View previous topic :: View next topic |
Author |
Message |
rawgreaze Expert Cheater Reputation: 0
Joined: 23 May 2009 Posts: 108 Location: United Kingdom
|
Posted: Sat May 16, 2015 2:21 pm Post subject: Clicker Heroes, what do? |
|
|
It just resets the value to 0.
You can still buy shit if you click really, REALLY fast and stuff, but there's no learning in freezing addresses.
I tried to change the assembly of the instruction from Code: | movq [ecx+00000188],xmm0 | to Code: | movq dword ptr [0x0B42F228],0x4F790D59 | , but nothing happens when I get gold anymore :c
What should I do for this crap?
I'm using this assembly stuff: Code: | alloc(codecave, 23)
codecave:
// movq [ecx+00000188],xmm0
mov dword ptr [0AF0D228],0x4F790D59
jmp 1000655D
1000655D:
jmp codecave |
^^^
That assembly doesn't do.. shit.
EDIT: lol, replaced the code that it writes to with jmp codecave and the app crashed q_q
EDIT2: So I'm basically rewriting this instruction to jump to the start of my codecave, which will do Code: | mov dword ptr [eax+188],0x4F7905D9 | , which will then jmp to the next instruction after the original one.
_________________
Do not ask Dark Byte about online cheats. He doesn't know any and wont help finding them.[center]
[/center] |
|
Back to top |
|
|
Zanzer I post too much Reputation: 126
Joined: 09 Jun 2013 Posts: 3278
|
Posted: Sat May 16, 2015 3:23 pm Post subject: |
|
|
Go to the instruction in Memory Viewer
Tools > Auto Assemble
Template > Cheat Table framework code
Template > Code injection
Then comment out the one instruction
Code: | //movq [ecx+00000188],xmm0 |
|
|
Back to top |
|
|
rawgreaze Expert Cheater Reputation: 0
Joined: 23 May 2009 Posts: 108 Location: United Kingdom
|
Posted: Sat May 16, 2015 3:24 pm Post subject: |
|
|
Zanzer wrote: | Go to the instruction in Memory Viewer
Tools > Auto Assemble
Template > Cheat Table framework code
Template > Code injection
Then comment out the one instruction
Code: | //movq [ecx+00000188],xmm0 |
|
I have done, that just makes it do nothing.
Adding this: Code: | mov dword ptr [ecx+188],0xFFF | , or
does nothing at all and doesn't add gold when I collect it.
_________________
Do not ask Dark Byte about online cheats. He doesn't know any and wont help finding them.[center]
[/center] |
|
Back to top |
|
|
Zanzer I post too much Reputation: 126
Joined: 09 Jun 2013 Posts: 3278
|
Posted: Sat May 16, 2015 3:45 pm Post subject: |
|
|
???
Code: | alloc(myvar,8)
myvar:
dq (double)1337 |
Code: | addsd xmm0,[myvar]
movq [ecx+00000188],xmm0 |
|
|
Back to top |
|
|
rawgreaze Expert Cheater Reputation: 0
Joined: 23 May 2009 Posts: 108 Location: United Kingdom
|
Posted: Sat May 16, 2015 3:47 pm Post subject: |
|
|
Zanzer wrote: | ???
Code: | alloc(myvar,8)
myvar:
dq (double)1337 |
Code: | addsd xmm0,[myvar]
movq [ecx+00000188],xmm0 |
|
Dude, you're a fucking beast.
Can you break this down please?
Like, what does addsd do and that?
And can I replace alloc(variable) with just addsd xmm0,[100]?
_________________
Do not ask Dark Byte about online cheats. He doesn't know any and wont help finding them.[center]
[/center] |
|
Back to top |
|
|
Zanzer I post too much Reputation: 126
Joined: 09 Jun 2013 Posts: 3278
|
Posted: Sat May 16, 2015 4:10 pm Post subject: |
|
|
Did it work?
Simply change the "1337" number to whatever value you want:
addsd is used for double variable types to add to the xmm registers.
You need to use a double variable with the addsd instruction. So best to define it yourself.
|
|
Back to top |
|
|
rawgreaze Expert Cheater Reputation: 0
Joined: 23 May 2009 Posts: 108 Location: United Kingdom
|
Posted: Sat May 16, 2015 4:23 pm Post subject: |
|
|
Zanzer wrote: | Did it work?
Simply change the "1337" number to whatever value you want:
addsd is used for double variable types to add to the xmm registers.
You need to use a double variable with the addsd instruction. So best to define it yourself. |
Yes it worked, you badass
I changed it to 10^23 (in form of 1333333333xxx7, of course) and it worked GREAT. It was so awesome, I felt awesome for a minute
So in the future, I should addsd into the thing the value is being moved into, instead of the actual value?
subsd = opposite of addsd?
_________________
Do not ask Dark Byte about online cheats. He doesn't know any and wont help finding them.[center]
[/center] |
|
Back to top |
|
|
Zanzer I post too much Reputation: 126
Joined: 09 Jun 2013 Posts: 3278
|
Posted: Sat May 16, 2015 4:34 pm Post subject: |
|
|
addsd and subsd are only used in combination with xmm0 type registers and deal with double value types.
If you were dealing with floats, it would be addss and subss.
|
|
Back to top |
|
|
rawgreaze Expert Cheater Reputation: 0
Joined: 23 May 2009 Posts: 108 Location: United Kingdom
|
Posted: Sat May 16, 2015 4:36 pm Post subject: |
|
|
Zanzer wrote: | addsd and subsd are only used in combination with xmm0 type registers and deal with double value types.
If you were dealing with floats, it would be addss and subss. |
and 4 byte is just eax / edx and stuff? Which is much more simple to edit?
_________________
Do not ask Dark Byte about online cheats. He doesn't know any and wont help finding them.[center]
[/center] |
|
Back to top |
|
|
Zanzer I post too much Reputation: 126
Joined: 09 Jun 2013 Posts: 3278
|
Posted: Sat May 16, 2015 4:41 pm Post subject: |
|
|
Correct
If it were a float, you could have gotten away with doing the following:
Code: | mov [ecx+00000188],(float)999999 |
|
|
Back to top |
|
|
Gazza Cheater Reputation: 0
Joined: 05 Mar 2015 Posts: 33
|
Posted: Sun May 17, 2015 11:22 am Post subject: |
|
|
Zanzer wrote: | ???
Code: | alloc(myvar,8)
myvar:
dq (double)1337 |
Code: | addsd xmm0,[myvar]
movq [ecx+00000188],xmm0 |
|
Noob here, how do you enter this code? Where do you put it?
|
|
Back to top |
|
|
rawgreaze Expert Cheater Reputation: 0
Joined: 23 May 2009 Posts: 108 Location: United Kingdom
|
Posted: Sun May 17, 2015 1:24 pm Post subject: |
|
|
Gazza wrote: | Zanzer wrote: | ???
Code: | alloc(myvar,8)
myvar:
dq (double)1337 |
Code: | addsd xmm0,[myvar]
movq [ecx+00000188],xmm0 |
|
Noob here, how do you enter this code? Where do you put it? |
Find out what writes to this address, then show in disassembler. It's step 7 in the tutorial, I recommend doing that until you try this.
_________________
Do not ask Dark Byte about online cheats. He doesn't know any and wont help finding them.[center]
[/center] |
|
Back to top |
|
|
|