Cheat Engine

Zanzer · Posted: Mon Jul 27, 2015 5:47 pm Post subject:

When you do an aobscan for those compare bytes, you still aren't able to activate the script?

jan24 · Cheater Reputation: 0 Joined: 12 Jul 2013 Posts: 34

No, I couldn't active the script you sended.

I got a bit confused by the instructions you told me. At point 1 I couldn't right click it also I was already in the window "Find out what writes to this address".
At point 4 I thought u ment copying althought I couldn't selected it, so I guess I'm at some wrong window there.

Anyways this was the findings of what writes to this address with the following script below:
movq [eax+00000090,xmm0
The value of the pointer needed to find this address is probably 0B2DD5C4

Zanzer · Posted: Tue Jul 28, 2015 4:35 pm Post subject:

Select "movq [eax+00000090],xmm0"
Select Tools > Auto Assemble (or press CTRL-A)
Select Template > AOB Injection
Click OK twice
Paste that code here

jan24 · Cheater Reputation: 0 Joined: 12 Jul 2013 Posts: 34

Zanzer · Posted: Wed Jul 29, 2015 5:32 pm Post subject:

I've lost track of what it is we were trying to accomplish here. Smile

jan24 · Cheater Reputation: 0 Joined: 12 Jul 2013 Posts: 34

Okay what I try to do:

Game: Offspring Fling!
Version: Steam version
Cheat: No-clip

For this I'm trying to get the base address on some sort of way of the Y-cords.
This can maybe be done through a AOB scan.
The Y-cords address keeps changing at each level and when restarting the game.

I still see myself as a beginner and don't know much of assambling yet.

Zanzer · Posted: Thu Jul 30, 2015 9:50 am Post subject:

And the results of implementing my script?

jan24 · Cheater Reputation: 0 Joined: 12 Jul 2013 Posts: 34

Your script can be activated, although nothing happens after that.

Zanzer · Posted: Thu Jul 30, 2015 3:45 pm Post subject:

Did you add a pointer to the address "mypointer" like I stated?
Try it both with an offset of "90" or "0" depending on the address you're expecting.

jan24 · Cheater Reputation: 0 Joined: 12 Jul 2013 Posts: 34

I'm new to assambling so here is what I tried:

Zanzer · Posted: Thu Jul 30, 2015 4:31 pm Post subject:

Activate my previous script.
Copy the following, go to your table, and press CTRL-V to paste.
Go in game and move or whatever to cause it to change the address you're hacking.
Did the addresses you pasted update to something meaningful?

jan24 · Cheater Reputation: 0 Joined: 12 Jul 2013 Posts: 34

Nice that seems to work, now I wonder how you did that.
I see you added a few lines, could you maybe explain those to me ?
And how did you find the pointer (real address) ?

Now that I got the Y-cords I wanna try to make a noclip.
I am trying to do this by implanting the script of a other side scrolling game (140), see post here http://forum.cheatengine.org/viewtopic.php?p=5598969

Add .ct file to make it a bit easier to view.

Rydian · Posted: Fri Jul 31, 2015 6:30 am Post subject:

Zanzer's script allocates 4 bytes for an address with a specific name/label. Assuming a 32-bit program without >4GB of RAM usage, 4 bytes is all that's needed for an address.

He then inserted "mov [mypointer],eax" to copy the base address of the structure into the allocated memory. He's copying just the base address because it's simpler that way (opposed to copying the base+offset), and makes things easier when you're working with multiple values in the same structure.

And the registersymbol() is to make that label work as a variable of sorts for the table itself to use. That's why after that script runs, you can add an address or pointer that uses that value as a base, for example. And the table knows what the value is.

jan24 · Cheater Reputation: 0 Joined: 12 Jul 2013 Posts: 34

Thanks for the explanation Smile

It's still looks like a bit of magic for me but it works like a charm.
After this I thought adding the noclip would be easy but it's harder then I thought hehe.