Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


Finding symbol, class, method base address - ASLR

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking
View previous topic :: View next topic  
Author Message
zm0d
Master Cheater
Reputation: 7

Joined: 06 Nov 2013
Posts: 423
PostPosted: Fri Nov 22, 2013 6:19 pm    Post subject: Finding symbol, class, method base address - ASLR Reply with quote
Hi again Very Happy

First, note the attached image please. The point in the red box is the interesting part.

My game, where I inject a DLL uses ASLR. I found a function in the game which contains some interesting part of code for me. But I cant "simply" do code injection, because of this god damn ASLR.

Well, how can I get the base address of this CalculateTransformMatrix?
I try it with GetProcAddress, but my result was 0... Sad Probably I did something wrong for the method name, because of the class prefix.

P.S.
It's my first time to deal with ASLR... Sad

Greetz,
zm0d

class_method.png
 Description:
Take care of the red box :P
 Filesize:  8.76 KB
 Viewed:  9558 Time(s)

class_method.png
Back to top
View user's profile Send private message
justa_dude
Grandmaster Cheater
Reputation: 23

Joined: 29 Jun 2010
Posts: 893
PostPosted: Fri Nov 22, 2013 8:14 pm    Post subject: Reply with quote
Can you find the address by using ctrl+alt+s in CE's memory viewer?
Back to top
View user's profile Send private message
Dark Byte
Site Admin
Reputation: 471

Joined: 09 May 2003
Posts: 25819
Location: The netherlands
PostPosted: Fri Nov 22, 2013 8:31 pm    Post subject: This post has 1 review(s) Reply with quote
make sure view->show symbols is turned off and view->show module addresses is on

that wil get you to the modulename+offset format, that you can use with the module base.
Note though, that patches will not automatically update the address like ce does when the classmethod name is used
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.

Like my help? Join me on Patreon so i can keep helping
Back to top
View user's profile Send private message MSN Messenger
zm0d
Master Cheater
Reputation: 7

Joined: 06 Nov 2013
Posts: 423
PostPosted: Sat Nov 23, 2013 3:40 am    Post subject: Reply with quote
Dark Byte wrote:

that wil get you to the modulename+offset format, that you can use with the module base

LOL'ed.... I could swear I tried this yesterday night, but probably I was sleeping already... this works nicely.. Very Happy Very Happy Thanks, mate Smile

Dark Byte wrote:
Note though, that patches will not automatically update the address like ce does when the classmethod name is used

At least that I already knew Very Happy Very Happy
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> General Gamehacking All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites