+	a.Process.Read(a.OffsetPlayer() + a.Offsets.Netvars.Offsetm_iCrosshairId, readValuePtr, 4)
+
+	return readValue
+}
diff --git a/internal/gohack/offsets.go b/internal/gohack/offsets.go
@@ -16,9 +16,11 @@ type Offsets struct {
 	Signatures struct {
 		OffsetdwLocalPlayer uintptr `yaml:"dwLocalPlayer"`
 		OffsetdwForceJump   uintptr `yaml:"dwForceJump"`
+		OffsetdwForceAttack uintptr `yaml:"dwForceAttack"`
 	} `yaml:"signatures"`
 	Netvars struct {
 		Offsetm_fFlags uintptr `yaml:"m_fFlags"`
+		Offsetm_iCrosshairId uintptr `yaml:"m_iCrosshairId"`
 	} `yaml:"netvars"`
 }
 

diff --git a/internal/gohack/trigger.go b/internal/gohack/trigger.go
@@ -0,0 +1,30 @@
+package gohack
+
+import (
+	"github.com/jamesmoriarty/gomem"
+	"time"
+	"runtime"
+	"unsafe"
+)
+
+
+func RunTrigger(client *Client) {
+	var (
+		writeValue    = byte(0x6)
+		writeValuePtr = (uintptr)(unsafe.Pointer(&writeValue))
+	)
+
+	for {
+		if gomem.IsKeyDown(0x10) { // https://docs.microsoft.com/en-gb/windows/win32/inputdev/virtual-key-codes
+			if client.OffsetEntityId() > 0 && client.OffsetEntityId() <= 64 {
+				client.Process.Write(client.OffsetForceAttack(), writeValuePtr, unsafe.Sizeof(writeValue))
+			}
+		}
+
+		time.Sleep(50)
+
+		// N.B. guard against buffer gc.
+		runtime.KeepAlive(&writeValue)
+	}
+
+}
diff --git a/internal/gohack/util.go b/internal/gohack/util.go
@@ -0,0 +1,14 @@
+package gohack
+
+import (
+	"fmt"
+	"strconv"
+)
+
+func ToHexString(ptr uintptr) string {
+	s := fmt.Sprintf("%d", ptr)
+	n, _ := strconv.Atoi(s)
+	h := fmt.Sprintf("0x%x", n)
+
+	return h
+}