Cheat Engine

thenewcomer

i was wondering if such a thing is plausible. what i was thinking of doing something like this.

one part to label the address required as so

daspamer · Posted: Sun Jul 20, 2014 12:47 am Post subject:

More info?
Lua script?
Adding your own functions? can you explain a bit on that? do you mean insert your own AS3 functions? if so, that's not gonna work... and it'll be hard to do.

thenewcomer · Posted: Sun Jul 20, 2014 4:38 pm Post subject:

daspamer · Posted: Mon Jul 21, 2014 7:45 am Post subject:

Take a look in this, if you want to create your own functions (or OVERRIDE with long ones)
http://www.fortiguard.com/files/CanSecWest2011_Flash_ActionScript.pdf .
In order to create your own function.

Take a look in the last 2 cases.
This will help you to create your own functions (Try to hook your function where the it verifies the functions).

Now check the whole PDF, you'll have to check which class it's checking (page 56), so you won't fail verification (e.g calling non existent functions in the current class, try to modify non-existent variable in the current class), you may also override the values directly (as long as the values are static) (Page 61).

The PDF contains lot's of useful information on how the AVM works, and it shows it's vulnerability.

So your steps:
allocate memory and build up your function.
Hook the verification function.
Check the current class, if matches, call your allocated memory address (else call eax).
And you're good to go.

If you want to make your own functions, and unsure if they're correct, do this:
find some long script, override it with your function, then just dump the .swf from the memory, and open it with any swf decomplier.

This method can allow a lot more of hacks, for any game as you won't be limited by space.

If this is not what you meant, please explain a bit more.