View previous topic :: View next topic |
Author |
Message |
Branimir Advanced Cheater Reputation: 0
Joined: 12 May 2015 Posts: 58
|
Posted: Fri Jun 26, 2020 7:49 am Post subject: [RPCS3] Dead Space Invincibility+Instakill script help |
|
|
Hello there.
First of all, I am new to Assembly.
Second, I need help with a script.
Here it is:
Code: | define(address,78222E2E)
define(bytes,43 0F 38 F0 84 01 20 01 00 00)
[ENABLE]
assert(address,bytes)
alloc(newmem,$2048,78222E2E)
label(originalcode)
label(exit)
label(ohko)
label(team1Value)
label(team2Value)
label(return)
newmem:
pushfq //Saves the flags register
cmp rdx,D003FDB0 //Checks if rdx is D003FDB0
je ohko
//If RDX is not D003FDB0 then it assumes that it's an ally
movbe [r9+r8+00000120],[team1Value]
exit:
popfq //Restores the flags register
originalcode:
movbe eax,[r9+r8+00000120]
jmp return
ohko:
movbe [r9+r8+00000120],[team2Value]
jmp exit
team1Value:
dd (float)200
team2Value:
dd 0
address:
jmp newmem
return:
[DISABLE]
address:
db bytes
//movbe eax,[r9+r8+00000120]
dealloc(newmem) |
I shamelessly stole it from this website:
https://wiki.cheatengine.org/index.php?title=Tutorials:Cheat_Engine_Tutorial_Guide_x64#Step_9:_Shared_code
Here are some pictures:
https://imgur.com/a/xBaQ7Ma
Hopefully you can provide insight into this.
|
|
Back to top |
|
|
Branimir Advanced Cheater Reputation: 0
Joined: 12 May 2015 Posts: 58
|
Posted: Sat Jun 27, 2020 3:13 pm Post subject: |
|
|
Bump
|
|
Back to top |
|
|
Betcha Expert Cheater Reputation: 4
Joined: 13 Aug 2015 Posts: 232 Location: Somewhere In Space
|
Posted: Sat Jun 27, 2020 5:33 pm Post subject: |
|
|
Code: | [ENABLE]
aobscan(testing,43 0F 38 F0 84 01 20 01 00 00)
alloc(newmem,$100)
label(team1Value)
label(team2Value)
newmem:
Separate:
cmp rdx,D003FDB0
je ohko
Allies:
push ecx
mov ecx,[team1Value]
mov [r9+r8+00000120],ecx
pop ecx
AlliesDefault:
movbe eax,[r9+r8+00000120]
jmp return
ohko:
push ecx
mov ecx,[team2Value]
mov [r9+r8+00000120],ecx
pop ecx
OhkoDefault:
movbe eax,[r9+r8+00000120]
jmp return
team1Value:
dd (float)200
team2Value:
dd 0
testing:
jmp newmem
return:
registersymbol(testing)
registersymbol(team1Value)
registersymbol(team2Value)
[DISABLE]
testing:
db 43 0F 38 F0 84 01 20 01 00 00
unregistersymbol(testing)
unregistersymbol(team1Value)
unregistersymbol(team2Value)
dealloc(newmem) |
|
|
Back to top |
|
|
Branimir Advanced Cheater Reputation: 0
Joined: 12 May 2015 Posts: 58
|
Posted: Sat Jun 27, 2020 5:59 pm Post subject: |
|
|
Thanks for the reply. However, I am getting the same error message as before.
(Check the picture link in my first post.)
|
|
Back to top |
|
|
Betcha Expert Cheater Reputation: 4
Joined: 13 Aug 2015 Posts: 232 Location: Somewhere In Space
|
Posted: Sat Jun 27, 2020 6:06 pm Post subject: |
|
|
Find new compare in Dissect Data
Also would suggest to make script where isnt [r9+r8+00000120] stuff.
|
|
Back to top |
|
|
Branimir Advanced Cheater Reputation: 0
Joined: 12 May 2015 Posts: 58
|
Posted: Sat Jun 27, 2020 7:09 pm Post subject: |
|
|
Betcha wrote: | Find new compare in Dissect Data
Also would suggest to make script where isnt [r9+r8+00000120] stuff. |
I'll try and find something else to compare with.
The R10 register is a good possibility. (As is anything red from the DD.)
I can't make a script without [r9+r8+00000120] because
1) That is the original code for the address that governs HP/DMG.
-> 78222E2E - 43 0F38F0 84 01 20010000 - movbe eax,[r9+r8+00000120]
R9 -> 38B680F8
+R8 -> 300000000
+120
= 338B68218 Enemy health address. (Changes every time.)
2) I don't have the necessary knowledge (atm).
PS:
The 78222E2E address never changes.
Edit:
At first, I did this:
Code: | [ENABLE]
78222E2E:
db 90 90 90 90 90 90 90 90 90 90
[DISABLE]
78222E2E:
db 43 0F 38 F0 84 01 20 01 00 00
//movbe eax,[r9+r8+00000120] |
But that made everyone immortal due to Shared Code.
So I did some digging and found that script on the CE wiki.
|
|
Back to top |
|
|
Betcha Expert Cheater Reputation: 4
Joined: 13 Aug 2015 Posts: 232 Location: Somewhere In Space
|
Posted: Sat Jun 27, 2020 8:09 pm Post subject: |
|
|
Just notice you playing with emulator..
Find your health, right click and "find what accesses to this address"
Then do right click and select as in image bellow and post screenshot.
On pc without emulator results look like this:
|
|
Back to top |
|
|
Branimir Advanced Cheater Reputation: 0
Joined: 12 May 2015 Posts: 58
|
Posted: Sat Jun 27, 2020 8:54 pm Post subject: |
|
|
Betcha wrote: | Just notice you playing with emulator.. |
...I very clearly put [RPCS3] in the title.
That should have immediately told you.
But let's leave that aside.
Betcha wrote: |
Find your health, right click and "find what accesses to this address"
Then do right click and select as in image bellow and post screenshot.
| Here you go.
NOTE: 7821C2A8 is an OHKO for both the player and enemies when NOP-ed.
|
|
Back to top |
|
|
Betcha Expert Cheater Reputation: 4
Joined: 13 Aug 2015 Posts: 232 Location: Somewhere In Space
|
Posted: Sat Jun 27, 2020 9:11 pm Post subject: |
|
|
Edit:
Those two most likely will affect only your health where you can make script for yourself.
After find enemy health and do same by choosing the one who holds only enemy health and from there make on hit kill.
Last edited by Betcha on Sat Jun 27, 2020 9:30 pm; edited 2 times in total |
|
Back to top |
|
|
Branimir Advanced Cheater Reputation: 0
Joined: 12 May 2015 Posts: 58
|
Posted: Sat Jun 27, 2020 9:27 pm Post subject: |
|
|
Betcha wrote: | Try this one. |
It crashed the emulator as soon as I fired at the enemy.
Edit: I'm going to bed now. It is 5:27am here. I'll reply later.
|
|
Back to top |
|
|
|