Solved Cheat Engine & C++

[xkhay]

help me on this please.

there is a tool in Cheat Engine Memory View called "FILL MEMORY"

e.g
Fill Memory from "address1" to "address8000" and fill with "0"

so it makes life easier with that tool.

but how can i make it happen in C++?

i have made some math. what i want to happen is

edit all address from "address1" to "address1+3FFF" = 0 all at once

thank you in advance hoping that you understand problem

 

[Rake]

This is covered in extreme detail in our tutorial

https://guidedhacking.com/threads/how-to-hack-any-game-tutorial-c-external-trainer-part-2.10897/

https://guidedhacking.com/getmodulebase

https://guidedhacking.com/finddma

 

[c5]

What I'd do is go with the regular writeprocessmemory patching and use a loop to fill all the addresses between. Hope it helps

 

[xkhay]

What I'd do is go with the regular writeprocessmemory patching and use a loop to fill all the addresses between. Hope it helps

but it's thousand of them? =/

here are the offsets i want to patch in my game.
actually those are walls/structures addresses.
all of those are need to be set to "0"value for the WALLHACK to work
i managed to make them work with the help if FILL MEMORY of Cheat Engine.
approximately all offsets(wall address) are about 4000+

0x40814
0x40818
0x4081c
0x40820
0x40824
0x40828
0x4082c
0x40830
0x40834
0x40838
0x4083c
0x40840
0x40844
0x40848
0x4084c
0x40850
0x40854 upto 0x80813

i am thinking about memset? can you help me with that?
i have seen a code (leeched) but it's an AutoIT code

Func _setwallhack()
   $wh=_MemoryRead($GameName+0xC7BF80,$proc,"DWORD")+0x40814;
   $test=_MemoryRead($wh,$proc,"DWORD")
   For $i=$wh to $wh+0x3ffff step 4
   	  _MemoryWrite($i,$proc,0,"DWORD")

where "wh is 0x40814" and "wh+03ffff is 0x80813"

hope you understand my explanation. im pretty new at this things. i just learned C++ in your youtube video.

 

[c5]

Yes, I understand

bool patching = true;
addy = 0x40814;

while ( patching ) 
{
writeprocessmemory addy 0 // <- you know what I mean ( patch 0 on the address of addy
addy + 4;
if ( addy == 0x80813  )
{
patching = false;
}
}

I hope you understand what I mean That's the loop I mentioned earlier from the back of my head, ask if you nee more help or I explained badly, I don't have a compiler right now so I can't test anything

 

[xkhay]

so this will edit all 4 bytes address from 0x40814 to 0x80813?
and set it all to "0"?
if yes. then i should hurry home and test it

 

[c5]

so this will edit all 4 bytes address from 0x40814 to 0x80813?
and set it all to "0"?
if yes. then i should hurry home and test it

It should yes All you have to change is the writeprocessmemory function as I provided it with wrong syntax/parameters just to show what I mean

 

[xkhay]

Yes, I understand

bool patching = true;
addy = 0x40814;

while ( patching ) 
{
writeprocessmemory addy 0 // <- you know what I mean ( patch 0 on the address of addy
addy + 4;
if ( addy == 0x80813  )
{
patching = false;
}
}

I hope you understand what I mean That's the loop I mentioned earlier from the back of my head, ask if you nee more help or I explained badly, I don't have a compiler right now so I can't test anything

i says writeprocessmemory is undefined? i think something is missing. sorry =/

 

[xkhay]

By the way here is my Code. this is a DLL Trainer

BOOL APIENTRY DllMain(HMODULE hModule, DWORD ulReason, LPVOID lpReserved)
{
    if (ulReason == DLL_PROCESS_ATTACH)
    {
        CreateThread(0, 0, (LPTHREAD_START_ROUTINE)Start, 0, 0, 0);
    }
    return TRUE;
}

#define WHOFF1		0x40814
#define WHOFF8000      0x80813

void Start()
{
	if (GetKeyState(VK_F5) < 0) // Wallhack
	{
	DWORD WHBase = (DWORD) GetModuleHandleA("GAMENAME.exe");
	DWORD WHADDR1 = WHBase + 0xC7CF90; // nevermind this. its the base address

	*(DWORD*)(*(DWORD*)WHADDR1 + WHOFF1) = 0;

    // so it ends here if i will define all from WHOFF1 to WHOFF8000 it will takes forever =/
		}
}

 

[c5]

https://msdn.microsoft.com/en-us/library/windows/desktop/ms681674(v=vs.85).aspx

BYTE ZERO[1] = {0x00};
WriteProcessMemory(hProcess, (PBYTE) addy, &ZERO, 2, 0);

^ From the back of my head again

 

[xkhay]

thank you for the response.
another question?


here's my base pointer address

DWORD ClientBase = (DWORD) GetModuleHandleA("GameClient.exe");
DWORD ClientOffset = ClientBase + 0xC7CF90;
// so this makes GameClient+C7CF90 in CheatEngine Pointer.

i used to use this code when editing memory addresses

*(DWORD*)(*(DWORD*)ClientOffset + 0x40814 ) = 0;

how can i add this another Offset

0x40814

then make is as one so i can add this as my addy below. Thank you in advance

BYTE ZERO[1] = {0x00};
WriteProcessMemory(hProcess, (PBYTE) addy, &ZERO, 2, 0);

 

[c5]

If I understand correctly then you want to do something like that:

BYTE ZERO[1] = {0x0};
DWORD ClientBase = (DWORD) GetModuleHandleA("GameClient.exe");
DWORD ClientOffset = ClientBase + 0xC7CF90;

int offset2 = 0x40814; // <- thats the offset you will be changing later with the while ( patching ) loop I provided you with earlier 
int addy = clientOffset + offset2;

WriteProcessMemory(hProcess, (PBYTE) addy, &ZERO, 2, 0);

I hope that's helpful And I hope I didn't mess something up or did any stupdi mistakes hehe

 

[c5]

So to sum it up, it should work like this:

BYTE ZERO[1] = {0x0};

////////////////////////////////////////////////////////////////////////////////

DWORD ClientBase = (DWORD) GetModuleHandleA("GameClient.exe");
DWORD ClientOffset = ClientBase + 0xC7CF90;

int offset2 = 0x40814; // <- thats the offset you will be changing later with the while ( patching ) loop I provided you with earlier 
int addy = clientOffset + offset2;

bool patching = true;

while ( patching ) 
{
WriteProcessMemory(hProcess, (PBYTE) addy, &ZERO, 2, 0);
addy + 4;
if ( addy == ( clientOffset + 0x80813 ))
{
patching = false;
}
}

Let me know if it won't work and we'll figure it out

 

[xkhay]

i received 2 errors

BYTE ZERO[1] = {0x0};

////////////////////////////////////////////////////////////////////////////////

DWORD ClientBase = (DWORD) GetModuleHandleA("GameClient.exe");
DWORD ClientOffset = ClientBase + 0xC7CF90;
int offset2 = 0x40814; // <- thats the offset you will be changing later with the while ( patching ) loop I provided you with earlier 
int addy = ClientOffset + offset2;
bool patching = true;

while ( patching ) 
{


WriteProcessMemory(hProcess, (PBYTE) addy, &ZERO, 2, 0);
[code=cpp]: error C2065: 'hProcess' : undeclared identifier

addy + 4;

: warning C4552: '+' : operator has no effect; expected operator with side-effect

if ( addy == ( ClientOffset + 0x80813 ))
{
patching = false;
}
}
[/code]



by the way this is a DLL injected Trainer i am making
again this is my previous code.Thank You

BOOL APIENTRY DllMain(HMODULE hModule, DWORD ulReason, LPVOID lpReserved)
{
    if (ulReason == DLL_PROCESS_ATTACH)
    {
        CreateThread(0, 0, (LPTHREAD_START_ROUTINE)Start, 0, 0, 0);
    }
    return TRUE;
}

#define WHOFF1		0x40814
#define WHOFF8000      0x80813

void Start()
{
	if (GetKeyState(VK_F5) < 0) // Wallhack
	{
	DWORD WHBase = (DWORD) GetModuleHandleA("GAMENAME.exe");
	DWORD WHADDR1 = WHBase + 0xC7CF90; // nevermind this. its the base address

	*(DWORD*)(*(DWORD*)WHADDR1 + WHOFF1) = 0;

    // so it ends here if i will define all from WHOFF1 to WHOFF8000 it will takes forever =/
		}
}

 

[c5]

You get those errors because hProcess doesn't mean anything

Add this before while loop for example:

HWND hWnd;
DWORD dwID;
HANDLE hProcess

GetWindowThreadProcessId(hWnd, &dwID);
hProcess = OpenProcess(PROCESS_ALL_ACCESS, NULL, dwID);

It should give you the handle to the program it's injected into, again from the back of my head :S

 

[xkhay]

things i do in Cheat Engine and i want to make it work in C++
IMAGE:

 

[xkhay]

addy + 4;

: warning C4552: '+' : operator has no effect; expected operator with side-effect

GetWindowThreadProcessId(hWnd, &dwID);

: warning C4700: uninitialized local variable 'hWnd' used


sorry but i think my problem cannot be solved =/

 

[c5]

Everything can be solved, I just realized I messed up at some points to, I've got a compiler at my hand right now, I'll get you the code asap

 

[xkhay]

ok. have you seen the image i uploaded? it easy in C.E but i`m having a hard time in a DLL Trainer in C++

 

[c5]

Yeah i can see the image I know what you meant. Try this now, it should do, just replace the window/process names:

DWORD ClientBase = (DWORD) GetModuleHandleA("GameClient.exe");
DWORD ClientOffset = ClientBase + 0xC7CF90;

HWND hWnd;
DWORD dwID;
HANDLE hProcess;
hWnd = FindWindow(NULL, L"GameCliens windowname");


GetWindowThreadProcessId(hWnd, &dwID);
hProcess = OpenProcess(PROCESS_ALL_ACCESS, NULL, dwID);
	
int toPatch = 0;
int offset1 = 0x40814;
int addy = ClientOffset + offset1;

bool patching = true;

while ( patching ) 
{

WriteProcessMemory(hProcess,(LPVOID)(addy), &toPatch, 4, NULL);
addy = addy + 0x4;

if ( addy == ( ClientOffset + 0x80813 ))
	{
	patching = false;
	}

}

 

[xkhay]

it hooks but i guess we had a wrong base.

for the record i tried this base and it works, but changes only 1 address. like my original code

DWORD ClientBase = (DWORD) GetModuleHandleA("GAMENAME.exe");
DWORD ClientOffset = ClientBase + 0xC7CF90;
DWORD GAMEBase = *(DWORD*)(ClientOffset);
DWORD addy = (DWORD)(Base+0x40814);

can you incorporate it to your code?


bacause this line confuse me.

if ( addy == ( ClientOffset + 0x80813 ))