Cheat Engine

lkkms · How do I cheat? Reputation: 0 Joined: 16 Sep 2018 Posts: 3

need modify every time , can anyone help me ????

[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)

newmem: //this is allocated memory, you have read,write,execute access
//place your code here

originalcode:
mov [eax+0B40000A],si

exit:
jmp returnhere

0C3600CB:
jmp newmem
nop
nop
returnhere:

[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
0C3600CB:
mov [eax+0B40000A],si
//Alt: db 66 89 B0 0A 00 40 0B

FreeER · Posted: Sun Sep 16, 2018 9:12 am Post subject:

0C3600CB - use aobscan
mov [eax+0B40000A],si - try to get an aob pattern that does not include the 0B40000A offset and change si before it's written. Alternatively use readmem to store the original offset somewhere and then use add eax, [offsetaddr] and mov [eax], ...

lkkms · How do I cheat? Reputation: 0 Joined: 16 Sep 2018 Posts: 3

I've already AOB scan code ,but the problems is the +0B40000A was change every time ; original code not work anymore...
have any code can be calculation for +B40000A.........

FreeER · Posted: Sun Sep 16, 2018 6:50 pm Post subject:

lkkms · How do I cheat? Reputation: 0 Joined: 16 Sep 2018 Posts: 3

[ENABLE]
aobscan(ammo255,25 FF FF FF 3F 66 89 B0 0A 00 ?? ?? 0F BF F7 83 FE 00 89 75 88 89 7D 8C 0F 8F 29 00 00 00 8B 75 D4 8B C6 25 FF FF FF 3F)
alloc(newmem,$1000)
label(originalcode)
label(offset)
label(returnhere)
registerSymbol(ammo255)

newmem:
push eax
add eax, [offset]
mov byte ptr [eax], FF
pop eax
jmp returnhere
originalcode:
readmem(ammo255+5, 7) // can probably be smaller
offset:
readmem(ammo255+8,4)

ammo255+5:
jmp newmem
nop
nop
// appropriate number of nops
returnhere:

[DISABLE]
ammo255+5:
readmem(originalcode, 7)
unregisterSymbol(ammo255)
dealloc(newmem)

''readmem'' is amazing code
I'll remember that, thank you share!!!