Cheat Engine

Smidge204 · Newbie cheater Reputation: 0 Joined: 01 Jan 2004 Posts: 19

Not much of a "trainer", but useful nonetheless.

When searching for a value in memory using the scan, here are a few pointers to find the value quickly:

1) If the value is known, but the format is not (ie: Byte, 2 Bytes, 4 Bytes...) search for the smallest type that will hold the data.

For example, if the value you want is 60, search for bytes. If the value is 1224, search for 2 Byte values, etc. The idea being that if the actual format is larger (You searched for 2 byte values but it's actually a 4 byte values) then the other bytes would be 0 anyway and the value would still be found.

But if you search for a 4 byte value when it's really less, you might never find it because you're reading nearby bytes as well that might screw up your search!

2) If the value is unknown, use the "Unknown initial value" scan along with method 1 (ie: always use bytes unless you happen to know it's size). Then do something that changes it's value.

Once the value has changed, repeat the scan using "Changed values". This will filter out all the crap.

Now go back into the game and do a bunch of stuff that DOESN'T change the value, if possible. Now repeat the scan for "Unchanged values". This will filter out stuff like position values, timers and counters.

Keep repeating until you've widdled down the searches to a managable amount, then add all the results to your list and keep an eye on them as the game runs. Remove anything that changes when it logically shouldn't. Anything that's left, try plugging in random values and see if something happens!

3) If you've found a bunch of good values, and youre looking for information that is somewhat related (Such as Lives and money, or whatever) , try restricting your search range to within a few kilobytes of the known value either way. This is especially powerful when looking for values in tables (High score list, for example) since they tend to be right next to eachother.

4) Use "Bigger than" and "Smaller than" as often as possible, especially after scans for changed or unchanged values. This can generally wittle down the results pretty fast.

5) Use arrays to peek at multiple byte values at once. Useful for detecing patterns!

6) Sometimes string values are not stored as ASCII strings, so the "Text" search doesn't work. For example, "A" might be stored as 0x01 instead of 41. If that's the case, and you have control over the value in-game (character name?) then try these steps:

-Set the character name
-Search for "Unknown initial value"
-Change name
-Search for "Changed values"
(Repeat above two steps to eliminate as much junk as possible. See also tip #2)
-Change name to all the same characters. ie: "AAAAAAA". Try to max out the space you're given.
-Search one more time for changed values. If you've increased the number of displayed results enough to get a list, scroll down and see if you have a bunch of consecutive memory locations that have the same value. (Should be the same as the length of the string!)
-Add the first address to your list as an array equal to the length of the string you entered.
-Change name to an easily identifiable pattern. ie: "ABCDEFG"
-See if the bytes in your array changed to a similar pattern. If so, start mapping the characters to their values and you're done!

Once you have the character map, you can use it to "translate" other text you couldn't find before. Simply search for an array of bytes and enter in the expected values of each letter in order.

Hope that helps!
=SMidge=

wh1t3y · Posted: Wed Jan 07, 2004 9:22 pm Post subject:

very nice tutorial smidge.. awesome job

Dark Byte · Posted: Thu Jan 08, 2004 3:33 pm Post subject:

Just one note when doing the unchanged/changed method only. (and propably also for other non exact values)

It may be better to scan with 4 or 8 bytes instead of 1 byte, and later try to find out the address

example:
the address you need is in fact a 2 byte address
first time you start the scan the bytes are 02 00
next time you scan the bytes are 02 01 (So increased wih 256)
next time after that the bytes are 03 01 (Increased with 1)

As you see, doing this with 1 byte changed/unchanged will remove the right adress after the 2nd next scan.

Same also applies if it's a 4 byte or 8 byte

Smidge204 · Newbie cheater Reputation: 0 Joined: 01 Jan 2004 Posts: 19

True! Though I kinda assumed that the value wouldn't be changing more than 1 or 2, but that is certaintly a valid point not to be overlooked.

Question: How does the Binary search work? I would assume that it would search for a binary pattern (0100101110101), but it doesn't seem to be acting like I expect... especially when rescanning :/
=Smidge=

cheater · How do I cheat? Reputation: 0 Joined: 26 Apr 2004 Posts: 3

lol i srry but i dont get nuttin can someone find out cheats for me for www.nittoracing.com

xXNoobHackerXx · How do I cheat? Reputation: 0 Joined: 20 Jul 2005 Posts: 5

i really dont get how to hack a game???
can u please help me ?? what is the scan for numbers for??like how do you hack a game and put like a name and a saying ??
how do i give myself as much cash as i want????

~~xXnoobhackerXx~~