Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


Can I find the static address in VMWARE for Gaming ?

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Discussions
View previous topic :: View next topic  
Author Message
top1
Newbie cheater
Reputation: 0

Joined: 21 Nov 2008
Posts: 11
PostPosted: Sat Sep 07, 2013 8:08 pm    Post subject: Can I find the static address in VMWARE for Gaming ? Reply with quote
I've done a lot of ways to find the static address in my game in VMWARE.

seems the address always change not like my Machine which has the static address.

Can anyone tell me why ?

thx
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 471

Joined: 09 May 2003
Posts: 25848
Location: The netherlands
PostPosted: Sun Sep 08, 2013 3:48 am    Post subject: Reply with quote
With vmware you get the emulated physical memory instead of the emulated virtual memory

When an operating system allocates memory it picks some random physical memory locations and then links them into a sequence with a pagetable to form a contiguous block of virtual memory

To get a virtual address from a physical and the other way around you must find the physical address of the pagetablebase (the cr3 register of a process holds that, but you might be able to find it with a lot of tedious scanning as well)
Then go through it till you find the entry that describes the page you are interested in
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
top1
Newbie cheater
Reputation: 0

Joined: 21 Nov 2008
Posts: 11
PostPosted: Sun Sep 08, 2013 5:40 am    Post subject: Reply with quote
Do you have any tricks to find physical address of the the pagetablebase ?

Is the pagetablebase Vmem file ?

thx
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 471

Joined: 09 May 2003
Posts: 25848
Location: The netherlands
PostPosted: Sun Sep 08, 2013 6:42 am    Post subject: Reply with quote
no, the pagetablebase is at a random location in physical memory (relative to the vmem base address)

You can manually find it after having found the address by a lot of scanning and manual inspecting the memory region, but that's useless if you wish to use it to find the address in the first place without scanning

Perhaps you can tell windows to always load the kernel at the same physical spot in memory and then use that to walk through the processlist and find the pagetablebase that way
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
top1
Newbie cheater
Reputation: 0

Joined: 21 Nov 2008
Posts: 11
PostPosted: Sun Sep 08, 2013 6:50 am    Post subject: Reply with quote
so silly question i want to ask : (

How can I tell the windows to load same memory spot in Kernel?

Do you have any links guide

thx in advanced
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Discussions All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites