Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


Next pointer search

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine Tutorials -> Pointer tutorials
View previous topic :: View next topic  
Author Message
Gereksiz
How do I cheat?
Reputation: 0

Joined: 29 Sep 2020
Posts: 1

PostPosted: Tue Sep 29, 2020 1:43 pm    Post subject: Next pointer search Reply with quote

I want to find the static pointer of the dynamic pointer data I found in the game, but instead of a single digit offset value, I have a result with multiple values.
Current pointer: 959276B8
Find out what accesses this address:
0EAA2EEC - 8B 74 8F 10 - mov esi, [edi + ecx * 4 + 10]
0E205879 - 8B 5A 00 - mov ebx, [edx + 00]

This is how I do the next pointer search "0x959276B8-0x0" for the second line. The code in the first line is complex, so I don't know what to do.
What value should I write in the search field for the next pointer?
Thanks in advance for the answer



ce1.jpg
 Description:
 Filesize:  86.12 KB
 Viewed:  7019 Time(s)

ce1.jpg



ce2.jpg
 Description:
 Filesize:  84.37 KB
 Viewed:  7019 Time(s)

ce2.jpg



ce3.jpg
 Description:
 Filesize:  173.67 KB
 Viewed:  7019 Time(s)

ce3.jpg


Back to top
View user's profile Send private message
DanyDollaro
Master Cheater
Reputation: 3

Joined: 01 Aug 2019
Posts: 334

PostPosted: Tue Sep 29, 2020 2:39 pm    Post subject: Reply with quote

Simple answer: Use the pointer scan.

Articulated answer: Teh following code
Code:
mov esi, [edi + ecx * 4 + 10]

is used to iterate through an array (and read its elements), in case you don't know what it is, is a sequential data structure, where the values are organized one above the other, like in a string, in your case the array contains values of 4-bytes which could be: int, float, or pointers since the program in question is 32-bit, and other too.
- EDI will be the base address of the array.
- ECX specifies which element the program is trying to read inside the array (if the first, the second, etc...).
- *4 is the size of the data type contained in the array.
- +10 I think it is the overhead of the array (I might be wrong).

Now it depends on what you want to find the static pointer on, you may consider only the base address of the array and occasionally the offset +10 as well.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine Tutorials -> Pointer tutorials All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites