Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


how to edit / fstp qword ptr [edi+04] / to 0 cooldown

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking
View previous topic :: View next topic  
Author Message
renomous
Advanced Cheater
Reputation: 0

Joined: 15 Jul 2012
Posts: 82

PostPosted: Fri Aug 04, 2017 6:47 am    Post subject: how to edit / fstp qword ptr [edi+04] / to 0 cooldown Reply with quote

sorry but i really dont know what this code do
i found my cool down skills code and i dont know how to edit it
any master here ? Very Happy



fld qword ptr [esi+04]
fstp qword ptr [edi+04] ( code found by debuger)
mov ecx,[ebp-0C]
mov fs:[00000000],ecx
pop ecx
pop edi
pop
pop
pop
etc .....



20629002_1369030086525578_930808011_o.png
 Description:
 Filesize:  429.56 KB
 Viewed:  11333 Time(s)

20629002_1369030086525578_930808011_o.png


Back to top
View user's profile Send private message
OldCheatEngineUser
Whateven rank
Reputation: 20

Joined: 01 Feb 2016
Posts: 1586

PostPosted: Fri Aug 04, 2017 8:34 am    Post subject: Reply with quote

Code:
[ENABLE]

aobscanmodule(INJECT,KRITKA_Client.exe,DD 46 04 DD 5F 04 8B 4D F4)
alloc(newmem,$1000)

label(code)
label(return)
label(qwvalue)

newmem:
  fld qword ptr [qwvalue]

code:
  fstp qword ptr [edi+04]
  mov ecx,[ebp-0C]
  jmp return

qwvalue:
  dq (double)0 // modify this value if you like

INJECT+03:
  jmp newmem
  nop
return:
registersymbol(INJECT)

[DISABLE]

INJECT+03:
  db DD 5F 04 8B 4D F4

unregistersymbol(INJECT)
dealloc(newmem)

_________________
About Me;
I Use CE Since Version 1.X, And Still Learning How To Use It Well!
Jul 26, 2020
STN wrote:
i am a sweetheart.
Back to top
View user's profile Send private message Visit poster's website
renomous
Advanced Cheater
Reputation: 0

Joined: 15 Jul 2012
Posts: 82

PostPosted: Mon Aug 07, 2017 3:40 am    Post subject: Reply with quote

im gonna try to inject the script
but why this script is so strange i dont get it
i usualy do somthing like above the original code mov ecx,0 or somthng like that and ta-daa Very Happy edited the code lol

anyway thanks ! u are the best













THIS IS INJECTABLE






[ENABLE]
KRITIKA_Client.exe+110611B :
alloc(newmem,$1000)
label(code)
label(return)
label(qwvalue)

newmem:
fld qword ptr [qwvalue]

code:
fstp qword ptr [edi+04]
mov ecx,[ebp-0C]
jmp return

qwvalue:
dq (double)0 // modify this value if you like

KRITIKA_Client.exe+110611B :
jmp newmem
nop
return:








[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
KRITIKA_Client.exe+110611B :
fstp qword ptr [edi+04]
mov ecx,[ebp-0C]
//Alt: db DD 5F 04 8B 4D F4



AAAAAAAAAAAAAAAAA.jpg
 Description:
 Filesize:  154.01 KB
 Viewed:  11181 Time(s)

AAAAAAAAAAAAAAAAA.jpg


Back to top
View user's profile Send private message
OldCheatEngineUser
Whateven rank
Reputation: 20

Joined: 01 Feb 2016
Posts: 1586

PostPosted: Mon Aug 07, 2017 7:07 am    Post subject: Reply with quote

Code:
[ENABLE]

aobscanmodule(INJECT,KRITIKA_Client.exe,DD 46 04 DD 5F 04 8B 4D F4)
alloc(newmem,$1000,"KRITIKA_Client.exe"+110611B) // edited here

label(code)
label(return)
label(qwvalue)

newmem:
  fld qword ptr [qwvalue]

code:
  fstp qword ptr [edi+04]
  mov ecx,[ebp-0C]
  jmp return

qwvalue:
  dq (double)0 // modify this value if you like

INJECT+03:
  jmp newmem
  nop
return:
registersymbol(INJECT)

[DISABLE]

INJECT+03:
  db DD 5F 04 8B 4D F4

unregistersymbol(INJECT)
dealloc(newmem)

_________________
About Me;
I Use CE Since Version 1.X, And Still Learning How To Use It Well!
Jul 26, 2020
STN wrote:
i am a sweetheart.


Last edited by OldCheatEngineUser on Mon Aug 07, 2017 8:11 am; edited 1 time in total
Back to top
View user's profile Send private message Visit poster's website
Prehistoricman
Advanced Cheater
Reputation: 0

Joined: 02 Aug 2016
Posts: 80

PostPosted: Mon Aug 07, 2017 7:10 am    Post subject: Reply with quote

Yeah oldcheat just misspelled Kritika.

You can see our new code is:

Code:

   fld qword ptr [qwvalue]
   fstp qword ptr [edi+04]

qwvalue:
   dq (double)0 // modify this value if you like 


The first line says "load float from the qwvalue address"
At qwvalue, we've written a double with the value of zero
Then the 2nd line says "store float at the address pointed at by edi+4"

_________________
Er, hi
Back to top
View user's profile Send private message
OldCheatEngineUser
Whateven rank
Reputation: 20

Joined: 01 Feb 2016
Posts: 1586

PostPosted: Mon Aug 07, 2017 7:14 am    Post subject: Reply with quote

yes, i have misspelled it.
and also forgot to tell CE where to place the jump
then posted with edit again.

Code:
alloc(newmem,$1000,"KRITIKA_Client.exe"+110611B)

_________________
About Me;
I Use CE Since Version 1.X, And Still Learning How To Use It Well!
Jul 26, 2020
STN wrote:
i am a sweetheart.
Back to top
View user's profile Send private message Visit poster's website
renomous
Advanced Cheater
Reputation: 0

Joined: 15 Jul 2012
Posts: 82

PostPosted: Mon Aug 07, 2017 8:24 am    Post subject: Reply with quote

INJECT+03:
jmp newmem
nop
return:
registersymbol(INJECT)

why this is there


_____________________
and if i want to make the code hiden from intergy check ?
i was watching some video in utube
rename some label to : my code
and change register EIP value to my code
can you make it lol?
Back to top
View user's profile Send private message
Prehistoricman
Advanced Cheater
Reputation: 0

Joined: 02 Aug 2016
Posts: 80

PostPosted: Tue Aug 08, 2017 5:06 am    Post subject: Reply with quote

That is the bit of code that injects into the original code.
INJECT is an address, the one the aobscan found
at inject+3, we add a jump to our code and a nop to prevent code corruption
then we define the return address as being after that nop
and finally, it registers the address of INJECT as a symbol. This doesn't really do anything in particular and the registersymbol(INJECT) line doesn't need to be at the end of the script

_________________
Er, hi
Back to top
View user's profile Send private message
renomous
Advanced Cheater
Reputation: 0

Joined: 15 Jul 2012
Posts: 82

PostPosted: Wed Aug 09, 2017 7:39 am    Post subject: Reply with quote

hey agian next problem Very Happy
im trying to bypass integryty check
so no jmp will be there
i will use EIP register and wrtie there mycode
but I DONT KNOW WHERE THE HELL TO PUT THIS INJECT+3
if i put it in the script it create jmp and my game crash
without inject+3 my game dosnt crash but the cooldown is the same
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(mycode,2048)
label(returnhere)
label(originalcode)
label(exit)
registersymbol(mycode)

mycode: //this is allocated memory, you have read,write,execute access
//place your code here

originalcode:
fld qword ptr [qwvalue]
fstp qword ptr [edi+04]
mov ecx,[ebp-0C]
jmp KRITIKA_Client.exe+1106121

qwvalue:
dq (double)0 // modify this value if you like
jmp KRITIKA_Client.exe+1106121
exit:
jmp returnhere

KRITIKA_Client.exe+110611B:

returnhere:




[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
KRITIKA_Client.exe+110611B:
fstp qword ptr [edi+04]
mov ecx,[ebp-0C]
//Alt: db DD 5F 04 8B 4D F4



11111111111111111111.jpg
 Description:
 Filesize:  38.97 KB
 Viewed:  11001 Time(s)

11111111111111111111.jpg



11111111111111111111.jpg
 Description:
 Filesize:  38.97 KB
 Viewed:  11001 Time(s)

11111111111111111111.jpg


Back to top
View user's profile Send private message
atom0s
Moderator
Reputation: 198

Joined: 25 Jan 2006
Posts: 8516
Location: 127.0.0.1

PostPosted: Wed Aug 09, 2017 7:55 pm    Post subject: Reply with quote

This is an online/multiplayer game which we do not support discussions for on this site/forum:
http://forum.cheatengine.org/faq.php#0

_________________
- Retired.
Back to top
View user's profile Send private message Visit poster's website
renomous
Advanced Cheater
Reputation: 0

Joined: 15 Jul 2012
Posts: 82

PostPosted: Thu Aug 10, 2017 3:38 am    Post subject: Reply with quote

catched Very Happy
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites