73
"Infinite Health + Breath Underwater"
80000008
Auto Assembler Script
[ENABLE]
aobscan(InfiniteHealth,D9 40 70 D9 EE 33 C0 DF F1 DD D8 7A 03 0F 92 C0 85 C0 0F 84 83)
aobscan(UnlimitedSwimUnderWater,D9 5F 7C EB 34)
alloc(HealthEdit,$30)
label(BreathEdit)
label(Return)
label(GoBack)
HealthEdit:
fld dword ptr [eax+70]
mov [eax+70],(float)100
fldz
jmp Return
InfiniteHealth:
jmp HealthEdit
Return:
registersymbol(InfiniteHealth)
BreathEdit:
fstp dword ptr [edi+7C]
mov [edi+7C],(float)1.0
jmp GoBack
UnlimitedSwimUnderWater:
jmp BreathEdit
GoBack:
registersymbol(UnlimitedSwimUnderWater)
[DISABLE]
InfiniteHealth:
db D9 40 70 D9 EE
unregistersymbol(InfiniteHealth)
dealloc(HealthEdit)
UnlimitedSwimUnderWater:
db D9 5F 7C EB 34
unregistersymbol(UnlimitedSwimUnderWater)
dealloc(BreathEdit)
////////////////////////////////////////////////////////////
// InfiniteHealth //
////////////////////////////////////////////////////////////
{
// ORIGINAL CODE - INJECTION POINT: 04904AA1
04904A76: 0F B6 05 1C 01 AC 11 - movzx eax,byte ptr [11AC011C]
04904A7D: 85 C0 - test eax,eax
04904A7F: 74 07 - je 04904A88
04904A81: C6 87 94 00 00 00 01 - mov byte ptr [edi+00000094],01
04904A88: 0F B6 87 94 00 00 00 - movzx eax,byte ptr [edi+00000094]
04904A8F: 85 C0 - test eax,eax
04904A91: 0F 84 AC 00 00 00 - je 04904B43
04904A97: 8B 05 EC 49 54 03 - mov eax,[035449EC]
04904A9D: 8B C8 - mov ecx,eax
04904A9F: 39 09 - cmp [ecx],ecx
// ---------- INJECTING HERE ----------
04904AA1: D9 40 70 - fld dword ptr [eax+70]
04904AA4: D9 EE - fldz
// ---------- DONE INJECTING ----------
04904AA6: 33 C0 - xor eax,eax
04904AA8: DF F1 - fcomip st(0),st(1)
04904AAA: DD D8 - fstp st(0)
04904AAC: 7A 03 - jp 04904AB1
04904AAE: 0F 92 C0 - setb al
04904AB1: 85 C0 - test eax,eax
04904AB3: 0F 84 83 00 00 00 - je 04904B3C
04904AB9: 0F B6 87 8C 00 00 00 - movzx eax,byte ptr [edi+0000008C]
04904AC0: 85 C0 - test eax,eax
04904AC2: 0F 85 7B 00 00 00 - jne 04904B43
}
////////////////////////////////////////////////////////////
// UnlimitedSwimUnderWater //
////////////////////////////////////////////////////////////
{
// ORIGINAL CODE - INJECTION POINT: 04877A9E
04877A7F: DE C9 - fmulp st(1),st(0)
04877A81: 83 EC 04 - sub esp,04
04877A84: 83 EC 04 - sub esp,04
04877A87: D9 1C 24 - fstp dword ptr [esp]
04877A8A: 83 EC 04 - sub esp,04
04877A8D: D9 1C 24 - fstp dword ptr [esp]
04877A90: 83 EC 04 - sub esp,04
04877A93: D9 1C 24 - fstp dword ptr [esp]
04877A96: E8 D5 FB FD FF - call 04857670
04877A9B: 83 C4 10 - add esp,10
// ---------- INJECTING HERE ----------
04877A9E: D9 5F 7C - fstp dword ptr [edi+7C]
04877AA1: EB 34 - jmp 04877AD7
// ---------- DONE INJECTING ----------
04877AA3: D9 47 7C - fld dword ptr [edi+7C]
04877AA6: D9 E8 - fld1
04877AA8: D9 05 D0 BD D2 0E - fld dword ptr [0ED2BDD0]
04877AAE: B8 10 4A 29 04 - mov eax,04294A10
04877AB3: D9 00 - fld dword ptr [eax]
04877AB5: DE C9 - fmulp st(1),st(0)
04877AB7: 83 EC 04 - sub esp,04
04877ABA: 83 EC 04 - sub esp,04
04877ABD: D9 1C 24 - fstp dword ptr [esp]
04877AC0: 83 EC 04 - sub esp,04
}
2
"No Reload + Can Shoot By Holding Mouse Button"
80000008
Auto Assembler Script
[ENABLE]
aobscan(NoReload,D9 58 4C 0F B6 45 0C 85 C0 74 06)
aobscan(HoldToShoot,0F 84 58 0D 00 00 8B)
alloc(NoReloadEdit,$30)
label(ShootEdit)
label(Return)
label(GoBack)
NoReloadEdit:
fstp dword ptr [eax+4C]
mov [eax+4C],2
movzx eax,byte ptr [ebp+0C]
jmp Return
NoReload:
jmp NoReloadEdit
nop
nop
Return:
registersymbol(NoReload)
ShootEdit:
//je 048A8B3F
jmp GoBack
HoldToShoot:
jmp ShootEdit
nop
GoBack:
registersymbol(HoldToShoot)
[DISABLE]
NoReload:
db D9 58 4C 0F B6 45 0C
unregistersymbol(NoReload)
dealloc(NoReloadEdit)
HoldToShoot:
db 0F 84 58 0D 00 00
unregistersymbol(HoldToShoot)
dealloc(ShootEdit)
////////////////////////////////////////////////////////////
// NoReload //
////////////////////////////////////////////////////////////
{
// ORIGINAL CODE - INJECTION POINT: 048B4935
048B4917: 0F B6 45 0C - movzx eax,byte ptr [ebp+0C]
048B491B: 85 C0 - test eax,eax
048B491D: 74 07 - je 048B4926
048B491F: D9 EE - fldz
048B4921: DD 5D E8 - fstp qword ptr [ebp-18]
048B4924: EB 09 - jmp 048B492F
048B4926: D9 05 70 B9 E0 0E - fld dword ptr [0EE0B970]
048B492C: DD 5D E8 - fstp qword ptr [ebp-18]
048B492F: DD 45 E8 - fld qword ptr [ebp-18]
048B4932: 8B 45 F4 - mov eax,[ebp-0C]
// ---------- INJECTING HERE ----------
048B4935: D9 58 4C - fstp dword ptr [eax+4C]
048B4938: 0F B6 45 0C - movzx eax,byte ptr [ebp+0C]
// ---------- DONE INJECTING ----------
048B493C: 85 C0 - test eax,eax
048B493E: 74 06 - je 048B4946
048B4940: 8B 46 3C - mov eax,[esi+3C]
048B4943: 89 46 44 - mov [esi+44],eax
048B4946: 8D 65 FC - lea esp,[ebp-04]
048B4949: 5E - pop esi
048B494A: C9 - leave
048B494B: C3 - ret
048B494C: 00 00 - add [eax],al
048B494E: 00 00 - add [eax],al
}
////////////////////////////////////////////////////////////
// HoldToShoot //
////////////////////////////////////////////////////////////
{
// ORIGINAL CODE - INJECTION POINT: 048A7DE1
048A7DA8: C7 85 E0 FE FF FF 00 00 00 00 - mov [ebp-00000120],00000000
048A7DB2: C7 85 E4 FE FF FF 00 00 00 00 - mov [ebp-0000011C],00000000
048A7DBC: C7 85 E8 FE FF FF 00 00 00 00 - mov [ebp-00000118],00000000
048A7DC6: C7 85 EC FE FF FF 00 00 00 00 - mov [ebp-00000114],00000000
048A7DD0: 8B 45 08 - mov eax,[ebp+08]
048A7DD3: 0F B6 40 40 - movzx eax,byte ptr [eax+40]
048A7DD7: 85 C0 - test eax,eax
048A7DD9: 75 0C - jne 048A7DE7
048A7DDB: 0F B6 45 0C - movzx eax,byte ptr [ebp+0C]
048A7DDF: 85 C0 - test eax,eax
// ---------- INJECTING HERE ----------
048A7DE1: 0F 84 58 0D 00 00 - je 048A8B3F
// ---------- DONE INJECTING ----------
048A7DE7: 8B 45 08 - mov eax,[ebp+08]
048A7DEA: 8B 40 34 - mov eax,[eax+34]
048A7DED: 85 C0 - test eax,eax
048A7DEF: 0F 84 D4 00 00 00 - je 048A7EC9
048A7DF5: B8 00 4A 29 04 - mov eax,04294A00
048A7DFA: D9 00 - fld dword ptr [eax]
048A7DFC: 8B 45 08 - mov eax,[ebp+08]
048A7DFF: D9 40 48 - fld dword ptr [eax+48]
048A7E02: 8B 40 34 - mov eax,[eax+34]
048A7E05: D9 40 1C - fld dword ptr [eax+1C]
}
1
"Unlimited Jumping - Can Jump In The Air"
80000008
Auto Assembler Script
[ENABLE]
aobscan(InstantJump,88 46 40 C7 85 78 FD FF FF 00 00 00 00)
alloc(JumpEdit,$30)
label(Return)
JumpEdit:
mov [esi+40],al
mov [esi+40],1
mov [ebp-00000288],00000000
jmp Return
InstantJump:
jmp JumpEdit
nop
nop
nop
nop
nop
nop
nop
nop
Return:
registersymbol(InstantJump)
[DISABLE]
InstantJump:
db 88 46 40 C7 85 78 FD FF FF 00 00 00 00
unregistersymbol(InstantJump)
dealloc(JumpEdit)
{
// ORIGINAL CODE - INJECTION POINT: 048D85F4
048D85DC: 7A 12 - jp 048D85F0
048D85DE: 73 10 - jae 048D85F0
048D85E0: 0F B6 47 60 - movzx eax,byte ptr [edi+60]
048D85E4: 85 C0 - test eax,eax
048D85E6: 0F 94 C0 - sete al
048D85E9: 0F B6 C0 - movzx eax,al
048D85EC: 8B D8 - mov ebx,eax
048D85EE: EB 02 - jmp 048D85F2
048D85F0: 33 DB - xor ebx,ebx
048D85F2: 8B C3 - mov eax,ebx
// ---------- INJECTING HERE ----------
048D85F4: 88 46 40 - mov [esi+40],al
048D85F7: C7 85 78 FD FF FF 00 00 00 00 - mov [ebp-00000288],00000000
// ---------- DONE INJECTING ----------
048D8601: D9 85 9C FD FF FF - fld dword ptr [ebp-00000264]
048D8607: D9 85 94 FD FF FF - fld dword ptr [ebp-0000026C]
048D860D: DF F1 - fcomip st(0),st(1)
048D860F: DD D8 - fstp st(0)
048D8611: 7A 06 - jp 048D8619
048D8613: 0F 84 89 01 00 00 - je 048D87A2
048D8619: D9 05 40 0B 29 0B - fld dword ptr [0B290B40]
048D861F: DD 9D 30 FD FF FF - fstp qword ptr [ebp-000002D0]
048D8625: D9 EE - fldz
048D8627: DD 9D 28 FD FF FF - fstp qword ptr [ebp-000002D8]
}
78
"Unlimited Materials + Minerals"
80000008
Auto Assembler Script
[ENABLE]
aobscan(IncomeResource,74 0E 8B 46 0C 03 45 10 89 46 0C E9 B1 00 00 00)
aobscan(SpendingResource,66 00 00 00 8B 46 0C 2B 45 10 89 46 0C 0F B6 45 14)
alloc(IncomeEdit,$30)
alloc(SpendingEdit,$30)
label(return)
label(goback)
IncomeEdit:
mov eax,[esi+0C]
mov [ebp+10],9
add eax,[ebp+10]
jmp return
IncomeResource+02:
jmp IncomeEdit
nop
return:
registersymbol(IncomeResource)
SpendingEdit:
mov eax,[esi+0C]
mov [ebp+10],0
sub eax,[ebp+10]
jmp goback
SpendingResource+04:
jmp SpendingEdit
nop
goback:
registersymbol(SpendingResource)
[DISABLE]
IncomeResource:
db 8B 46 0C 03 45 10
unregistersymbol(IncomeResource)
dealloc(IncomeEdit)
SpendingResource+04:
db 8B 46 0C 2B 45 10
unregistersymbol(SpendingResource)
dealloc(SpendingEdit)
////////////////////////////////////////////////////////////
// IncomeResource //
////////////////////////////////////////////////////////////
{
// ORIGINAL CODE - INJECTION POINT: 0489588A
04895870: 8B 5D 08 - mov ebx,[ebp+08]
04895873: 83 EC 08 - sub esp,08
04895876: FF 75 0C - push [ebp+0C]
04895879: 53 - push ebx
0489587A: E8 11 01 00 00 - call 04895990
0489587F: 83 C4 10 - add esp,10
04895882: 8B F0 - mov esi,eax
04895884: 8B C6 - mov eax,esi
04895886: 85 C0 - test eax,eax
04895888: 74 0E - je 04895898
// ---------- INJECTING HERE ----------
0489588A: 8B 46 0C - mov eax,[esi+0C]
0489588D: 03 45 10 - add eax,[ebp+10]
// ---------- DONE INJECTING ----------
04895890: 89 46 0C - mov [esi+0C],eax
04895893: E9 B1 00 00 00 - jmp 04895949
04895898: D9 E8 - fld1
0489589A: DD 5D E8 - fstp qword ptr [ebp-18]
0489589D: 83 EC 0C - sub esp,0C
048958A0: 68 B0 B5 B5 0E - push 0EB5B5B0
048958A5: E8 06 AB F6 FF - call 048003B0
048958AA: 83 C4 10 - add esp,10
048958AD: DD 45 E8 - fld qword ptr [ebp-18]
048958B0: 83 EC 04 - sub esp,04
}
////////////////////////////////////////////////////////////
// SpendingResource //
////////////////////////////////////////////////////////////
{
// ORIGINAL CODE - INJECTION POINT: 0485CAFF
0485CAE5: 83 C4 10 - add esp,10
0485CAE8: 8B F0 - mov esi,eax
0485CAEA: 8B C6 - mov eax,esi
0485CAEC: 85 C0 - test eax,eax
0485CAEE: 74 08 - je 0485CAF8
0485CAF0: 8B 46 0C - mov eax,[esi+0C]
0485CAF3: 3B 45 10 - cmp eax,[ebp+10]
0485CAF6: 7D 07 - jnl 0485CAFF
0485CAF8: 33 C0 - xor eax,eax
0485CAFA: E9 66 00 00 00 - jmp 0485CB65
// ---------- INJECTING HERE ----------
0485CAFF: 8B 46 0C - mov eax,[esi+0C]
0485CB02: 2B 45 10 - sub eax,[ebp+10]
// ---------- DONE INJECTING ----------
0485CB05: 89 46 0C - mov [esi+0C],eax
0485CB08: 0F B6 45 14 - movzx eax,byte ptr [ebp+14]
0485CB0C: 85 C0 - test eax,eax
0485CB0E: 74 2B - je 0485CB3B
0485CB10: 8B 46 0C - mov eax,[esi+0C]
0485CB13: 85 C0 - test eax,eax
0485CB15: 75 24 - jne 0485CB3B
0485CB17: 83 EC 08 - sub esp,08
0485CB1A: 56 - push esi
0485CB1B: FF 75 08 - push [ebp+08]
}
4
"No Monsters - You Are Alone"
80000008
Auto Assembler Script
[ENABLE]
aobscan(NoMonsters,00 00 00 8B 45 08 D9 40 70 D9 EE)
alloc(NoMonstersEdit,$30)
label(Return)
NoMonstersEdit:
fld dword ptr [eax+70]
mov [eax+70],0
fldz
jmp Return
NoMonsters+06:
jmp NoMonstersEdit
Return:
registersymbol(NoMonsters)
[DISABLE]
NoMonsters+06:
db D9 40 70 D9 EE
unregistersymbol(NoMonsters)
dealloc(NoMonstersEdit)
{
// ORIGINAL CODE - INJECTION POINT: 0483A397
0483A36E: 8B 85 FC FE FF FF - mov eax,[ebp-00000104]
0483A374: 89 04 24 - mov [esp],eax
0483A377: 8B 85 00 FF FF FF - mov eax,[ebp-00000100]
0483A37D: 89 44 24 04 - mov [esp+04],eax
0483A381: E8 32 EA FF FF - call 04838DB8
0483A386: 83 C4 10 - add esp,10
0483A389: 8B C8 - mov ecx,eax
0483A38B: 8B 45 08 - mov eax,[ebp+08]
0483A38E: 88 88 A4 00 00 00 - mov [eax+000000A4],cl
0483A394: 8B 45 08 - mov eax,[ebp+08]
// ---------- INJECTING HERE ----------
0483A397: D9 40 70 - fld dword ptr [eax+70]
0483A39A: D9 EE - fldz
// ---------- DONE INJECTING ----------
0483A39C: 33 C0 - xor eax,eax
0483A39E: DF F1 - fcomip st(0),st(1)
0483A3A0: DD D8 - fstp st(0)
0483A3A2: 7A 03 - jp 0483A3A7
0483A3A4: 0F 92 C0 - setb al
0483A3A7: 85 C0 - test eax,eax
0483A3A9: 0F 84 FD 06 00 00 - je 0483AAAC
0483A3AF: 83 EC 0C - sub esp,0C
0483A3B2: FF 75 08 - push [ebp+08]
0483A3B5: 8B 45 08 - mov eax,[ebp+08]
}
61
"Can Fly Around By Holding Mouse Button"
80000008
Auto Assembler Script
[ENABLE]
aobscan(Fly,D9 58 48 8B 40 34)
alloc(FlyEdit,$30)
label(return)
FlyEdit:
fstp dword ptr [eax+48]
mov [eax+48],0
mov eax,[eax+34]
jmp return
Fly:
jmp FlyEdit
nop
return:
registersymbol(Fly)
[DISABLE]
Fly:
db D9 58 48 8B 40 34
unregistersymbol(Fly)
dealloc(FlyEdit)
{
// ORIGINAL CODE - INJECTION POINT: 048A8BCC
048A8BAE: 8B 40 3C - mov eax,[eax+3C]
048A8BB1: 3D FF FF FF FF - cmp eax,FFFFFFFF
048A8BB6: 74 0A - je 048A8BC2
048A8BB8: 8B 45 08 - mov eax,[ebp+08]
048A8BBB: 8B 48 44 - mov ecx,[eax+44]
048A8BBE: 49 - dec ecx
048A8BBF: 89 48 44 - mov [eax+44],ecx
048A8BC2: B8 00 4A 23 04 - mov eax,04234A00
048A8BC7: D9 00 - fld dword ptr [eax]
048A8BC9: 8B 45 08 - mov eax,[ebp+08]
// ---------- INJECTING HERE ----------
048A8BCC: D9 58 48 - fstp dword ptr [eax+48]
048A8BCF: 8B 40 34 - mov eax,[eax+34]
// ---------- DONE INJECTING ----------
048A8BD2: 8B 40 08 - mov eax,[eax+08]
048A8BD5: 85 C0 - test eax,eax
048A8BD7: 0F 84 E2 00 00 00 - je 048A8CBF
048A8BDD: C7 85 D4 FE FF FF 00 00 00 00 - mov [ebp-0000012C],00000000
048A8BE7: E9 BE 00 00 00 - jmp 048A8CAA
048A8BEC: 8D 64 24 00 - lea esp,[esp+00]
048A8BF0: B8 10 1F 23 04 - mov eax,04231F10
048A8BF5: 89 85 B4 FE FF FF - mov [ebp-0000014C],eax
048A8BFB: 8B 45 08 - mov eax,[ebp+08]
048A8BFE: 8B 40 34 - mov eax,[eax+34]
}
17
">> Exact Values"
FF0000
1
48
"Health"
80000008
Float
"mono.dll"+002090DC
70
68
614
8C
570
20
"Ammo"
80000008
4 Bytes
"steam_api.dll"+00A7AFF8
44
8
10
C0
33C
58
"X = Left // Right"
80000008
Float
"steam_api.dll"+00A7AFF8
10
8
2FC
3A4
468
Set Value
71
66
512
0
57
"Y = Up // Down"
80000008
Float
"steam_api.dll"+00A7AFF8
14
8
2FC
1B4
4BC
Set Value
71
66
741
0
74
"Press G+B To Teleport Back To Your Crashed Space Ship"
0000FF
1
Change of fld dword ptr [eax+70]
048D6773
0
00
8B
C8
39
09
CC
40
70
D9
EE
33
C0
DF
Change of fld dword ptr [edi+70]
048DA400
0
FF
00
00
00
00
CC
47
70
D9
EE
33
C0
DF
Change of fld dword ptr [edi+70]
048DA582
0
87
9C
00
00
00
CC
47
70
D9
EE
33
C0
DF
Change of fld dword ptr [eax+70]
048DDB76
0
03
8B
C8
39
09
CC
40
70
D9
EE
33
C0
DF
Change of fld dword ptr [eax+70]
048E09D5
0
03
8B
C8
39
09
CC
40
70
D9
5D
F0
D9
45
Change of fld dword ptr [eax+70]
048F14D0
0
03
8B
C8
39
09
CC
40
70
D9
EE
33
C0
DF
Change of fld dword ptr [eax+70]
048FDAE6
0
03
8B
C8
39
09
CC
40
70
D9
9D
40
FA
FF
Change of fld dword ptr [ecx+70]
049002DA
0
03
8B
D1
39
12
CC
41
70
D9
9D
F8
FE
FF
Change of fld dword ptr [eax+70]
049003D5
0
03
8B
C8
39
09
CC
40
70
D9
9D
F8
FE
FF
Change of fld dword ptr [eax+70]
049048A8
0
03
8B
C8
39
09
CC
40
70
D9
EE
33
C0
DF
Change of fld dword ptr [eax+70]
04904AA1
0
03
8B
C8
39
09
CC
40
70
D9
EE
33
C0
DF
Change of fld dword ptr [eax+70]
0483FF92
0
04
8B
C8
39
09
CC
40
70
D9
5D
EC
D9
45
Change of fld dword ptr [eax+70]
048209D5
0
04
8B
C8
39
09
CC
40
70
D9
5D
F0
D9
45
Change of fld dword ptr [eax+70]
0481DB76
0
04
8B
C8
39
09
CC
40
70
D9
EE
33
C0
DF
Change of fld dword ptr [eax+70]
048439C8
0
04
8B
C8
39
09
CC
40
70
D9
EE
33
C0
DF
Change of fld dword ptr [eax+70]
04843BC1
0
04
8B
C8
39
09
CC
40
70
D9
EE
33
C0
DF
INJECT
04843BC1
InfiniteHealth
048C3F59
UnlimitedSwimUnderWater
04898D4E
NoReload
048CB755
HoldToShoot
048C81E9
InstantJump
04898604
IncomeResource
048C57D8
SpendingResource
048CBED3