| View previous topic :: View next topic |
| Author |
Message |
HeyItsLars
How do I cheat?
![]() Reputation: 0
Joined: 16 Feb 2016
Posts: 4
|
 Posted: Tue Feb 16, 2016 9:39 pm Post subject: Problem finding what writes to an address |
 |
|
So, I found the dynamic value I'm looking for, in this case, 3EF5B352, and I need to find out what writes to it so I can get the pointer. After modifying the value a little bit, this is what I have.
14027A063 - 44 8B B1 C0000000 - mov r14d,[rcx+000000C0]
140294901 - 48 63 87 C0000000 - movsxd rax,dword ptr [rdi+000000C0]
140294AE9 - 8B 87 C0000000 - mov eax,[rdi+000000C0]
140294AF9 - 29 87 C0000000 - sub [rdi+000000C0],eax
140294B13 - 39 B7 C0000000 - cmp [rdi+000000C0],esi
140294B2B - 8B 87 C0000000 - mov eax,[rdi+000000C0]
140294B38 - 89 8F C0000000 - mov [rdi+000000C0],ecx
14027A092 - 44 2B B1 C0000000 - sub r14d,[rcx+000000C0]
I need to figure out what exactly it's supposed to be added to so I can find the pointer but it shows hex instead. Is this just a setting I don't have that's correct?
|
|
| Back to top |
|
 |
ParkourPenguin
I post too much
 Reputation: 152
Joined: 06 Jul 2014
Posts: 4702
|
| Posted: Wed Feb 17, 2016 1:01 am Post subject: |
|
|
A hexadecimal number is still a number- you can find out what it's being added to by subtracting the offset (C0) from your address (3EF5B352). Using the windows calculator in the "Programmer" view (Alt + 3), this results in 3EF5B292. So search for that 8 byte value with the "hex" box checked to get some probable pointers to your address.
PS: You should probably use the pointer scanner instead. It's usually easier, faster, and more valid compared to doing it manually.
_________________
I don't know where I'm going, but I'll figure it out when I get there. |
|
| Back to top |
|
|
HeyItsLars
How do I cheat?
![]() Reputation: 0
Joined: 16 Feb 2016
Posts: 4
|
| Posted: Wed Feb 17, 2016 1:28 am Post subject: |
|
|
| ParkourPenguin wrote: | A hexadecimal number is still a number- you can find out what it's being added to by subtracting the offset (C0) from your address (3EF5B352). Using the windows calculator in the "Programmer" view (Alt + 3), this results in 3EF5B292. So search for that 8 byte value with the "hex" box checked to get some probable pointers to your address.
PS: You should probably use the pointer scanner instead. It's usually easier, faster, and more valid compared to doing it manually. |
Well, using the scanner I couldn't pull any results either but I'll go through it again in case I messed something up.
EDIT: Does it make a difference if my pointer is 2byte's rather than 4? I can'
t get a single result using the pointscanner.
Last edited by HeyItsLars on Wed Feb 17, 2016 1:44 am; edited 1 time in total |
|
| Back to top |
|
|
ParkourPenguin
I post too much
Reputation: 152
Joined: 06 Jul 2014
Posts: 4702
|
| Posted: Wed Feb 17, 2016 1:36 am Post subject: |
|
|
Try increasing the max offset and/or max level. Leave the other settings at their default values.
Some games like flash games just don't have any good static pointers, in which case you could hook one of those instructions and copy the address to a symbol that way. Just make sure you choose an instruction that's run somewhat often and only accesses that address.
For more information on both that and the pointer scanner:
http://forum.cheatengine.org/viewtopic.php?t=572465
_________________
I don't know where I'm going, but I'll figure it out when I get there. |
|
| Back to top |
|
|
HeyItsLars
How do I cheat?
![]() Reputation: 0
Joined: 16 Feb 2016
Posts: 4
|
| Posted: Wed Feb 17, 2016 3:50 am Post subject: |
|
|
| ParkourPenguin wrote: | Try increasing the max offset and/or max level. Leave the other settings at their default values.
Some games like flash games just don't have any good static pointers, in which case you could hook one of those instructions and copy the address to a symbol that way. Just make sure you choose an instruction that's run somewhat often and only accesses that address.
For more information on both that and the pointer scanner:
] |
Put them at 10000 and 10 and nothing.
|
|
| Back to top |
|
|
Rydian
Grandmaster Cheater Supreme
 Reputation: 31
Joined: 17 Sep 2012
Posts: 1358
|
| Posted: Wed Feb 17, 2016 4:28 am Post subject: |
|
|
Is it's a new game, some games don't have the old static pointers anymore, especially interpreted ones. The scanner can find some nice pathways, but if stuff is being generated at launch you may be out of luck due to various differences in the environment each time.
Got any more info?
_________________
|
|
| Back to top |
|
|
Dark Byte
Site Admin
 Reputation: 470
Joined: 09 May 2003
Posts: 25796
Location: The netherlands
|
| Posted: Wed Feb 17, 2016 4:41 am Post subject: |
|
|
an offset of c0 that leads to 3EF5B352
that means it's an unalligned pointer, so when using the pointerscanner, tell it to include unalligned pointers. (and don't use compressex pointers, or manually deal with that)
alternatively, it's not a 2 byte value and you're looking for the wrong address.
is this an emulator?
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
| Back to top |
|
|
HeyItsLars
How do I cheat?
![]() Reputation: 0
Joined: 16 Feb 2016
Posts: 4
|
| Posted: Wed Feb 17, 2016 6:06 am Post subject: |
|
|
| Dark Byte wrote: |
is this an emulator? |
Nah, it's Street Fighter V. I'm trying to make a trainer to blow through survival mode to cut down on the 190 fight grind required for colors.
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
