 |
Cheat Engine
The Official Site of Cheat Engine
|
| View previous topic :: View next topic |
| Author |
Message |
samzonx
Cheater
![]() Reputation: 0
Joined: 29 Nov 2012
Posts: 33
|
 Posted: Mon Jan 07, 2013 7:06 pm Post subject: Noob question - how do you find a value that changes adress? |
 |
|
Short title, basically what im asknig is, in a lot of games that i try using CE to mod, i find that i can find the value, change it, but when i reload the game, or even change levels in the game, i need to re search the value again, and it's very annoying, it makes me wonder how people create trainers and deal with this issue?
currently im playing warframe, a fps space dungeon crawler with ZERO cheat protection on the SP portion, and im trying to make a trainer -and every time i go into a map i need to re search for my health value and change it each time, how do i have a persistent adress/table?
|
|
| Back to top |
|
 |
Fresco
Grandmaster Cheater
![]() Reputation: 4
Joined: 07 Nov 2010
Posts: 600
|
| Posted: Mon Jan 07, 2013 7:12 pm Post subject: |
|
|
the solution is called pointer but perhaps code injection is better.
just click help -> ce tutorial and try to complete it .. you'll understand
how to find a pointer and how to find the code.
_________________
... Fresco |
|
| Back to top |
|
|
samzonx
Cheater
![]() Reputation: 0
Joined: 29 Nov 2012
Posts: 33
|
| Posted: Mon Jan 07, 2013 7:31 pm Post subject: |
|
|
I tried through the code finder, and it had some effect, but it set the value to 0 every time i zoned in, but at least im getting somewhere lol
absolutley no luck with pointer, its a multilayed pointer where the intial one is a static value so i have no idea how to read what writes it :l ah well
been at this shit for like 2 hours, can't figure it out :l
i've completed the tutorial, and tried just about every method taught in it, and none of them are dooable.
very frustrating how i can EDIT THE BASE VALUE but all this other data is heavily encrypted? wtf
|
|
| Back to top |
|
|
Fresco
Grandmaster Cheater
![]() Reputation: 4
Joined: 07 Nov 2010
Posts: 600
|
|
| Back to top |
|
|
wingsinc
How do I cheat?
![]() Reputation: 0
Joined: 08 Jan 2013
Posts: 3
Location: US
|
| Posted: Tue Jan 08, 2013 2:59 pm Post subject: |
|
|
| Could someone make a english video tutorial? I don't understand
|
|
| Back to top |
|
|
Fresco
Grandmaster Cheater
![]() Reputation: 4
Joined: 07 Nov 2010
Posts: 600
|
| Posted: Tue Jan 08, 2013 3:25 pm Post subject: |
|
|
| samzonx wrote: | | [...]i've completed the tutorial, and tried just about every method taught in it, and none of them are dooable.[...] |
did you really ?
the solution is there !
step 6 and 8
here's how you do it anyway
i'll be using ammo as an example , but it can be anything
find the correct address of current ammo that works and freeze it
-repeat from here
right click the address of ammo and "find out what accesses this address"
alt+tab ... shoot ... alt+tab
double click the first entry
you'll find something between the square brackets
like [esi+20] ... esi is base and 20 is offset
write down ... "20 = first offset"
copy to clipboard the base value
esi=....
in ce window, do a 4bytes scan with exact value -> tick the "hex" box and search for the base value
double click one random entry .. if you find a green one ... you can proceed
-repeat rill here
now click "add address manually" click pointer -> add as many offsets ad you wrote down
fill the address space with the green address, now write the offsets and click add address ...
congrats, you just found the pointer of ammo, now every time you restart the game, the pointer will always point to the ammo address
_________________
... Fresco |
|
| Back to top |
|
|
wingsinc
How do I cheat?
![]() Reputation: 0
Joined: 08 Jan 2013
Posts: 3
Location: US
|
| Posted: Tue Jan 08, 2013 6:48 pm Post subject: |
|
|
| Fresco wrote: | | samzonx wrote: | | [...]i've completed the tutorial, and tried just about every method taught in it, and none of them are dooable.[...] |
did you really ?
the solution is there !
step 6 and 8
here's how you do it anyway
i'll be using ammo as an example , but it can be anything
find the correct address of current ammo that works and freeze it
-repeat from here
right click the address of ammo and "find out what accesses this address"
alt+tab ... shoot ... alt+tab
double click the first entry
you'll find something between the square brackets
like [esi+20] ... esi is base and 20 is offset
write down ... "20 = first offset"
copy to clipboard the base value
esi=....
in ce window, do a 4bytes scan with exact value -> tick the "hex" box and search for the base value
double click one random entry .. if you find a green one ... you can proceed
-repeat rill here
now click "add address manually" click pointer -> add as many offsets ad you wrote down
fill the address space with the green address, now write the offsets and click add address ...
congrats, you just found the pointer of ammo, now every time you restart the game, the pointer will always point to the ammo address |
First thing looks like this..
1405A46E9 - 48 3B D8 - cmp rbx,rax
1405A46EC - 66 0F42 C3 - cmovb ax,bx
1405A46F0 - 66 39 87 B80C0000 - cmp [rdi+00000CB8],ax <<
1405A46F7 - 74 27 - je Warframe.x64.exe+5A4720
1405A46F9 - 66 89 87 B80C0000 - mov [rdi+00000CB8],ax
|
|
| Back to top |
|
|
samzonx
Cheater
![]() Reputation: 0
Joined: 29 Nov 2012
Posts: 33
|
| Posted: Wed Jan 09, 2013 1:17 am Post subject: |
|
|
| wingsinc wrote: | | Fresco wrote: | | samzonx wrote: | | [...]i've completed the tutorial, and tried just about every method taught in it, and none of them are dooable.[...] |
did you really ?
the solution is there !
step 6 and 8
here's how you do it anyway
i'll be using ammo as an example , but it can be anything
find the correct address of current ammo that works and freeze it
-repeat from here
right click the address of ammo and "find out what accesses this address"
alt+tab ... shoot ... alt+tab
double click the first entry
you'll find something between the square brackets
like [esi+20] ... esi is base and 20 is offset
write down ... "20 = first offset"
copy to clipboard the base value
esi=....
in ce window, do a 4bytes scan with exact value -> tick the "hex" box and search for the base value
double click one random entry .. if you find a green one ... you can proceed
-repeat rill here
now click "add address manually" click pointer -> add as many offsets ad you wrote down
fill the address space with the green address, now write the offsets and click add address ...
congrats, you just found the pointer of ammo, now every time you restart the game, the pointer will always point to the ammo address |
First thing looks like this..
1405A46E9 - 48 3B D8 - cmp rbx,rax
1405A46EC - 66 0F42 C3 - cmovb ax,bx
1405A46F0 - 66 39 87 B80C0000 - cmp [rdi+00000CB8],ax <<
1405A46F7 - 74 27 - je Warframe.x64.exe+5A4720
1405A46F9 - 66 89 87 B80C0000 - mov [rdi+00000CB8],ax |
i must have severe brain damage because i still cannot get this - when i try tracing the pointer back i find a value that is an absurd number, rather than an adress? and yes i did complete the tutorial - it was suprisingly simple...
as an offset - 00000CB8 - how could i enter this, i don't even have a clue - i know step 6 breifly mentions it but i cannot follow that at all
i appreciate you trying to help me
this is what my first attempt yielded (just reproduced it)
imgur/a/BJvOp (also attached because apparantly i cant post links)
i now realise that is because of the offset, but i really have no idea how to convert that offset of 00000C28 into a useable format? [img][/img]
| Description: |
|
| Filesize: |
163.85 KB |
| Viewed: |
12083 Time(s) |
|
| Description: |
|
| Filesize: |
161.53 KB |
| Viewed: |
12083 Time(s) |
|
| Description: |
|
| Filesize: |
201.7 KB |
| Viewed: |
12083 Time(s) |
|
|
|
| Back to top |
|
|
wingsinc
How do I cheat?
![]() Reputation: 0
Joined: 08 Jan 2013
Posts: 3
Location: US
|
| Posted: Sat Jan 12, 2013 11:11 am Post subject: |
|
|
Please Note: We are trying to use warframe x64 and not x86, so the simple method as described will not work for us.
That method works perfect for x86 games, and I can release a tutorial after I get vmware running so I can use the x86 warframe..but win8 doesn't like running it for some reason o.O
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
