Forum > General >

[TUT] HOW TO REBASE ADDRESSES!

Luau

Luau

Posts: 113

Threads: 24

Joined: May, 2022

Reputation: -33

Posted

Hello, folks! Today I'll be showing you how to Rebase Addresses so your Sploit can work again!

(This is the old style way, you can use C++ apps which I will make soon for you guys!)

 

This is my example address > 7C8040 (fresh from IDA)

Make sure to add 0x after the address.

This is my address result > 0x07C8040

 

Time to rebase! You can use a calculator doesn't really matter.

 

Step 1: Head over to Hexadecimal to Decimal Converter (binaryhexconverter.com)

Step 2: Paste your result into the Hex Value. 

My result was 8159296 aka the decimal/integer value.

Hopefully you passed math because we're gonna do math.

Step 3: Subtract value 4194304 with 8159296.

https://cdn.discordapp.com/attachments/793599976789114931/978431881240531005/unknown.png

My result came back as 3964992 by subtraction.

Step 4: Convert back into hex Decimal to Hexadecimal Converter (rapidtables.com)

Step 5: Input your subtracted value into the decimal number box.

Step 6: Press 'Convert' and the Hex number is your result!

https://cdn.discordapp.com/attachments/793599976789114931/978432231062241280/unknown.png

Step 7: My final hex-rebased results came back as 3C8040!

Step 8: Add 0x in front of 3C8040 so our final result is 0x3C8040

 

To use your calculated-address:

int imstupid = 0;
#define ASLRH(AS) (AS + NULL + (DWORD)GetModuleHandleA(imstupid))

So I would use ASLRH(0x3C8040) and should work!

 

(Also should I have a discord account?)

  • 0

Luau

SeizureSalad

i love femboys

Posts: 1012

Threads: 73

Joined: Mar, 2021

Reputation: 37

Replied

i guess this was supposed to be helpful but i'm more confused than i was at the start of the post

 

  • why are you adding null
  • why don't you subtract 0x400000 in the aslr macro
  • what's the point of the imstupid variable

can't you just

#define aslr(addy) (addy - 0x400000 + (DWORD)GetModuleHandle(0))

  • 0

"Questionable intellegence, but I like the mystery" - CubeFaces

https://cdn.discordapp.com/attachments/1136067487847415848/1138948596679589898/sig.png

Luau

Luau

Posts: 113

Threads: 24

Joined: May, 2022

Reputation: -33

Replied

Uhhhh this is old 🏫 schooll

  • 0

Luau

luxiferrwoo

expr

Posts: 224

Threads: 43

Joined: May, 2022

Reputation: -5

Replied

or just go into ida, and rebase it to 0x000000 and be done with it? overcomplicated.

  • 0

https://media.discordapp.net/attachments/1044764388546068510/1051935933836050482/Signature_4.png

VoidableMethod

vip

Posts: 1592

Threads: 166

Joined: Apr, 2021

Reputation: 13

Replied

Maybe I am not good at C++, but I am sure it is overcomplicated.

As you said, just try to make an app that will get an addy or just rebase it,

and just release it to the public.

  • 0

Random quote here...

Luau

Luau

Posts: 113

Threads: 24

Joined: May, 2022

Reputation: -33

Replied

bruh fyi **old school**

  • 0

Luau

Users viewing this thread:

( Members: 0, Guests: 1, Total: 1 )