Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


Fnaf Security Breach double pointer oddity

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking
View previous topic :: View next topic  
Author Message
VictorKruger
How do I cheat?
Reputation: 0

Joined: 25 Jan 2023
Posts: 2
PostPosted: Wed Jan 25, 2023 1:08 pm    Post subject: Fnaf Security Breach double pointer oddity Reply with quote
I'm currently having an issue locating the pointers in fnaf security breach 1.04. More specifically, I'm trying to find the pointer(s) for the value of when Gregory can enter and exit Freddy.

I've gone over the pointer and double pointer tutorials and I am able to locate the initial pointer, but when I try to find the next pointer in line, because no addresses were green/static. The next pointer I found that showed activity somehow is referring back to the first pointer. To me that seems like an infinite loop but that shouldn't be possible, right?

Code:
1ECCB11C1A0  4 Bytes  0
1EDC6B19428  8 Bytes <Accidentally closed out before getting this value>

fnaf9-Win64-Shipping.exe+1DB6546:
RAX=1ECCB11C080
RBX=1EDD8ECFB80
RCX=1ECCB11C080
RDX=00000001
RSI=00000001
RDI=00000000
RBP=00000000
RSP=976957D6E0
RIP=7FF7C3A2654C

Probable base pointer =1ECCB11C080

7FF7C3A26540 - sub rsp,28
7FF7C3A26544 - test dl,dl
7FF7C3A26546 - mov [rcx+00000120],dl
7FF7C3A2654C - lea rdx,[rsp+38]
7FF7C3A26551 - setne byte ptr [rsp+38]

fnaf9-Win64-Shipping.exe+EFBEB3
RAX=1ECCB11C080
RBX=1EE1BCFDE98
RCX=1EDC6A80008
RDX=00013284
RSI=1EE1BCFDAE0
RDI=00000001
RBP=00000000
RSP=976957D6D8
RIP=7FF7C2B6BEB6

Probable base pointer =1ECCB11C080

7FF7C2B6BEAA - test [rax+08],30000000
7FF7C2B6BEB1 - jne 7FF7C2B6BEB7
7FF7C2B6BEB3 - mov rax,[rax]
7FF7C2B6BEB6 - ret
7FF7C2B6BEB7 - xor eax,eax


Would anyone be able to look into this and see? I've been going crazy trying to figure out what seemingly should have been an easy exercise in double pointers.
Back to top
View user's profile Send private message
ParkourPenguin
I post too much
Reputation: 152

Joined: 06 Jul 2014
Posts: 4703
PostPosted: Wed Jan 25, 2023 1:30 pm    Post subject: Reply with quote
I don't know how you copied the information from the "find out what instructions access this address" window, but you did something wrong.

Regardless, use the pointer scanner.
https://www.youtube.com/watch?v=3dyIrcx8Z8g

If that fails, search for "injection copy"
_________________
I don't know where I'm going, but I'll figure it out when I get there.
Back to top
View user's profile Send private message
VictorKruger
How do I cheat?
Reputation: 0

Joined: 25 Jan 2023
Posts: 2
PostPosted: Wed Jan 25, 2023 5:33 pm    Post subject: Reply with quote
Thank you for steering me in the correct direction.

As for the "find out what instructions access this address" you can click more information button and then right-click on the extra info window.

I'm using version 7.4 of Cheat engine
Back to top
View user's profile Send private message
ParkourPenguin
I post too much
Reputation: 152

Joined: 06 Jul 2014
Posts: 4703
PostPosted: Thu Jan 26, 2023 12:58 pm    Post subject: Reply with quote
VictorKruger wrote:
As for the "find out what instructions access this address" you can click more information button and then right-click on the extra info window.
Yes, I'm well aware this is a thing that exists. The information in your first post was laid out in a weird format that wasn't immediately obvious.
Anyway, this is probably your problem:
Code:
mov rax,[rax]

You missed the part where the extra info window says "The registers shown here are AFTER the instruction has been executed". You need to figure out the value of rax before the instruction was executed.
The instruction obviously accessed the address you're watching- if it didn't, CE wouldn't have found it. Therefore, the expression in the square brackets must equate to the address being accessed. Since it's just rax, this means the real value of the pointer needed to find the address is probably the address itself (offset = 0).

(again, the pointer scanner is better than doing this manually)
_________________
I don't know where I'm going, but I'll figure it out when I get there.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites