Cheat Engine

gunite69 · Newbie cheater Reputation: 0 Joined: 18 Jul 2015 Posts: 10

So I have a script for a particular game. And every patch it changes the addresses of a particular animation. I was informed that if i could reverse find already exisiting values i could find the base address. So when the patch comes, I can just find the new addresses using old values.

Daijobu · Posted: Sun Jul 19, 2015 2:26 am Post subject:

Read up on array of byte scanning:
http://forum.cheatengine.org/viewtopic.php?t=561407

In short, find a unique "signature" of bytes and use this to identify the code you wish to utilise.

Rydian · Posted: Sun Jul 19, 2015 5:20 am Post subject:

Pointer scanner, AOB to data...
http://forum.cheatengine.org/viewtopic.php?t=572465

Or injection (usually faster to make).
http://forum.cheatengine.org/viewtopic.php?t=570083

gunite69 · Newbie cheater Reputation: 0 Joined: 18 Jul 2015 Posts: 10

Thank you for both of your help! I have read both guides and got a major headache from it.. I have tried though but I am unsure because I'm not essentially dealing with Health. Its to do with jumps and usualyl i thought it would be a 0 and 1?

0 = not jump
1= jump?

i guess the script template is very similar but I'm still unsure how to update the new address if a patch come.

I know that this following part of the script forever remains the same.

vng21092 · Posted: Sun Jul 19, 2015 6:46 am Post subject:

gunite69 · Newbie cheater Reputation: 0 Joined: 18 Jul 2015 Posts: 10

vng21092 · Posted: Sun Jul 19, 2015 7:27 am Post subject:

no no no, that's the beauty of code injection, you don't NEED to be up to date with the current address because you DON'T need the address. Visualize it like this. You buy something off Amazon right? The order arrives at your house, what do you have? A box (in this case, it would be the register EDI), now, you don't really know what the packaging of the item LOOKS like (in this case, its the address, right now its "007B8EFD", but when you restart the game it might not be). But what you DO know is WHATS inside the packaging (in this case "00000082" or w/e you want). So all you really need to know is the REGISTER, you don't really need the address because the register already contains the address. Hope thats helps out.

Zanzer · Posted: Sun Jul 19, 2015 7:36 am Post subject:

Problem is his code is hardcoding the base player pointer.
So yes, his code will likely break on a patch.
You need to find some code which ONLY accesses the player pointer.
Setup a separate code injection there to save the address.
Then in your current script, you would read the value of that address instead of directly using mov eax,[00A4A374]

Since games normally have a HUD which only shows the player's health, you can normally find some piece of code that only accesses the player's stats. This is where you'd want to retrieve the base pointer address.

In addition to that, you should use the AOB Injection template instead of Code Injection.
That will make it even more patch-proof.

gunite69 · Newbie cheater Reputation: 0 Joined: 18 Jul 2015 Posts: 10

Ahh okay... that makes more sense now hahaha.

And with regards to code injection that was one of the guides Rydian posted. I had a read thru and sorta tried it out in terms of the game im trying to test out but yeh hahah not too easy >.>

So how would I go abouts doing the code injection now lol? (feels like a next level step, even when i cant get the addresses).

This is all soo new too me and alot harder than it seems hahaha.

vng21092 · Posted: Sun Jul 19, 2015 7:49 am Post subject:

you probably don't even need to reference the player pointer, you should check if that instruction applies to anyone else BUT you, and if it does, look for FILTERS (dissect data structures), not POINTERS (pointers = no no in my book). There's usually more than one instruction ACCESSING your address, if you could find just ONE that isolates you from everybody else, use THAT as your injection point. Code injection is quite easy actually, learning it is quite easy because C.E proves TEMPLATES for you. All you have to do is make sure when you disable the script, it reverts back to what it was before.

gunite69 · Newbie cheater Reputation: 0 Joined: 18 Jul 2015 Posts: 10

vng21092 · Posted: Sun Jul 19, 2015 8:03 am Post subject:

heres a template... TO THE TEMPLATE, use it as a guideline if you must (not AOB, but not far from it either)

gunite69 · Newbie cheater Reputation: 0 Joined: 18 Jul 2015 Posts: 10

Zanzer · Posted: Sun Jul 19, 2015 8:39 am Post subject:

AOB Injection is basically the same as Code Injection, with different label names.
The special part, which is done automatically, is the AOB Scan at the top.
This searches the game for the unique byte array which makes up the code at your injection point.
So when a patch comes and your injection point moves, CE will find it for you when you enable the script.

gunite69 · Newbie cheater Reputation: 0 Joined: 18 Jul 2015 Posts: 10

AHh okay! Been playing it around for abit...

Currently, I'm trying to figure out the "Your Stuff Goes" here part..... and how its structured because there is two codes to the script that i posted?

EDIT: damn i cant post urls.