Cheat Engine

fuguipingan · Newbie cheater Reputation: 0 Joined: 13 May 2019 Posts: 11

I am doing code injection to lock my character's health.

Here is my idea:
compare the register with the address of my character's healthpointer, if equals, then nop it.

Two problems:
1. When I paste in the address value of healthpointer, the value changes after execute the code injection
beforel: CD94130098
after: FFFFFFFF94130098

2. Is my code valid? (by directly comparing register with address, without dereferencing it):

alloc(newmem,2048,"witcher3.exe"+E3BF93)
label(returnhere)
label(originalcode)
label(exit)

newmem: //this is allocated memory, you have read,write,execute access
//place your code here
cmp rax,CD94130098
je exit

originalcode:
movss [rax+rcx*4],xmm6

exit:
jmp returnhere

"witcher3.exe"+E3BF93:
jmp newmem
returnhere:

--
I am seeing crash after the injection.

sbryzl · Posted: Sun May 26, 2019 5:59 am Post subject:

You can't compare 64 bit values. You could make it a 32 bit compare.

cmp eax,94130098

TheyCallMeTim13 · Posted: Sun May 26, 2019 7:03 am Post subject:

You can also just store the value in a registry and then compare that.

fuguipingan · Newbie cheater Reputation: 0 Joined: 13 May 2019 Posts: 11

Thanks. This seems to work and I can get the cmp passing. But I encounters crashing after that. Wierd

Karyoplasma · How do I cheat? Reputation: 0 Joined: 12 Jun 2015 Posts: 3

Push and pop flags to/from the stack before you use a compare or else you can inadvertently screw up a future compare which can lead to crashes:

fuguipingan · Newbie cheater Reputation: 0 Joined: 13 May 2019 Posts: 11

Thanks everyone. I am able to get this working now. The cause was found to be the jump address returned from CE's auto alloc memory seems too "far". When I finished my own code and jump back, an exception happend.

Now I found some nearby nop space and put my code there, it works as expected without crashing.