NefMoto

I made this some time ago to be able to use WinOLS with a RoadRunner emulator (and Ostrich if need be).
I thought I'd post it here, a few of you already have it.

Basically it monitors a binary in OLS memory and outputs the changes in real time to a file.
After that you can monitor this file with EmUtility and changes will instantly go from OLS to your emulator.

Usage:
1. Export current file from OLS and select it in the "Binary to monitor" window.
2. Choose an output file. It will be created if it does not exist, overwritten if it does.
3. Choose options - some helpful options like 16bit byteswap, and stacking (29F200 choose 4, 29F400 choose 2 etc).

Press "Start Monitoring". It should find the binary in RAM and monitor it.
It is a good idea to close the tool or stop monitoring before OLS exits, as otherwise your file will be filled with garbage.

12/05/2016
* Removed address selection.
* Modified algorithm to scan all addresses at the same time.

Huge thanx master PRJ!!!

Legend!

Amazing. Thank you again, prj.

Perfect timing, I just bought a moates.

Very nice! I assume only one project/version can be open in WinOLS? (Or are you querying/matching the complete binary in RAM?)

I did something similar and always found three copies of the binary present in RAM.

Does not matter how much you have open.

It makes a best guess initially. If it guesses wrong you can always select the correct address via trial and error.
Just choose another address and flip a few bytes back and forth and see if it picks it up. One of the addresses will be correct.

And yes, it scans the whole process memory, but it uses a few tricks/assumptions to be really fast doing it. Locating the binary matches should not take longer than 4-5 seconds.

hi, very nice hard work from you prj , thanks advanced, whith this i can viu cursor run inside maps of wionls ? like with ols3000

No. That would be tracing. from ecu to ols.

This tool monitors your changes in ols and puts it to ecu.

(http://i2.kym-cdn.com/entries/icons/original/000/004/029/disgusted-mother-of-god.png)

thanks, this is great!

Amazing!  Thank you :)

Big thanks to you sir!

good app.. thanks

Thanks for sharing this.  I've linked to this thread from our RR / ME7 info page.  If there is anything else you'd like me to include, please let me know.

http://support.moates.net/roadrunner-and-bosch-me7/

That's nice, thanks. No need to include anything else really.

How'd I miss this?? Thanks Prj

Hi, anyone tried it with EDC15 ECU with 29f400?

Does not matter which ecu or which file. Any you want.
This plugin does not care what type of file you are editing.

If you are asking about RoadRunner, yes it works with 29f400 EDC15.
But if you don't kill checksums the car will stall almost every time you make changes even if OLS recalculates the sums.

Hi prj . I have a small problem with your beautiful soft.
It does not detect the tread ols.exe but i can see the ols.exe tread in ram (I even found the file in ram).
I do not understand!

No genuine versions of WinOLS are called "ols.exe".
In fact, it is not called that for a very long time...

Easy fix for the man with the source, assuming the OLS version is right. :)

Never used it but it's a cracker!

Easy fix with my non official version.

What. Was. The. Fix?  ::)

Either renaming the ols exe file or editing the strings in the binary.
Either of those is simple to do.

Regardless, that is an ancient version. Even the cracked versions had different filename last I checked. Granted that was a long time ago, since I have official OLS.

Thanks for your answer, prj. I have legit OLS too, but was busting his chops for the ol' "I fixed it, look"  and not telling what he did.

Yes i change the string in the binaries.
Several people have asked me mp how to change.

Just those strings?  Nice solution.

Sure, because the .exe is not protected in any way, and was never intended to.
If you want to (for some reason) use an ols.exe with a different name, you can change what it looks for without me having to do anything.

I just wondered if it was in more than one place that all mate

There is a list of strings it looks for. Change any one of them.

Very useless post for a very useful bit of freeware software Dmitry, it was a serious question :)

Here's something else useless (joking btw)
(http://cdn.meme.li/instances/300x300/36381796.jpg)

Your question would have been unnecessary had you bothered to open the .exe with a hex editor.
Do it, at least once and you will see what my answer refers to.

It was a simple question in order to provide a bigger picture and since you wrote it then why guess at acsii or at all :)

I'll open it and take a look tomorrow.

Due to modifications in the way OLS keeps track of changes in the new versions a different algorithm was needed to keep track of changes.
It has multiple mirrors in memory and it sometimes updates some, then others and there are delays.

To prevent this annoyance I made an algorithm that monitors all addresses at once and copies the delta changes to the output binary.
Basically it works as it did before now, it is just a bit smarter and does not have issues with newer OLS revisions.

Good job, it looks like they are deploying counter  measures lol.

Assholes. Anything to prevent people from doing stuff on their own.

Thanks for sharing the update, prj.

Thanks for sharing this! Amazing

Never seen it in the release notes lol

They just changed the way OLS works, they are not actively preventing anyone from using this.

In fact I talked to them recently and they will be implementing this functionality in the program according to my request, which means you won't even need this tool in the future.

time to buy ols  :o

Nice one

Damn that is great news. Thank you for your efforts, prj.

Now, how about getting mappack format published :)

The newest OLS version now has support for on the fly binary export to use with external emulators.

Sometimes it just helps to ask nicely.

Awesome. Looks pricey for a function we can do for free already, though.

Did not realize it needs 3 CS points. Will talk to them.

I was excited until 3 CS points lol

Great tool and great work, amazing PRJ.

Also, Guts kit is now available again on moates site.

also i think is prj contribution there.

thanks a lot chief

its still 3cs or 450€  >:(
Will your tool work with Ols 3.76.00?

Test it... The way it works is quite generic/smart.
Unless they change something really majorly I don't see it stopping working soon.

very good job m8....thank you

Nice tool. Will it also support tracing in OLS, like Ostrich do in Tunerpro RT

If you want tracing in OLS buy OLS300.

Source code dump, since I never plan on working on this again.
Maybe something changes or it needs some mods... I just use export plugin since they gave it to me for free.

Needs some understanding of winapi system programming.

With the export plugin OLS1007, will it then be possible to trace with Ostrich, or will this only work with OLS300.

Hello

Can the Ostrich 2 also be operated with this software?

I mean the software doesn't care what emulator you are using. So why not.
I have no clue if it still works or not.

I could probably github the source code though. Though I am not sure if it is a good idea, as it details an attack vector on OLS.

My experience with open source so far is that both reading source code and especially using Github are so alien to the usual thieves and bottom feeders that they won't even figure out what's going on.

Anyone smart enough to know how to use ReadProcessMemory was probably able to figure this and more out already, and anyone who isn't smart enough to figure out how to use ReadProcessMemory isn't going to be helped by this code, I guess is what I'm saying.

There are only two tricks worth anything in the code:
1) How to scan the entire process memory very quickly for the copies of the binary file, if you try the naive approach it will take you half an hour.
2) The algorithm to detect changes, as there are is way more than one copy of the binary in the memory at all times.