Cheat Engine

Goat Engine · Cheater Reputation: 0 Joined: 13 Aug 2018 Posts: 44

If an instruction writes a value to a dynamic address only one time, and that one time is the same moment that address becomes valid, what's the best method to find it since I obviously can't "see what writes to" the address I don't yet know before that instruction writes it one time.

Off the top of my head I had a thought of finding a pointer, then trying the see what writes to options on that pointer but something about that sounds messy and unreliable. Any ideas would be appreciated!

Banjo Patterson · Cheater Reputation: 1 Joined: 15 May 2018 Posts: 36

Pointer options could be a good start. Maybe find the address where it ends up and see what accesses it, perhaps there’s instructions close to the accessors that also do some writing. You can then try breakpointing on them.

Otherwise, I’m not sure if this would work at all, but if the memory that the address is being written to is allocated beforehand, you could snapshot a virtual machine, find the address when it is written, then revert to the snapshot and set a write breakpoint on the address which was written in the future. Again though I have no idea if that would work, if the memory is not allocated prior (i.e all ?? in memory) then it definitely won’t work.

DanyDollaro · Posted: Fri Jan 31, 2020 7:37 am Post subject:

You can act for reading, for example, in all games where there is a character with a life value, every vote that suffers damage in reading acts a code that compares life with the value 0 and if life is equal or less at 0 the character dies, and from there you can easily get a pointer on the minimum life value to trigger the death function