Cheat Engine :: View topic - Backtick in adressess

Cheat Engine
The Official Site of Cheat Engine

FAQ

Memberlist

Usergroups

Profile

Backtick in adressess

Cheat Engine Forum Index -> Cheat Engine

View previous topic :: View next topic

Author

Message

Endog4
How do I cheat?

Reputation: 0

Joined: 21 Apr 2020
Posts: 7

Posted: Mon Aug 11, 2025 3:14 am Post subject: Backtick in adressess

Hi, i just run into a problem with Mind over Magic

Code:

define(address,20BC4857870)
define(bytes,F2 0F 5A E8 F3 0F 11 68 0C B8 01 00 00 00)

[ENABLE]

assert(address,bytes)
alloc(newmem,$1000)

label(code)
label(return)

newmem:
cvtsd2ss xmm5,xmm0
comiss xmm5,[rax+0C]
jbe code
subss xmm5,[rax+0C]
mulss xmm5,[kali]
addss xmm5,[rax+0C]
code:
movss [rax+0C],xmm5
mov eax,00000001
jmp return
kali:
dd (float)4.0
address:
jmp far newmem
return:

[DISABLE]

address:
db bytes
// cvtsd2ss xmm5,xmm0
// movss [rax+0C],xmm5
// mov eax,00000001

dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4b0

System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+487: 75 3A - jne System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4c3
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+489: 48 63 CE - movsxd rcx,esi
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+48c: 41 39 4E 18 - cmp [r14+18],ecx
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+490: 0F 86 4B 03 00 00 - jbe System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+7e1
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+496: 48 C1 E1 04 - shl rcx,04
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+49a: 49 8B C6 - mov rax,r14
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+49d: 48 03 C1 - add rax,rcx
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4a0: 48 83 C0 20 - add rax,20
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4a4: F3 0F 10 85 58 FF FF FF - movss xmm0,[rbp-000000A8]
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4ac: F3 0F 5A C0 - cvtss2sd xmm0,xmm0
// ---------- INJECTING HERE ----------
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4b0: F2 0F 5A E8 - cvtsd2ss xmm5,xmm0
// ---------- DONE INJECTING ----------
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4b4: F3 0F 11 68 0C - movss [rax+0C],xmm5
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4b9: B8 01 00 00 00 - mov eax,00000001
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4be: E9 9B 01 00 00 - jmp System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+65e
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4c3: 0F B6 85 50 FF FF FF - movzx eax,byte ptr [rbp-000000B0]
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4ca: 83 F8 02 - cmp eax,02
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4cd: 0F 84 7D 02 00 00 - je System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+750
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4d3: 33 C0 - xor eax,eax
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4d5: E9 84 01 00 00 - jmp System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+65e
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4da: 48 63 CE - movsxd rcx,esi
System.Collections.Generic.Dictionary`2[Model.Skill,System.Single]:TryInsert+4dd: 41 39 4E 18 - cmp [r14+18],ecx
}

so code is working, but i couldnt inject it better.
i mean i coulndt scan AOB and do a full injection
all cus of the backtick the mono adress have. is there any way to work around that backtick?
thank you

Polynomial
Grandmaster Cheater

Reputation: 5

Joined: 17 Feb 2008
Posts: 524
Location: Inside the Intel CET shadow stack

Posted: Sat Aug 30, 2025 11:13 pm Post subject:

This might be a bug in CE's symbol name validation.

Backticks are common in C++/IL program symbols because they're used to refer to the count of generic type parameters, so in this case you've got this type:

Code:

Dictionary<Model.Skill, float>

Which gets translated to the following symbol name:

Code:

Dictionary`2[Model.Skill,System.Single]

I'm not sure if there's a workaround in the meantime; Dark Byte probably needs to take a look to see if changes need to be made to the script lexer.
_________________

It's not fun unless every exploit mitigation is enabled.
Please do not reply to my posts with LLM-generated slop; I consider it to be an insult to my time.

Display posts from previous:

	Cheat Engine Forum Index -> Cheat Engine	All times are GMT - 6 Hours
Page 1 of 1

Jump to:

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum