Cheat Engine

[Bulkybear]

Bit of a beginner here so please go easy on me. I did some reading and researching but still not sure how to proceed. I'm trying to get Infinite Energy in the original Crysis. I open CE and attach to the process. Make sure my energy is at 100. And start a scan for that value. I activate my cloak, let my energy drain to any other number, say 75 for example. I rescan for that value and get either other entries that do not change with my energy level, or just no results (depends on what number I rescan for). I've tried the unknown initial value and decreasing/increasing value to try to narrow it down with the same results. I've tried search for the default 4 byte and I've also tried floating point and even the option for all of them all with the same results.

Any help would be appreciated. Not only would I like to solve this little issue, but I would also like to learn from what I'm doing wrong. So anybody that can help me get off in the right direction?

[Kavvman]

Try doing a reverse scan (increase search when values decreases in game, decrease search when value increases in game).

I haven't touched crysis1 but i remember energy to be easily found in newer games so you must be doing something wrong. Make sure when you're doing decreased value searches, don't let energy refill to previous levels.

[Bulkybear]

Well I tried the reverse method as well as unchecking fast scan, tried 4 bytes, 2 bytes, byte, and float. After a few scans I end up with a blank address box still. Any other ideas?

Edit: So I tried "binary" and actually found it. Problem now is I couldn't get it to freeze. I found a trainer that works, but I still want to learn. I ended up crashing the game using the "replace with code that does nothing" function when trying out those lines that write to that binary address. After that I started over and couldn't find a match to my energy level again. So i'm kind of at a loss on this one. I know it's possible, because I'm assuming that's how this trainer works. Just would like to know what I'm doing wrong.

[Kronogenics]

Well you may have found an address that writes to more places than just what you are interested in. So replacing it with a NOP makes sense that it would crash, you can check this by: Instruction > Show dissembler > right click instruction > "Find out what address this instruction writes to" if you see more than one value then it becomes a need of narrowing down something that is specific to your address. (Step 9 of the CE tutorial).

As for you losing the address you could find it and then make your own pointer to the value you are interested in. Or you could even take the bytes from the above picture and search for the "array of bytes" (make sure that the executable and writable boxes are solid) This would give you access to the instruction again, and then see what it is accessing like above and there you go now you have your address back.

[Bulkybear]

Thanks for the tips Kronogenics. I was able to use that method to narrow down to the specific instruction that handles energy drain, nop it, and end up with no energy drain. Thanks.

[Kronogenics]

(For the purpose of other people who may be interested in hacking this game)
Which method above did you use?

[Bulkybear]

Well I ended up going through the tutorial to learn some more and that taught me how to find the actual instruction that writes to the address affected by the energy level. Instead of nop, I ended up just deleting the original part of the code that subtracts the value. That stopped my energy from draining. I still need to test if it's going to work after restarting because I think the address changes. But I ended up changing it at the instruction level. Going through the tutorial really helped, but I'm kind of stuck at the one where you have a 4 layer pointer, I think it's step 8.

[Kronogenics]

Just google other peoples tutorials on that specific step. Also, try out an AOB injection instead of a normal code injection, this will probably help you get it to persist through restarts.