Cheat Engine

[taco1]

I am very new to this. I am trying to find the address to where a script the game is running. The part I am trying to change is below. If I put value type to string and search for text I find nothing. The script changes it to true or false in the game.

How would I search for this address?


Map = true,
Map = False,

[cooleko]

did you try unicode?

[taco1]

Yes, I did.

Anything else to search for?

[Zanzer]

Map = true
Map =true
Map= true
Map=true

What makes you think this string is even in there?

[taco1]

I found the address but seems it changes everytime game is started. I found it using exact valules. I figured true is 1 and false is 0 and searched them until I narrowed it down to 9. All 9 changed evertime I enabled my map. Changing them all to 0 made my map disappear!

This worked but when I restarted my game the address all had values way off of the original scan. I changed the values to 1 and 0 but did not do anything so I am guessing I would have to start my search all over everytime my game starts. How does a guy avoid this?

I tried tutorial 4 and 5 but when the debugger runs my game crashes

[cooleko]

Find them again, when you find them, right click and "see what accesses this address" one of hte instructions there will always access your map, you can simply set it to use 0 or 1 depending on whether you want the map or not.

[taco1]

I found one instruction. How do I change it?

Is it in the Show disassembler/memory viewer/comment?

[cooleko]

Show in dissasembler, then Auto Assemble, then AOB Template, there are guides if you need more help.

[taco1]

Thank you for you help cooleko. This is quickly getting over my knowledge but I feel I am close.

Below is the code. Its not simple enough for me lol

Do I simply put

Map = true after newmem: ?

alloc(newmem,2048,"Visualizer.dll"+5A4FE)
label(returnhere)
label(originalcode)
label(exit)

newmem: //this is allocated memory, you have read,write,execute access
//place your code here

originalcode:
cmp dword ptr [rcx+000000BC],00

exit:
jmp returnhere

"Visualizer.dll"+5A4FE:
jmp newmem
nop
nop
returnhere:



I also made a pointer to the address but not sure how to use the pointer. Do I change pointers value or is the pointers value a way to find the address? The pointers value does not match the value of the address its pointing to.

[cooleko]

You need to do the AOB Template for best success IMO (without knowing any facts)

Add to the top:

[taco1]

Now ya lost me. Maybe we should try with pointers instead of scripts. When I try to make a pointer I fail though. When I do the tutorial on pointers my value is differnt then the starting value so I think I am doing something wrong or there is multple pointers.

In the scriopt above Im not sure of the address though as it always changes. Is the address this? rcx+000000BC. I will post some pics of what I have at the moment.

[cooleko]

You are 30 seconds form having a working script using the AOB template, I'd recommend you stick with that method. I'll let someone else assist you with pointers if you want to go that route.

[Zanzer]

Right-click that instruction and find out what addresses it accesses.
This will let you know if it is touching more than just the one address you are after.
Otherwise, you can copy the following and press CTRL-V to paste it into your table.

[taco1]

ok, Ill stick with the script method. Ill give a shot.


Ok so I tried the scipt above but it seems its not finding the address maybe? After I restarted and loaded my .ct file the script did not work. I pretty sure it worked before I restarted.

Are these the addresses?

[cooleko]

Ok, Zanzer and I are looking at this problem differently. So I wanted to clarify what it is you are actually trying to do before I assisted you further.

I think you have a value in game 0 for map, 1 for no map, that you want to know the address of without searching every time you reopen the game.

You want to be able to access this value using a pointer.

If that understanding is correct, then Zanzer's example will not provide that result (unless there is something i missed).

If my assumptions are true, you need to right click the address you found in the table and select "See what accesses this address."
I'm fairly certain that you successfully accomplished this when you identified "cmp dword ptr [rcx+000000BC],00"

You then select that address and either right click "Show in dissassembler" or select it from the button on the right of the window with the instruction highlighted.

In memory view (the dissassembler), while the instruction is highlighted, you scroll up to tolls and select auto assemble.
I'm fairly certain you accomplished this as well, because you posted the code injection template. However, I would prefer you select AOB Template as I'm not confident in the reliability of the code injection template working after a restart. This is mostly due to my preference for AOB and the advantages i perceive to be associated with it.

In the AOB template, simply add the lines of code i mention in my previous post. "globalalloc(bMap,4)" at the top with the other alloc and label instructions and "mov [bMap], rcx" and "cmp dword ptr [rcx+bc],00"
as the code.

You then go to file, assign to cheat table.

In the cheat table, you simply add a pointer "manually add address", select pointer type. In the bottom slot, put bMap, in the offset slot put BC, in type select byte

When you activate the script (and it is run once by the game) the pointer will be active with the correct address and state of the map, which you can alter at your convenience.

Zanzer pointed out that you should make sure that the instruction only accesses your one address and not others, but i tend to leave that until the user has made it far enough to see if it is a problem because it adds extra steps to an extremely simple, but new to the user, procedure.