Cheat Engine

tase · How do I cheat? Reputation: 0 Joined: 23 Sep 2010 Posts: 6

Hey guys, I've been trying to find a way to make a no-spread in this shooter. It's the usual spread system, shoot=spread, move=spread.

I can't seem to find the address, I have no clue what kind of value it could have.

I just go with a 4byte and sometimes I find it, but it's never the same address between sessions, like once the match is over, I can't reuse the same address.

So I'm lead to believe that I'm just changing the value of the visual spread circle, and not the actual value used when calculating the shot.

I don't know if this is server side, hopefully it's not.

I've tried doing unknown 4byte, value increased, value decreased, value unchanged, and repeat, but this time around I'm not even finding any usable addresses, I lock the remaining 40-60 (bad) and it either does nothing or a locked value crashes the game.

I hope you guys can help me out.

noko_112 · Posted: Fri Sep 24, 2010 12:50 am Post subject:

Try also float and double

justa_dude · Posted: Fri Sep 24, 2010 3:37 am Post subject:

Also check to see if the unrandomizer has any affect on shot spread.

AhMunRa · Posted: Fri Sep 24, 2010 12:52 pm Post subject:

Float should work, as most shooters I've dealt with if you look at the scripting engine of the game, the spread is float based.

tase · How do I cheat? Reputation: 0 Joined: 23 Sep 2010 Posts: 6

Alright, I found it twice, I was freezing it and it kept going back. I don't know if it was just visuals tho, I didn't see anything change in the shooting.

But the addresses changed, first it was 0x136BBD6C, then it was 0x0190AADC.

I followed those addresses in OllyDBG and the first time it was a OR AL,27, the second one kept changing, from RETN to other things, sometimes it wasn't a precise command.

AhMunRa · Posted: Fri Sep 24, 2010 3:55 pm Post subject:

That could possibly be the randomness of the spread.

tase · How do I cheat? Reputation: 0 Joined: 23 Sep 2010 Posts: 6

The randomness of the spread?

How do I find the correct address?

AhMunRa · Posted: Sat Sep 25, 2010 8:58 am Post subject:

Once you have located the code for the spread try using aobscan() to find the next instance.

tase · How do I cheat? Reputation: 0 Joined: 23 Sep 2010 Posts: 6

I don't have the source for the game =/

EDIT: Oic, aobscan() is part of Cheat Engine. Tho I have no clue how to use it =/

Teh1337Bix · Posted: Sun Sep 26, 2010 8:09 am Post subject:

By code he means the dissasembly.

tase · How do I cheat? Reputation: 0 Joined: 23 Sep 2010 Posts: 6

I haven't found the code for the spread, I'm still trying to find it.

What I said above was that I found the address in CE, froze them, it was doing it, but when I went to that address in OllyDBG, the ASM instructions where not the same.

Teh1337Bix · Posted: Sun Sep 26, 2010 11:53 pm Post subject:

AhMunRa · Posted: Mon Sep 27, 2010 10:09 am Post subject:

To make it rework at ever iteration (every run of the game) you will most likely need to use the aobscan() function to locate the address that is writing the spread data. This is most likely why you could not find it in Olly.

Once you have the address what you do is copy down the previous 3 instructions, your main line that actually writes the spread data, and the next 3 lines. Open up Olly and perform a search for that series of commands you should find it fairly easily.

Geri · Moderator Reputation: 112 Joined: 05 Feb 2010 Posts: 5627

tase · How do I cheat? Reputation: 0 Joined: 23 Sep 2010 Posts: 6

Got it

The opcode that writes it is pretty "unique". Already found it again on a next session thanks for CE.

Problem is that it doesn't seem to do anything for the actual shooting spread. The spread indicator stays tight, but the shots are still spread out.