Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


Cheat Engine Forum Index
PostGo back to topic
navarone
Advanced Cheater
Reputation: 2
Joined: 29 May 2010
Posts: 72
PostPosted: Sun Jun 27, 2010 8:22 am    Post subject:
mov edi,[eax+00000098] (6 bytes)

Replaced with

Jmp 00400298 (5 bytes, last byte replaced with NOP)


00400298 mov edi,DWORD PTR DS:[eax+00000098]
0040029E MOV DWORD PTR DS:[400ED2],EAX
004002A3 jmp 01F7E7A3 (To the OP code after 01F7E79D)


Codecave is 30 bytes, and I am sure I amn't writing EAX over my/other OP codes. All if this was done with OllyDbg as a test.

It refuses to write the value of EAX to 00400ED2 and jumps me to a specific address to terminate game.
Even assembling that address to jump back to my code cave cause an infinite loop. lol Confused
Back to top
View user's profile Send private message
Post reviews:   Approve 1
Author Review
Pingo
Review: Approve
Post reference:
ReviewPosted: Sun Jun 27, 2010 9:44 am
blah blah
Back to top
View user's profile Send private message
Display:  
Cheat Engine Forum Index


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites