Outdated OLLYDBG Tutorial - How to Hack Any Game With a Debugger

  • WARNING: You are viewing the Legacy Fleep section which contains old and badly explained tutorials. You should not use these old tutorials. Our best, new tutorials are posted here and here.
Hexui Undetected CSGO Cheats Sinkicheat PUBG Cheat
Status
Not open for further replies.

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
So here it is the ollydbg tutorial you guys requested a while back, I hope this helps you and makes it easier for you to find the addresses and instructions you want in whatever game you are hacking.

These tutorials are old, you should do the new ones instead: Guide - START HERE Beginners Guide to Learning Game Hacking








Here are the guidelines that I follow every time I Wanna find a series of addresses and instructions.
C++:
Step one – find address in cheat engine
step two – find what rights to that address
step three – go on olly search for address the writes that
Step 3.5 – by setting hardware breakpoints find where
the beginning and end of the code is regarding the function you were looking for
e.g. firing gun, this way we know where to stop searching
step four – reverse through all the jumps jmp e.g. JNZ becomes JE
step five – write comments and test a command at a time
step six –if the game crashes then simply return to that address leaving a comment
saying nop crashes or reverse crashes
Step seven – you will have to restart ollydbg and the game every time, it can be tedious

comments are very important! always put them in to make sure you know where you were last

Here are some guidelines in detail

Order in which instructions should be modified:
1ST all jump commands should be reversed
2ND all calls should be NOPED
If you still haven't found our function that we keep searching in
more complex instructions
3RD we now start noping any instructions we haven't tried yet e.g. MOV BYTE PTR DS:[EAX+218],BL
MOV BYTE PTR DS:[EAX+218],BL because because no actual instruction is getting copied
4TH we leave to the end the most likely ones to crash
E.g. MOV EAX,DWORD PTR DS:[ESI+8]
ADD EAX,4 these instructions are very prone to crash
And that's why we leave them until the end
If an instruction like this is NOPED then we may have to NOP
several others above or below it usually until we found the next call
this is because those instructions may use a value stored within the instruction
that we NOPED this may take many tries and crashes

Reversing of JMP'S
JG = JL

JLE = JG

JE = JNZ


This is mostly about trial and error

Instructions like these should be ignored(unless they are part of a group of instructions):
CMP – stands for compare, this is usually seen before jumps
LEA – is used for more advanced calculations
Pop, push and retn don't usually have much to do with recoil, ammo and other info we usually
look for.
Int's are usually quite irrelevant also

Hope that helps out

Fleep
Here is the tutorial some people were having problems with not finding certain addresses so I've uploaded this small tutorial to try and help them out, I hope this made things clearer and I didn't ramble too much.
 
Last edited:

ivisi

Newbie
Oct 13, 2012
2
212
0
Hello, I don't know if I should reply here on or the YT Video, but I wanted you to realize: If you NOP the CALL EDX its done too, I mean it doesn't matter if you initialize the EDX but just don't call it. I don't know if I made my self clear but it comes down to: Just NOP CALL EDX (0x0045B717)
Tip: You could just do Right Click > Undo Selection (Instead of restarting.)
Regards
 
Last edited:

maymonaise

Coder
Meme Tier VIP
Nov 4, 2012
210
2,013
0
Thanks Fleep, I was actually really confused about
how to use this, fifteen to twenty minutes ago.
 

zars15

Newbie
Dec 23, 2012
1
172
0
I have this really nooby question. How could you make so you can turn on rapid fire/no recoil through trainer? Like I've been checking out your source for changing simple addresses, but I have no idea how you can use information of addresses from ollydbg, and implement it in code.


Edit: Never mind.. With the DLL is what i need to get that job done.
 
Last edited:

masterit146

Newbie
Full Member
Jul 23, 2013
7
192
0
Hello Fleep. You can sent for me your OLLYDBG Full of you ? My OLLYBDG not have Pointer-> Exc,,,,......Please
 

noobhacky

Jr.Coder
Full Member
Nobleman
Dec 16, 2012
71
608
0
Thanks fleep. This helps me alot to get started !!

Btw Fleep is using v.1.0 so I recommend all new commers to download the version he is using since the other versions are very unstable ://
 

Impala

Newbie
Full Member
Nov 27, 2017
9
22
0
So here it is the ollydbg tutorial you guys requested a while back, I hope this helps you and makes it easier for you to find the addresses and instructions you want in whatever game you are hacking.






Here are the guidelines that I follow every time I Wanna find a series of addresses and instructions.
C++:
Step one – find address in cheat engine
step two – find what rights to that address 
step three – go on olly search for address the writes that
Step 3.5 – by setting hardware breakpoints find where
the beginning and end of the code is regarding the function you were looking for
 e.g. firing gun, this way we know where to stop searching
step four – reverse through all the jumps jmp e.g. JNZ becomes JE
step five – write comments and test a command at a time
step six –if the game crashes then simply return to that address leaving a comment
 saying nop crashes or reverse crashes
Step seven – you will have to restart ollydbg and the game every time, it can be tedious

comments are very important! always put them in to make sure you know where you were last

Here are some guidelines in detail

Order in which instructions should be modified:
1ST all jump commands should be reversed
2ND all calls should be NOPED
If you still haven't found our function that we keep searching in
 more complex instructions
3RD we now start noping any instructions we haven't tried yet e.g. MOV BYTE PTR DS:[EAX+218],BL
MOV BYTE PTR DS:[EAX+218],BL because because no actual instruction is getting copied
4TH we leave to the end the most likely ones to crash
E.g. MOV EAX,DWORD PTR DS:[ESI+8]
ADD EAX,4 these instructions are very prone to crash
And that's why we leave them until the end 
If an instruction like this is NOPED then we may have to NOP
several others above or below it usually until we found the next call
this is because those instructions may use a value stored within the instruction
that we NOPED this may take many tries and crashes

Reversing of JMP'S
JG = JL

JLE = JG

JE = JNZ


This is mostly about trial and error

Instructions like these should be ignored(unless they are part of a group of instructions):
CMP – stands for compare, this is usually seen before jumps
LEA – is used for more advanced calculations
Pop, push and retn don't usually have much to do with recoil, ammo and other info we usually
look for.
Int's are usually quite irrelevant also

Hope that helps out

Fleep
Here is the tutorial some people were having problems with not finding certain addresses so I've uploaded this small tutorial to try and help them out, I hope this made things clearer and I didn't ramble too much.
I Need Help: Error: Unable to attach to process 'gta_sa'... I Can't attach gta_sa.exe ..
 

Rake

Cesspool Admin
Administrator
Jan 21, 2014
12,380
78,998
2,414
already working as an administrator,how can i bypass anti-debug protection?
You have to learn reverse engineering better and then reverse engineer the anti-cheat and bypass whatever detection mechanism they have in place. If you're new to game hacking and have less than 1 year experience developing cheats then IMO you shouldn't waste your time until you're ready
 
Status
Not open for further replies.
Attention! Before you post:

Read the How to Ask Questions Guide
99% of questions are answered in the Beginner's Guide, do it before asking a question.

No Hack Requests. Post in the correct section.  Search the forum first. Read the rules.

How to make a good post:

  • Fill out the form correctly
  • Tell us the game name & coding language
  • Post everything we need to know to help you
  • Ask specific questions, be descriptive
  • Post errors, line numbers & screenshots
  • Post code snippets using code tags
  • If it's a large project, zip it up and attach it

If you do not comply, your post may be deleted.  We want to help, please make a good post and we will do our best to help you.

Community Mods