View previous topic :: View next topic |
Author |
Message |
renomous Advanced Cheater Reputation: 0
Joined: 15 Jul 2012 Posts: 82
|
|
Back to top |
|
|
OldCheatEngineUser Whateven rank Reputation: 20
Joined: 01 Feb 2016 Posts: 1586
|
Posted: Fri Aug 04, 2017 8:34 am Post subject: |
|
|
Code: | [ENABLE]
aobscanmodule(INJECT,KRITKA_Client.exe,DD 46 04 DD 5F 04 8B 4D F4)
alloc(newmem,$1000)
label(code)
label(return)
label(qwvalue)
newmem:
fld qword ptr [qwvalue]
code:
fstp qword ptr [edi+04]
mov ecx,[ebp-0C]
jmp return
qwvalue:
dq (double)0 // modify this value if you like
INJECT+03:
jmp newmem
nop
return:
registersymbol(INJECT)
[DISABLE]
INJECT+03:
db DD 5F 04 8B 4D F4
unregistersymbol(INJECT)
dealloc(newmem)
|
_________________
About Me;
I Use CE Since Version 1.X, And Still Learning How To Use It Well!
Jul 26, 2020
STN wrote: | i am a sweetheart. |
|
|
Back to top |
|
|
renomous Advanced Cheater Reputation: 0
Joined: 15 Jul 2012 Posts: 82
|
|
Back to top |
|
|
OldCheatEngineUser Whateven rank Reputation: 20
Joined: 01 Feb 2016 Posts: 1586
|
Posted: Mon Aug 07, 2017 7:07 am Post subject: |
|
|
Code: | [ENABLE]
aobscanmodule(INJECT,KRITIKA_Client.exe,DD 46 04 DD 5F 04 8B 4D F4)
alloc(newmem,$1000,"KRITIKA_Client.exe"+110611B) // edited here
label(code)
label(return)
label(qwvalue)
newmem:
fld qword ptr [qwvalue]
code:
fstp qword ptr [edi+04]
mov ecx,[ebp-0C]
jmp return
qwvalue:
dq (double)0 // modify this value if you like
INJECT+03:
jmp newmem
nop
return:
registersymbol(INJECT)
[DISABLE]
INJECT+03:
db DD 5F 04 8B 4D F4
unregistersymbol(INJECT)
dealloc(newmem)
|
_________________
About Me;
I Use CE Since Version 1.X, And Still Learning How To Use It Well!
Jul 26, 2020
STN wrote: | i am a sweetheart. |
Last edited by OldCheatEngineUser on Mon Aug 07, 2017 8:11 am; edited 1 time in total |
|
Back to top |
|
|
Prehistoricman Advanced Cheater Reputation: 0
Joined: 02 Aug 2016 Posts: 80
|
Posted: Mon Aug 07, 2017 7:10 am Post subject: |
|
|
Yeah oldcheat just misspelled Kritika.
You can see our new code is:
Code: |
fld qword ptr [qwvalue]
fstp qword ptr [edi+04]
qwvalue:
dq (double)0 // modify this value if you like
|
The first line says "load float from the qwvalue address"
At qwvalue, we've written a double with the value of zero
Then the 2nd line says "store float at the address pointed at by edi+4"
_________________
Er, hi |
|
Back to top |
|
|
OldCheatEngineUser Whateven rank Reputation: 20
Joined: 01 Feb 2016 Posts: 1586
|
Posted: Mon Aug 07, 2017 7:14 am Post subject: |
|
|
yes, i have misspelled it.
and also forgot to tell CE where to place the jump
then posted with edit again.
Code: | alloc(newmem,$1000,"KRITIKA_Client.exe"+110611B) |
_________________
About Me;
I Use CE Since Version 1.X, And Still Learning How To Use It Well!
Jul 26, 2020
STN wrote: | i am a sweetheart. |
|
|
Back to top |
|
|
renomous Advanced Cheater Reputation: 0
Joined: 15 Jul 2012 Posts: 82
|
Posted: Mon Aug 07, 2017 8:24 am Post subject: |
|
|
INJECT+03:
jmp newmem
nop
return:
registersymbol(INJECT)
why this is there
_____________________
and if i want to make the code hiden from intergy check ?
i was watching some video in utube
rename some label to : my code
and change register EIP value to my code
can you make it lol?
|
|
Back to top |
|
|
Prehistoricman Advanced Cheater Reputation: 0
Joined: 02 Aug 2016 Posts: 80
|
Posted: Tue Aug 08, 2017 5:06 am Post subject: |
|
|
That is the bit of code that injects into the original code.
INJECT is an address, the one the aobscan found
at inject+3, we add a jump to our code and a nop to prevent code corruption
then we define the return address as being after that nop
and finally, it registers the address of INJECT as a symbol. This doesn't really do anything in particular and the registersymbol(INJECT) line doesn't need to be at the end of the script
_________________
Er, hi |
|
Back to top |
|
|
renomous Advanced Cheater Reputation: 0
Joined: 15 Jul 2012 Posts: 82
|
Posted: Wed Aug 09, 2017 7:39 am Post subject: |
|
|
hey agian next problem
im trying to bypass integryty check
so no jmp will be there
i will use EIP register and wrtie there mycode
but I DONT KNOW WHERE THE HELL TO PUT THIS INJECT+3
if i put it in the script it create jmp and my game crash
without inject+3 my game dosnt crash but the cooldown is the same
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(mycode,2048)
label(returnhere)
label(originalcode)
label(exit)
registersymbol(mycode)
mycode: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
fld qword ptr [qwvalue]
fstp qword ptr [edi+04]
mov ecx,[ebp-0C]
jmp KRITIKA_Client.exe+1106121
qwvalue:
dq (double)0 // modify this value if you like
jmp KRITIKA_Client.exe+1106121
exit:
jmp returnhere
KRITIKA_Client.exe+110611B:
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
KRITIKA_Client.exe+110611B:
fstp qword ptr [edi+04]
mov ecx,[ebp-0C]
//Alt: db DD 5F 04 8B 4D F4
Description: |
|
Filesize: |
38.97 KB |
Viewed: |
11001 Time(s) |
|
Description: |
|
Filesize: |
38.97 KB |
Viewed: |
11001 Time(s) |
|
|
|
Back to top |
|
|
atom0s Moderator Reputation: 198
Joined: 25 Jan 2006 Posts: 8516 Location: 127.0.0.1
|
Posted: Wed Aug 09, 2017 7:55 pm Post subject: |
|
|
This is an online/multiplayer game which we do not support discussions for on this site/forum:
http://forum.cheatengine.org/faq.php#0
_________________
- Retired. |
|
Back to top |
|
|
renomous Advanced Cheater Reputation: 0
Joined: 15 Jul 2012 Posts: 82
|
Posted: Thu Aug 10, 2017 3:38 am Post subject: |
|
|
catched
|
|
Back to top |
|
|
|