Cheat Engine

[mdockz]

Hey this is just a quick question I hope it doesnt sound too crazy, but basically...

I have information that i want to change, in the process. each bit of information is a dword, so 4 bytes? this makes sense to me because each piece of information is 4 bytes offset.

eax+04
eax+08
eax+0c
.. so on so forth..

now my dilema is i need the information before eax+04..

I know that there are two more offsets before the eax+04 that i need. how would i calculate the offset backwards from eax+04?

[Dark Byte]

Eax+0, eax+fffffffc
Or sub eax,4 and go from there
But be sure there is data before it at all times (there might be a reason why eax is at that spot)

[mdockz]

Thanks for the quick response.

so how would i write that into a a mov?

mov [eax+fffffffc],00000000

what about the sub method you put?

also how could i check the data there?

cmp mov [eax+fffffffc],256 ?

.. provided that i knew the data there was supposed to be 256.

[Polynomial]

You need to use a register to store the value. You can also manipulate eax to change where it points.

For example, you could do `sub eax, 10` to decrease eax by 0x10, then do `cmp [eax], 256`. After that you could use `cmp [eax+4], 256` and `cmp [eax+8], 256`, etc. to check the values after it.

Basically, assembly supports basic addition within pointers, but not subtraction in any trivial sense. To subtract, you have to use the hexadecimal representation of a negative signed integer, e.g. 0xFFFFFFFC for -4, because you're adding -4 rather than subtracting 4.

I don't know what your full situation is, but I'm guessing you've got a pointer into a list of some kind, but you don't know where in the list you are. In such a case, I'd do something like this:

[mdockz]

thanks yuo guys helped alot .. much appreciated