| View previous topic :: View next topic |
| Author |
Message |
ernie
Expert Cheater
![]() Reputation: 0
Joined: 05 Oct 2007
Posts: 123
|
 Posted: Sun Apr 27, 2008 2:02 am Post subject: I'm going out of my god damn mind-- simple assmbly/pointer |
 |
|
I'm trying to find a pointer in a game that's memory values always change(like most). Now I find the address that contains the value that is displayed on my client for bullets. It's flash so it's multiplied by 8. The actual value in the code is 104. Now I click on to see what writes to that address. Then I modfy that address by firing a bullet. Two different mov commands pop up after firing one shot.
The first one:
mov [esi], 2
Is this even a legal command? aren't integers considered "values" hence im moving a value into a value?? If not, it's simply making the value at the Esi register 2? Anyway that's the code. I
The second one.
mov [esi], ecx
Why the hell did it just change it to 2 and then change the register value anyway? The value in ecx is (in hex) the value that updated the client with the current bullets.
All I want to god damn do is get it so i don't have to search for values after every start up and ive tried all manner of pointers in this mess and they all get change when I reload the game. It's driving me mad because I know it's that I just don't understand enough of assmbly.
Edit: the commands I give were the ones in RED that cheat engine highlighted. Am I supposed to look/mess around with the other code just to find the pointer I want?
|
|
| Back to top |
|
 |
me
Grandmaster Cheater
 Reputation: 2
Joined: 24 Jun 2004
Posts: 733
Location: location location
|
| Posted: Sun Apr 27, 2008 5:58 am Post subject: |
|
|
as the register [esi] has brackets around it then its putting that 2 into the address held in esi,
say esi has a value of 00500000
then the brackets mean put 2 into the address 00500000,
and mov [esi], ecx means mov the value held in ecx into the address of [esi]
to make it simpler I will use the same value 00500000 for esi and ecx to explain the difference between registers with brackets and registers without brackets,
so esi holds 00500000 and ecx also holds 00500000
so
mov [esi], ecx
means mov the 00500000 held in ecx into the address 00500000 held in [esi]
if you added the address 00500000 to the address list you would see it then held 00500000,
the fact you got two addesses doesnt mean the two pieces of code are next to each other,
they can be in different parts of the program.
you can highlight the code and click the dissasemble button to open the memory view window at that code section,
the red code just highlights the instruction that changed the address you used for the "find out what writes to this address" breakpoint" so you know that its the instruction your looking for...
oh and flash games are not the best games to find pointers for
_________________
|
|
| Back to top |
|
|
HalfPrime
Grandmaster Cheater
![]() Reputation: 0
Joined: 12 Mar 2008
Posts: 532
Location: Right there...On your monitor
|
| Posted: Sun Apr 27, 2008 3:20 pm Post subject: |
|
|
ASM + flash don't really mix...
Head over to the flash game section and I'm sure there's a few trainer tuts.
|
|
| Back to top |
|
|
Labyrnth
Moderator
![]() Reputation: 10
Joined: 28 Nov 2006
Posts: 6301
|
| Posted: Sun Apr 27, 2008 7:54 pm Post subject: |
|
|
For flash all you need to do is find the address and change the value to a multiple of 8.
Dont worry about altering the assembly your going to crack the browser.
Take a look what module your in with that instruction, your in a dll.
Even a pointer will not be valid after restarting.
So 2 things, scan and find address watch time, or go to flash games section and learn how to make an action script editor/ trainer.
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
