 |
Cheat Engine
The Official Site of Cheat Engine
|
| View previous topic :: View next topic |
| Author |
Message |
AWiseMelon
How do I cheat?
![]() Reputation: 0
Joined: 21 Jul 2024
Posts: 1
|
 Posted: Sun Jul 21, 2024 9:56 am Post subject: AOB scan error |
 |
|
HI, pretty new to cheat engine but I have figured out how to do some things already such as AOB injecting to give myself infinite ammo and stop a meter from decreasing. I can't seem to figure out how to give myself infinite health though as the script cant find a unique AOB and I'm unsure on how to fix it. I'm also using cheat engine on a game running in the RPCS3 emulator if that is of any importance.
| Description: |
|
| Filesize: |
99.99 KB |
| Viewed: |
3280 Time(s) |
|
|
|
| Back to top |
|
 |
Diambro
Newbie cheater
![]() Reputation: 0
Joined: 12 Sep 2023
Posts: 23
Location: Austria
|
| Posted: Mon Jul 22, 2024 3:23 am Post subject: |
|
|
Heya!
My approach in this kinda situation is to broaden the AOB-Scan.
Maybe its helping to add the bytes of the next instruction:
| Quote: | | 44 0F 38 F1 84 0B C8 14 00 00 0F 38 F0 94 1A C0 00 00 00 |
Also you can do the previous instruction:
| Quote: | | C4 C1 79 7E C0 44 0F 38 F1 84 0B C8 14 00 00 |
but then you have to add +05 to your Injecthealth hook
like:
| Code: |
INJECTHEALTH+05:
jmp newmem
nop 5
return:
|
and the same in the disable section:
| Code: |
INJECTHEALTH+05:
db 44 0F 38 F1 84 0B C8 14 00 00
|
Sometimes i try to do it in the middle of the previous instruction:
| Code: |
aobscan(INJECTHEALTH,79 7E C0 44 0F 38 F1 84 0B C8 14 00 00)
..
INJECTHEALTH+03:
jmp newmem
nop 5
return:
[DISABLE]
INJECTHEALTH+03:
db 79 7E C0 44 0F 38 F1 84 0B C8 14 00 00
..
|
ALSO i always check in the array scan if they are possible.
This are my approaches, but keep in mind im just a newbie.
Hope this helps!
EDIT: PS: Keep in mind i never tried emulators and these bigendian values!
|
|
| Back to top |
|
|
Emya
Newbie cheater
![]() Reputation: 0
Joined: 28 Jul 2024
Posts: 14
|
| Posted: Sun Jul 28, 2024 4:57 am Post subject: |
|
|
You can try to do an AOB scan before and after it, and then perform an INJECT+, but I wouldn't do that. My suggestion is, if the injection point you found is triggered and executed every time you get hurt, then you can directly find a unique signature code in front of it and JMP to the code after it.
For example, if [esi+20] is your health value, and the game's code looks like this:
//////////////////////////////////////////////////////
1 push
2 push
3 mov esi, [edx]
4 mov eax, [esi+20]
5 sub eax, [ebp+08]
6 blan
8 blan
9 blan
10 mov [esi+20], eax // you encounter an AOB error here
11 test al, al
12 je
13 blan
14 blan
15 blan
16 mov esi, [edx+8]
17 mov [ebp-08], 00000000
18 mov ecx, [edx]
19 call esi
20 pop
21 pop
22 ret
//////////////////////////////////////////////////////
Then you have three options:
First method:
Health comes from edx, perform AOB at line 16, and use push and pop esi before and after to make it an idle usable register, then insert
newmem:
push esi
mov esi, [edx]
mov [esi+20], (float)114514
pop esi
code:
mov esi, [edx+8]
mov [ebp-08], 00000000
jmp return
to achieve invincibility
Second method:
Directly insert a ret before the first line
which is
newmem:
ret
You don't even need jmp return
Third method:
Perform AOB at line 5, then jmp to line 16 (this is more difficult for you, the second method is the most suitable for you)
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
