 |
Cheat Engine
The Official Site of Cheat Engine
|
| View previous topic :: View next topic |
| Author |
Message |
HolyGODZ
How do I cheat?
![]() Reputation: 0
Joined: 28 Feb 2016
Posts: 3
|
 Posted: Wed Jun 01, 2016 10:30 pm Post subject: Camera cheating |
 |
|
Hi all, I have a game Tha I want to see further from my character in a game. I've been able to find the address and change it to lock the camera but I want something more here is explanation:
By using auto assembly, I want to be able to see the current value.
My base smallest value in float is 1 (close to character)
My base Largest value in float is 15 (far to the character)
When manually change the value past 15,exemple: 25. It return to the maximum value (15)
I found what Write to the address to be able to lock the camera but I don't know how to point using the auto assembly.
Here is what I got:
| Code: |
define(address,"Agame.exe"+1A5874)
define(bytes,F3 0F 11 47 08)
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
assert(address,bytes)
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
label(Zoom_BaseAddress)
registersymbol(Zoom_BaseAddress)
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
//movss [edi+08],xmm0
exit:
jmp returnhere
address:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
address:
movss [edi+08],xmm0
unregistersymbol(Zoom_BaseAddress)
//Alt: db F3 0F 11 47 08
{
Agame.exe+1A583A - F3 0F10 00 - movss xmm0,[eax]
Agame.exe+1A583E - C3 - ret
Agame.exe+1A583F - CC - int 3
Agame.exe+1A5840 - 56 - push esi
Agame.exe+1A5841 - 57 - push edi
Agame.exe+1A5842 - 8B F9 - mov edi,ecx
Agame.exe+1A5844 - 8B 0D 68BEB500 - mov ecx,[Agame.exe+75BE68]
Agame.exe+1A584A - 8B 01 - mov eax,[ecx]
Agame.exe+1A584C - FF 50 08 - call dword ptr [eax+08]
Agame.exe+1A584F - 8B 74 24 0C - mov esi,[esp+0C]
Agame.exe+1A5853 - F3 0F10 06 - movss xmm0,[esi]
Agame.exe+1A5857 - 0F2F 40 04 - comiss xmm0,[eax+04]
Agame.exe+1A585B - 76 07 - jna Agame.exe+1A5864
Agame.exe+1A585D - F3 0F10 40 04 - movss xmm0,[eax+04]
Agame.exe+1A5862 - EB 04 - jmp Agame.exe+1A5868
Agame.exe+1A5864 - F3 0F10 06 - movss xmm0,[esi]
Agame.exe+1A5868 - F3 0F10 08 - movss xmm1,[eax]
Agame.exe+1A586C - 0F2F C8 - comiss xmm1,xmm0
Agame.exe+1A586F - 76 03 - jna Agame.exe+1A5874
Agame.exe+1A5871 - 0F28 C1 - movaps xmm0,xmm1
Agame.exe+1A5874 - F3 0F11 47 08 - movss [edi+08],xmm0 //Injection
Agame.exe+1A5879 - F3 0F10 46 04 - movss xmm0,[esi+04]
Agame.exe+1A587E - 0F2F 40 0C - comiss xmm0,[eax+0C]
Agame.exe+1A5882 - 76 07 - jna Agame.exe+1A588B
Agame.exe+1A5884 - F3 0F10 40 0C - movss xmm0,[eax+0C]
Agame.exe+1A5889 - EB 05 - jmp Agame.exe+1A5890
} |
For now, this code only freeze the value so I can't change it only by setting it manually with the address I need to find manually or using pointer.
I want to avoid pointer.
Thanks!
_________________
A guy who like to create cheat! |
|
| Back to top |
|
 |
Zanzer
I post too much
![]() Reputation: 126
Joined: 09 Jun 2013
Posts: 3278
|
| Posted: Wed Jun 01, 2016 10:37 pm Post subject: |
|
|
| Code: | | mov [Zoom_BaseAddress],edi |
Create table record with address: | Code: | | [Zoom_BaseAddress]+8 |
|
|
| Back to top |
|
|
HolyGODZ
How do I cheat?
![]() Reputation: 0
Joined: 28 Feb 2016
Posts: 3
|
|
| Back to top |
|
|
5maestro
How do I cheat?
![]() Reputation: 0
Joined: 06 Jun 2016
Posts: 0
Location: ibiza
|
| Posted: Wed Jun 08, 2016 2:46 pm Post subject: pointers cool!! |
|
|
pointers are very usefull tools for a variety of combinations of many pretty things....
take a look itīs not so hard....
first you have the adresses you whant to point .
example 1
we look for find with the right button ,pointer scan for this adress.
see itīs not so hard 
you put max level in four , (for example )and if you have no time put
maximum offset value to 1024 and set priority to higest ,scan......
you have to save the file in (example,newpointers),with a name see itīs imagination working!! my example tutorial1.
well you should find offsets if the value modifies each time you engage your
camera,camera on .
well maybe in your case itīs fixed and no offsets aperared.but retry again with playing with the options to 2048 etc...
no think you find.. suposing a camera have no offsets
(im not a photographer)..
itīs easier--"
just readress and add 0 "zero" to te pointer offset .
now you have a pointer.
see
"""""""
now go to , memory viewer and pick , tools autoasemble.
we have the assembler at disposal
seems you know all the stuff so only i tell you how to make a pointer .
("runing.exe")<(example)
directly.....
you have one adress in ce the pointer !!
go to autoassemble and put:
[enable]
alloc(newmem,1024)
label(exit)
newmem:
"cheatengine-x86_64.exe"+00000f58:
add eip,"cheatengine-x86_64.exe"+00000f58:
exit:
[disable]
add eip,"cheatengine-x86_64.exe"+00000f58:
"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
best photos and best regards !!
_________________
5maestro |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
