View previous topic :: View next topic |
Author |
Message |
udunwannanoeme Expert Cheater
Reputation: 0
Joined: 12 Feb 2006 Posts: 181
|
Posted: Thu May 11, 2006 6:20 am Post subject: Doubts On CE |
|
|
firstly i wanna noe wad is registers...
1.wad are they for and how u use them? < and wad happens when u tick them according to this chart file : Instruction Description signed-ness Flags short
jump
opcodes near
jump
opcodes
JO Jump if overflow OF = 1 70 0F 80
JNO Jump if not overflow OF = 0 71 0F 81
JS Jump if sign SF = 1 78 0F 88
JNS Jump if not sign SF = 0 79 0F 89
JE
JZ Jump if equal
Jump if zero ZF = 1 74 0F 84
JNE
JNZ Jump if not equal
Jump if not zero ZF = 0 75 0F 85
JB
JNAE
JC Jump if below
Jump if not above or equal
Jump if carry unsigned CF = 1 72 0F 82
JNB
JAE
JNC Jump if not below
Jump if above or equal
Jump if not carry unsigned CF = 0 73 0F 83
JBE
JNA Jump if below or equal
Jump if not above unsigned CF = 1 or ZF = 1 76 0F 86
JA
JNBE Jump if above
Jump if not below or equal unsigned CF = 0 and ZF = 0 77 0F 87
JL
JNGE Jump if less
Jump if not greater or equal signed SF <> OF 7C 0F 8C
JGE
JNL Jump if greater or equal
Jump if not less signed SF = OF 7D 0F 8D
JLE
JNG Jump if less or equal
Jump if not greater signed ZF = 1 or SF <> OF 7E 0F 8E
JG
JNLE Jump if greater
Jump if not less or equal signed ZF = 0 and SF = OF 7F 0F 8F
JP
JPE Jump if parity
Jump if parity even PF = 1 7A 0F 8A
JNP
JPO Jump if not parity
Jump if parity odd PF = 0 7B 0F 8B
JCXZ
JECXZ Jump if %CX register is 0
Jump if %ECX register is 0 %CX = 0
%ECX = 0 E3
2) y would we need the debugger such as < find out wad reads from this address since we already have the memory view debugger???
3) wads the diff between find out wad read, write, access to this address???
Darkbyte or Me... hope u can answer this
_________________
INCA owns all noobs...
GG owned by me... x trap owns me...
maybe i'll make a UCE one fine day... |
|
Back to top |
|
 |
Dark Byte Site Admin
Reputation: 470
Joined: 09 May 2003 Posts: 25796 Location: The netherlands
|
Posted: Thu May 11, 2006 6:31 am Post subject: |
|
|
1: They cause the instruction pointer to jump to the location if a special condition is met.
e.g JO 00400000 will jump to 00400000 only when the OF flag is 1 and ignure the instruction when OF is 0
same for other instructions but they use other flags, or even a register like the jcxz
2: Find out what accesses/reads or writes will give the the assembler instruction of the code that accesses the address.
you can use that information to find assembler instructions that might be usefull in the memory view. (else the memory view is useless since you don't know what address to change)
3: read finds only instructions that read from a address
write finds only instructions that write to a address
and access, guess what....., finds what reads from AND writes to a address
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
Back to top |
|
 |
udunwannanoeme Expert Cheater
Reputation: 0
Joined: 12 Feb 2006 Posts: 181
|
Posted: Thu May 11, 2006 6:36 am Post subject: |
|
|
*claps*
u rock darkbyte that surely helped a lot... one more rep coming in ur way!!!
_________________
INCA owns all noobs...
GG owned by me... x trap owns me...
maybe i'll make a UCE one fine day... |
|
Back to top |
|
 |
udunwannanoeme Expert Cheater
Reputation: 0
Joined: 12 Feb 2006 Posts: 181
|
Posted: Thu May 11, 2006 6:41 am Post subject: |
|
|
srry for double post...
so once u have found out the wad access to the address, example the address 5d29c1... do u have to go to memory view and tick any of the registers to make it go th 5d29c1???
in this case both the debbugging and memory view works together...
and one more thing... so wad if u do that... it will only makes u go to the desired adress and does nothing do it... but from the maple section... for godmode example... u tick ZF once to get it to work... and in ur post < DARKBYTE > it says it only gets u to the desired final address...
kinda of contradicting
_________________
INCA owns all noobs...
GG owned by me... x trap owns me...
maybe i'll make a UCE one fine day... |
|
Back to top |
|
 |
Dark Byte Site Admin
Reputation: 470
Joined: 09 May 2003 Posts: 25796 Location: The netherlands
|
Posted: Thu May 11, 2006 6:59 am Post subject: |
|
|
with find what accesses or writes a address you get pushed in the right direction. it doesn't mean that that is the address you have to change,
Look up and see if you can find out how that code is being used, what calls those routines. Then change the flow of code to execute the code or just not execute the code. Or change a register to what you want.
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
Back to top |
|
 |
udunwannanoeme Expert Cheater
Reputation: 0
Joined: 12 Feb 2006 Posts: 181
|
Posted: Thu May 11, 2006 7:03 am Post subject: |
|
|
okay i finally understand....
firstly, changing registers can do u 2 things, get u to the desired address as well as change the 'flow' of the code, example : tick ZF to get ur godmode going, and if u dun tick it nothing watsoever will happen
_________________
INCA owns all noobs...
GG owned by me... x trap owns me...
maybe i'll make a UCE one fine day... |
|
Back to top |
|
 |
kionay Expert Cheater
Reputation: 0
Joined: 13 Mar 2006 Posts: 240 Location: everywhere and nowhere
|
Posted: Thu May 11, 2006 4:34 pm Post subject: |
|
|
if u say wad instadof what one more time....
i just find it annoying thats all
also i wanted to say...thats this just goes to show how even a simple minded person could understand ce [no offence]
and i think that ce should be bigger
adn u said " y would we need the debugger such as < find out wad reads from this address since we already have the memory view debugger??? "
we have memory view debugger to view memory
kinda obviouse
^_^ lol
p.s.
_________________
|
|
Back to top |
|
 |
|