| View previous topic :: View next topic |
| Author |
Message |
deusexmansin
Newbie cheater
![]() Reputation: 0
Joined: 19 Aug 2012
Posts: 11
|
 Posted: Sat Oct 27, 2012 5:05 am Post subject: Need help with making pointers |
 |
|
I did find the value, and checked what accesses to it, and here comes the problem, I got it in the picture attached. And the address of the value DOES change everytime I restart the game. Can anyone please help me? Thanks in advance.
| Description: |
|
| Filesize: |
86.45 KB |
| Viewed: |
5407 Time(s) |
|
|
|
| Back to top |
|
 |
deusexmansin
Newbie cheater
![]() Reputation: 0
Joined: 19 Aug 2012
Posts: 11
|
| Posted: Tue Oct 30, 2012 12:01 am Post subject: |
|
|
*bump*
AAAAARRRRRGGGGGHHHHH
Please someone HELP ME I'm dying...
By the way, I think this problem could be tricky, so if you are interested and don't mind, I can even send you the whole game for you to test on.
|
|
| Back to top |
|
|
Rydian
Grandmaster Cheater Supreme
 Reputation: 31
Joined: 17 Sep 2012
Posts: 1358
|
| Posted: Tue Oct 30, 2012 1:19 am Post subject: |
|
|
You're dealing with a multi-level pointer.
Run the cheat engine tutorial (it installs alongside cheat engine), it shows you how to do pointers and multi-level pointers.
|
|
| Back to top |
|
|
deusexmansin
Newbie cheater
![]() Reputation: 0
Joined: 19 Aug 2012
Posts: 11
|
| Posted: Tue Oct 30, 2012 5:59 am Post subject: |
|
|
| Rydian wrote: | You're dealing with a multi-level pointer.
Run the cheat engine tutorial (it installs alongside cheat engine), it shows you how to do pointers and multi-level pointers. |
Thank you for the reply, and sorry, I don't think that's a multilevel pointer, because I did try to find what writes to the value, turns out the guessed pointer address IS the address of the value itself. Then I tried to search the address in hex and it returned nothing.
|
|
| Back to top |
|
|
SteveAndrew
Master Cheater
 Reputation: 30
Joined: 02 Sep 2012
Posts: 323
|
| Posted: Tue Oct 30, 2012 2:25 pm Post subject: |
|
|
| deusexmansin wrote: | | Rydian wrote: | You're dealing with a multi-level pointer.
Run the cheat engine tutorial (it installs alongside cheat engine), it shows you how to do pointers and multi-level pointers. |
Thank you for the reply, and sorry, I don't think that's a multilevel pointer, because I did try to find what writes to the value, turns out the guessed pointer address IS the address of the value itself. Then I tried to search the address in hex and it returned nothing. |
This is because there is no offset used here see the code:
this means that the pointer is calculated previously... EDX here contains the dynamic address of the calculated pointer... What to do here is you either have to look at the previous instructions and figure out how the value in EDX here is calculated... (which you would then use where it was previously calculated and set a breakpoint / or break and trace to see the address your supposed to search for)
It seems your trying to find the pointer the old fashioned way though, manually... Have you tried the pointer scanner? It's much easier and less tedious... (Though sometimes you can find the pointer quicker manually if its not too many levels deep)
Can you send me the game and I'll have a look (It's a freeware game right? If not then just tell me the name and I'll acquire it my own way [piracy/cracks are not allowed here at the forum)...
Also most of the time it's easier just to build an auto assembler script to change the value you want, and the end result is always better... (you achieve a true freeze [as sometimes even if you find the pointer you can't always freeze it fast enough to achieve the desired effect)
Try this:
| Code: |
//unknown cheat
//for unknown game lol
//you didn't say what game or what value this is
[enable]
alloc(unknowncheat,64)
label(cheatreturn)
unknowncheat:
mov ecx,#1337 //change to whatever value you want
mov edx,[esp+8]
mov [edx],ecx
jmp cheatreturn
//should use gamename.exe+1A476 notation instead
//Assuming of course the image base was 0x400000
//but you haven't listed the game name
41A476:
jmp unknowncheat
nop
cheatreturn:
[disable]
41A476:
mov edx,[esp+8]
mov [edx],ecx
dealloc(unknowncheat)
|
Unless the game passes multiple values through [edx], then it should only effect the one value you're trying to change!
_________________
|
|
| Back to top |
|
|
deusexmansin
Newbie cheater
![]() Reputation: 0
Joined: 19 Aug 2012
Posts: 11
|
| Posted: Wed Oct 31, 2012 4:32 am Post subject: |
|
|
Finally! A life saver! Um... The game I'm playing is called Elona, a pretty small japanese freeware game xD
Anyways, if you don't mind, I will send you the game along with my save file since it will make it much easier to test on everything. And my email is
deusex1992 at hotmail
if you are OK with this, please send me an email, and I will send you my game! Thanks a lot!
|
|
| Back to top |
|
|
dfff00
Newbie cheater
![]() Reputation: 0
Joined: 18 Mar 2013
Posts: 12
|
| Posted: Thu Apr 04, 2013 11:56 pm Post subject: |
|
|
When I try doing pointers with this game and I put in the hex address I find, I get no result.
I've got a headache now. 
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
