| View previous topic :: View next topic |
| Author |
Message |
ming2194
Cheater
![]() Reputation: 0
Joined: 14 Jun 2009
Posts: 39
|
 Posted: Sat Mar 13, 2010 7:16 am Post subject: How to cheat the score of a time limited flash game? |
 |
|
Game link: tempoboxfacial_com
Background:
1. the flash game is using flash player 10
2. The browser I use: IE (or firefox sometimes)
3. It is not a online game. It's just a normal flash game in a web site.
4. The flash game has time limit. The player need to score as many as he would under 60 seconds. The interface of the flash game is attached.
Obivously, I want to hack the score. What I had tried:
1. Open a browser and go to the web site. ( this time I used firefox.)
2. Open CE to attach that browser.
3. Start the flash game and scored 100 points first.
4. Go CE and type 100 in hex and press first scan with the scan type of exact value.
5. Back to game and score another 100 points ( total 200 points I have scored.)
6. Go to ce and type 200 and press next scan.
*7. No address is found.
(Note that I have also tried to scan the value with 8 times larger of I scored. It means I need to scan 800(100x8) in the first scan and 1600(200x8) in the next scan. But still nothing is found.)
It supposed I will find a address that belong the score of the flash game. But why I can't? Is it because of the existane of the timer? Or something else?
How can I do to hack this flash game?
Hope some experts can help me.. 
| Description: |
|
| Filesize: |
111.95 KB |
| Viewed: |
25692 Time(s) |
|
| Description: |
|
| Filesize: |
139.15 KB |
| Viewed: |
25692 Time(s) |
|
| Description: |
| Interface of the flash game. |
|
| Filesize: |
124.53 KB |
| Viewed: |
25698 Time(s) |
|
Last edited by ming2194 on Mon Mar 15, 2010 11:30 am; edited 1 time in total |
|
| Back to top |
|
 |
ming2194
Cheater
![]() Reputation: 0
Joined: 14 Jun 2009
Posts: 39
|
| Posted: Sun Mar 14, 2010 11:12 pm Post subject: |
|
|
may anybody give me some hits or advice?
i had tried my best to hack that game but still doesnt work.. hope some genuine people can help me a bit..
|
|
| Back to top |
|
|
Dark X
Advanced Cheater
![]() Reputation: 0
Joined: 30 Sep 2009
Posts: 79
Location: root
|
| Posted: Mon Mar 15, 2010 12:06 am Post subject: |
|
|
| Try Use Double or Float to find the address...
|
|
| Back to top |
|
|
ming2194
Cheater
![]() Reputation: 0
Joined: 14 Jun 2009
Posts: 39
|
| Posted: Mon Mar 15, 2010 2:10 am Post subject: |
|
|
| Dark X wrote: | | Try Use Double or Float to find the address... |
thanks for your advice first, Dark.
However seems still not work. I have just tried to use double/float or even All(binary to double)to seacrh the address but it still shows nothing in the address list after finishing the second scan.
what possible problem will it be?
If you dont mind, you can try to hack it. The game link is attached below. (sorry i can post a link so far.. please watch the photo below..)
Since the language is in chinese so I also did the screenshot to show how to start the game.
thanks so much.
| Description: |
|
| Filesize: |
1.9 KB |
| Viewed: |
25611 Time(s) |
|
| Description: |
|
| Filesize: |
163.73 KB |
| Viewed: |
25611 Time(s) |
|
| Description: |
| 2nd step to start the game |
|
| Filesize: |
182.08 KB |
| Viewed: |
25611 Time(s) |
|
|
|
| Back to top |
|
|
Dark X
Advanced Cheater
![]() Reputation: 0
Joined: 30 Sep 2009
Posts: 79
Location: root
|
| Posted: Mon Mar 15, 2010 2:51 am Post subject: |
|
|
I can hack the timer...
Use unknown initial value
then use decreased value..
| Description: |
|
| Filesize: |
139.99 KB |
| Viewed: |
25599 Time(s) |
|
|
|
| Back to top |
|
|
ming2194
Cheater
![]() Reputation: 0
Joined: 14 Jun 2009
Posts: 39
|
| Posted: Mon Mar 15, 2010 3:25 am Post subject: |
|
|
| Dark X wrote: | I can hack the timer...
Use unknown initial value
then use decreased value.. |
but how to hack to score?
I can also hack the timer by using the same method you metioned.
I also tried to use unknown initial value then increased value to try to find the score address but still find nothing...
is this flash game already beyond that Cheat Engine can do?
and i also want to ask what is the relationship between the value of the address vaule and the actual time? (i.e. in your screenshot the address value 16489<=> 202 second)
|
|
| Back to top |
|
|
Aqua Regia
Advanced Cheater
 Reputation: 0
Joined: 12 May 2009
Posts: 51
Location: Sweden
|
| Posted: Mon Mar 15, 2010 9:50 am Post subject: |
|
|
Maybe the value isn't stored anywhere, maybe it's being "juggled", like this:
| Code: |
void juggling(int juggledNumber)
{
cout << juggledNumber << endl;
juggledNumber++;
Sleep(1000);
juggling(juggledNumber);
}
|
"juggledNumber" will only be stored temporarily, and the address will change every second. That's why it's so hard (impossible?) to find.
I ran my own program with this method, I set the starting number to a value over 1 million, so when I searched for it I only got one result, and I set the timer to 10 seconds instead of 1 second, so I'd have time to search for the value. I was able to find the juggling-method in the memory, and as far as I can tell, the "juggled" value is always stored at ebp+08, I just don't know what to do with it, any ideas?
| Description: |
|
| Filesize: |
65.3 KB |
| Viewed: |
25572 Time(s) |
|
|
|
| Back to top |
|
|
ming2194
Cheater
![]() Reputation: 0
Joined: 14 Jun 2009
Posts: 39
|
| Posted: Mon Mar 15, 2010 11:38 am Post subject: |
|
|
| Aqua Regia wrote: | Maybe the value isn't stored anywhere, maybe it's being "juggled", like this:
| Code: |
void juggling(int juggledNumber)
{
cout << juggledNumber << endl;
juggledNumber++;
Sleep(1000);
juggling(juggledNumber);
}
|
"juggledNumber" will only be stored temporarily, and the address will change every second. That's why it's so hard (impossible?) to find.
I ran my own program with this method, I set the starting number to a value over 1 million, so when I searched for it I only got one result, and I set the timer to 10 seconds instead of 1 second, so I'd have time to search for the value. I was able to find the juggling-method in the memory, and as far as I can tell, the "juggled" value is always stored at ebp+08, I just don't know what to do with it, any ideas? |
Thanks for your attempt first Aqua Regia.
wow.. this flash game seems beyond the easyness to hack that I expected..
By the way, that means the game cannot easily hack by only seacrhing a simple value right?
|
|
| Back to top |
|
|
Aqua Regia
Advanced Cheater
Reputation: 0
Joined: 12 May 2009
Posts: 51
Location: Sweden
|
| Posted: Mon Mar 15, 2010 12:17 pm Post subject: |
|
|
| ming2194 wrote: |
By the way, that means the game cannot easily hack by only seacrhing a simple value right?
|
If you got a score high enough to be a unique value, you could freeze the game using the speedhack, search for your score and get the correct temporary address, although changing the value of that address wouldn't probably do anything. But maybe you could find out what accesses that address and then unfreeze the game to find any useful assembler code, then you could inject your own code and change the value of the score before it's passed on to the next address.
|
|
| Back to top |
|
|
frokido22
How do I cheat?
![]() Reputation: 0
Joined: 16 Mar 2010
Posts: 5
|
| Posted: Tue Mar 16, 2010 10:24 pm Post subject: |
|
|
the above post is your best bet buddy 
use speed hack to get your score way way up. then try different search methods
|
|
| Back to top |
|
|
ming2194
Cheater
![]() Reputation: 0
Joined: 14 Jun 2009
Posts: 39
|
| Posted: Fri Mar 19, 2010 10:21 pm Post subject: |
|
|
that means hacking the score of ANY flash game is not related to the exist of the timer?
Since I read some post here and told us the address scanning method only work for PASUABLE game, doesn't? Or when I use speedhack and speed 0 is already equal to pause the game?
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
