Cheat Engine

[igor]

Hi Hitler,
I want to create my own trainer in vb.net using Cheat Engine's Auto Assembler script.

This is the script i created for step 2 of tutorial-i386 v.3.1 and CE v.6.1

[Stylo]

Well, since you're using vb.net it's not possible for you to use inline assembly as C enables.
your other choice is using WriteProcessMemory method which means you have to write the script's bytes into the process's memory by yourself.
create 2 buffers, one containing the bytes with the enable script that turns on the script, and one containing the original bytes that turns off the script.
allocate virtual memory at the desired process (using VirtualAllocEx: read about all those api i tell you on msdn)
and use WriteProcessMemory to write those bytes at the allocated address.
to watch the bytes of the script just write it on CE as auto assembler script and watch it on memory view.

[vnlagrla]

I can show you how to do it in c# if you want a quick trainer, but if you need VB i can learn it quick. so post back if you want my help

[igor]

[Pingo]

First off, dont use the name script in your threads, its gay.

[igor]

[Stylo]

Inject is just a function he created to modify the desired bytes to it's own code that apply the hack.
Simply when u want to turn it off just "Inject" the original bytes to the exact address and the hack is off.

[Pingo]

What Stylo said. Alot of people here have their own style of doing things, thats my way. I started out just like you, having no idea where to start but i kept reading and finally it clicked.

Im not gonna feed you code but i might beable to point you in the right direction.

Break it down into smaller parts.
Tutorial-i386.exe+20F3E You can split that right at the + sign. Loop the process module collection to get the base of Tutorial-i386.exe then its as simple as parsing 20F3E and adding it to the base.

I already told you how to calculate the jump so all you really need to do now create something that'l write the correct bytes.

I use strings cause for me, its clean and i like it. I still need to convert the string to a byte array so i can write it.

Think of it as a puzzle, dont picture it as a whole. Create one piece of code at a time and before you know, it'l start to resemble something.
Just keep reading the posts on this forum. The answers are here.

[igor]

[Pingo]

VirtualAllocEx <-Needed
WriteProcessMemory <-Needed
If you wish to clean up
VirtualFreeEx <-optional but should be used
If you want to read it to check whether the value is default first, like i do.
ReadProcessMemory <-optional
But you can do it with just the two imports you already know.

How long have you been coding in VB?

[igor]

[atom0s]

The first param to VirtualAllocEx is the handle to the process you wish to alter.

Use the Process class to obtain the target process info and then you can use 'Handle' from that object.

See:
http://msdn.microsoft.com/en-us/library/system.diagnostics.process.aspx

[Pingo]

Darn Wiccaan beat me to it.

Also see http://msdn.microsoft.com/en-us/library/windows/desktop/aa366890

[igor]

OK, now I'm able to use OpenProcess, VirtualAllocEx and WriteProcessMemory without any problem.

here is my code it works perfect.

[Stylo]

Usually, when u allocate memory using VirtualAlloc, use NULL instead of the address you want to allocate the memory at.
it'll automatically allocate u a memory and return the allocated address as the return value.
to jump to the allocated address just use the formula: (codecave address - address of redirection) - 5.