Cheat Engine

[Spub]

So I have an instruction that looks like this

[deama1234]

It's more fun to learn assembly.

[Spub]

[Dark Byte]

you can always create a CEplugin which launches your gui and then make use of the lua interface

But if you insist, it's going to either require a code injection or a breakpoint.

For code injection:
Find the address to hook (e.g aobscan or modulename+offset)

Allocate some memory somewhere
In that code write the bytes that make up code that will save EAX to a known location and jump back after the instruction

Then write the bytes at the found location to make it jump to your allocated code. (do it in this order as there's a chance the code will execute before the first part is written)

[atom0s]

Take a look at the GetThreadContext API:
https://msdn.microsoft.com/en-us/library/windows/desktop/ms679362%28v=vs.85%29.aspx?f=255&MSPPError=-2147217396

[Spub]

[atom0s]

When a thread is suspended, you can obtain the threads context to view the register data. The context structure you pass as the 2nd parameter is filled with the threads information when you call this API. It will contain the various data you have opened the handle to the thread with.

[Spub]

Well, after more access violations than I can count I finally got GetThreadContext() working. I still need some help though
I took a snapshot of all the threads and filtered to only the ones that match my game's process id, but there still a bunch of them. How do I know which one to get the context of?
And secondly, how do I get the context of the thread at the right time? Does that have to do with the breakpoints that Dark Byte mentioned?

[atom0s]

Yes you will need to set a breakpoint and handle it (attach to the process as a debugger).