OGC Punkbuster Hack v2.7 by Phar Lap
--------------------------------------------------------------------------------
!!! I highly recommend to read this textfile until the end because I won't answer ANY questions which are already discussed here !!!
| Preamble:
I know that this hack will definitely defeat Punkbuster because now there are no reliable screenshots anymore and even no CVar-violations, which were the biggest problem. Everyone has the right to play the game like he wants to! Punkbuster has been restricting this freedom for long enough and it has to face its defeat now like all the other attempts to control cheaters.
| Features:
Permanent authentication with all cheats (useful for Flautz Wallhack or other detected cheats)
100% working Anti-Screenshot feature for all current hacks (OGC hook, Flautz WH, HLhack and some others). All visible cheats
will turn off when a PB admin makes a screenshot of your Half-Life game!
CVar protector: When PB checks your HL CVars, it will always get valid values, even if you have other values (cl_bob 0 for example).
The protector can also hide all the HLhack and XQZ 2 CVars and commands!
| Changes:
Version 2.7 (27. Nov 2001):
Changed again the timing method of anti-screenshot option 1. Finally it keeps exactly 6 seconds. Sorry for any inconvenience.
Changed the IP of the test-server in the section 'Are you kidding' because the old server doesn't check CVars anymore and also doesn't make screenshots anymore.
Version 2.6 (25. Nov 2001):
Anti-screenshot feature of option 1 will now disable cheats fo 6 seconds instead of five
Anti-screenshot feature uses now special timing so it keeps the cheats exactly 6 seconds off (the standard windows-timing is crap!)
Version 2.5 (20. Nov 2001):
Re-added protection of the standard CS CVars and a warning message that Admin-mod can possibly detect that.
Icon-background of PunkHack.exe now transparent... Thanks to Bunny771 from our IRC channel ;)
Version 2.0 (18. Nov 2001):
Anti-screenshot feature works now 100% with OGC Hook beta 5.0 on XP and 2k systems!
Removed NightWolf's script to make this hack undetectable for TSC and admin-mod (just like OGC hook beta 5)
Version 1.5 (12. Nov 2001):
Some people didn't want to have the PC speaker beeping when a screenshot is taken, so I made this feature optional.
Option 1 will now disable cheats for 5 seconds instead of three. This is for the sake of more security!
Added a nice script from NightWolf which will restore your favourite cheat-settings for OGC hook beta 4.3 after you've been screenshotted ;)
CVar protector: Not protecting the standard CVars from CS anymore due to security reasons. Only cheat-CVars are still protected. See below.
(Thanks to vnm]blaZa from the 'venom'-clan, who reported me that. Nice to see blaZa back in the cheating business :))
| Installation:
copy PunkHack.exe and injectPB.dll from this ZIP archive into your PunkBuster directory.
| Usage:
Start PunkHack.exe
Step 1 -> Select your cheat:
Option 1: Select this option if you want to play HL with OGC Hook beta 5.0 or higher. In that case, you can proceed to step 2. If the Punkbuster admin makes a screenshot, you will hear two beeps from your PC speaker (if you select the beep-checkbox) and OGC hook will hide all visible cheats while the screenshot is taken... and once finished, the cheats will turn back on after 6 seconds automatically.
--------------------------------------------------------------------------------
Option 2: Select this option if you want to play HL with Flautz Wallhack. In the config screen of Flautz Wallhack, you must define a 'Panic Key'. You have to enter the virtual key-code number of the key, which will turn off all cheats in-game. You have to enter the same number into the field 'virtual-key code to simulate' in this PB Hack. Look at the bottom of this file for all virtual-keycodes!
If the PB admin wants to make a screenshot, you will hear two beeps from your PC speaker (if you select the beep-checkbox) and this PB hack will simulate a keypress of the specified key, which, in turn, will make Flautz Wallhack to deactivate all the cheats. You have to turn them on manually after some seconds.
--------------------------------------------------------------------------------
Option 3: Select option 3 if you want to play HL with another hack which supports CVars, like HLHack or ViperG. You need to bind a key in Half-Life which turns off all cheats.
If you don't know how to bind a key, follow these steps:
Open notepad ( with a click on Start|Run...|"notepad" )
Load the file config.cfg from your Half-life MOD directory (e.g. cstrike, tfc, ...) into notepad
Insert a new empty line somewhere and type the following into it :
bind "" ""
You have to replace by a key which is not already bound and replace by the commands that will turn off your visible cheats. For example if you're using HLhack (http://blake.prohosting.com/hlhack), type:
bind "d" "transent 255;bot 0;esp 0;radar 0;playerglow 0"
If you have ViperG, type:
bind "d" "glowhack 0"
Save the file and exit notepad
The next step is to enter the virtual-key code of the defined key into the field on the right. In our example, it is "D"...so we look at the bottom of this file and look for the code of "D", which is 68. That's all. If a PB admin wants to make a screenshot, you will hear two beeps from your PC speaker (if you select the beep-checkbox) and this PB hack will simulate pressing the -key and some milliseconds later, the key you specified. You can proceed to the next step.
Anti-screenshot option 3 is not 100% safe, but i guess it is 97% safe. That's because if PB makes a screenshot, this PB hack will simulate pressing the specified key (as if you would really press it yourself!) to deactivate the cheat before the screenshot is taken. But if you are in console while this happens, the keypress will have no effect because HL doesn't execute binds when you are in console. However, if you are writing a chat message while PB wants a screenshot, this hack will FIRST simulate the -Key and some milliseconds later the specified key. This will cause that your chat message will be sent to the server before you finish it, but it makes sure that your cheats get disabled. You'll get it ;)
Step 2 -> Configure the CVar protector:
The CVar protector is a feature which will prevent Punkbuster from reading out some CVars from your HL-Client. (If you don't know what a CVar is, just activate both checkboxes... this won't hurt performance). If the protector sees that Punkbuster is requesting a certain CVar, it will replace the value which is sent from HL to PB by a valid value, which will make the PunkBuster server think, everything is ok. You won't cause a CVar violation with the protected CVars!
Checkbox 1 (Cheat-CVars of CS):
Selecting this option will replace any requested cheat-CVars, which are enabled by OGC hook, with the valid standard value. Here is a list of the cheat-CVars that will be replaced and by which value they will be replaced:
"chase_active"="0"
"r_fullbright"="0"
"gl_wireframe"="0"
"r_dynamic"="1"
"r_lightmap"="0"
You need OGC Hook in order to change them, because they're are blocked by CS due to their use in cheating.
Checkbox 2 (Standard CVars of CS):
Selecting this option will replace some of the standard CS CVars with the valid standard value. Here is a list of the CVars that will be replaced and by which value they will be replaced:
"cl_bob"="0.01"
"cl_bobup"="0.5"
"gl_max_size"="512"
"cam_idealyaw"="90"
"cl_forwardspeed"="400"
"gl_zmax"="4096"
"sv_clienttrace"="1"
"cam_command"="0"
"m_pitch"="0.022"
"default_fov"="90"
"lambert"="1.5"
"cl_backspeed"="400"
"fakelag"="0"
"lightgamma"="2.5"
"gl_alphamin"="0.25"
"brightness"="1.000000"
"direct"="0.9"
"cam_idealdist"="64"
"cl_bobcycle"="0.8"
"cl_sidespeed"="400"
"cl_pitchspeed"="225"
"sv_cheats"="0"
"gl_overbright"="0"
"gl_nobind"="0"
"gl_monolights"="0"
"r_drawviewmodel"="1"
To make it clear one last time: You can play with the above CVars having any value: Punkbuster will think you use the valid values which are written above!
Checkbox 3 (HLhack and XQZ CVars):
Easy to guess ... this one will make all CVars of HLhack 1.3 and XQZ 2 beta 8.5 invisible. To be exact: It replaces the values with "unknown variable". This refers to all the CVars and commands which are listed in the readme.txt of hlhack 1.3 and the hell.ini of XQZ 2 beta 8.5. You won't cause any CVar violations anymore with HLHack or XQZ2 beta 8.5!
Checkbox 4 (Show replaced messages in Punkbuster console):
When I hacked PB, I discovered a logging feature in Punkbuster which writes all received CVars to its console. If you activate the checkbox, you can see when my CVar protector replaced a message. This is for the curious ppl out there :) . Note: Those messages are NOT sent to the PB server !!
| Are you kidding?:
Of course not!
You can check the functionality of the Anti-Screenshot feature by pressing + in-game. The PB hack will then deactivate the cheats based on which option you've chosen. Pressing this hotkey will have the same effect as if Punkbuster tries to make a screenshot.
If you still don't trust it, do the following:
Start this PB hack with the first oiption selected and with the last four checkboxes enabled.
Start OGC hook 5 in windowed mode (add "-win" to commandline)
Connect to the server 62.180.132.138:27025
Now turn on all the cheats and watch the Punkbuster console. This server will check some CVars and you will see that in the PB console. It also makes a screenshot automatically every 15 minutes. So just wait and see your cheats turn off :) ... after 30 seconds the PB console will say 'screenshot delivered'.
I think this is enough to know you're safe. For the programmers amongst you, I can send you the source-code of injectPB.dll if you ask me nice ;) . I also documented every single instruction in it.
| Exodus:
A big "THANK YOU" goes out to 'System' (creator of OGC hook), who helped me to find code snippets and links to tutorials about API hooking.
This whole PB hack is coded in 100% pure assembler by Phar Lap after studying the ForceLibrary and InterceptDLL-sources.
You can find them here:
http://y0da.teamunknown.com (ForceLibrary)
http://www.anticracking.sk/EliCZ (InterceptDLL)
I also want to thank Vasily Pupkin for his great site (http://clientbot.narod.ru) and for his divine tool called "UDP proxy". Thank you Vasily! :)
If you still have some questions, you can meet me on IRC:
/server irc.rizenet.org
/join #cheat-network
--------------------------------------------------------------------------------
Written by Phar Lap for www.mpcheats.com !
--------------------------------------------------------------------------------
| Virtual-Key codes for Anti-Screenshot options 2 and 3:
## | Description
---+------------
16 | SHIFT key
17 | CTRL key
18 | ALT key
32 | SPACEBAR
37 | LEFT ARROW key
38 | UP ARROW key
39 | RIGHT ARROW key
40 | DOWN ARROW key
48 | 0 key
49 | 1 key
50 | 2 key
51 | 3 key
52 | 4 key
53 | 5 key
54 | 6 key
55 | 7 key
56 | 8 key
57 | 9 key
65 | A key
66 | B key
67 | C key
68 | D key
69 | E key
70 | F key
71 | G key
72 | H key
73 | I key
74 | J key
75 | K key
76 | L key
77 | M key
78 | N key
79 | O key
80 | P key
81 | Q key
82 | R key
83 | S key
84 | T key
85 | U key
86 | V key
87 | W key
88 | X key
89 | Y key
90 | Z key
96 | Numeric keypad 0 key
97 | Numeric keypad 1 key
98 | Numeric keypad 2 key
99 | Numeric keypad 3 key
100 | Numeric keypad 4 key
101 | Numeric keypad 5 key
102 | Numeric keypad 6 key
103 | Numeric keypad 7 key
104 | Numeric keypad 8 key
105 | Numeric keypad 9 key
106 | Multiply key
107 | Add key
108 | Separator key
109 | Subtract key
110 | Decimal key
111 | Divide key
112 | F1 key
113 | F2 key
114 | F3 key
115 | F4 key
116 | F5 key
117 | F6 key
118 | F7 key
119 | F8 key
120 | F9 key
121 | F10 key
122 | F11 key
123 | F12 key
