Cheat Engine

kucing13 · Newbie cheater Reputation: 0 Joined: 09 Dec 2013 Posts: 15

Merry Belated Xmas everyone. I'm here today with a need for assistance of the pointer scan.

Game: Killing Floor 1 (Steam version)

Target: To find pointers so i could create table for it and no hassle to find the address again everytime the map change. Ive used it for solo gameplay.

Found : health - 4 byte,Money - float (they both change and works ingame,freezed etc)

Issues :

The first issue that i stumbled upon was
>i found the adress
>right click "find out what write to this adress"
>refer attachment 1

ive checked back from some of the tutorial here and they shown some address or offset but in my case there is no address/offset number in there besides ebx in the bracket.

So ive decided to do multilevel pointer scan and ive ended up with this at second level . I didnt restart the game, changing the map itself will reset the dynamic address.

>refer attachment 2

was it normal when you do it second time, the pointercount still high as that?

Ive tried changing several 5-6 map and i still have another 10k pointercounts,after trying both method repeatedly for two hours .i finally give up afterwards lol XD.

In any case, can somebody out there shed some light to this noobish person. Appreciate it very much :3

ParkourPenguin · Posted: Mon Dec 28, 2015 9:44 am Post subject:

Yeah, it's pretty common to get this many possible pointer paths. To get this lower, you should restart the game first and rescan. Then restart your computer and rescan. If you can, get another computer and rescan the same list on that one.

The point of getting pointers to certain addresses is so that you don't have to find that address every time you restart the game. As such, you should be restarting the game in order to check which pointers are still valid after that.

kucing13 · Newbie cheater Reputation: 0 Joined: 09 Dec 2013 Posts: 15

Thanks parkour penguin,
can you explain about the first image btw on why the address/offset didn't showed?
is there any way i can find out the offset from there?
thanks Smile

ParkourPenguin · Posted: Mon Dec 28, 2015 9:19 pm Post subject:

If it doesn't show an offset, then it's implied that the offset is 0.
The address is the value of ebx, or 4C03F480. Search for that 4-byte value (as a hex obviously). Anything that pops up could be a pointer to that.

However, the actual pointer you're looking for doesn't have to follow what the instruction says. It could be doing something like calculating the resulting address of your health/money beforehand and storing that on the stack. Something like this, for example:

kucing13 · Newbie cheater Reputation: 0 Joined: 09 Dec 2013 Posts: 15

That being said, ive had better chance with using pointer scan correct? Also,since i have only 1 PC, the least i can do is restart the PC to decrease down the pointer counter .

btw, once i restart the PC,how am i supposed to resume the pointer scan from last result?

ParkourPenguin · Posted: Tue Dec 29, 2015 1:40 am Post subject:

Yes, you do have a much better chance of finding a good pointer with the pointer scanner compared to doing it manually. There are several other reasons why the pointer scanner is better, but I won't list those (mostly because I don't know those).

When you try to start a pointer scan, it'll ask you where you want to save the pointer scan. This is saved to a file on disc that you can reopen later (i.e. after you restart the computer).
To do so, open up the pointer scanner window again (Memory View -> Tools -> Pointer Scan), then go to File -> Open. Navigate it to wherever you saved the pointer scan file, then select it to load it up into the window again.

kucing13 · Newbie cheater Reputation: 0 Joined: 09 Dec 2013 Posts: 15

Thanks for the assistance so far PPenguin. I'll try again tonight after im off from the office. Cheers Wink

Update:

Okay so i did the pointer scan. and here how i stuck again.

>refer attachment

As you can see i managed to slim down the counter from 100k's to 4k.
Thats' the result from 14times scanning with 4 times restarting my computer.

Why i stuck at 4k? because no matter what i do afterwards, even with restarting, the pointer will not decrease. In fact i always ended up scanning the same address over and over again which is why the counter doesn't change probably.

Holy Mcnuggets,for an old game this game sure is hard for a noob like me to even find a pointer . zzzzzzzzzzzzzzzzzzzzzzzzzzz

Is there other option for me where i can create table for this game besides using pointer. Crying or Very sad

deama1234 · Posted: Tue Dec 29, 2015 9:12 am Post subject:

You can either just pick one of those pointers and use it. Or you can try messing with the assembly. Most of us here just use assembly instead of pointers; pointers are too much like trying to find a hay in a needle stack...

ParkourPenguin · Posted: Tue Dec 29, 2015 9:13 am Post subject:

At this point, you could pick any one of those, and you'll have your pointer. If you're planning on releasing this table, then you'll almost have to rescan it on another computer to narrow down the results more. If you ask, someone might help if they also have the game.

There are other options besides pointers. IMO scripts are a much better way of making cheats:
You don't have to worry about CE not writing to a value fast enough when it's frozen. If you're just freezing an address, you could be 1 hit KO'd; however, if you modify the instructions that write to your health, you'll never die.
AoB scans also have a much lower chance of breaking between game updates if you write the signature you're searching for correctly.
With a pointer, you have to do everything yourself. With a script, you can have everything done for you automatically if you know how to write it.

Here's a basic tutorial on making scripts:
http://forum.cheatengine.org/viewtopic.php?t=570083

kucing13 · Newbie cheater Reputation: 0 Joined: 09 Dec 2013 Posts: 15

ParkourPenguin · Posted: Tue Dec 29, 2015 10:27 am Post subject:

That depends on how the game is written. Sometimes, I suppose there would be no way of doing that with pointers alone. You'd need to hook some instruction that only accesses something in your current weapon's structure and copy the base address of that structure to some other memory address that's a registered symbol. That way, you always have a reliable reference to your currently-equipped weapon.
Injection copies covered here.

If you want to try finding a pointer, you should usually be able to. You might need to mess around with the scan settings (i.e. increase max level & offset). Search for the address of the ammo of your current weapon. Then, change weapons, find the address of that ammo, and rescan the pointerlist for that address. Repeat after that until you're satisfied with the pointers you've found.

kucing13 · Newbie cheater Reputation: 0 Joined: 09 Dec 2013 Posts: 15

ParkourPenguin · Posted: Tue Dec 29, 2015 11:44 am Post subject:

You have weapon 1 equipped.
Find the address of your ammo for weapon 1.
Right click that entry in the cheat table, select "Pointer scan for this address", and search.
After that scan has completed, switch weapons to weapon 2.
Find the address of your ammo for weapon 2 (I'm assuming it's different from weapon 1).
In the pointer scan list for weapon 1, go to Pointer scanner -> Rescan Memory
Type in the address of the ammo for weapon 2.
Rescan the list.
Repeat steps 4-8 for weapons 3, 4, etc.
Restart the game and/or your computer, then repeat steps 4-9 using the same pointerscan file starting back at weapon 1.
Once you're satisfied, pick a pointer from the list.

If you get to the point where there's nothing valid left in the list, then you can start over again with a higher max level and/or max offset in the initial scan (step 3).

kucing13 · Newbie cheater Reputation: 0 Joined: 09 Dec 2013 Posts: 15

Understood ,will try it and update it later.
Also ive just found out that i cannot find any tutorial that teaches unlimited ammo universal for all weapon. Most of tutorial i have googled/youtube only shows how to search address for a single weapon ammo . So... nobody ever thought about this eh XD ..

ParkourPenguin · Posted: Tue Dec 29, 2015 10:28 pm Post subject:

Sure, people have thought about this. That's just so specific that it isn't explicitly covered. The whole process of doing that is implicitly covered in more generic tutorials; for example, this one covering what pointers are, this one covering the pointer scanner, and this one covering basic ASM scripts.

It's like the saying "give a man a fish and you feed him for a day; teach a man to fish and you feed him for a lifetime."
In this case, if you're spoonfed how to make all weapons have infinite ammo for a specific game, you'll come back asking for help once you move on to another game with slightly different mechanics.
However, if you're taught the concepts behind making cheats, it's unlikely you'll ever need help again since you can do everything yourself.

Specific tutorials like the one you searched for are usually only good short-term. For the people who truly want to learn, the more generic, conceptual tutorials are invaluable compared to the tutorials that spoonfeed you.