How to sort out in a general opcode?
Posted: Mon Jan 09, 2023 1:29 pm
Let's say I want to make a cheat script for inf. mana.
I first find out which address is for mana and then find an opcode that writes to the address.
When I search which addresses access to the opcode(to know if the opcode is only for mana or for many other addresses) and the result says hundreds of address access to the opcode.
I select the address for mana as group 1 and use 'find commodalities' function but get nothing useful.
I usually see stack result of the address and match each relative address and static values.
Usually written in aob assembly script as
cmp [rbp-xx],xxx.exe+xxxxx
jne originalcode
cmp [rbp-xx],xxx.exe+xxxxx
jne originalcode
cmp [rbp-xx],xxx.exe+xxxxx
jne originalcode
...(repeat)
but this works only when a few address access to an opcode
I can't distinguish a certain address(address for mana in an above example) with that method(too many lines even if it's possible).
Any other ideas? I alway got stuck when opcodes are general opcodes...
I first find out which address is for mana and then find an opcode that writes to the address.
When I search which addresses access to the opcode(to know if the opcode is only for mana or for many other addresses) and the result says hundreds of address access to the opcode.
I select the address for mana as group 1 and use 'find commodalities' function but get nothing useful.
I usually see stack result of the address and match each relative address and static values.
Usually written in aob assembly script as
cmp [rbp-xx],xxx.exe+xxxxx
jne originalcode
cmp [rbp-xx],xxx.exe+xxxxx
jne originalcode
cmp [rbp-xx],xxx.exe+xxxxx
jne originalcode
...(repeat)
but this works only when a few address access to an opcode
I can't distinguish a certain address(address for mana in an above example) with that method(too many lines even if it's possible).
Any other ideas? I alway got stuck when opcodes are general opcodes...