Cheat Engine

[grasmanek94]

Hi. again... xD problems with pointers.. i am stuck.. everytime i try to find the right pointer but when i do at the normal adress find out what writes to it.. then i get a code and offset: 04, then i make the 1st pointer and then i click find out what access and then i got the same code but not [eax+04] but [ecx+eax*4] and the "probably same adress" is still the same like in the first debug... the same code.. the same adress the same offst... everithing the same except the [xxx] but i can't find any good thing :/. ok so help me.. the game Red Alert 3 (v 1.03) is really hard to fing a pointer.. maybe u know how cheathappens and all trainers .. _by_kelsat are made? plz help me. here some screens:

[Dark Byte]

Do a codeinjection at those locations in in your code do a check to see if it's the enemy or yours

but if you intend on using pointers, try finding out what calls those routines (debugging with a 2nd computer, or doing a codecave that saves esp to a static address so you can see the callers address)
alternatively if you have several days the time, try the pointer scanner (I recommend the reverse pointer scan option)

[grasmanek94]

[Dark Byte]

just use cheatengine.
money is stored as a normal 4 byte value and quickly found. (you get 3 addresses, but just change all 3 to something different to find the real one)

health is stored as a float value

Just try to find out how to determine which object is accessed by a piece of code
(en in het nederlands zou je er helamaal niets van snappen)

[grasmanek94]

i found the real adress ... because i tested witch adress changes the value.. ok i got the 1 adress i found a code ... i open up the extra info and ok make the 1st pointer.. non static.. clicking find out acess and brings me back to START....did an all scan and yes : 4 bytes .
i Tried 7 times to make a static pointer.. 7x red alert on and off xD
that EA crap... also i can't make a trainer for SPORE but not playing SPORE anymore ;pp

|||||||||||

[Dark Byte]

let's say you find your money and use find what accesses.
find out what accesses that and find the generally yused offset fr that address.

go to your health address-offset in the memory view
then use the data dissector in memoryview (ctrl+d) to fill out the structure

And now see if you can find something that is set explicitly when it's your money, or even a teamnumber

I recommend finding the money of your opponent as well. Do that by doing a code injection on the address that accesses money and storing a list of pointers to all accesses, one of them will be the address of money of the enemy and then you can use that address to compare the memory to

perhaps it's better if someone else describes, i'm notorious for sucking at explaining stuff

[grasmanek94]

and here are the structure tables:

[dreadylock]

what am i suppossed to open with *.ces i have cheatengine 5.4

also i have red alert 3 1.04
i'm having trouble finding a pointer for secret protocols

i am attaching my cheayengine 5.4 saved file

[Dark Byte]

a ces is a definition of a memory region. It's just like a cheattable where you have to use the "recalculate all addresses" function
e.g:
currenthealth DWORD
maxhealth DWORD
unknown DWORD
unknown DWORD
xpos FLOAT
ypos FLOAT
zpos FLOAT
unknown DWORD
unknown DWORD
unknown DWORD
unknown DWORD
teamnr DWORD
unknown DWORD
unknown DWORD
unknown DWORD
gravity DOUBLE

In the dissect data window you can load those .CES files, then point them to the base address of the memory region it goes about and then you have a nice readable overview of the memory

[grasmanek94]

heh should be nice if you can find a video tutorial or make one...