| View previous topic :: View next topic |
| Author |
Message |
Freiza
Grandmaster Cheater
 Reputation: 22
Joined: 28 Jun 2010
Posts: 662
|
 Posted: Thu Apr 05, 2012 6:38 am Post subject: Dup Directive? |
 |
|
| Code: | alloc(myvar,4000)
dd:
db 4000 dup(?) |
What is its alternative in AA?
_________________
|
|
| Back to top |
|
 |
Dark Byte
Site Admin
 Reputation: 470
Joined: 09 May 2003
Posts: 25796
Location: The netherlands
|
| Posted: Thu Apr 05, 2012 6:58 am Post subject: |
|
|
for this specific example:
| Code: |
alloc(myvar,4000)
myvar:
|
db 4000 dup(?) just reserves 4000 bytes and doesn't initialize it with anything. It's just so that the next declared variable is 4000 bytes later
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
| Back to top |
|
|
Freiza
Grandmaster Cheater
Reputation: 22
Joined: 28 Jun 2010
Posts: 662
|
| Posted: Thu Apr 05, 2012 7:07 am Post subject: |
|
|
What I wanted was this
| Code: | alloc(myvar,4000)
myvar:
dd (int)-1 // to all 1000 spaces. Example dd 4000 dup(-1)
|
***********************************
Is it possible to add option for saving stack to disk? I mean when it comes by pressing "S" button.
**********************************
I have created a script that can save [esp + i] from i= 0 to 1000 (any upper limit) to the disk
and C program to read it in hexadecimal ASCII Format. But I cannot parse it as CE does. I don't know how to judge whether it should be integer, pointer or float?
How to do it?
_________________
|
|
| Back to top |
|
|
Dark Byte
Site Admin
Reputation: 470
Joined: 09 May 2003
Posts: 25796
Location: The netherlands
|
| Posted: Thu Apr 05, 2012 7:16 am Post subject: |
|
|
I'm afraid you'll have to use
dd -1
dd -1
...
4000 times
(or dd -1 -1 -1 -1 -1 -1 -1 -1 -1 -1 -1 -1 -1 -1 -1 -1 -1 -1 ..... )
or use rep stosd with eax=ffffffff, ecx=#1000 and edi=address
or you could use the "fill memory" option from tools after the script has been loaded and fill it in yourself
Also, why initialize as 0xffffffff, isn't 00000000 usable?
As for the stack:
You can open the file with cheat engine and use ce like a hexeditor.
data dissect should also still work (with the exception of pointer detection/usage)
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
| Back to top |
|
|
Freiza
Grandmaster Cheater
Reputation: 22
Joined: 28 Jun 2010
Posts: 662
|
| Posted: Thu Apr 05, 2012 7:27 am Post subject: |
|
|
| Quote: | | use rep stosd with eax=ffffffff, ecx=#1000 and edi=address |
I will try this
| Quote: | | Also, why initialize as 0xffffffff, isn't 00000000 usable? |
In some scenario, when the game itself uses 0 then no. I needed some different number than 0.
But what if I require 0. Is all the remaining space is automatically initialized by 0 ?
| Quote: | You can open the file with cheat engine and use ce like a hexeditor.
Structure define should also still work (with the exception of pointer detection/usage)
|
I didn't get you how can I open Stack View in CE? It is not opened as separate process?
Structure define do not work because stack changes with code. and All the inners of it changes as well.
I just want to save snapshot of the stack view when it was executing my code. I have attached a picture of it.
I have to take screen shot to remember the address. It would be cool if it was possible to save this instance to disk. I mean to save entire stack view page to disk.
| Description: |
| I have to take screen shot to remember the address. It would be cool if it was possible to save this instance to disk. |
|
| Filesize: |
47.15 KB |
| Viewed: |
4895 Time(s) |
|
_________________
|
|
| Back to top |
|
|
Dark Byte
Site Admin
Reputation: 470
Joined: 09 May 2003
Posts: 25796
Location: The netherlands
|
| Posted: Thu Apr 05, 2012 7:29 am Post subject: |
|
|
I'm talking about your saved stack files
You can open those binary files with ce (processlist, open file)
the file will be loaded at 00000000
Also, i'm currently working on something else that might be better than just saving to disk
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
| Back to top |
|
|
Freiza
Grandmaster Cheater
Reputation: 22
Joined: 28 Jun 2010
Posts: 662
|
| Posted: Thu Apr 05, 2012 7:43 am Post subject: |
|
|
| Quote: | | You can open the file with cheat engine and use ce like a hexeditor. |
The content of my file is like
25e8aeb0
25e89c90
25e89ee8
246a29f0
246a2298
249bfe80
249bfe08
246a0aa8
246a0530
.....
It already in hexadecimal. Therefore I do not want it to open in hex-editor
| Quote: | | data dissect should also still work (with the exception of pointer detection/usage) |
This was very interestig option.
Alas! It do not work.
1) I opened the text file containing the hexadecimal ascii numbers.
2) Opened as process in CE
3) Opened Data-Dissector.
Define New Structure with 00000000 address in it.
And nothing poped out. it was empty.
Is your surprise feature going to be launched with CE 6.2 final ?
Then please add search functionality in Data Dissector.
_________________
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
