Cheat Engine

4:20 · How do I cheat? Reputation: 0 Joined: 07 Jun 2010 Posts: 2

hi, great tutorial that came with the install ..I learned a lot, .thanks!

having some trouble storing a non static address, the addr changes each time the game starts, tried to scan and follow the pointers like tutorials1-9 ..but, see the error I get on the first step, in the pic attached, along with other details

in this instance/example, the addr is 039E8680, and is accessed by the following 3 lines of code:

Dark Byte · Posted: Tue Jun 08, 2010 1:25 pm Post subject:

regarding the error in the screenshot, that's a bug, the hex checkbox should not have been visible for the "all" type

4:20 · How do I cheat? Reputation: 0 Joined: 07 Jun 2010 Posts: 2

ahh ok, good to know

...came up empty on a 4 byte search ..same with the other settings ..no errors this time at least

I'm thinking this address is set randomly each time the game starts and doesn't have a pointer that can be found easily/normally, btw I can hack this address easily/manually in tsearch my interest is purely for learning purposes and doing something more interesting than just changing a value in mem to play a game

you may recognise this code db from your c&c thread, I wasn't sure if should leave out the lea command or not ..is it possible this code is storing a pointer to the eax register as its value(instead of the value/addr at the time of capture) and thats why the pointerxp value is fluctuating with op-codes,?

what do I need to do to capture the addr from eax in the same way that CE does it with 'more info' ..iow accurately capture/read the addr in the eax register

Dark Byte · Posted: Wed Jun 09, 2010 1:48 pm Post subject:

that add (esi/eax),03974700 is a weird one

can you check if the memory at 03974700 always exists ?
If so, that's a static memory location

4:20 · How do I cheat? Reputation: 0 Joined: 07 Jun 2010 Posts: 2

from what I can make out 03974700 always exists as a memory address, and as arguments in those lines of code at runtime, but..

ADD EAX,CoDWaW.03974700

if I step through and check with calc it seems to be adding: 03974700 + eax as actual values rather than the value@addr ..as the calc shows the same hex value that ends up in eax as a result of the add

Iv noticed each time the game restarts the dynamic address in question always starts with 039 ...so I'm wondering if 03974700 is maybe a kind of base value to generate a 'partially random' address(within the limits of 039)

I think I know now why my cave code doesn't capture the addr but CE does it perfectly, ....all 3 asm lines that access the address in question are in a kind of loop..even with no user input ...and the elusive addr is only stored in eax/esi when a 'points scored' event occurs ..CE takes a snapshot of the registers ONLY when one of the 3 lines of code access the addr ...iow only 'when points have been scored' and the addr needs updating

which brings me to my current problem, as the code below is constantly in a kind of loop at runtime...
how can I generate a 'points scored event' while using breakpoints ..as in order to step through the code and read the registers properly etc the game is frozen by the debugger..until I can work out how I can debug a 'points event' everything is guess work

ps
ask me again if iv misunderstood your question

--> 3 x asm lines that access the address in question
--# 2 x add CoDWaW.03974700