• Amused
  • Angry
  • Annoyed
  • Awesome
  • Bemused
  • Cocky
  • Cool
  • Crazy
  • Crying
  • Down
  • Drunk
  • Embarrased
  • Enraged
  • Friendly
  • Geeky
  • Godly
  • Happy
  • Hateful
  • Hungry
  • Innocent
  • Meh
  • Piratey
  • Poorly
  • Sad
  • Secret
  • Shy
  • Sneaky
  • Tired
  • Wtf
  • At Work
  • CodenzHub
  • Coding
  • Deejaying
  • Donating
  • Drinking
  • Eating
  • Editing
  • Hacking
  • Hate Mailing
  • Jamin'
  • Lagging
  • Live Streaming
  • Lurking
  • No Status
  • Pawning
  • PC Gaming
  • PS Gaming
  • Raging
  • Reversing
  • Sleeping
  • Steam Gaming
  • Trolling
  • TwitchStreamer
  • Vodka!
  • Watching TV/Movie
  • Xbox Gaming
  • Youtuber
  • Zombies
  • Results 1 to 6 of 6
    1. #1
      Newbie
      Learning to hack games!
       
      Feeling Normal
       
      mepath's Avatar
      Join Date
      Sep 2012
      Posts
      13
      Thanks (-->)
      0
      Thanks (<--)
      0

      Point Addresses Manual vs Pointer Scans

      John Kittz
      Hi guys!

      I've pretty much spent the last 3-5 days doing nothing but watching Fleep videos and applying the techniques. I'm going with basic stuff and slowly moving onto more complex things. There are a few topics I've learned that weren't covered in Fleep's tutorials.

      First off, despite the fact that you've successful figured out the static base pointer that points to the chain of pointers, that ultimately point to the value you want to hack, that static address CAN change. This is due to the fact that the address is written in HEX, and is an absolute address.

      Addresses that don't change, and written relative to the process itself. For "game.exe" + 00B00BS vs some pointer chain starting at 0x17702134.

      I generally get the base static address within minutes of scanning for the value.

      I've read online that in order to turn the absolute address so that it's a relative address, we need to use another program to determine the base address of the desired process.

      The other way around it is to use pointer scans, which are relative by default, but do take a lot of time.

      I imagine using a program to get the base address method should be fastest, but does anyone else have experience in this matter? Is it a simple matter of using a program to find the base address of the process, and then do some math?

      Thanks in Advance.

    2. #2
      Jr.Coder
      Learning to hack games!
       
      Feeling Normal
       
      voidisalive's Avatar
      Join Date
      May 2012
      Posts
      68
      Thanks (-->)
      1
      Thanks (<--)
      14
      OllyDbg will give you the base address of the Executable Module then you can use that base address + 0x1337 or what ever the address is.

      Greets,

      voidisalive

    3. #3
      Hacker
      Learning to hack games!
       
      Pawning
       
      Fleep's Avatar
      Join Date
      May 2012
      Posts
      626
      Thanks (-->)
      208
      Thanks (<--)
      727
      The way the game does "game.exe" + 0x12356AB you can do exactly the same, all you need is a function no additional maths other than if multi-level pointers are in play.
      I followed this a long time ago and it worked fine, https://forum.cheatengine.org/viewto...fd36a2a413534c I do have a c++ version of it somewhere but I have no clue where it is.
      The second post by pingo should have your answer, just adapt it to whatever language you are dealing with .

      Fleep

    4. #4
      Jr.Coder
      Learning to hack games!
       
      Feeling Normal
       
      voidisalive's Avatar
      Join Date
      May 2012
      Posts
      68
      Thanks (-->)
      1
      Thanks (<--)
      14
      Fleep why go through all that when Olly gives you the Game base? also mepath check here

      https://en.wikipedia.org/wiki/Virtual_address good info on Virtual Address

      I also posted something with relative virtual address on this thread

      https://guidedhacking.com/showthread...=3777#post3777

      Greets,

      voidisalive

    5. #5
      Kim Kong Trasher
      I don't have status.
       
      Raging
       
      c5's Avatar
      Join Date
      Jul 2012
      Location
      Mankei Iland
      Posts
      1,221
      Thanks (-->)
      97
      Thanks (<--)
      491
      PEiD should give you the game base aswell, if I'm correct
      Point Addresses Manual vs Pointer Scans

    6. #6
      Newbie
      Learning to hack games!
       
      Feeling Normal
       
      mepath's Avatar
      Join Date
      Sep 2012
      Posts
      13
      Thanks (-->)
      0
      Thanks (<--)
      0
      Cheats'n'Trainers
      I believe you guys answered my question. I'm trying to avoid coding right now. Building up my basics on finding addresses, getting addresses that are permanent, and then down the line, writing code to do something programmatic with the addresses.

      Reading from everyone's response, it confirms my belief that there's:

      1. The math method: Manually find addresses, use IDA to get base address, then calculate the difference to arrive at the relative address.
      2. There's the write and then use a program method, write a program to read the module's address, and then do method 1.
      3. There's always the pointer scan method. Which is more time consuming, but you wouldn't need a programming background to do it.

      Did I sum it up properly?

    Similar Game Hacker Threads

    1. [Tutorial] Have Cheat Engine Look Up Your Addresses Without Pointer Scans
      By ChrisFayte in forum Cheat The Game
      Replies: 2
      Last Post: 05-17-2016, 07:29 AM
    2. [Help] manual mapping into 64bit Process
      By Loset in forum Hacking Help
      Replies: 4
      Last Post: 03-24-2016, 12:08 PM
    3. [Help] Best way to find base addresses? Pointer scan and AOB sigscan?
      By ranseier in forum Hacking Help
      Replies: 1
      Last Post: 10-04-2015, 01:46 PM
    4. Manual Mapping / Dll Injection
      By R3Z in forum Hacking Help
      Replies: 1
      Last Post: 02-13-2015, 04:47 PM