View previous topic :: View next topic |
Author |
Message |
wlix32 Newbie cheater Reputation: 0
Joined: 01 Jan 2016 Posts: 12
|
Posted: Tue Dec 12, 2017 5:34 am Post subject: How to figure out JMP origin in memory view |
|
|
Consider the follow code at memory view
Code: | 03-healthgame.exe+A5DB9 - jmp 03-healthgame.exe+A5DC4
03-healthgame.exe+A5DBB - mov rdx,rax
03-healthgame.exe+A5DBE - mov rax,rcx
03-healthgame.exe+A5DC1 - mov rcx,rdx
03-healthgame.exe+A5DC4 - mov [rsp+40],rax
03-healthgame.exe+A5DC9 - mov [rsp+48],rcx
03-healthgame.exe+A5DCE - mov [rsp+58],rcx
03-healthgame.exe+A5DD3 - mov [rsp+50],rax
...
03-healthgame.exe+A5F00 - jmp 03-healthgame.exe+A5DBB |
This code basically do a "for" from 03-healthgame.exe+A5F00 to 03-healthgame.exe+A5DBB repeatedly. When I cliked in "show disassembler" cheat engine took me at "03-healthgame.exe+A5DCE". My question is:
Knowing that the instruction start from
Code: | 03-healthgame.exe+A5DBB - mov rdx,rax |
How using cheat engine tools can I dicsover that this instruction is being jumped from:
Code: | 03-healthgame.exe+A5F00 - jmp 03-healthgame.exe+A5DBB |
Because in some codes I will need to scroll out (and interpret) a lot of code to figure out that this jump comes from "03-healthgame.exe+A5F00". Is there any tool in cheat engine that helps to find the jump origin?
|
|
Back to top |
|
|
Dark Byte Site Admin Reputation: 457
Joined: 09 May 2003 Posts: 25262 Location: The netherlands
|
Posted: Tue Dec 12, 2017 6:57 am Post subject: |
|
|
dissect code will show the jump origins before each line
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
Back to top |
|
|
wlix32 Newbie cheater Reputation: 0
Joined: 01 Jan 2016 Posts: 12
|
Posted: Tue Dec 12, 2017 11:49 am Post subject: |
|
|
Thank you a lot.
|
|
Back to top |
|
|
|