| View previous topic :: View next topic |
| Author |
Message |
31337Xero
Grandmaster Cheater
 Reputation: 0
Joined: 29 Jun 2006
Posts: 699
Location: False Street #123
|
 Posted: Mon Dec 18, 2006 10:34 pm Post subject: Changing ECX Value |
 |
|
| Code: | //00484D17 ECX-3E8
[ENABLE]
registersymbol(ItemHack)
alloc(ItemHack,512)
00484D17: //Array: 66 89 4D FE C7 45 F8 0D F0 AD BA 2B D8 B9 78 40
mov ecx, 3E8 //Am i changing ECX value correctly? Or do i need a few other lines of code
[DISABLE]
unregistersymbol(ItemHack)
dealloc(ItemHack) |
This makes me crash the game for some reason.
_________________
|
|
| Back to top |
|
 |
Uzeil
Moderator
 Reputation: 6
Joined: 21 Oct 2006
Posts: 2411
|
| Posted: Tue Dec 19, 2006 1:26 am Post subject: |
|
|
To change the value of ecx to the hexidecimal value 2e8 =
If ecx is 123456(the value is the value at that address, lets say it's abc) and then you do then ecx will now be 3e8 and the value will be the value of the address 3e8 (which more likely than not will be '??', thus being a likely reason why you are crashing.
If ecx is 123456 and then you do then ecx will still be 123456 but the value will now be 3e8.
Even though this is incorrect syntax, if you did the following while ecx was 123456 or worked around the incorrect syntax to do so, then you would move nothingness (not even 00, but nothingness like '??' into ecx. I'm not sure if this would crash you without the value of ecx being put into something before it is changed the next time, but more likely than not, it will crash you.) putting [ ] around something does not mean *the value ___*, it means *the value OF ____*. I misunderstood this myself on one of my first tested scripts when I was trying the same type of thing you were doing. I figured since I want the value 3e8, I would put the value tags around it. I had read straight through the 'OF' 
_________________
|
|
| Back to top |
|
|
Kazamaa
Newbie cheater
![]() Reputation: 0
Joined: 05 Jan 2007
Posts: 16
|
| Posted: Mon Jan 08, 2007 2:23 pm Post subject: |
|
|
can you post the scripit that not crash please?
i tried to change it but nothing =\
|
|
| Back to top |
|
|
SXGuy
I post too much
![]() Reputation: 0
Joined: 19 Sep 2006
Posts: 3551
|
| Posted: Mon Jan 08, 2007 3:08 pm Post subject: |
|
|
//00484D17 ECX-3E8
[ENABLE]
registersymbol(ItemHack)
alloc(ItemHack,512)
00484D17: //Array: 66 89 4D FE C7 45 F8 0D F0 AD BA 2B D8 B9 78 40
mov ecx, 3E8 //Am i changing ECX value correctly? Or do i need a few other lines of code
[DISABLE]
unregistersymbol(ItemHack)
dealloc(ItemHack)
Whats ItemHack ment to do? you have registerd it as a symbol and allocated memory, but then you havent used it at all.
are you sure your not trying to store the new ecx value in ItemHack and then move it to that address?
im sure its just as simples as this
| Code: | [enable]
00484D17: //Array: 66 89 4D FE C7 45 F8 0D F0 AD BA 2B D8 B9 78 40
mov ecx,3E8
[disable]
00484D17:
(put the original opcode for that address here) |
_________________
Proud member of "The DACEF" (Distruction Against Criminal Egotistical Forces"
Sign up today and receive your free "I Hate x0r Badge"
Last edited by SXGuy on Tue Jan 09, 2007 3:27 am; edited 1 time in total |
|
| Back to top |
|
|
dezuzi
Expert Cheater
![]() Reputation: 0
Joined: 09 Aug 2006
Posts: 146
Location: In your washing machine
|
| Posted: Tue Jan 09, 2007 2:42 am Post subject: |
|
|
go to address 00484d17, and copy paste some of the instructions here, using the export function
_________________
Give a man a fish; you have fed him for today. Teach a man to fish; and you have fed him for a lifetime.
Dynamic memory is my playground.. |
|
| Back to top |
|
|
sired22
Cheater
 Reputation: 1
Joined: 22 Aug 2006
Posts: 36
|
| Posted: Mon Jan 15, 2007 11:12 pm Post subject: |
|
|
| it may help if you use push and pop also
|
|
| Back to top |
|
|
rikkuz
How do I cheat?
![]() Reputation: 0
Joined: 17 Sep 2006
Posts: 1
|
| Posted: Wed Feb 14, 2007 6:42 am Post subject: |
|
|
i'm new here. but i think your game crash because you write
00484D17:
mov ecx,3E8
mean>> at address 00484d17 write mov ecx, 3e8 overwrite the existing instruction.
if existing address is
00484d17 cmp ecx,ebp
and you wanna change ecx to 3e8
if you inject your code, that line wil change to
00484D17 mov ecx,3E8
it will crash your game.
i think you might need to jump code cave
.
.
.
00484D17 cmp ecx,ebp >>> jmp 00500000 ---------------------
00484d1a je 00484d55 <<< jump back from cave<<<--- - -
. - -
. - -
. - -
jump from code above - -
------------------code cave------------------------ - -
00500000 mov ecx, 3e8 //change registry value <<<------ - -
. cmp ecx,ebp //old instruction(game instruction) -
. jmp 00484d1a //jump back>>>>--------------------
------------------------------------------------------
correct me if i wrong. i'm a noob too.
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
