| View previous topic :: View next topic |
| Author |
Message |
nonsense
How do I cheat?
![]() Reputation: 0
Joined: 15 Sep 2014
Posts: 1
|
 Posted: Mon Sep 15, 2014 8:42 am Post subject: Hi guys pls help me with cooldown |
 |
|
so, I spent a whole day to figured this out by myself
but all I could find is the skill address. 
I will really appriciate if someone could help me!
these two are the what writes to adress that I want to make no cooldown
1.
154C59D9 - 8B 45 08 - mov eax,[ebp+08]
154C59DC - 89 88 E4000000 - mov [eax+000000E4],ecx
154C59E2 - C7 80 D8000000 00000000 - mov [eax+000000D8],00000000 <<
154C59EC - C7 80 E8000000 00000000 - mov [eax+000000E8],00000000
154C59F6 - C9 - leave
EAX=1E61E880
EBX=1765A520
ECX=00000001
EDX=015B0A40
ESI=1E3DB960
EDI=1E3DB960
ESP=014FF5C0
EBP=014FF5C8
EIP=154C59EC
2.
154C5BC3 - 8B 4D 0C - mov ecx,[ebp+0C]
154C5BC6 - 8B 45 08 - mov eax,[ebp+08]
154C5BC9 - 89 88 D8000000 - mov [eax+000000D8],ecx <<
154C5BCF - C9 - leave
154C5BD0 - C3 - ret
EAX=1E61E880
EBX=1765A520
ECX=00000000
EDX=015B0A40
ESI=1E3DB960
EDI=1E3DB960
ESP=014FF5C0
EBP=014FF5C8
EIP=154C5BCF
It might be imppossible since its online game but I want to learn at least.
I found them so interesting :p
Guys, please help!
|
|
| Back to top |
|
 |
Geri
Moderator
![]() Reputation: 111
Joined: 05 Feb 2010
Posts: 5636
|
| Posted: Mon Sep 15, 2014 10:22 am Post subject: |
|
|
If you freeze the value and you get instant cooldown, it can be done. (Which doesn't mean that you will not get detected and banned.)
_________________
|
|
| Back to top |
|
|
nonsense
How do I cheat?
![]() Reputation: 0
Joined: 15 Sep 2014
Posts: 1
|
| Posted: Tue Sep 16, 2014 3:01 am Post subject: |
|
|
Thank you so much Geri
They are great tutorials for beginer like me
still cant figured it out but maybe oneday :p
|
|
| Back to top |
|
|
pellik
Advanced Cheater
![]() Reputation: 0
Joined: 14 Jun 2013
Posts: 93
|
| Posted: Thu Sep 25, 2014 10:57 am Post subject: |
|
|
I'm not sure what you're trying to do exactly (freeze, like geri said?), but maybe I can say something helpful towards directing your learning to the right place.
The instruction at 154C5BC9 is the one you should be interested in. Try replacing it with nops and seeing if that freezes the timer. If not you are probably looking at a timer display or something else that is just a copy of the real timer.
If you don't have the real timer you can see that ecx is storing a value from the stack (know how this works?). The dirty easy way to proceed is to put a breakpoint on your instruction, do a 'white writes to this address' on the address ebp+08 points to (find out what ebp is, add 8 ), then execute one time to get back to your breakpoint. The last instruction on the list is your value of interest getting pushed and you can start investigating what that is and where it came from.
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
