Cheat Engine

LtO · Posted: Fri Feb 09, 2018 9:46 am Post subject: Cannot find AOB string...

I'm looking for an AOB in a game, but I cannot find it. In the (decompiled) code it says: public static const kComboGoalReward:Array = new Array(0, 0, 1, 1, 2, 2, 3, 3, 4, 4, 4, 5, 5, 5, 5, 5);
Or: private static const kComboGoalReward:Array = new Array(0, 0, 1, 1, 2, 2, 3, 3, 4, 4, 4, 5, 5, 5, 5, 5);
And refers a few times back to it again, but when I look for that array or string, I can't find anywhere in the memory... How comes this isn't showing up, and how could I find it? it's code that should be static and not be changed during the game...

FreeER · Posted: Fri Feb 09, 2018 11:10 am Post subject:

if you're just looking for an aob like 0 0 1 1 2 2 ... then it'll fail since AOB is an array of Bytes but the code is probably not defining an array of bytes but rather an array of integers/4 byte values (I don't see a type specifier so I'll assume a 4 byte int, though theoretically it could be floats or doubles etc.)

So you'd need to scan for 00 00 00 00 00 00 00 00 01 00 00 00 01 00 00 00 02 00 00 00 00 02 00 00 00 00 ... with each value expanded to it's 4 byte equivalent, or use the group scan and prefix each value with it's type shorthand (4, f, etc. there's a generator to use when the type is changed to group scan) 4:0 4:0 4:1 4:1 4:2 4:2 ...

LtO · Posted: Thu Feb 15, 2018 7:32 am Post subject:

Thanks, I tried that but it didn't work, didn't find anything, could you give me the exact parameter i should search with?

FreeER · Posted: Thu Feb 15, 2018 8:26 am Post subject:

panraven · Posted: Thu Feb 15, 2018 2:00 pm Post subject:

If it is compiled from flash byte-code (hint from type is 'array'), the array could be constructed by 'code' instead of pre-allocated in memory (or your saying 'static', byte[16] or int[16] in c notation?).
Then array constructed by the flash player in runtime may not necessarily in a continued block of memory, so you sometime cannot aobscan such array.

The byte code may be some thing like (avm2 byte code):

LtO · Posted: Thu Feb 22, 2018 12:55 pm Post subject:

Thanks! This is pretty complicated for me, but I'm learning cuz it's interesting stuff Smile

I'll learn to work with auto assembler and lua scripting too, now I made a little mistake with this that I used the original swf to decompile and find this, but that source is probably almost 10 years old... I was sticking to that cuz the newer version has anti debugger that crashed my decompiler, but now I use a better debugger. I'm trying to find the right values, bytecode etc that I need, here a picture of the decompiled code and pcode (attachment), I think I can't be too far of it anymore now...

LtO · Posted: Thu Mar 01, 2018 7:47 am Post subject:

Just wanted to say I found what I needed, along with lots of other related things I could do with this knowledge Smile

that 0,0,1,1 etc is stored in the memory as 24 00 2a 24 01 2a etc... I could easily see it when I also let the hex code show with the asm instructions, which I didn't in that picture you saw here... Oh and it's really fun to play with this and change aob strings, so much you can do with it, I used to think cheat engine was useless for this game almost, boy was I wrong lol...

FreeER · Posted: Thu Mar 01, 2018 7:51 am Post subject:

So, very similar to

LtO · Posted: Thu Mar 01, 2018 9:49 am Post subject: