| View previous topic :: View next topic |
| Author |
Message |
btd5
Cheater
![]() Reputation: 0
Joined: 05 Feb 2016
Posts: 40
|
 Posted: Wed Feb 17, 2016 12:18 pm Post subject: fly hack |
 |
|
This is fly hack
[ENABLE]
squishy.exe+3487B:
nop
nop
nop
nop
nop
[DISABLE]
squishy.exe+3487B:
movss [ecx+58],xmm1
enable works well, but when i disable it i drop to floor and die even if im really close to floor. Any advice?
And how can i stop object from fling?
thanks
|
|
| Back to top |
|
 |
mgostIH
Expert Cheater
 Reputation: 3
Joined: 01 Jan 2016
Posts: 159
|
| Posted: Wed Feb 17, 2016 12:36 pm Post subject: Re: fly hack |
|
|
| btd5 wrote: | This is fly hack
[ENABLE]
squishy.exe+3487B:
nop
nop
nop
nop
nop
[DISABLE]
squishy.exe+3487B:
movss [ecx+58],xmm1
enable works well, but when i disable it i drop to floor and die even if im really close to floor. Any advice?
And how can i stop object from fling?
thanks |
Probably, fall damage in that game is proportional to how much time you are in air. This is why you get a huge fall damage, because even flying 5 seconds will reach the max fall damage.
What you can do is find the code that access your health (specifically the fall damage) and nop it out.
Another thing you can do is find a boolean representing the InGround flag, that determines when you are flying or not, to start calculating the fall damage, and freeze it or nop its code aswell.
_________________
|
|
| Back to top |
|
|
btd5
Cheater
![]() Reputation: 0
Joined: 05 Feb 2016
Posts: 40
|
| Posted: Wed Feb 17, 2016 1:50 pm Post subject: |
|
|
found 2 adresses seems that both do time when im in air, but when i nop it game crash :(
squishy.exe+4BEBA - 89 0D D0107100 - mov [squishy.exe+3110D0],ecx { [0001D871] }
|
|
| Back to top |
|
|
mgostIH
Expert Cheater
Reputation: 3
Joined: 01 Jan 2016
Posts: 159
|
| Posted: Wed Feb 17, 2016 2:10 pm Post subject: |
|
|
| btd5 wrote: | found 2 adresses seems that both do time when im in air, but when i nop it game crash :(
squishy.exe+4BEBA - 89 0D D0107100 - mov [squishy.exe+3110D0],ecx { [0001D871] } |
What's that value address when you are in ground?
_________________
|
|
| Back to top |
|
|
btd5
Cheater
![]() Reputation: 0
Joined: 05 Feb 2016
Posts: 40
|
| Posted: Wed Feb 17, 2016 2:27 pm Post subject: |
|
|
value is 120216 but it's only increasing when i jump or fly. it dont decrease when i die. Meaby is just wrong adress.
but in memory i see aob changing (first 3 when i jump or fly)
[u]BB D5 01[/u] 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
| Back to top |
|
|
mgostIH
Expert Cheater
Reputation: 3
Joined: 01 Jan 2016
Posts: 159
|
| Posted: Wed Feb 17, 2016 2:31 pm Post subject: |
|
|
| btd5 wrote: | value is 120216 but it's only increasing when i jump or fly. it dont decrease when i die. Meaby is just wrong adress.
but in memory i see aob changing (first 3 when i jump or fly)
BB D5 01 00 00 00 00 00 00 00 00 00 00 00 00 00 |
If the instruction is "mov [squishy.exe+3110D0],ecx", try changing it to | Code: | | mov [squishy.exe+3110D0],0 |
and tell me if it works.
It might also be that the code you found is wrong.
_________________
|
|
| Back to top |
|
|
btd5
Cheater
![]() Reputation: 0
Joined: 05 Feb 2016
Posts: 40
|
| Posted: Wed Feb 17, 2016 3:01 pm Post subject: |
|
|
dont work
i get this
FATAL ERROR in
action number 1
of Step Event0
for object obj_player:
Unable to find any instance for object index '1'
at gml_Object_obj_player_Step_0
I attached picture of memory
i tried nop every single 1 in this area but dont work. If it wont work is not problem.
| Description: |
|
| Filesize: |
43.08 KB |
| Viewed: |
8104 Time(s) |
|
|
|
| Back to top |
|
|
btd5
Cheater
![]() Reputation: 0
Joined: 05 Feb 2016
Posts: 40
|
| Posted: Sun Feb 21, 2016 12:48 am Post subject: |
|
|
This is my script now and it's working.But i have 4 more codes for cmp like
cmp [ecx+73C],000000ED
cmp [ecx+614],000000ED
cmp [ecx+AB4],000000ED
cmp [ecx+29C],000000ED
I was get those from pointer adress ---> writes to adress ---> opcode ---> disassembler ---> right click on opcode ---> what adress this instruction accesses ---> dissect data and compared group 1 to group 2
but i have 1 question. How can i add all these codes to 1 assembly script or it ok with only 1?
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
cmp [ecx+3C4],000000ED
jne originalcode
nop
nop
nop
nop
nop
nop
jmp exit
originalcode:
movss [ecx+58],xmm1
exit:
jmp returnhere
"squishy.exe"+3487B:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"squishy.exe"+3487B:
movss [ecx+58],xmm1
//Alt: db F3 0F 11 49 58
|
|
| Back to top |
|
|
mgostIH
Expert Cheater
Reputation: 3
Joined: 01 Jan 2016
Posts: 159
|
| Posted: Sun Feb 21, 2016 5:32 am Post subject: |
|
|
| btd5 wrote: | This is my script now and it's working.But i have 4 more codes for cmp like
cmp [ecx+73C],000000ED
cmp [ecx+614],000000ED
cmp [ecx+AB4],000000ED
cmp [ecx+29C],000000ED
I was get those from pointer adress ---> writes to adress ---> opcode ---> disassembler ---> right click on opcode ---> what adress this instruction accesses ---> dissect data and compared group 1 to group 2
but i have 1 question. How can i add all these codes to 1 assembly script or it ok with only 1?
[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
cmp [ecx+3C4],000000ED
jne originalcode
nop
nop
nop
nop
nop
nop
jmp exit
originalcode:
movss [ecx+58],xmm1
exit:
jmp returnhere
"squishy.exe"+3487B:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"squishy.exe"+3487B:
movss [ecx+58],xmm1
//Alt: db F3 0F 11 49 58 |
There should be an option to combine multiple scripts together, but don't ask me about this, I don't know LUA scripting too much!
_________________
|
|
| Back to top |
|
|
++METHOS
I post too much
![]() Reputation: 92
Joined: 29 Oct 2010
Posts: 4197
|
| Posted: Sun Feb 21, 2016 6:13 am Post subject: |
|
|
| btd5 wrote: | | but i have 1 question. How can i add all these codes to 1 assembly script or it ok with only 1? |
-Create your first script like you normally would. Then, add it to your cheat table (or just leave the window open - it doesn't matter). Find the location of your second injection point and make sure that it is highlighted inside of memory viewer. Return to your first script (auto assemble window) and click on 'template' and choose your injection type from the drop-down menu. Repeat the steps for each instruction that you want to add. CE will automatically combine the scripts and you can do this as many times as you like.
By the way, the nop's are not needed here:
| Code: | jne originalcode
nop
nop
nop
nop
nop
nop
jmp exit |
|
|
| Back to top |
|
|
btd5
Cheater
![]() Reputation: 0
Joined: 05 Feb 2016
Posts: 40
|
| Posted: Sun Feb 21, 2016 12:30 pm Post subject: |
|
|
| thanks for help
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
