 |
Cheat Engine
The Official Site of Cheat Engine
|
| View previous topic :: View next topic |
| Author |
Message |
Yajnos
How do I cheat?
![]() Reputation: 0
Joined: 10 Jun 2022
Posts: 4
|
 Posted: Fri Jun 10, 2022 9:59 am Post subject: Need help im stuck figuring out what to do. |
 |
|
I'm trying to find the value of progress bar to give myself exp points and succeeded but it turns out only a display value. So every time i progress the value increases but when i try to add more than the value i originally obtained in game it just didn't work.
What i tried is "Find out what writes to this address" i look for a guide for 3 days and read every possible guides and similar questions but im stuck.
this is what i found for this address 7FF411547BC4.
7FF60D38EDD5 - 44 0F4C F8 - cmovl r15d,eax
7FF60D38EDD9 - 45 8B C7 - mov r8d,r15d
7FF60D38EDDC - 45 89 BC BE 20010000 - mov [r14+rdi*4+00000120],r15d << <---this is where it points after the value is change in game.
7FF60D38EDE4 - 44 2B C2 - sub r8d,edx
7FF60D38EDE7 - 48 85 ED - test rbp,rbp
RAX=000000000001EF50
RBX=000000000000000D
RCX=000000000001EF50
RDX=000000000001EE7D <-- old xp value but not sure where to use this then the rest doesn't make sense to me.
RSI=00000026A99FD98C
RDI=0000000000000003
RSP=00000026A99FD610
RBP=00000026A99FEF10
RIP=00007FF60D38EDE4
R8=000000000001EF50
R9=0000000000000001
R10=00007FF411587C70
R11=0000000000000001
R12=0000000000000001
R13=0000000000000000
R14=00007FF411547A98
R15=000000000001EF50
Please help me if something like this is already been asked kindly point me there thanks.
|
|
| Back to top |
|
 |
cooleko
Grandmaster Cheater
![]() Reputation: 11
Joined: 04 May 2016
Posts: 717
|
| Posted: Fri Jun 10, 2022 4:17 pm Post subject: |
|
|
Scroll up further, you will see either the start of the function and have to learn using break and trace, or the value read from the address, a value for modification read from another address, and them added together before being stored.
Look to change a multiplier or, the modification value. If that doesn't work then you need to look further for where the multiplier or modification values themselves are read from and stored to.
For example:
You have 1000 exp and kill a mob for 20.
The game reads 1000, reads 20, maybe read 1.0, multiplies the 20 by 1.0 and adds it to the 1000 before writing it to the original location. If the game is making a progress bar, it likely knows that 2000 is the max value and performs some scaling using the 1020 and 2000 and stores that in a display value to visualize the results.
Where the values are read from is likely sufficient to cheat the EXP, but not always.
That will be something like cmovl r15d, eax; or use the other value in the compare right above that you didn't include. I'd rewrite eax and see if that works, or look further to see what is loaded into eax, and try there, (or keep going until you find the real value).
In the unlikely case that they encrypt the actual value then it will be slightly more steps but the same process.
|
|
| Back to top |
|
|
Yajnos
How do I cheat?
![]() Reputation: 0
Joined: 10 Jun 2022
Posts: 4
|
| Posted: Fri Jun 10, 2022 5:32 pm Post subject: |
|
|
| cooleko wrote: | Scroll up further, you will see either the start of the function and have to learn using break and trace, or the value read from the address, a value for modification read from another address, and them added together before being stored.
Look to change a multiplier or, the modification value. If that doesn't work then you need to look further for where the multiplier or modification values themselves are read from and stored to.
For example:
You have 1000 exp and kill a mob for 20.
The game reads 1000, reads 20, maybe read 1.0, multiplies the 20 by 1.0 and adds it to the 1000 before writing it to the original location. If the game is making a progress bar, it likely knows that 2000 is the max value and performs some scaling using the 1020 and 2000 and stores that in a display value to visualize the results.
Where the values are read from is likely sufficient to cheat the EXP, but not always.
That will be something like cmovl r15d, eax; or use the other value in the compare right above that you didn't include. I'd rewrite eax and see if that works, or look further to see what is loaded into eax, and try there, (or keep going until you find the real value).
In the unlikely case that they encrypt the actual value then it will be slightly more steps but the same process. |
So i tried to put a break and trace to the line: 45 89 BC BE 20010000 - mov [r14+rdi*4+00000120],r15d nothing happens when i obtain exp.
33 C0 - xor eax,eax <-- base on the guides this has probably comparing something.
48 89 B4 24 F0000000 - mov [rsp+000000F0],rsi
4C 89 B4 24 08010000 - mov [rsp+00000108],r14
4C 8B 35 FDC61B05 - mov r14,[nba2k22.exe+632B4A8]
49 81 C6 58790100 - add r14,00017958 { 96600 }
4C 89 BC 24 D0000000 - mov [rsp+000000D0],r15
41 BF FFFFFFFF - mov r15d,FFFFFFFF
41 8B 94 BE 20010000 - mov edx,[r14+rdi*4+00000120]
48 03 CA - add rcx,rdx <---- this looks interesting because it adds my old xp rdx to rcx.
48 85 C9 - test rcx,rcx <-- not clear what is test
48 0F4F C1 - cmovg rax,rcx <-- another confusing command
49 3B C7 - cmp rax,r15
44 0F4C F8 - cmovl r15d,eax
45 8B C7 - mov r8d,r15d
45 89 BC BE 20010000 - mov [r14+rdi*4+00000120],r15d
44 2B C2 - sub r8d,edx
48 85 ED - test rbp,rbp
i'm trying to figure this out for 3 days and that is the only thing that make sense to me right now and im still unsure if im right.
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
