Cheat Engine

Kingpin1959 · Newbie cheater Reputation: 0 Joined: 11 Jul 2016 Posts: 13

Hy Community, i am relativly new to script writing for games. For now i am gaming "Metal Gear Solid Phantom Pain" I found the scripts for God Mode and ammo.
Now i wrote a script for no reload. But when i activate the script,the game crashes. Below you see my script.

[ENABLE]

aobscanmodule(INJECT,mgsvtpp.exe,1C 48 49 8B 4A 50) // should be unique
alloc(newmem,$1000,"mgsvtpp.exe"+3DE13D4)

label(code)
label(return)

newmem:

code:
sbb al,48
mov rcx,[r10+50]
jmp return

INJECT:
jmp code
nop
return:
registersymbol(INJECT)

[DISABLE]

INJECT:
db 1C 48 49 8B 4A 50

unregistersymbol(INJECT)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "mgsvtpp.exe"+3DE13D4

"mgsvtpp.exe"+3DE13B0: 83 F8 07 - cmp eax,07
"mgsvtpp.exe"+3DE13B3: 77 31 - ja mgsvtpp.exe+3DE13E6
"mgsvtpp.exe"+3DE13B5: 44 0F B6 4C 24 28 - movzx r9d,byte ptr [rsp+28]
"mgsvtpp.exe"+3DE13BB: 49 8B 42 48 - mov rax,[r10+48]
"mgsvtpp.exe"+3DE13BF: 48 8D 0C 49 - lea rcx,[rcx+rcx*2]
"mgsvtpp.exe"+3DE13C3: 45 84 C9 - test r9l,r9l
"mgsvtpp.exe"+3DE13C6: 74 09 - je mgsvtpp.exe+3DE13D1
"mgsvtpp.exe"+3DE13C8: 66 44 89 5C 48 02 - mov [rax+rcx*2+02],r11w
"mgsvtpp.exe"+3DE13CE: EB 06 - jmp mgsvtpp.exe+3DE13D6
"mgsvtpp.exe"+3DE13D0: A1 66 44 89 1C - db A1 66 44 89 1C // SHORTENED TO HIT INJECTION FROM: mov eax,[4A8B49481C894466]
// ---------- INJECTING HERE ----------
"mgsvtpp.exe"+3DE13D5: 48 49 - dec rcx
"mgsvtpp.exe"+3DE13D7: 8B 4A 50 - mov ecx,[rdx+50]
// ---------- DONE INJECTING ----------
"mgsvtpp.exe"+3DE13DA: 45 89 D8 - mov r8d,r11d
"mgsvtpp.exe"+3DE13DD: 48 8B 01 - mov rax,[rcx]
"mgsvtpp.exe"+3DE13E0: FF A0 F8 00 00 00 - jmp qword ptr [rax+000000F8]
"mgsvtpp.exe"+3DE13E6: F3 C3 - repe ret
"mgsvtpp.exe"+3DE13E8: CC - int 3
"mgsvtpp.exe"+3DE13E9: CC - int 3
"mgsvtpp.exe"+3DE13EA: CC - int 3
"mgsvtpp.exe"+3DE13EB: CC - int 3
"mgsvtpp.exe"+3DE13EC: CC - int 3
"mgsvtpp.exe"+3DE13ED: CC - int 3
}

What i tried is to change the sbb al,48 in adc al,48 . i thougt the value would increase, but the game crashes. What did i made wrong ?

STN · Posted: Fri Oct 14, 2016 6:35 am Post subject:

You're messing up all the bytes and not recreating them properly. I have no idea where you see sbb al,48 in adc al,48 but the instruction at "mgsvtpp.exe"+3DE13D0 is being messed up.

Redo the injection again and let ce auto create the template for you. You can simply nop this btw

"mgsvtpp.exe"+3DE13D5: 48 49 - dec rcx

Kingpin1959 · Newbie cheater Reputation: 0 Joined: 11 Jul 2016 Posts: 13

Hy STN,

first let me thank you for your quick response. I found sbb al,48 with " Find out what writes to this adress "

Then i attached the diassembler. I used " autoassembler" then aobscan
then i let the diassembler NOP the instructions. i saved the script to the currend Cheat table. When i activate the script 2 Metal gear solid crashes. Cheat engine tells me i shoul use two NOP for "sbb al,48"

So thats wy i came to sbb al,48
i dont quit understand what is wrong at "mgsvtpp.exe"+3DE13D0. I get this line from aobscan, so i thought i must be right.

best regards

Kingpin1959

Kingpin1959 · Newbie cheater Reputation: 0 Joined: 11 Jul 2016 Posts: 13

Hi STN,

i followed your hint with nop. i found out, what i did wrong. i used not the right number of nops. But now i have another problem. When i am noping al that is necessary in Disassembler. i have no reload. but when i save the script, i cannot activate the next time i start the game. Any suggestions ?

i am 57 Years old and my skills of learning are no more so good as years ago. Just that you understand , when i am not quick in following your help.

best regards

STN · Posted: Sat Oct 15, 2016 8:36 am Post subject:

That's weird. Are you selecting the process again when you start game next time?

Double click on script and then click "Execute" or Ok and see which error CE gives you if any.

Kingpin1959 · Newbie cheater Reputation: 0 Joined: 11 Jul 2016 Posts: 13

Hi STN ,

Thank you for now. Yes i am selecting the game process. All my former found scripts are working but i cannot activate the script i have made for noreload.
Cheat engine gave me no Error. I just could not activate my script. Can it be , that there are too mutch nop in it. i needed 14 nops to work the cheat with activated Disassembler.

i try your hint with doublekliking my script.

best regards

Kingpin1959

Kingpin1959 · Newbie cheater Reputation: 0 Joined: 11 Jul 2016 Posts: 13

Hi STN,

thanks to your hints i could solve the problem with my "NoReload" script.

I found out , that the aobinject Template seem to nop only the first five bytes. i dont know why.
After i put in " Inject+0-18" my script worked.
Needed a little time but now it works

Thank you STN

best regards

Kingpin1959 Very Happy