View previous topic :: View next topic |
Author |
Message |
Ahm321 Newbie cheater Reputation: 0
Joined: 03 Oct 2017 Posts: 11
|
Posted: Sat Oct 07, 2017 12:48 am Post subject: Find all the values stored in [ebp-0c] |
|
|
Hello friends,
I wanted to know is there any way to find all the value stored in [ebp-0c]?
actually I am hacking a game and in this game all the values passes through this [ebp-0c]... i.e score,moves etc
Thanks in advance
|
|
Back to top |
|
|
FreeER Grandmaster Cheater Supreme Reputation: 53
Joined: 09 Aug 2013 Posts: 1091
|
Posted: Sat Oct 07, 2017 1:10 am Post subject: |
|
|
right click the instruction and choose "Find out what addresses this instruction accesses" (hopefully that's the phrasing used... about to head to bed so don't really feel like checking)
|
|
Back to top |
|
|
Ahm321 Newbie cheater Reputation: 0
Joined: 03 Oct 2017 Posts: 11
|
Posted: Sat Oct 07, 2017 1:33 am Post subject: |
|
|
Thanks for reply FreeER
Actually I don't want to see what addresses "mov [ebp-0c],eax" accesses...I want to see all the values stored in "[ebp-0c]" in my whole gameplay (level play)... i.e score,moves,stars etc
Is there any way to do that?
Thanks in advance
|
|
Back to top |
|
|
FreeER Grandmaster Cheater Supreme Reputation: 53
Joined: 09 Aug 2013 Posts: 1091
|
Posted: Sat Oct 07, 2017 9:00 am Post subject: |
|
|
The only thing I'm aware of is what I mentioned...There may well be something I don't know about though
|
|
Back to top |
|
|
Ahm321 Newbie cheater Reputation: 0
Joined: 03 Oct 2017 Posts: 11
|
Posted: Sat Oct 07, 2017 10:44 am Post subject: |
|
|
Well then I can say Thanks for trying..
|
|
Back to top |
|
|
Zanzer I post too much Reputation: 126
Joined: 09 Jun 2013 Posts: 3278
|
Posted: Sat Oct 07, 2017 6:33 pm Post subject: |
|
|
Add an injection and use: Code: | code:
lea eax,[eax]
mov [ebp-0c],eax |
Then use the Find out what addresses this instruction access on the LEA instruction instead.
Now all of the "addresses" that appear in the list will be the actual values.
|
|
Back to top |
|
|
Ahm321 Newbie cheater Reputation: 0
Joined: 03 Oct 2017 Posts: 11
|
Posted: Sat Oct 07, 2017 7:53 pm Post subject: |
|
|
Zanzer wrote: | Add an injection and use: Code: | code:
lea eax,[eax]
mov [ebp-0c],eax |
Then use the Find out what addresses this instruction access on the LEA instruction instead.
Now all of the "addresses" that appear in the list will be the actual values. |
Thanks a lot for this solution Zanzer...
But here the problem is I don't know which register is moving to [ebp-0c].. I just know that it is moving to [ebp-0c] i.e mov [ebp-0c],*
for example in my case it's [ebp-0c],al ?
BTW what is wrong with this?
Code: | xor al,[ecx+08]
lea al,[al]
mov [ebp-0C],#0 |
But at least now I have a little idea what we can do..thanks again for your reply...
Thanks in advance
|
|
Back to top |
|
|
|