• Amused
  • Angry
  • Annoyed
  • Awesome
  • Bemused
  • Cocky
  • Cool
  • Crazy
  • Crying
  • Down
  • Drunk
  • Embarrased
  • Enraged
  • Friendly
  • Geeky
  • Godly
  • Happy
  • Hateful
  • Hungry
  • Innocent
  • Meh
  • Piratey
  • Poorly
  • Sad
  • Secret
  • Shy
  • Sneaky
  • Tired
  • Wtf
  • At Work
  • CodenzHub
  • Coding
  • Deejaying
  • Donating
  • Drinking
  • Eating
  • Editing
  • Hacking
  • Hate Mailing
  • Jamin'
  • Lagging
  • Live Streaming
  • Lurking
  • No Status
  • Pawning
  • PC Gaming
  • PS Gaming
  • Raging
  • Reversing
  • Sleeping
  • Steam Gaming
  • Trolling
  • TwitchStreamer
  • Vodka!
  • Watching TV/Movie
  • Xbox Gaming
  • Youtuber
  • Zombies
  • Results 1 to 7 of 7
    1. #1
      Newbie
      Learning to hack games!
       
      Feeling Normal
       
      dydrax's Avatar
      Join Date
      Jan 2013
      Posts
      24
      Thanks (-->)
      0
      Thanks (<--)
      1

      [ASK] array of byte

      Silent VPN
      many cheater using AoB to find offset of game ,, but i'm confusing
      what is array of byte ??
      what hell is it ?
      how can i get it?
      please give tut because i'm newbie

    2. #2
      Learning to hack games!
       
      Feeling Normal
       
      's Avatar
      Join Date
      Jan 1970
      Posts
      0
      Thanks (-->)
      294
      Thanks (<--)
      328
      Let's just say, for instance I want to hack a game but I do not want to manually search for the same instruction again in any feature updates.

      Health:

      Code:
      Torchlight2.EditorDumpStatsAverages+4C004 - D8 9E 58050000        - fcomp dword ptr [esi+00000558]
      So we got the address for our health but in order to find it again in any future game updates we want to search for a bigger block since this address occurs multiple times in the game. So what we are going to do is select a bigger block.

      Code:
      Torchlight2.EditorDumpStatsAverages+4BFFA - DB 44 24 78           - fild dword ptr [esp+78]
      Torchlight2.EditorDumpStatsAverages+4BFFE - D8 0D DC1F0302        - fmul dword ptr [Torchlight2.exe+1C31FDC]
      Torchlight2.EditorDumpStatsAverages+4C004 - D8 9E 58050000        - fcomp dword ptr [esi+00000558]
      Torchlight2.EditorDumpStatsAverages+4C00A - DFE0                  - fnstsw ax
      Torchlight2.EditorDumpStatsAverages+4C00C - F6 C4 01              - test ah,01
      Now of course, we only want the bytes of all these addresses. It'll look like this.

      Code:
      DB 44 24 78 D8 0D DC 1F 03 02 D8 9E 58 05 00 00 DF E0 F6 C4 01
      Now all you have to do is open the Memory Viewer and in the opcode window right click and select Search Memory now you want to make the necessary changes.

      1. Select (Array of) byte
      2. Change From to 00000000
      3. Change To to FFFFFFFF

      Now enter your array of bytes you've collected.

      Code:
      DB 44 24 78 D8 0D DC 1F 03 02 D8 9E 58 05 00 00 DF E0 F6 C4 01
      And press OK

      You should now land at the right address in the opcode window. Simply search for that address in Cheat Engine and you'll land at this address.

      Code:
      Torchlight2.EditorDumpStatsAverages+4BFFA - DB 44 24 78           - fild dword ptr [esp+78]
      Now simply scroll down and you will see your health address in that area.

      Code:
      Torchlight2.EditorDumpStatsAverages+4C004 - D8 9E 58050000        - fcomp dword ptr [esi+00000558]



      And that should be all. This should work for future updates unless some nasty changes were made then you have to do it differently. But this should work in most cases.

      I hope you understood what I wrote as I do not know a different way to explain it.

    3. #3
      Kim Kong Trasher
      I don't have status.
       
      Raging
       
      c5's Avatar
      Join Date
      Jul 2012
      Location
      Mankei Iland
      Posts
      1,221
      Thanks (-->)
      97
      Thanks (<--)
      492
      And it doesn't necessarily have to be opcodes, it can be anything within programs memory space
      [ASK] array of byte

    4. Thanks N/A thanked for this post
    5. #4
      Newbie
      Learning to hack games!
       
      Feeling Normal
       
      dydrax's Avatar
      Join Date
      Jan 2013
      Posts
      24
      Thanks (-->)
      0
      Thanks (<--)
      1
      wow thats amazing,, thanks to explainig it @ Magnificient &C5,,i will try to understanding it
      in my mind it's a packet of instruction and we only change the value,
      but how can i make cheat only use the offset after search the AoB,,
      how can they using cheat with offset without change the value ???

      sorry if i had many question,,
      and sorry for my poor english,,
      thanks before

    6. #5
      Coder
      Learning to hack games!
       
      Feeling Normal
       
      xploiitz's Avatar
      Join Date
      Jul 2012
      Posts
      130
      Thanks (-->)
      5
      Thanks (<--)
      16
      wouldnt we have to use some wild cards when applying this? Because the pointers might change with the update no?

      for example

      Torchlight2.EditorDumpStatsAverages+4BFFA - DB 44 24 78 - fild dword ptr [esp+78]
      Torchlight2.EditorDumpStatsAverages+4BFFE - D8 0D DC1F0302 - fmul dword ptr [Torchlight2.exe+1C31FDC]
      Torchlight2.EditorDumpStatsAverages+4C004 - D8 9E 58050000 - fcomp dword ptr [esi+00000558]
      Torchlight2.EditorDumpStatsAverages+4C00A - DFE0 - fnstsw ax
      Torchlight2.EditorDumpStatsAverages+4C00C - F6 C4 01 - test ah,01


      on the bolded line DC 1F 03 02 (little endian for torchlight.exe+1c31fdc) might not always be the same, so would you not use wild cards when searching in future updates?

      ex:
      DB 44 24 78 D8 0D ?? ?? ?? ?? D8 9E 58 05 00 00 DF E0 F6 C4 01

    7. Thanks N/A thanked for this post
    8. #6
      Kim Kong Trasher
      I don't have status.
       
      Raging
       
      c5's Avatar
      Join Date
      Jul 2012
      Location
      Mankei Iland
      Posts
      1,221
      Thanks (-->)
      97
      Thanks (<--)
      492
      Definetly. If something could change/is changing you have to skip them when matching a pattern
      [ASK] array of byte

    9. #7
      Learning to hack games!
       
      Feeling Normal
       
      's Avatar
      Join Date
      Jan 1970
      Posts
      0
      Thanks (-->)
      294
      Thanks (<--)
      328
      Silent VPN
      Quote Originally Posted by xploiitz View Post
      wouldnt we have to use some wild cards when applying this? Because the pointers might change with the update no?

      for example

      Torchlight2.EditorDumpStatsAverages+4BFFA - DB 44 24 78 - fild dword ptr [esp+78]
      Torchlight2.EditorDumpStatsAverages+4BFFE - D8 0D DC1F0302 - fmul dword ptr [Torchlight2.exe+1C31FDC]
      Torchlight2.EditorDumpStatsAverages+4C004 - D8 9E 58050000 - fcomp dword ptr [esi+00000558]
      Torchlight2.EditorDumpStatsAverages+4C00A - DFE0 - fnstsw ax
      Torchlight2.EditorDumpStatsAverages+4C00C - F6 C4 01 - test ah,01


      on the bolded line DC 1F 03 02 (little endian for torchlight.exe+1c31fdc) might not always be the same, so would you not use wild cards when searching in future updates?

      ex:
      DB 44 24 78 D8 0D ?? ?? ?? ?? D8 9E 58 05 00 00 DF E0 F6 C4 01
      Yes, you have to use 'em wildcards

      I just didn't include them. My bad. Thanks for adding it there though!

    Similar Game Hacker Threads

    1. [Help] How to inject dll to process from byte array.
      By Mstf1278 in forum C/C++
      Replies: 2
      Last Post: 07-03-2016, 06:14 PM
    2. [Help] {Delphi} Convert PWideChar (Pointer Char) to Byte Array?
      By AxDSan in forum Misc Coding
      Replies: 4
      Last Post: 06-20-2016, 07:03 PM
    3. [Tutorial] Define Byte: Direct Byte Manipulation In Game Hacking
      By ChrisFayte in forum Cheat The Game
      Replies: 1
      Last Post: 04-22-2016, 04:17 PM
    4. [Discuss] BYTE vs byte?
      By [GH]Rake in forum Polls
      Replies: 10
      Last Post: 11-23-2015, 02:02 PM
    5. Replies: 16
      Last Post: 02-25-2015, 05:41 PM

    Tags for this Thread