Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


AOB Signature / Game: Unturned

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine
View previous topic :: View next topic  
Author Message
Betcha
Expert Cheater
Reputation: 4

Joined: 13 Aug 2015
Posts: 232
Location: Somewhere In Space
PostPosted: Fri Dec 04, 2015 9:09 am    Post subject: AOB Signature / Game: Unturned Reply with quote
Hello..
So problem is:
Almost every AOB injection fails to find unique signature.

Example:
Did AOB injection for Health:
aobscan(INJECT,ERROR: Could not find unique AOB, tried code "40 88 88 BC 00 00 00")
So i remove that error text and start add bytes who are around injection point..
Added 10 from up and 10 from down side and there still have some other signature who are exact...
Restarted game..
Some bytes changed in my signature and it became unique, but they change
every time when i restart game, so replaced with ?? and again problem!
If replace changed bytes to ?? it again becomes exact with other signature..
If i start add farther bytes than 10 given, then it makes unique and have no problems..

So question is:
How to make AOB injection make automatically look farther than 10 up and 10 down side bytes?
Cause i have pretty much scripts who does same and it's annoying..

I am already Thankful for any idea/help.

Edit:
Game is Unturned: Free on steam

Last edited by Betcha on Sat Dec 05, 2015 8:40 am; edited 1 time in total
Back to top
View user's profile Send private message
Cake-san
Grandmaster Cheater
Reputation: 8

Joined: 18 Dec 2014
Posts: 541
Location: Semenanjung
PostPosted: Fri Dec 04, 2015 9:55 am    Post subject: Reply with quote
Betcha wrote:
Almost every AOB injection fails to find unique signature.


That must be because that aob signature contain this kind of instruction:
mov eax,[game+106798] or jmp 109A6CE8 and it's not in wildcard form.

Betcha wrote:
How to make AOB injection make automatically look farther than 10 up and 10 down side bytes?


You can actually highlight the intruction -> Ctrl+Alt+C , to copy the aob to clipboard.

Sometimes you can't make any unique aob because of how the game being programme. If that kind of problem occur, I make code injection that change the aob that had the same signature with the intruction that I want, like the decoy in this table : http://forum.cheatengine.org/viewtopic.php?t=586001[/quote]

I'm sorry if this is not helping you -_-
Edited
After looking at your script in the table, I did like to ask you about the variables. Did the variables connected to each others ?
because you can actually minimize you injection point by making only 1 injection point to manipulate all the variables by adding offset Confused
_________________
...
Back to top
View user's profile Send private message
Betcha
Expert Cheater
Reputation: 4

Joined: 13 Aug 2015
Posts: 232
Location: Somewhere In Space
PostPosted: Fri Dec 04, 2015 10:21 am    Post subject: Reply with quote
Cake-san wrote:

Did the variables connected to each others ?

i guess answer is No cause:

If check:
Find out what addresses this instruction access.
then it access only one variable.
If check:
Find out what accesses this address
Then it Access only one variable.

If i understood you correctly?!

1.JPG
 Description:
 Filesize:  35.03 KB
 Viewed:  9815 Time(s)

1.JPG


Last edited by Betcha on Fri Dec 04, 2015 11:23 am; edited 1 time in total
Back to top
View user's profile Send private message
Cake-san
Grandmaster Cheater
Reputation: 8

Joined: 18 Dec 2014
Posts: 541
Location: Semenanjung
PostPosted: Fri Dec 04, 2015 10:37 am    Post subject: Reply with quote
What is the address of r13 in Unlimited Health script ?
What is the address of rdi in Never Hungry script ?
What is the address of rdi in Never Thirsty script ?

If all the addresses of that registers are the same ,then, you can actually make a script to manipulate all the variables by choosing an injection point like this :
Code:

[ENABLE]

aobscan(Water,40 88 87 94 00 00 00 48 8B 47 20)
alloc(newmem,$1000,Water)
label(return)

newmem:
  mov [rdi+00000094],al
  mov byte ptr [rdi+00000094],64 //thirst
  mov byte ptr [rdi+00000093],64 //hunger
  mov byte ptr [rdi+00000097],64 //energy
  jmp return

Water:
  jmp newmem
  nop
  nop
return:
registersymbol(Water)

[DISABLE]

Water:
  db 40 88 87 94 00 00 00

unregistersymbol(Water)
dealloc(newmem)


and ofcourse,choose the intruction that have the most accessed.
_________________
...
Back to top
View user's profile Send private message
Betcha
Expert Cheater
Reputation: 4

Joined: 13 Aug 2015
Posts: 232
Location: Somewhere In Space
PostPosted: Fri Dec 04, 2015 11:19 am    Post subject: Reply with quote
Cake-san wrote:

What is the address of r13 in Unlimited Health script ?
What is the address of rdi in Never Hungry script ?
What is the address of rdi in Never Thirsty script ?


Ohh, now i see what you mean..
Umm..

health 4F44D48
hungry 77B0B00
thirst 77B0B00
infected 77B0B00
energy 77B0B00

Code:

newmem:
  mov [rdi+00000094],al
  mov byte ptr [rdi+00000094],64 //Thirst <-- works
  mov byte ptr [rdi+00000093],64 //hunger <-- works
  mov byte ptr [rdi+00000095],64 //infected <-- Works but laggy
  mov byte ptr [rdi+00000097],64 //energy <-- Works but laggy

With laggy i mean, value keep decrease, then somehow jumps to 100, unstable manipulation Confused
Back to top
View user's profile Send private message
Cake-san
Grandmaster Cheater
Reputation: 8

Joined: 18 Dec 2014
Posts: 541
Location: Semenanjung
PostPosted: Fri Dec 04, 2015 11:35 am    Post subject: Reply with quote
That's why you have to choose the most frequently accessed intruction.
From the info that you had given, I think you chould make the injection point at either at intruction that accessed energy or infection because it's the most frequently accessed.
_________________
...
Back to top
View user's profile Send private message
Betcha
Expert Cheater
Reputation: 4

Joined: 13 Aug 2015
Posts: 232
Location: Somewhere In Space
PostPosted: Fri Dec 04, 2015 12:07 pm    Post subject: Reply with quote
Cake-san wrote:
That's why you have to choose the most frequently accessed intruction.


Changed injection point and tried

newmem:
movzx eax,byte ptr [rdi+00000097]
mov byte ptr [rdi+00000097],67 //Energy
mov byte ptr [rdi+00000092],66 //Health
mov byte ptr [rdi+00000093],66 //Hungry
mov byte ptr [rdi+00000094],66 //Thirsty
mov byte ptr [rdi+00000095],66 //infected
mov byte ptr [rdi+00000098],64 //Breath

Now somehow health is also on same RDI address, that came when i died and re-spawned...

Result: Works, but it still decreases on each hit or any value move,
works like value freeze..

Weird game with cheat engine.. Very Happy

Thank you, for helping.
I Learned something new.
Back to top
View user's profile Send private message
Cake-san
Grandmaster Cheater
Reputation: 8

Joined: 18 Dec 2014
Posts: 541
Location: Semenanjung
PostPosted: Fri Dec 04, 2015 12:13 pm    Post subject: Reply with quote
health is difference
it's only being write-on when it being change likes being shoot or fall from high places.

that's why health should have its own injection point.

I thought the aobs that you had the problem with were durability ?
Well,use the same method, and choose the injection point wisely.
_________________
...
Back to top
View user's profile Send private message
Betcha
Expert Cheater
Reputation: 4

Joined: 13 Aug 2015
Posts: 232
Location: Somewhere In Space
PostPosted: Fri Dec 04, 2015 12:35 pm    Post subject: Reply with quote
Cake-san wrote:
I thought the aobs that you had the problem with were durability ?


lol.....
Even forgot about main thing what i wanted to solve...

And.... Game just now updated!

some scripts crashes game now! Very Happy

what a fail.

Capture.JPG
 Description:
 Filesize:  22.97 KB
 Viewed:  9748 Time(s)

Capture.JPG
Back to top
View user's profile Send private message
Cake-san
Grandmaster Cheater
Reputation: 8

Joined: 18 Dec 2014
Posts: 541
Location: Semenanjung
PostPosted: Fri Dec 04, 2015 12:50 pm    Post subject: Reply with quote
Well,according to the update notes, its add a new temperature system and other things.
Goodluck with the hacking -_-
I don't have the game ,so, I know nothing and it's 2 a.m here Wink
_________________
...
Back to top
View user's profile Send private message
Betcha
Expert Cheater
Reputation: 4

Joined: 13 Aug 2015
Posts: 232
Location: Somewhere In Space
PostPosted: Fri Dec 04, 2015 1:07 pm    Post subject: Reply with quote
Cake-san wrote:
Well,according to the update notes, its add a new temperature system and other things.
Goodluck with the hacking -_-
I don't have the game ,so, I know nothing and it's 2 a.m here Wink


fixed pretty fast these scripts who made some crashes.
My time here is 20:40 pretty early to go sleep Very Happy
Thank you once again for Ideas/Help!
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites