Cheat Engine

Vindictive · Newbie cheater Reputation: 0 Joined: 02 Oct 2017 Posts: 17

I feel like I would easily know the answer to this if I had a deeper understanding of memory so I apologize for any stupid questions.

After doing several pointer scans for different values in the same game I have good intuition about what the offsets might look like both the ending and beginning offsets.

When performing a pointer scan there is a clear option to add ending offsets. There is not an option to add beginning offsets.

To compromise I added a "base address must be in specific range" as followed.

From:
[[["game.exe"+0010FF90]+0]+8]+4C
To:
[[["game.exe"+0010FF90]+0]+8]+4C

This allowed me to find pointer paths that only start at the offset I want. In other words, it did work, however, I can not rescan my results because they point to a specific memory address the address that [[["game.exe"+0010FF90]+0]+8]+4C was pointing to during the initial scan.

Is there a way to accomplish what I'm trying to do?

TheyCallMeTim13 · Posted: Tue May 22, 2018 3:23 pm Post subject:

This is a pointer.

Vindictive · Newbie cheater Reputation: 0 Joined: 02 Oct 2017 Posts: 17

What I was trying to say was that I have a group of gamestate values that follow a very similar pointer chain:

Example
Health: [[[["Game.exe" + 0] + 8] + 4C] + x] + y
Armor: [[["Game.exe" + 0] + 8] + 4C] + z
Mana: [[[[["Game.exe" + 0] + 8] + 4C] + a] + b] + c

You can see that all this pointer chains begin with the same 3 offsets. So to speed up my pointer scan instead of having a max level of 7 or whatever I wanted to begin my search at [["Game.exe" + 0] + 8] + 4C so I could potentially find my value doing a much quicker pointer scan with max level 3.

I hope my intentions are sensible. Now is there a way to do it?

ParkourPenguin · Posted: Wed Jun 13, 2018 6:31 pm Post subject:

The pointer scanner doesn't work that way. Try the structure spider.

Dark Byte · Posted: Thu Jun 14, 2018 1:50 am Post subject:

It wouldn't speed up the scans(the pointerscan starts from the final address and then finds the pointers that point to it, and repeats till a static base), at most it would find it and then not write it to disk. (which these days with proper usage of pointermaps is a non issue)

But what you can do is after the scan do a rescan, and tick :"must start with offsets"

Alternatively, if you do know the base address and the start offsets you can follow where that will lead you, and then do a pointerscan as alays, but in advanced options uncheck "Only find paths with static addresses" and give that the base address must be in a specific range. In that range will in the address you get when following the first offsets

gdgsdg123 · How do I cheat? Reputation: 0 Joined: 13 May 2019 Posts: 3

Dark Byte · Posted: Mon May 13, 2019 2:43 pm Post subject:

as I mentioned in

gdgsdg123 · How do I cheat? Reputation: 0 Joined: 13 May 2019 Posts: 3

Dark Byte · Posted: Mon May 13, 2019 3:41 pm Post subject:

he says 'starting offsets' but not 'base address and starting offsets'
when a game gets updated the base address is one of the first things that change, and starting offsets are useless without a base address

but yes, i do see that the issue is that rescan doesn't work because the scan was done using a hardcoded base address which will be different on a nextscan and there is no option for that right now

but how many levels are we speaking here? less than 3? if so the structure spider is more suited for your needs which is designed to work with variable base addresses

gdgsdg123 · How do I cheat? Reputation: 0 Joined: 13 May 2019 Posts: 3

Dark Byte · Posted: Mon May 13, 2019 10:25 pm Post subject:

ok, but a staticonly=false scan is not useful if the base region isn't limited. (that's like raytracing where every single object is a full lightsource) so at least a base address or a region of memory has to be defined for that

you can post where you wish. Github makes url's more easier though