Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


how to get EDX?

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking
View previous topic :: View next topic  
Author Message
neko
How do I cheat?
Reputation: 0

Joined: 09 Aug 2010
Posts: 4
PostPosted: Mon Aug 09, 2010 6:09 am    Post subject: how to get EDX? Reply with quote
Hi
I need help with this opcode, i write a bot in autoit and i need offset stored in EDX
005CBF76 - mov [edx],ax
how to capture EDX, couse after mov edx is cleared. Is there a way to write a trainer in CE and send EDX every time when it change to a memory buffer?
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 471

Joined: 09 May 2003
Posts: 25814
Location: The netherlands
PostPosted: Mon Aug 09, 2010 6:50 am    Post subject: Reply with quote
do a code injection script at 005CBF76
and then write the value of edx to a known static location (00400500 is my favorite static address, but don't forget to make use of fullaccess(staticaddress,4) first to make sure it's writable)
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
neko
How do I cheat?
Reputation: 0

Joined: 09 Aug 2010
Posts: 4
PostPosted: Mon Aug 09, 2010 10:28 am    Post subject: Reply with quote
Thanks for response. I made it
Code:

alloc(newmem,2048) //2kb should be enough
label(returnhere)
label(originalcode)
label(exit)

005CBF76:
jmp newmem
nop
nop
nop
nop
nop
returnhere:

newmem: //this is allocated memory, you have read,write,execute access
//place your code here
fullaccess(Main.exe+500,256)
mov edx, 00400500

originalcode:
mov [edx],ax
cmp [ebp-04],00001c0f

exit:
jmp returnhere


but there is something wrong and I don't get it. When I set break point on
005CBF76 - 66 89 02 - mov [edx],ax

after executing registers are

Code:

EAX 00001809
EBX 0DAC9FB0
ECX 07BB8CA6 <--address
EDX 07BB8CA6 <--address

and all i get under 00400500 is 1809 from EAX but i want address 07BB8CA6 from EDX. Did I miss something?
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 471

Joined: 09 May 2003
Posts: 25814
Location: The netherlands
PostPosted: Mon Aug 09, 2010 11:34 am    Post subject: Reply with quote
Quote:
mov edx, 00400500


That overwrites edx with the value 00400500

what you want is
Quote:
mov [00400500],edx

_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
neko
How do I cheat?
Reputation: 0

Joined: 09 Aug 2010
Posts: 4
PostPosted: Sat Aug 14, 2010 3:36 am    Post subject: Reply with quote
Hi again Very Happy
Heh its too fast! Autoit can read only last address stored in 0x00400500, becouse that opcode overwrites results. What im trying to do now

Code:

base_address = 0x00400500

mov [base_address],edx
add base_address,4

if base_address == 0x00400D00 then
        base_address = 0x00400500
endif



How to declare base_address and how store increased base_address? Point me to the right direction please.
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 471

Joined: 09 May 2003
Posts: 25814
Location: The netherlands
PostPosted: Sat Aug 14, 2010 5:25 am    Post subject: Reply with quote
Code:

alloc(newmem,2048) //2kb should be enough
alloc(base_address,4)
label(returnhere)
label(originalcode)
label(exit)
label(noreset)

base_address:
dd 00400500

005CBF76:
jmp newmem
nop
nop
nop
nop
nop
returnhere:

newmem: //this is allocated memory, you have read,write,execute access
//place your code here
fullaccess(Main.exe+500,256)
push eax
mov eax,[base_address]
mov [eax],edx
add eax,4
cmp eax,00400d00
jb noreset  //if below don't reset

mov eax,00400500 //reset back

noreset:
mov [base_address],eax
pop eax


originalcode:
mov [edx],ax
cmp [ebp-04],00001c0f

exit:
jmp returnhere

_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
neko
How do I cheat?
Reputation: 0

Joined: 09 Aug 2010
Posts: 4
PostPosted: Sat Aug 14, 2010 7:03 am    Post subject: Reply with quote
Thank You very much!
Back to top
View user's profile Send private message
uldbridt
How do I cheat?
Reputation: 0

Joined: 03 Nov 2008
Posts: 3
Location: Amsterdam
PostPosted: Thu Aug 19, 2010 6:04 am    Post subject: tutorial search!! Reply with quote
Is there a tutorial where you explain all off that
including what eax, move and all of that

Im really interested in learning all of that

ty for ur understanding
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites