| View previous topic :: View next topic |
| Author |
Message |
Paine-
How do I cheat?
![]() Reputation: 0
Joined: 04 Apr 2006
Posts: 3
|
 Posted: Tue Apr 04, 2006 7:31 am Post subject: Semi-noob question (EIP +/- Hotkeys) |
 |
|
Would it be possible to create a hotkey to increase an EIP by 804, then decrease it again by the same amount (Hell, or toggle between two values, same effect)? The Cheat Engine hotkeys seem to have nothing of the sort available. The address I'm using will be the same...
Blech. Either way, thanks for taking the time to read this.
|
|
| Back to top |
|
 |
Dark Byte
Site Admin
 Reputation: 470
Joined: 09 May 2003
Posts: 25804
Location: The netherlands
|
| Posted: Tue Apr 04, 2006 7:51 am Post subject: |
|
|
Sure, it's easy to add in a function that increases eip with a certain ammount each time a hotkey is pressed. But please try to understand that if you do that there is a 99.9% chance the game will completly crash and perhaps even mess up your comp[/i]
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
| Back to top |
|
|
Paine-
How do I cheat?
![]() Reputation: 0
Joined: 04 Apr 2006
Posts: 3
|
| Posted: Tue Apr 04, 2006 7:55 am Post subject: |
|
|
| Dark Byte wrote: | | Sure, it's easy to add in a function that increases eip with a certain ammount each time a hotkey is pressed. But please try to understand that if you do that there is a 99.9% chance the game will completly crash and perhaps even mess up your comp[/i] |
Well changing the EIP manually doesn't screw anything up, so I don't understand how a hotkey does it differently...
|
|
| Back to top |
|
|
Dark Byte
Site Admin
Reputation: 470
Joined: 09 May 2003
Posts: 25804
Location: The netherlands
|
| Posted: Tue Apr 04, 2006 7:59 am Post subject: |
|
|
EIP is the instruction pointer of a thread.
It points to the currently instruction being executed.
When you press the hotkey in a game, you change the current instruction pointer to a new location, and since you press the hotkey the current eip will be at any random position in the game (e.g eip might be at a copy instruction, or eip might be at the code to display the screen)
What if it was at the code that makes you walk and the code after it was a experimental code that never gets called which will format your harddisk. EIP will then jump to there and execute the code to format your hard disk.....
you can only manually edit it because the game will be paused at that moment and you know what the current eip is. with hotkeys the game will not be paused and you don't know the current eip
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
| Back to top |
|
|
personmans
Expert Cheater
![]() Reputation: 0
Joined: 02 Apr 2006
Posts: 193
|
| Posted: Tue Apr 04, 2006 6:17 pm Post subject: |
|
|
Unless you are SETTING it to a place you know of, IE a codecave. then you wouldn't need to know where it was at,... er ah crap you do.. I was thinking you could pushad and popad then return... but i realized that your code would have no way of knowing because CE changed it, rather than an unconditional jump 
im guessing there could possibly be some sort of similar application... and possibly the game IS at a copy function, and you just want to step over it =P oops game forgot to make me pay for this item or similar?
|
|
| Back to top |
|
|
UberNoob
Master Cheater
 Reputation: 0
Joined: 29 Dec 2005
Posts: 365
Location: You should know...
|
| Posted: Tue Apr 04, 2006 7:40 pm Post subject: |
|
|
why it would fail
Normal code ( { = code)
| Quote: |
00400000 - add [eax], al
{
00400001 - add [eax], al
{
00400001 - shl byte ptr [ecx-XX],cl
|
Code with EIP changed:
| Quote: |
00400000 - add [eax], al
{
00400001 - ... point to 0040004 (EIP set at 0040004)
0040004 - add [eax], al
*program think "hmm... no jump back to the other code or anything like that... this code won't work..." CRASH*
|
_________________
.. ___
~(o.O)~
.. (.....)
... 1 1
"SHA ZAAM" (and other variations of it) ARE MY WORDS! WTF, DON'T USE IT! z0mg
| Dark Byte wrote: | | Xentar, WTF DID YOU DO TO YOUR DISASSEMBLER ? |
|
|
| Back to top |
|
|
personmans
Expert Cheater
![]() Reputation: 0
Joined: 02 Apr 2006
Posts: 193
|
| Posted: Tue Apr 04, 2006 7:46 pm Post subject: |
|
|
if you jumped to a known code-cave with a ret at the end was what i was saying... before i realized that im a dumbass and if you had a RET it wouldn't know where to return to.....
So yeah like a 99% chance it wont work if you hotkey it.
EDIT: Okay, unless you're as cool as darkbyte... (read his post) but i'm gonna guess that most of the people who 'pause edit' their EIP's know what we're talking about and how to implement it.
Last edited by personmans on Wed Apr 05, 2006 8:06 pm; edited 1 time in total |
|
| Back to top |
|
|
Dark Byte
Site Admin
Reputation: 470
Joined: 09 May 2003
Posts: 25804
Location: The netherlands
|
| Posted: Wed Apr 05, 2006 12:39 am Post subject: |
|
|
Ah, in case of a codecave
Let your codecave look at a memorylocation (either allocated and registered by a script or static address) and then adjust the register according to that address.
Then add that address to the list and give it a hotkey to increase or decrease or whatever
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
