Cheat Engine

meggachilly · How do I cheat? Reputation: 0 Joined: 22 Dec 2015 Posts: 2

Ok, I speedrun a game called Qbeh-1, and I am trying to create an autosplit (This will control my timer for me, making it more accurate and easier for me and the other people that speedrun the game).

To create it I need the Pointer Path of an address that changes as I finish a level, I can find address's that do this, and I try to find the pointer paths but they never work after I reset the game.

When creating the autosplit you list all your variables and there pointer paths at the top , for example:

int level1LoadScreen : "Project64.exe", 0x107AD8, 0x3480;

I'd be really great if someone could help push me in the right direction and sorry if I posted this in the wrong area of the forum.

Rydian · Posted: Tue Dec 22, 2015 9:34 pm Post subject:

Try using the scanner?
http://forum.cheatengine.org/viewtopic.php?t=572465

Not sure how well it'll work in an emulator though.

ParkourPenguin · Posted: Tue Dec 22, 2015 10:09 pm Post subject:

Yep. If you can't copy the address by making a code injection around some instruction that accesses the address, then the pointer scanner is your next best bet. Tips for using the pointer scanner:

Select "No looping pointers". It'll slow down the scan a bit, but less disk space is used, and less invalid results are found.
Make sure you're letting the stack addresses of the first few threads be handled as static. You can even try increasing the values on these a bit to possibly find more valid results.
Increase the max offset value and max level if you aren't finding anything.
The game might have marked some pointers as read-only. Uncheck "Don't include pointers with read-only nodes" if you want to, but it'll increase the amount of results found.
If other pointers you've found have a common base address, selecting "Base address must be in specific range" will help narrow down your results by a lot, but you'll also miss it if it's not in that range.
You might be able to use "First element of pointerstruct must point to module" depending on the game.
The "Improve pointerscan with gathered heap data" option might help as well, depending on the game.
If you're having trouble with diskspace, using "Pointers must end with specific offsets" will help, but you might miss valid results (see the topic Rydian linked to).
If you're really having trouble with disk space, use max different offsets per node. You'll miss tons of pointer paths, though, so you'll need to be lucky.

Dark Byte · Posted: Wed Dec 23, 2015 2:42 am Post subject:

pointerscans on an emulator will most likely not result in useful results though.

perhaps if you redirect ce's memory access api's to use the base address of the emulated memory as address 0 it might return less useless results but may take more wirth than you wish.

perhaps a groupscan can help finding it

meggachilly · How do I cheat? Reputation: 0 Joined: 22 Dec 2015 Posts: 2

cloudzero · Posted: Mon Mar 14, 2016 3:34 pm Post subject: