| View previous topic :: View next topic |
| Author |
Message |
Qvazzler
Advanced Cheater
 Reputation: 0
Joined: 02 Jan 2007
Posts: 68
|
 Posted: Wed Oct 20, 2010 11:29 am Post subject: Flash and me |
 |
|
I really don't get this part.
The ebp stays the same, but there's always a new assembly instruction on that address. I want to go back to see where the values are coming from (health), but I have absolutely no clue on how to go back when the address of EBP, while staying the same, the assembly instruction changes frequently.
Am I missing something? Should I be looking somewhere else rather than at the instructions?
Perhaps I should considering checking more tutorials, but I've been searching about this, and I really don't get it.
If it helps to know, it's a flash game.
| Description: |
|
| Filesize: |
118.63 KB |
| Viewed: |
12074 Time(s) |
|
|
|
| Back to top |
|
 |
Geri
Moderator
![]() Reputation: 112
Joined: 05 Feb 2010
Posts: 5627
|
| Posted: Wed Oct 20, 2010 8:03 pm Post subject: |
|
|
In most cases, the idea of hacking a flash game with code injection is useless without using AOBscan.
The address of the code will always change. Furthermore, the codes are usually changing a bunch of other values too, so if You nop/change the code, the whole game will crash.
_________________
|
|
| Back to top |
|
|
Qvazzler
Advanced Cheater
Reputation: 0
Joined: 02 Jan 2007
Posts: 68
|
| Posted: Thu Oct 21, 2010 5:33 am Post subject: |
|
|
So I've noticed. 
I really don't see how I'm supposed to get to where address 09615211 was jumped to from.
Any advice on a different way to search for the hitbox/godmode piece of code?
|
|
| Back to top |
|
|
Dark Byte
Site Admin
 Reputation: 474
Joined: 09 May 2003
Posts: 25931
Location: The netherlands
|
| Posted: Thu Oct 21, 2010 7:27 am Post subject: |
|
|
it was jumped to that address from 0774b28d
_________________
Tools give you results. Knowledge gives you control.
Like my help? Join me on Patreon so i can keep helping |
|
| Back to top |
|
|
Qvazzler
Advanced Cheater
Reputation: 0
Joined: 02 Jan 2007
Posts: 68
|
| Posted: Fri Oct 22, 2010 1:17 am Post subject: |
|
|
So that's what you meant by stack view?
Thanks. 
|
|
| Back to top |
|
|
Geri
Moderator
![]() Reputation: 112
Joined: 05 Feb 2010
Posts: 5627
|
| Posted: Fri Oct 22, 2010 8:41 am Post subject: |
|
|
Yep, You can see where did You come from at the top of the stack.
_________________
|
|
| Back to top |
|
|
Qvazzler
Advanced Cheater
Reputation: 0
Joined: 02 Jan 2007
Posts: 68
|
| Posted: Fri Oct 22, 2010 9:36 am Post subject: |
|
|
Alright.
And just to be sure, is there no way to get static addresses in a flash game? From what I've found so far by searching for an answer is that there are no pointers whatsoever in flash games.
The game I have currently targeted for kicks also has not shown any sign of static addresses.
|
|
| Back to top |
|
|
Geri
Moderator
![]() Reputation: 112
Joined: 05 Feb 2010
Posts: 5627
|
| Posted: Fri Oct 22, 2010 9:42 am Post subject: |
|
|
If You are very very very lucky and You find a code which is accessing to one address only, You can use aobscan in Your script to search for that code. Like I have written about a game in another post:
| Quote: | What is usually common:
The codes are usually changing more than one value (many values), which will make Your job pretty hard when You try to use code injection.
The codes are not static and they are not "created" until You use them. For example there is a game, Destructo Truck. You can jump with a truck and You have rockets to boost Your jump. I have found the code which is decreasing Your fuel. However the code's address is changing all the time when You start a new jump. The code is not existing until You use some fuel from Your rocket. Which means You need to to create Your script with AOBscan to search for the code and You need to enable/disable the script with every jump.
In most of the games, You are not so lucky to find a code which is changing one type of thing only, but usually hundreds or thousands of other things too. |
_________________
|
|
| Back to top |
|
|
Qvazzler
Advanced Cheater
Reputation: 0
Joined: 02 Jan 2007
Posts: 68
|
| Posted: Fri Oct 22, 2010 11:24 am Post subject: |
|
|
Thank you for your response Geri.
As I've been on here off and on, I've noticed more and more that there are a lot of bogus tutorials made by people who have not gotten a proper idea of how things work. With that said, I am a very incomplete assembly programmer, but instead of just learning "how to hack", I wish to get an understanding the environment.
If you have good references that you personally favor, no matter what it is, please link it to me and I will try to make use of it. And for the record, I rarely script with the auto-assembler. I just wish to learn in what order things are done in the opcode instead of erasing opcodes and altering values.
I will also take a closer look on the aob scan that you speak of, perhaps even read a tutorial or two when I have the time.
|
|
| Back to top |
|
|
Geri
Moderator
![]() Reputation: 112
Joined: 05 Feb 2010
Posts: 5627
|
| Posted: Fri Oct 22, 2010 7:03 pm Post subject: |
|
|
The best reference is probably DarkByte and some other members who are clearly professionals in things. I think all section on the forum has its guru. Maybe even random spam.
_________________
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
