[ C++ ] Calling functions of gta v

[buridan]

I have a Injector programm and DLL. In my DLL file I have description of native functions of gta with adresses. But when i call functions nothink happens.

P.S. Addreses of function I took there -> http://www.dev-c.com/nativedb/

CODE: https://pastebin.com/YaA4nf1j

Edited September 1, 2017 by buridan

[Flying Scotsman]

Well, to start you aren't using the scripthook which, as the name suggests, 'hooks' onto the game's script thread and passes it commands. You're just pushing code into the game when the DLL is first injected + attached which is doing nothing in this instance (you're basically injecting a string with a type. The game doesn't know what you're doing and it's never executed as a result). You should also have just told it to run main() or some other function/method instead of putting your code directly into the attach statement (good programming practice!) but that won't be executed either without some form of thread being told to execute it.

 

Secondly you aren't using a native invoker so the game doesn't know what you're doing, so even if you had a hook - it doesn't know what those natives are because you aren't calling the invoker, which means any natives you do manage to execute somehow, will never actually be executed because the invoker is never used.

 

Thirdly those aren't addresses for the natives - they're hashes. You can't call natives via hash. The first long string is the hash of the "original native" (as in day 1 game release) which the scripthook 'maps' onto the most recent native hash (otherwise known as a "crosshashmap" because it crosses the original native hash with the most recent one so it can be called).

 

Why aren't you just using A.B's scripthook dev menu? It's a functional menu with source code that you can look over to see how to properly execute natives.

[buridan]

Well, to start you aren't using the scripthook which, as the name suggests, 'hooks' onto the game's script thread and passes it commands. You're just pushing code into the game when the DLL is first injected + attached which is doing nothing in this instance (you're basically injecting a string with a type. The game doesn't know what you're doing and it's never executed as a result). You should also have just told it to run main() or some other function/method instead of putting your code directly into the attach statement (good programming practice!) but that won't be executed either without some form of thread being told to execute it.

 

Secondly you aren't using a native invoker so the game doesn't know what you're doing, so even if you had a hook - it doesn't know what those natives are because you aren't calling the invoker, which means any natives you do manage to execute somehow, will never actually be executed because the invoker is never used.

 

Thirdly those aren't addresses for the natives - they're hashes. You can't call natives via hash. The first long string is the hash of the "original native" (as in day 1 game release) which the scripthook 'maps' onto the most recent native hash (otherwise known as a "crosshashmap" because it crosses the original native hash with the most recent one so it can be called).

 

Why aren't you just using A.B's scripthook dev menu? It's a functional menu with source code that you can look over to see how to properly execute natives.

Okey, I realized that I do not understand everything about this.

I'm very interested to understand how these things work, and how they can be done by myself. Can you give any advice, maybe you know the books on these topics?

 

If i inject DLL in process thread, and it work(i tested it), how can i call gta5 function by hash?

Edited September 2, 2017 by buridan

[Flying Scotsman]

I'd highly recommend learning GTA modding through A.B's native trainer. That'll give you an idea on how to call natives and how they work etc. It's part of the Scripthook SDK so comes with the sources for you to look over. An ASI is just a DLL with a different extension so it should help you anyway.

 

You can't call GTA functions through a hash without the native invoker. Your DLL injection worked due to how DLLs function, but the code wouldn't have been executed because the game doesn't know what you're wanting to do.

 

In this case, you were missing the native invoker to call the function directly (there are alternative means of doing this but since those can be used for Online modding - won't be discussed here). If you look through A.B's Native Trainer, you'll find how the invoker works. In essence, you find the block of memory where all the natives begin and store that address (this is done in the scripthook.dll file). When you call a native, the invoker is given the hash of the native you are calling and finds the corresponding address in memory before calling it with the args given. It's quite a complicated system to be honest.

 

There's no books as far as I can tell (I'm interested in this sort of thing, but haven't found any books on it) but it's an interesting method of modding.

[CamxxCore]

OpenVHook is an open- source Scripthook implementation. Maybe it offers some insight (:

[buridan]

Guys, thanks for giving the direction and prompting where to start!