Halo 2 Custom Edition v2

[FreelancerIsFree]

I am not sure why my thread got closed. Please if you have nothing worth contributing or helping or even constructive criticism please stay off of my thread.

Invalid Header Check - This may want to stay intact just in case you don't want to crash Halo 2 because some data does not match up.

Code:

015161AD  |. /74 13         |JE SHORT halo2.015161C2
015161AF  |. |C745 00 0D000>|MOV DWORD PTR SS:[EBP],0D
015161B6  |. |C746 18 58517>|MOV DWORD PTR DS:[ESI+18],halo2.0173515>;  ASCII "incorrect header check"
015161BD  |. |E9 59010000   |JMP halo2.0151631B
015161C2  |> \F64424 14 20  |TEST BYTE PTR SS:[ESP+14],20
015161C7  |.  0F85 70010000 |JNZ halo2.0151633D
015161CD  |.  C745 00 07000>|MOV DWORD PTR SS:[EBP],7
015161D4  |.  E9 4C010000   |JMP halo2.01516325
015161D9  |>  8B46 1C       |MOV EAX,DWORD PTR DS:[ESI+1C]
015161DC  |.  8B48 14       |MOV ECX,DWORD PTR DS:[EAX+14]
015161DF  |.  57            |PUSH EDI
015161E0  |.  56            |PUSH ESI
015161E1  |.  51            |PUSH ECX
015161E2  |.  E8 AB1E0000   |CALL halo2.01518092

Its a easy reversal to skip the check.

It is similar also with the Data check. But instead it checks against multiple sections in the file. Here is the start of the check where you can force it to load the map without any problems.

Code:

015160F7  |.  83F8 0D       CMP EAX,0D
015160FA  |.  0F87 2B030000 JA halo2.0151642B
01516100  |>  FF2485 606451>/JMP DWORD PTR DS:[EAX*4+1516460]
01516107  |>  8B46 04       |MOV EAX,DWORD PTR DS:[ESI+4]
0151610A  |.  85C0          |TEST EAX,EAX
0151610C  |.  0F84 23030000 |JE halo2.01516435
01516112  |.  8346 08 01    |ADD DWORD PTR DS:[ESI+8],1
01516116  |.  8B56 1C       |MOV EDX,DWORD PTR DS:[ESI+1C]
01516119  |.  83C0 FF       |ADD EAX,-1
0151611C  |.  8946 04       |MOV DWORD PTR DS:[ESI+4],EAX
0151611F  |.  8B06          |MOV EAX,DWORD PTR DS:[ESI]
01516121  |.  0FB608        |MOVZX ECX,BYTE PTR DS:[EAX]
01516124  |.  894A 04       |MOV DWORD PTR DS:[EDX+4],ECX
01516127  |.  8B46 1C       |MOV EAX,DWORD PTR DS:[ESI+1C]
0151612A  |.  8B48 04       |MOV ECX,DWORD PTR DS:[EAX+4]
0151612D  |.  8306 01       |ADD DWORD PTR DS:[ESI],1
01516130  |.  80E1 0F       |AND CL,0F
01516133  |.  80F9 08       |CMP CL,8
01516136  |.  8BFB          |MOV EDI,EBX
01516138  |.  74 12         |JE SHORT halo2.0151614C ; Check to see if <BITR> Exist
0151613A  |.  C700 0D000000 |MOV DWORD PTR DS:[EAX],0D
01516140  |.  C746 18 84517>|MOV DWORD PTR DS:[ESI+18],halo2.0173518>;  ASCII "unknown compression method"
01516147  |.  E9 CF010000   |JMP halo2.0151631B ;Jump to Invalid Data.
0151614C  |>  8B48 04       |MOV ECX,DWORD PTR DS:[EAX+4]

Also I found some stuff for a similar Halo 2 CE project lead by KIWIDOGGIE over at his website and halomods.

All credit to his team for this.
Multiple Instances.

Code:

01397EA0   .  CALL DWORD PTR DS:[17FD764]              ;  halo2.013A2F07
01397EA6   .  TEST EAX,EAX
01397EA8   .  JE SHORT halo2.01397EB7
01397EAA   .  CALL DWORD PTR DS:[<&KERNEL32.GetLastErr>; [GetLastError
01397EB0   .  CMP EAX,0B7              ;  Checks to see if Halo 2 is already running
01397EB5   .  JNZ SHORT halo2.01397ECB              ;  If Halo 2 is not already running continue the launching, if not show badboy message
01397EB7   > PUSH 66

Pingo posted that for the latest update of Halo 2 halo2.exe+7eb5; is the address for the reversal.

I will continue to post more research. The Halo 2 exe is protected by isDebuggerPresent and some other function.

[Shock120]

Kiwifails.

[CodeBrain]

The reason why your previous thread was locked, is because it seemed like you were a troll. Many projects like this have occurred before (Kiwidoggie, and E3p0, but both of them are banned for misconduct on the forums).

If you believe the original thread was locked by a mistake, I suggest you send a PM to a moderator or admin asking them why it was locked, and prove that you weren't trolling.

[Inferno]

That user name is something I would come up with.

[Resinball]

People just love to hate on H2V on this forum for no reason. You don't need to prove shit, you've provided enough.

Kiwi is banned from here, I mean WTF? He's one of the few people working on H2V.

[CodeBrain]

If you really want to know why Kiwi was banned, have a look:

http://www.modacity.net/forums/showthread.php?t=10225

http://www.modacity.net/forums/showthread.php?t=9923

Those are the only reasons I could believe why Kiwi was originally banned. However, there ARE posts/threads after those specific threads, so I don't know if these were the original cause.

[ShadowSpartan]

People just love to hate on H2V on this forum for no reason. You don't need to prove shit, you've provided enough.

What did he provide in this thread besides some useless text, and a name that screams troll? Nothing at all.

Kiwi is banned from here, I mean WTF? He's one of the few people working on H2V.

There are good reasons as to why Kiwi was banned from this site. I personally can't stand him because he lies about a lot of stuff. For instance, his tag extractor that he deleted the source code to because the tags were boring and "couldn't be used".

[Limited]

People just love to hate on H2V on this forum for no reason. You don't need to prove shit, you've provided enough.

Kiwi is banned from here, I mean WTF? He's one of the few people working on H2V.

Theres a reason, this site changed its name FROM h2vista.net to modacity.net...you idiot.

Kiwi's a friend of mine, but he does stuff that really annoys me.

[FreelancerIsFree]

This site is not very "user-friendly" it seems. I have talked to kiwi and he seems like good people. It may not agree with this sites "no cheats" rule but other than that it seems like none of the "cheats" that he did create were ever released. (Or I can't find them, or anyone who has them)

There is also some tool that his team was working on called "Choppa" it has most of the tools used to mod/RealTimeHalo Halo 2 for Vista. There is a Meta Extractor in it from the screenshots he has shown me. (Is that what you were talking about ShadowSpartan?)

And so far everything kiwi has said has been true. I'm not taking sides but just looking at the big picture. I think it was in right power for you to ban him from this site, for breaking the rules. But for you to label a new member as a "troll" is not a very good "welcoming" message.

OK back to the research.

This is the player control globals, this has a very similar layout to Halo 2 for the Xbox. (Thank you xbox7887)

Code:

01130577   .  68 D8020000   PUSH 2D8
0113057C   .  6A 00         PUSH 0
0113057E   .  68 CCB94501   PUSH halo2.0145B9CC                      ;  ASCII "player control globals"
01130583   .  E8 95F9F9FF   CALL halo2.010CFF1D
01130588   .  83C4 0C       ADD ESP,0C
0113058B   .  A3 7CA35601   MOV DWORD PTR DS:[156A37C],EAX ; PUSH PCG To Stack EAX
01130590   .  C600 00       MOV BYTE PTR DS:[EAX],0 ; Reset EAX
01130593   .  C3            RETN

[ShadowSpartan]

(Is that what you were talking about ShadowSpartan?)

No it is not. Tag extraction is not the same as "meta" extraction.

But for you to label a new member as a "troll" is not a very good "welcoming" message.

If you don't want to be labeled as a troll, then pick a unique username. Explain to us where your username came from and why you chose it, if you are indeed not a troll.