0
"READ ME :)"
Auto Assembler Script
{
Game Name : Game Name
Author : Vee_
Script Version : 1.0
Date : 2017-07-20
Description : Just Read Me From Table Extras :)
}
[enable]
define(test,LUDO)
{$LUA}
getMainForm().CommentButton.doClick()
{$ASM}
[disable]
1666
"STN"
FF00FF
1
1638
"Player Scripts"
Auto Assembler Script
[ENABLE]
aobscanmodule(player,DXMD.exe,F3 0F 10 40 1C 48 83 C4) //Worked
alloc(newmem,$1000,player)
label(code)
label(return)
label(health_ptr)
newmem:
push rbx
mov rbx,health_ptr
pop qword ptr [rbx]
code:
movss xmm0,[rax+1C]
jmp return
health_ptr:
dq 0
player:
jmp newmem
return:
registersymbol(player)
aobscanmodule(player_status,DXMD.exe,0F 2F 73 44 40 0F 96 *6) //Fucked!
//aobscan(player_status_fixed,0F 2F 73 44 FF 25 00 00 00 00 2F 01 7E 40 01 00 00 00)
alloc(newmem2,$1000,player_status)
//alloc(newmem,$1000,025D0035) // Just in case
label(code2)
label(return2)
label(health)
label(energy)
newmem2:
mov rcx,health_ptr
cmp [rcx],rbx
jne @f
mov rcx,health
cmp byte ptr [rcx],1
jne code2
movss [rbx+44],xmm6
jmp code2
@@:
mov rcx,energy
cmp byte ptr [rcx],1
jne code2
movss [rbx+44],xmm6
code2:
comiss xmm6,[rbx+44]
setbe sil
// jmp DXMD.exe+7E012F
jmp return2
health:
db 0
energy:
db 0
player_status:
jmp newmem2
nop
nop
nop
{
player_status_fixed:
jmp newmem
nop
nop
nop
nop
nop
nop
nop
nop
nop
nop
nop
nop
nop
}
return2:
//registersymbol(player_status_fixed)
registersymbol(player_status)
registersymbol(health)
registersymbol(energy)
[DISABLE]
player:
db F3 0F 10 40 1C
unregistersymbol(player)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DXMD.exe"+390A856
"DXMD.exe"+390A831: 48 83 EC 20 - sub rsp,20
"DXMD.exe"+390A835: 48 8B 01 - mov rax,[rcx]
"DXMD.exe"+390A838: 48 89 CB - mov rbx,rcx
"DXMD.exe"+390A83B: FF 90 40 01 00 00 - call qword ptr [rax+00000140]
"DXMD.exe"+390A841: 48 89 D9 - mov rcx,rbx
"DXMD.exe"+390A844: 0F 57 C0 - xorps xmm0,xmm0
"DXMD.exe"+390A847: 0F 2E 40 1C - ucomiss xmm0,[rax+1C]
"DXMD.exe"+390A84B: 48 8B 03 - mov rax,[rbx]
"DXMD.exe"+390A84E: 74 12 - je DXMD.exe+390A862
"DXMD.exe"+390A850: FF 90 40 01 00 00 - call qword ptr [rax+00000140]
// ---------- INJECTING HERE ----------
"DXMD.exe"+390A856: F3 0F 10 40 1C - movss xmm0,[rax+1C]
// ---------- DONE INJECTING ----------
"DXMD.exe"+390A85B: 48 83 C4 20 - add rsp,20
"DXMD.exe"+390A85F: 5B - pop rbx
"DXMD.exe"+390A860: C3 - ret
"DXMD.exe"+390A861: EA 48 83 C4 20 5B FF - jmp FF5B:20C48348
"DXMD.exe"+390A868: A0 E8 00 00 00 CC CC 90 0F - mov ax,[F90CCCC000000E8]
"DXMD.exe"+390A871: 57 - push rdi
"DXMD.exe"+390A872: C0 48 89 C8 - ror byte ptr [rax-77],-38
"DXMD.exe"+390A876: 0F 5C 42 10 - subps xmm0,[rdx+10]
"DXMD.exe"+390A87A: 0F 29 01 - movaps [rcx],xmm0
"DXMD.exe"+390A87D: C3 - ret
}
player_status:
db 0F 2F 73 44 40 0F 96 D6
unregistersymbol(player_status)
{player_status_fixed:
db 0F 2F 73 44 FF 25 00 00 00 00 2F 01 7E 40 01 00 00 00
unregistersymbol(player_status_fixed)
}
unregistersymbol(health)
unregistersymbol(energy)
dealloc(newmem2)
{
// ORIGINAL CODE - INJECTION POINT: "DXMD.exe"+390E7B4
"DXMD.exe"+390E790: 48 FF CF - dec rdi
"DXMD.exe"+390E793: 75 F4 - jne DXMD.exe+390E789
"DXMD.exe"+390E795: 48 8B 03 - mov rax,[rbx]
"DXMD.exe"+390E798: 48 89 D9 - mov rcx,rbx
"DXMD.exe"+390E79B: FF 90 E0 00 00 00 - call qword ptr [rax+000000E0]
"DXMD.exe"+390E7A1: 48 8B 06 - mov rax,[rsi]
"DXMD.exe"+390E7A4: 48 89 F1 - mov rcx,rsi
"DXMD.exe"+390E7A7: 0F 28 F0 - movaps xmm6,xmm0
"DXMD.exe"+390E7AA: FF 90 D0 00 00 00 - call qword ptr [rax+000000D0]
"DXMD.exe"+390E7B0: F3 0F 59 F0 - mulss xmm6,xmm0
// ---------- INJECTING HERE ----------
"DXMD.exe"+390E7B4: 0F 2F 73 44 - comiss xmm6,[rbx+44]
"DXMD.exe"+390E7B8: 40 0F 96 D6 - setbe sil
// ---------- DONE INJECTING ----------
"DXMD.exe"+390E7BC: 48 89 D9 - mov rcx,rbx
"DXMD.exe"+390E7BF: E8 FC F8 FF FF - call DXMD.exe+390E0C0
"DXMD.exe"+390E7C4: 84 C0 - test al,al
"DXMD.exe"+390E7C6: 75 12 - jne DXMD.exe+390E7DA
"DXMD.exe"+390E7C8: 48 8B 03 - mov rax,[rbx]
"DXMD.exe"+390E7CB: 48 89 D9 - mov rcx,rbx
"DXMD.exe"+390E7CE: FF 90 30 01 00 00 - call qword ptr [rax+00000130]
"DXMD.exe"+390E7D4: 0F 2F 43 4C - comiss xmm0,[rbx+4C]
"DXMD.exe"+390E7D8: 73 31 - jae DXMD.exe+390E80B
"DXMD.exe"+390E7DA: 48 8B 03 - mov rax,[rbx]
}
1649
"Full Health"
Auto Assembler Script
[ENABLE]
health:
db 1
[DISABLE]
health:
db 0
1650
"Full Energy"
Auto Assembler Script
[ENABLE]
energy:
db 1
[DISABLE]
energy:
db 0
1596
"(ACTIVATE ONLY ONE) Unlimited Hacking Attempts"
Auto Assembler Script
[ENABLE]
aobscanmodule(hackchance,DXMD.exe,FF 49 1C 83 79 1C 00)
hackchance:
db 90 90 90
registersymbol(hackchance)
[DISABLE]
hackchance:
db FF 49 1C
unregistersymbol(hackchance)
{
// ORIGINAL CODE - INJECTION POINT: DXMD.NvOptimusEnablement+206020D
DXMD.NvOptimusEnablement+2060200: CC - int 3
DXMD.NvOptimusEnablement+2060201: CC - int 3
DXMD.NvOptimusEnablement+2060202: CC - int 3
DXMD.NvOptimusEnablement+2060203: CC - int 3
DXMD.NvOptimusEnablement+2060204: CC - int 3
DXMD.NvOptimusEnablement+2060205: CC - int 3
DXMD.NvOptimusEnablement+2060206: CC - int 3
DXMD.NvOptimusEnablement+2060207: CC - int 3
DXMD.NvOptimusEnablement+2060208: 57 - push rdi
DXMD.NvOptimusEnablement+2060209: 48 83 EC 40 - sub rsp,40
// ---------- INJECTING HERE ----------
DXMD.NvOptimusEnablement+206020D: FF 49 1C - dec [rcx+1C]
// ---------- DONE INJECTING ----------
DXMD.NvOptimusEnablement+2060210: 83 79 1C 00 - cmp dword ptr [rcx+1C],00
DXMD.NvOptimusEnablement+2060214: 48 89 CF - mov rdi,rcx
DXMD.NvOptimusEnablement+2060217: 0F8F 83000000 - jg 1442B9C58
DXMD.NvOptimusEnablement+206021D: C7 41 1C 00000000 - mov [rcx+1C],00000000
DXMD.NvOptimusEnablement+2060224: 83 FA 01 - cmp edx,01
DXMD.NvOptimusEnablement+2060227: 75 77 - jne 1442B9C58
DXMD.NvOptimusEnablement+2060229: 48 8D 0D 189FEBFD - lea rcx,[142173B00]
DXMD.NvOptimusEnablement+2060230: 48 89 5C 24 50 - mov [rsp+50],rbx
DXMD.NvOptimusEnablement+2060235: 48 8B 1D 0C9FEBFD - mov rbx,[142173B00]
DXMD.NvOptimusEnablement+206023C: E8 679CE2FE - call 1430E3860
}
1626
"Credits Pointer"
Auto Assembler Script
[ENABLE]
aobscanmodule(credits,DXMD.exe,49 8B 9E 48 01 00 00 48)
alloc(newmem,$1000,credits)
label(code)
label(return)
label(credits_ptr)
newmem:
mov rbx,credits_ptr
mov [rbx],rcx
code:
mov rbx,[r14+00000148]
jmp return
credits_ptr:
dq 0
credits:
jmp newmem
nop
nop
return:
registersymbol(credits)
registersymbol(credits_ptr)
[DISABLE]
credits:
db 49 8B 9E 48 01 00 00
unregistersymbol(credits)
unregistersymbol(credits_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DXMD.exe"+46F586E
"DXMD.exe"+46F5852: 48 89 FA - mov rdx,rdi
"DXMD.exe"+46F5855: 0F 18 08 - prefetchto [rax]
"DXMD.exe"+46F5858: 48 8D 40 40 - lea rax,[rax+40]
"DXMD.exe"+46F585C: 48 FF CA - dec rdx
"DXMD.exe"+46F585F: 75 F4 - jne DXMD.exe+46F5855
"DXMD.exe"+46F5861: E8 EA BD 1F 00 - call DXMD.exe+48F1650
"DXMD.exe"+46F5866: 89 C6 - mov esi,eax
"DXMD.exe"+46F5868: EB 04 - jmp DXMD.exe+46F586E
"DXMD.exe"+46F586A: 77 44 - ja DXMD.exe+46F58B0
"DXMD.exe"+46F586C: 89 FE - mov esi,edi
// ---------- INJECTING HERE ----------
"DXMD.exe"+46F586E: 49 8B 9E 48 01 00 00 - mov rbx,[r14+00000148]
// ---------- DONE INJECTING ----------
"DXMD.exe"+46F5875: 48 8D 05 3C 1F 46 FD - lea rax,[DXMD.exe+1B577B8]
"DXMD.exe"+46F587C: 48 8D 54 24 70 - lea rdx,[rsp+70]
"DXMD.exe"+46F5881: 48 8D 4D 90 - lea rcx,[rbp-70]
"DXMD.exe"+46F5885: 45 31 C9 - xor r9d,r9d
"DXMD.exe"+46F5888: 45 31 C0 - xor r8d,r8d
"DXMD.exe"+46F588B: 48 89 44 24 70 - mov [rsp+70],rax
"DXMD.exe"+46F5890: C7 44 24 78 0E 00 00 80 - mov [rsp+78],8000000E
"DXMD.exe"+46F5898: 44 89 7C 24 7C - mov [rsp+7C],r15d
"DXMD.exe"+46F589D: E8 5E 18 80 FF - call DXMD.exe+3EF7100
"DXMD.exe"+46F58A2: 89 F2 - mov edx,esi
}
1625
"Credits (Open Inventory)"
4 Bytes
credits_ptr
98
1658
"Full Energy Marker"
Auto Assembler Script
[ENABLE]
aobscanmodule(energy2,DXMD.exe,F3 0F 10 89 18 01 00 00)// 0F 2F)
alloc(newmem,$1000,energy2)
label(code)
label(return)
newmem:
code:
movss [rcx+00000118],xmm0
movss xmm1,xmm0
jmp return
energy2:
jmp code
nop
nop
nop
return:
registersymbol(energy2)
[DISABLE]
energy2:
db F3 0F 10 89 18 01 00 00
unregistersymbol(energy2)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DXMD.exe"+3910150
"DXMD.exe"+391013A: CC - int 3
"DXMD.exe"+391013B: CC - int 3
"DXMD.exe"+391013C: CC - int 3
"DXMD.exe"+391013D: CC - int 3
"DXMD.exe"+391013E: CC - int 3
"DXMD.exe"+391013F: CC - int 3
"DXMD.exe"+3910140: F3 0F 10 81 04 01 00 00 - movss xmm0,[rcx+00000104]
"DXMD.exe"+3910148: 0F 57 C9 - xorps xmm1,xmm1
"DXMD.exe"+391014B: 0F 2E C1 - ucomiss xmm0,xmm1
"DXMD.exe"+391014E: 74 11 - je DXMD.exe+3910161
// ---------- INJECTING HERE ----------
"DXMD.exe"+3910150: F3 0F 10 89 18 01 00 00 - movss xmm1,[rcx+00000118]
// ---------- DONE INJECTING ----------
"DXMD.exe"+3910158: 0F 2F C1 - comiss xmm0,xmm1
"DXMD.exe"+391015B: 72 0C - jb DXMD.exe+3910169
"DXMD.exe"+391015D: 0F 28 C1 - movaps xmm0,xmm1
"DXMD.exe"+3910160: C3 - ret
"DXMD.exe"+3910161: F3 0F 10 81 18 01 00 00 - movss xmm0,[rcx+00000118]
"DXMD.exe"+3910169: F3 C3 - repe ret
"DXMD.exe"+391016B: 00 CC - add ah,cl
"DXMD.exe"+391016D: CC - int 3
"DXMD.exe"+391016E: CC - int 3
"DXMD.exe"+391016F: CC - int 3
}
1643
"Upgrade Pointers"
Auto Assembler Script
[ENABLE]
aobscanmodule(upgrade,DXMD.exe,48 8B 19 48 8* ** FF 93 00)
alloc(newmem,$1000,upgrade)
label(code)
label(return)
label(upgrade_ptr)
newmem:
mov rbx,upgrade_ptr
mov [rbx],rcx
code:
mov rbx,[rcx]
mov rdi,rcx
jmp return
upgrade_ptr:
dq 0
upgrade:
jmp newmem
nop
return:
registersymbol(upgrade)
registersymbol(upgrade_ptr)
[DISABLE]
upgrade:
db 48 8B 19 48 89 CF
unregistersymbol(upgrade)
unregistersymbol(upgrade_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DXMD.exe"+41ACEBA
"DXMD.exe"+41ACE9D: F7 41 0C 00 00 00 80 - test [rcx+0C],80000000
"DXMD.exe"+41ACEA4: 75 03 - jne DXMD.exe+41ACEA9
"DXMD.exe"+41ACEA6: 48 8B 09 - mov rcx,[rcx]
"DXMD.exe"+41ACEA9: 8B 44 81 FC - mov eax,[rcx+rax*4-04]
"DXMD.exe"+41ACEAD: C3 - ret
"DXMD.exe"+41ACEAE: CC - int 3
"DXMD.exe"+41ACEAF: CC - int 3
"DXMD.exe"+41ACEB0: 48 89 5C 24 08 - mov [rsp+08],rbx
"DXMD.exe"+41ACEB5: 57 - push rdi
"DXMD.exe"+41ACEB6: 48 83 EC 20 - sub rsp,20
// ---------- INJECTING HERE ----------
"DXMD.exe"+41ACEBA: 48 8B 19 - mov rbx,[rcx]
"DXMD.exe"+41ACEBD: 48 89 CF - mov rdi,rcx
// ---------- DONE INJECTING ----------
"DXMD.exe"+41ACEC0: FF 93 00 01 00 00 - call qword ptr [rbx+00000100]
"DXMD.exe"+41ACEC6: 48 89 F9 - mov rcx,rdi
"DXMD.exe"+41ACEC9: 89 C2 - mov edx,eax
"DXMD.exe"+41ACECB: 48 8B 83 F8 00 00 00 - mov rax,[rbx+000000F8]
"DXMD.exe"+41ACED2: 48 8B 5C 24 30 - mov rbx,[rsp+30]
"DXMD.exe"+41ACED7: 48 83 C4 20 - add rsp,20
"DXMD.exe"+41ACEDB: 5F - pop rdi
"DXMD.exe"+41ACEDC: FF E0 - jmp rax
"DXMD.exe"+41ACEDE: ED - in eax,dx
"DXMD.exe"+41ACEDF: E1 0A - loope DXMD.exe+41ACEEB
}
1642
"Base Address"
String
0
0
0
1
upgrade_ptr
0
1641
"Praxis Points"
4 Bytes
+1c
1645
"Next Praxis"
4 Bytes
+18
1644
"Total XP"
4 Bytes
+30
1597
"Stealth Hacking"
Auto Assembler Script
[ENABLE]
aobscanmodule(StealthCheckUI,DXMD.exe,41 39 BD * * * * 7E 05)
StealthCheckUI+7:
db 90 90
registersymbol(StealthCheckUI)
{
aobscanmodule(StealthCheck,DXMD.exe,41 0F 9F D7 44 89 E1)
}
aobscanmodule(StealthCheck,DXMD.exe,41 0F 9F C7 4* 8* CC)
StealthCheck:
db 90 90 90 90
registersymbol(StealthCheck)
aobscanmodule(StealthDecrease,DXMD.exe,FF CB 0F 48 DD 89 9F 90 01 00 00) //worked
StealthDecrease:
db 90 90
registersymbol(StealthDecrease)
[DISABLE]
StealthCheckUI+7:
db 7E 05
unregistersymbol(StealthCheckUI)
{
// ORIGINAL CODE - INJECTION POINT: DXMD.NvOptimusEnablement+192F546
DXMD.NvOptimusEnablement+192F51E: 48 8D 40 40 - lea rax,[rax+40]
DXMD.NvOptimusEnablement+192F522: 48 FF C9 - dec rcx
DXMD.NvOptimusEnablement+192F525: 75 F4 - jne 143B88ED3
DXMD.NvOptimusEnablement+192F527: 48 8B 07 - mov rax,[rdi]
DXMD.NvOptimusEnablement+192F52A: 48 89 F9 - mov rcx,rdi
DXMD.NvOptimusEnablement+192F52D: FF 90 E8000000 - call qword ptr [rax+000000E8]
DXMD.NvOptimusEnablement+192F533: 84 C0 - test al,al
DXMD.NvOptimusEnablement+192F535: 0F84 6D020000 - je 143B89160
DXMD.NvOptimusEnablement+192F53B: 48 89 B4 24 B0000000 - mov [rsp+000000B0],rsi
DXMD.NvOptimusEnablement+192F543: 40 30 F6 - xor sil,sil
// ---------- INJECTING HERE ----------
DXMD.NvOptimusEnablement+192F546: 41 83 BE 90010000 00 - cmp dword ptr [r14+00000190],00
// ---------- DONE INJECTING ----------
DXMD.NvOptimusEnablement+192F54E: 4C 89 BC 24 B8000000 - mov [rsp+000000B8],r15
DXMD.NvOptimusEnablement+192F556: 41 0F9F D7 - setg r15l
DXMD.NvOptimusEnablement+192F55A: 44 89 E1 - mov ecx,r12d
DXMD.NvOptimusEnablement+192F55D: 45 85 E4 - test r12d,r12d
DXMD.NvOptimusEnablement+192F560: 0F84 3A010000 - je 143B89058
DXMD.NvOptimusEnablement+192F566: FF C9 - dec ecx
DXMD.NvOptimusEnablement+192F568: 0F84 F5000000 - je 143B8901B
DXMD.NvOptimusEnablement+192F56E: FF C9 - dec ecx
DXMD.NvOptimusEnablement+192F570: 0F85 07020000 - jne 143B89135
DXMD.NvOptimusEnablement+192F576: 48 89 F8 - mov rax,rdi
}
StealthCheck:
db 41 0F 9F C7
unregistersymbol(StealthCheck)
{
// ORIGINAL CODE - INJECTION POINT: DXMD.NvOptimusEnablement+192F556
DXMD.NvOptimusEnablement+192F525: 75 F4 - jne 143B88ED3
DXMD.NvOptimusEnablement+192F527: 48 8B 07 - mov rax,[rdi]
DXMD.NvOptimusEnablement+192F52A: 48 89 F9 - mov rcx,rdi
DXMD.NvOptimusEnablement+192F52D: FF 90 E8000000 - call qword ptr [rax+000000E8]
DXMD.NvOptimusEnablement+192F533: 84 C0 - test al,al
DXMD.NvOptimusEnablement+192F535: 0F84 6D020000 - je 143B89160
DXMD.NvOptimusEnablement+192F53B: 48 89 B4 24 B0000000 - mov [rsp+000000B0],rsi
DXMD.NvOptimusEnablement+192F543: 40 30 F6 - xor sil,sil
DXMD.NvOptimusEnablement+192F546: 41 83 BE 90010000 00 - cmp dword ptr [r14+00000190],00
DXMD.NvOptimusEnablement+192F54E: 4C 89 BC 24 B8000000 - mov [rsp+000000B8],r15
// ---------- INJECTING HERE ----------
DXMD.NvOptimusEnablement+192F556: 41 0F9F D7 - setg r15l
// ---------- DONE INJECTING ----------
DXMD.NvOptimusEnablement+192F55A: 44 89 E1 - mov ecx,r12d
DXMD.NvOptimusEnablement+192F55D: 45 85 E4 - test r12d,r12d
DXMD.NvOptimusEnablement+192F560: 0F84 3A010000 - je 143B89058
DXMD.NvOptimusEnablement+192F566: FF C9 - dec ecx
DXMD.NvOptimusEnablement+192F568: 0F84 F5000000 - je 143B8901B
DXMD.NvOptimusEnablement+192F56E: FF C9 - dec ecx
DXMD.NvOptimusEnablement+192F570: 0F85 07020000 - jne 143B89135
DXMD.NvOptimusEnablement+192F576: 48 89 F8 - mov rax,rdi
DXMD.NvOptimusEnablement+192F579: 48 89 D9 - mov rcx,rbx
DXMD.NvOptimusEnablement+192F57C: 0F18 08 - prefetchto [rax]
}
StealthDecrease:
db FF CB
unregistersymbol(StealthDecrease)
{
// ORIGINAL CODE - INJECTION POINT: DXMD.NvOptimusEnablement+1B2233A
DXMD.NvOptimusEnablement+1B22311: 48 8B 91 80010000 - mov rdx,[rcx+00000180]
DXMD.NvOptimusEnablement+1B22318: 4B 8D 0C 52 - lea rcx,[r10+r10*2]
DXMD.NvOptimusEnablement+1B2231C: 48 8D 04 CA - lea rax,[rdx+rcx*8]
DXMD.NvOptimusEnablement+1B22320: 48 85 C0 - test rax,rax
DXMD.NvOptimusEnablement+1B22323: 74 0B - je 143D7BCE8
DXMD.NvOptimusEnablement+1B22325: 4C 89 18 - mov [rax],r11
DXMD.NvOptimusEnablement+1B22328: 48 89 58 08 - mov [rax+08],rbx
DXMD.NvOptimusEnablement+1B2232C: 44 89 40 10 - mov [rax+10],r8d
DXMD.NvOptimusEnablement+1B22330: 41 8D 42 01 - lea eax,[r10+01]
DXMD.NvOptimusEnablement+1B22334: 89 87 88010000 - mov [rdi+00000188],eax
// ---------- INJECTING HERE ----------
DXMD.NvOptimusEnablement+1B2233A: 8B 9F 90010000 - mov ebx,[rdi+00000190]
// ---------- DONE INJECTING ----------
DXMD.NvOptimusEnablement+1B22340: BD 00000000 - mov ebp,00000000
DXMD.NvOptimusEnablement+1B22345: B9 0FA24FC3 - mov ecx,C34FA20F
DXMD.NvOptimusEnablement+1B2234A: 8D 89 F55DB03C - lea ecx,[rcx+3CB05DF5]
DXMD.NvOptimusEnablement+1B22350: FF CB - dec ebx
DXMD.NvOptimusEnablement+1B22352: 0F48 DD - cmovs ebx,ebp
DXMD.NvOptimusEnablement+1B22355: 89 9F 90010000 - mov [rdi+00000190],ebx
DXMD.NvOptimusEnablement+1B2235B: 48 8B BF 58020000 - mov rdi,[rdi+00000258]
DXMD.NvOptimusEnablement+1B22362: 48 89 F8 - mov rax,rdi
DXMD.NvOptimusEnablement+1B22365: 0F18 08 - prefetchto [rax]
DXMD.NvOptimusEnablement+1B22368: 48 83 C0 40 - add rax,40
}
1664
"Sinon"
008000
1
36
"No Augment Cost"
Auto Assembler Script
{ Game : DXMD.exe
Version:
Date : 2016-10-17
Author : Sinon
This script does blah blah blah
}
[ENABLE]
aobscanmodule(INJECT,DXMD.exe,8B 41 1C 8* D*) // should be unique
alloc(newmem,$1000,"DXMD.exe"+42234CD)
label(code)
label(return)
newmem:
code:
push eax
mov eax, 0
mov eax,eax
mov ebx,edx
pop eax
jmp return
INJECT:
jmp code
return:
registersymbol(INJECT)
[DISABLE]
INJECT:
db 8B 41 1C 89 D3
unregistersymbol(INJECT)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DXMD.exe"+42234CD
"DXMD.exe"+42234B0: CC - int 3
"DXMD.exe"+42234B1: CC - int 3
"DXMD.exe"+42234B2: CC - int 3
"DXMD.exe"+42234B3: CC - int 3
"DXMD.exe"+42234B4: CC - int 3
"DXMD.exe"+42234B5: 66 66 2E 0F 1F 84 00 00 00 00 00 - nop cs:[rax+rax+00000000]
"DXMD.exe"+42234C0: 85 D2 - test edx,edx
"DXMD.exe"+42234C2: 0F 84 CC 00 00 00 - je DXMD.exe+4223594
"DXMD.exe"+42234C8: 53 - push rbx
"DXMD.exe"+42234C9: 48 83 EC 70 - sub rsp,70
// ---------- INJECTING HERE ----------
"DXMD.exe"+42234CD: 8B 41 1C - mov eax,[rcx+1C]
"DXMD.exe"+42234D0: 89 D3 - mov ebx,edx
// ---------- DONE INJECTING ----------
"DXMD.exe"+42234D2: 39 D0 - cmp eax,edx
"DXMD.exe"+42234D4: 73 0A - jae DXMD.exe+42234E0
"DXMD.exe"+42234D6: C7 41 1C 00 00 00 00 - mov [rcx+1C],00000000
"DXMD.exe"+42234DD: EB 06 - jmp DXMD.exe+42234E5
"DXMD.exe"+42234DF: 00 29 - add [rcx],ch
"DXMD.exe"+42234E1: D0 89 41 1C 89 D0 - ror byte ptr [rcx-2F76E3BF],1
"DXMD.exe"+42234E7: 48 8D 4C 24 30 - lea rcx,[rsp+30]
"DXMD.exe"+42234EC: 48 8D 54 24 20 - lea rdx,[rsp+20]
"DXMD.exe"+42234F1: F7 D8 - neg eax
"DXMD.exe"+42234F3: 89 84 24 88 00 00 00 - mov [rsp+00000088],eax
}
18
"Get 5000 exp for any action"
Auto Assembler Script
{ Game : DXMD.exe
Version:
Date : 2016-10-17
Author : Sinon
This script does blah blah blah
}
[ENABLE]
aobscanmodule(INJECT,DXMD.exe,01 51 18 01 51 30) // should be unique
alloc(newmem,$1000,"DXMD.exe"+41E7421)
label(code)
label(return)
newmem:
code:
push edx
mov edx, 1388
add [rcx+18],edx
add [rcx+30],edx
pop edx
jmp return
INJECT:
jmp code
nop
return:
registersymbol(INJECT)
[DISABLE]
INJECT:
db 01 51 18 01 51 30
unregistersymbol(INJECT)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DXMD.exe"+41E7421
"DXMD.exe"+41E7403: CC - int 3
"DXMD.exe"+41E7404: CC - int 3
"DXMD.exe"+41E7405: CC - int 3
"DXMD.exe"+41E7406: 66 2E 0F 1F 84 00 00 00 00 00 - nop cs:[rax+rax+00000000]
"DXMD.exe"+41E7410: 53 - push rbx
"DXMD.exe"+41E7411: 48 83 EC 20 - sub rsp,20
"DXMD.exe"+41E7415: 80 79 40 00 - cmp byte ptr [rcx+40],00
"DXMD.exe"+41E7419: 48 89 CB - mov rbx,rcx
"DXMD.exe"+41E741C: 74 65 - je DXMD.exe+41E7483
"DXMD.exe"+41E741E: 48 8B 01 - mov rax,[rcx]
// ---------- INJECTING HERE ----------
"DXMD.exe"+41E7421: 01 51 18 - add [rcx+18],edx
"DXMD.exe"+41E7424: 01 51 30 - add [rcx+30],edx
// ---------- DONE INJECTING ----------
"DXMD.exe"+41E7427: FF 90 D8 00 00 00 - call qword ptr [rax+000000D8]
"DXMD.exe"+41E742D: 39 43 18 - cmp [rbx+18],eax
"DXMD.exe"+41E7430: 72 51 - jb DXMD.exe+41E7483
"DXMD.exe"+41E7432: 48 8B 03 - mov rax,[rbx]
"DXMD.exe"+41E7435: 48 89 D9 - mov rcx,rbx
"DXMD.exe"+41E7438: FF 90 D8 00 00 00 - call qword ptr [rax+000000D8]
"DXMD.exe"+41E743E: BA 0F A2 90 C3 - mov edx,C390A20F
"DXMD.exe"+41E7443: 48 89 D9 - mov rcx,rbx
"DXMD.exe"+41E7446: 29 43 18 - sub [rbx+18],eax
"DXMD.exe"+41E7449: 48 8B 03 - mov rax,[rbx]
}
1665
"Vee"
0000FF
1
1661
"Ammo/Throwable/Items Not Decreased"
Auto Assembler Script
{ Game : DXMD.exe
Version:
Date : 2017-08-29
Author : Vee
This script does blah blah blah
}
[ENABLE]
aobscanmodule(INJECT_Ammo,DXMD.exe,58 FF 89 7B 40 48 8B 5C 24 30) // should be unique
alloc(newmem,$1000,"DXMD.exe"+CDF89E)
//alloc(newmem,$1000)
label(code)
label(return)
globalalloc(ammo_chk,4)
newmem:
push edi
mov edi, #15
// mov [ammo_chk],edi
code:
mov [rbx+40],edi //Original Code
pop edi
mov rbx,[rsp+30] //Original Code
jmp return
INJECT_Ammo+02:
jmp newmem
nop
nop
nop
return:
registersymbol(INJECT_Ammo)
[DISABLE]
INJECT_Ammo+02:
db 89 7B 40 48 8B 5C 24 30
unregistersymbol(INJECT_Ammo)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DXMD.exe"+CDF89E
"DXMD.exe"+CDF87E: CC - int 3
"DXMD.exe"+CDF87F: CC - int 3
"DXMD.exe"+CDF880: 48 89 5C 24 08 - mov [rsp+08],rbx
"DXMD.exe"+CDF885: 57 - push rdi
"DXMD.exe"+CDF886: 48 83 EC 20 - sub rsp,20
"DXMD.exe"+CDF88A: 8B FA - mov edi,edx
"DXMD.exe"+CDF88C: 48 8B D9 - mov rbx,rcx
"DXMD.exe"+CDF88F: 48 8B D1 - mov rdx,rcx
"DXMD.exe"+CDF892: 48 8D 0D 07 44 13 02 - lea rcx,[DXMD.exe+2E13CA0]
"DXMD.exe"+CDF899: E8 92 F3 58 FF - call DXMD.exe+26EC30
// ---------- INJECTING HERE ----------
"DXMD.exe"+CDF89E: 89 7B 40 - mov [rbx+40],edi
"DXMD.exe"+CDF8A1: 48 8B 5C 24 30 - mov rbx,[rsp+30]
// ---------- DONE INJECTING ----------
"DXMD.exe"+CDF8A6: 48 83 C4 20 - add rsp,20
"DXMD.exe"+CDF8AA: 5F - pop rdi
"DXMD.exe"+CDF8AB: C3 - ret
"DXMD.exe"+CDF8AC: CC - int 3
"DXMD.exe"+CDF8AD: CC - int 3
"DXMD.exe"+CDF8AE: CC - int 3
"DXMD.exe"+CDF8AF: CC - int 3
"DXMD.exe"+CDF8B0: 40 53 - push rbx
"DXMD.exe"+CDF8B2: 48 83 EC 20 - sub rsp,20
"DXMD.exe"+CDF8B6: 48 8B 01 - mov rax,[rcx]
}
1663
"(ACTIVATE ONLY ONE) Hack Attempt [Alternative Method]"
Auto Assembler Script
{ Game : DXMD.exe
Version:
Date : 2017-08-30
Author : Vee
This script does blah blah blah
}
[ENABLE]
aobscanmodule(hackin,DXMD.exe,FF 49 1C 83 79 1C 00) // should be unique
alloc(newmem,$1000,"DXMD.exe"+F58426)
label(code)
label(return)
newmem:
code:
// dec [rcx+1C]
inc [rcx+1C]
cmp dword ptr [rcx+1C],00
jmp return
hackin:
jmp newmem
nop
nop
return:
registersymbol(hackin)
[DISABLE]
hackin:
db FF 49 1C 83 79 1C 00
unregistersymbol(hackin)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DXMD.exe"+F58426
"DXMD.exe"+F58418: CC - int 3
"DXMD.exe"+F58419: CC - int 3
"DXMD.exe"+F5841A: CC - int 3
"DXMD.exe"+F5841B: CC - int 3
"DXMD.exe"+F5841C: CC - int 3
"DXMD.exe"+F5841D: CC - int 3
"DXMD.exe"+F5841E: CC - int 3
"DXMD.exe"+F5841F: CC - int 3
"DXMD.exe"+F58420: 40 57 - push rdi
"DXMD.exe"+F58422: 48 83 EC 40 - sub rsp,40
// ---------- INJECTING HERE ----------
"DXMD.exe"+F58426: FF 49 1C - dec [rcx+1C]
"DXMD.exe"+F58429: 83 79 1C 00 - cmp dword ptr [rcx+1C],00
// ---------- DONE INJECTING ----------
"DXMD.exe"+F5842D: 48 8B F9 - mov rdi,rcx
"DXMD.exe"+F58430: 0F 8F 83 00 00 00 - jg DXMD.exe+F584B9
"DXMD.exe"+F58436: C7 41 1C 00 00 00 00 - mov [rcx+1C],00000000
"DXMD.exe"+F5843D: 83 FA 01 - cmp edx,01
"DXMD.exe"+F58440: 75 77 - jne DXMD.exe+F584B9
"DXMD.exe"+F58442: 48 8D 0D 17 27 28 01 - lea rcx,[DXMD.exe+21DAB60]
"DXMD.exe"+F58449: 48 89 5C 24 50 - mov [rsp+50],rbx
"DXMD.exe"+F5844E: 48 8B 1D 0B 27 28 01 - mov rbx,[DXMD.exe+21DAB60]
"DXMD.exe"+F58455: E8 C6 D1 0D FF - call DXMD.exe+35620
"DXMD.exe"+F5845A: 48 8D 0D 6F 19 28 01 - lea rcx,[DXMD.exe+21D9DD0]
}
Game Name : Deus Ex: Mankind Divided [SKIDROW+Codex Emu] [FitGirl Repack]
Version : 1.16 [SKIDROW]
Process Name : DXMD.exe
Author : Vee_
CRC32 : 83a26c49[SKIDROW+CDX]/56ffeec2[SKIDROW Only]
Table Version : 1.0
Table Creation : 2017-08-30
///////////////////////////////////////////////////////////////////////////////////
Credits : STN, Sinon
///////////////////////////////////////////////////////////////////////////////////
Link:
---------------------------------------------------------------
This is updated table based on STN table
In The Table:
STN:
- Player Scripts
- Unlimited Hacking Attempts (ACTIVATE ONLY ONE)
- Credits Pointer
- Full Energy Marker
- Upgrade Pointers
- Stealth Hacking
Sinon:
- No Augment Cost
- Get 5000 exp for any action
Vee_:
- Ammo/Throwable/Items Set to 15
- Hack Attempt Increase (ACTIVATE ONLY ONE)