mschol
How do I cheat?
![]() Reputation: 0
Joined: 06 Sep 2013
Posts: 9
|
 Posted: Sun Sep 08, 2013 2:43 am Post subject: Beginner at pointer searching needs some tips |
 |
|
I'm trying to my first real pointer scan on the game Faerie Solitaire
this is what I got:
1) search value in 4byte
2) change and search again etc. until I got the value (in my case: 0B151CD8)
3) add to code list
4) Choose: find out what writes to address
got this info:
| Code: | EAX=0B151CD0
EBX=00000000
ECX=00000001
EDX=09206BEC
ESI=00000000
EDI=09206BDC
EBP=00000242
ESP=0018FE44
EIP=00412379
Probable base pointer =0B151CD0
00412371 - ret
00412372 - mov ecx,[esp+18]
00412376 - mov [eax+08],ecx <<
00412379 - pop edi
0041237A - pop esi |
5) searched for value 0B151CD0 in HEX
6) found 1 value, added to code list
and then I'm stuck:
if I select "Find out what writes to this address" I get nothing
If I select "Find out what access this address" I get 4 lines:
| Code: |
004131BA - 8B 3C 06 - mov edi,[esi+eax]
0040FC6A - 8B 14 39 - mov edx,[ecx+edi]
004122AB - 8B 04 28 - mov eax,[eax+ebp]
0041233A - 8B 04 29 - mov eax,[ecx+ebp]
|
1 guesses to the address I just searched for (step 5)
3 guess to 03721548
Should I now do a new scan on 03721548 in hex? (And effectively repeat steps 5&6? |
|
Dark Byte
Site Admin
 Reputation: 471
Joined: 09 May 2003
Posts: 25819
Location: The netherlands
|
| Posted: Sun Sep 08, 2013 4:06 am Post subject: |
|
|
I don't recommend using the guess, but just calculate it yourself
Esi+eax=<the address you used find what access on>
The register with the smallest value will be the offset, and the one with the biggest value will be the base address
So do a scan for the base address value. (If offset is 0 the base address will be the same as <the address you used find what access on>)
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
