Cheat Engine

erfg1 · Cheater Reputation: 0 Joined: 14 Jul 2013 Posts: 49

I'm new to this AoB scan thing and I've watched all of what youtube has to offer, and I've read several articles and I still can't get it right.

The game I'm using is Psychonauts, and I'm trying to find the arrowheads quantity float value.

1) I have 733 arrowheads, so I search for the float value 733. I purchase an item for 10 arrowheads, so I do a next scan of 723 and it narrows it to 1 result. If I modify this value to 750, my arrowheads immediately changes to 750. This is the result I want.

2) I right click on the address and select "Find out what writes to this address". I then purchase another item for 10 arrow heads and I get my opcode, so I press the "Show disassembler" button.

3) Press Tools > Auto Assemble. In the Auto assemble window I press Template > AOB Injection. I press OK on the next 2 prompts. I press File > Assign to current cheat table.

Now is the point where I get confused. The tutorials seem to drift off here to their own destinations of where they want the code to go. Personally, I just want to find where this integer is located and modify it to 999. In the game, when you go to a new scene or level the integer jumps somewhere else so I figure this is the best way of locating it.

Some things I tried was changing the sub opcodes to add and dec to inc but that just caused a crash.

Zanzer · Posted: Fri Jan 01, 2016 1:12 pm Post subject:

Replace mov [eax+04],edx
If it's a float, use

erfg1 · Cheater Reputation: 0 Joined: 14 Jul 2013 Posts: 49

Says this error message and then the game crashes.

akumakuja28 · Posted: Fri Jan 01, 2016 1:27 pm Post subject:

Thats a shared opcode. Its crashing cause its writing 999 to evrry location thats accessed with that code.

Find out the arrows base address.

Zanzer · Posted: Fri Jan 01, 2016 1:31 pm Post subject:

No, no, no... Replace that instruction within your AOB Injection template!

erfg1 · Cheater Reputation: 0 Joined: 14 Jul 2013 Posts: 49

Like this? Still crashes.

Zanzer · Posted: Fri Jan 01, 2016 1:40 pm Post subject:

erfg1 · Cheater Reputation: 0 Joined: 14 Jul 2013 Posts: 49

akumakuja28 · Posted: Fri Jan 01, 2016 1:50 pm Post subject:

Instead of using what writes use what access's.

Post your screen cap on that.

erfg1 · Cheater Reputation: 0 Joined: 14 Jul 2013 Posts: 49

Basically the same thing.

When I leave the scene I get more data.

Zanzer · Posted: Fri Jan 01, 2016 1:58 pm Post subject:

erfg1 · Cheater Reputation: 0 Joined: 14 Jul 2013 Posts: 49

akumakuja28 · Posted: Fri Jan 01, 2016 2:04 pm Post subject:

Click the top code and click "show dissassbler"

Right click on that opcode and select "replace with code that does nothing".

Try shooting an arrow. If it doesnt decrement like its supposed to you found the injection point.

Check and make sure your other items count up and down accordingly
If so use that point as an injection pointer for your arrows.

Zanzer · Posted: Fri Jan 01, 2016 2:04 pm Post subject:

Right-click on the instruction in memory viewer and select Find out what addresses this instruction accesses.
If thousands appear, this hack is going to be too complicated to walk you through.

erfg1 · Cheater Reputation: 0 Joined: 14 Jul 2013 Posts: 49