The Universim v23

Ask about cheats/tables for single player games here
User avatar
jungletek
Shogun
Shogun
Posts: 88
Joined: Tue Oct 17, 2017 7:31 am
Reputation: 10

Re: The Universim v22

Post by jungletek » Thu Dec 07, 2017 9:45 pm

I've actually been wondering recently if you can do an AOB wildcard scan, copy the relevant bytes from the matched AOB to a variable that the script checks for and uses in the logic, and also writes back the correct bytes on disable.

Might have to try it out, though there might be issues with the AA not being able to generate code because it can't figure out what to generate.

User avatar
seikur0
Expert Cheater
Expert Cheater
Posts: 160
Joined: Sat Aug 26, 2017 10:48 am
Reputation: 127

Re: The Universim v22

Post by seikur0 » Fri Dec 08, 2017 5:42 pm

I did that before, because I really had to for one certain thing. Since you backup the assembler code directly, AA isn't involved at all. In general I'd avoid doing it, use the wildcards to scan for a location but then inject slightly lower, where offsets don't change in the code.

narcolepticnerd
Novice Cheater
Novice Cheater
Posts: 24
Joined: Fri Sep 01, 2017 5:41 am
Reputation: 0
Contact:

Re: The Universim v22

Post by narcolepticnerd » Thu Dec 21, 2017 10:36 pm

god power is offset 5C and its usually shown with rdi or rsi it looks like its a float. something like movss [rsi+5C], it might actually be easier to hack god power by using mono dissector that way you dont have to mess with aob scans

narcolepticnerd
Novice Cheater
Novice Cheater
Posts: 24
Joined: Fri Sep 01, 2017 5:41 am
Reputation: 0
Contact:

Re: The Universim v22

Post by narcolepticnerd » Thu Dec 21, 2017 11:16 pm

ok this code words infinite god power, you must have at least 2 already then you activate the script and pull a tree and poof infinite 999 god power and i tested it on everything.

I would search for the value first before using this cause if you try to use it before you have any power it shows a NaN

Code: Select all

{ Game   : The Universim.exe
  Version: 
  Date   : 2017-12-21
  Author : Forrest

  This script does blah blah blah
}

[ENABLE]

aobscan(godpower,F3 0F 11 6F 5C B8) // should be unique
alloc(newmem,$1000,F8C1B8B3)

label(code)
label(return)

alloc(godp,4)

godp:
dd (float)999
newmem:


code:
fld dword ptr [godp]
fstp dword ptr [rdi+5C]
//  movss [rdi+5C],xmm5
  jmp return

godpower:
  jmp newmem
return:
registersymbol(godpower)

[DISABLE]

godpower:
  db F3 0F 11 6F 5C

unregistersymbol(godpower)
dealloc(newmem)
dealloc(godp)
{
// ORIGINAL CODE - INJECTION POINT: F8C1B8B3

F8C1B887: F3 0F 11 6D EC                 -  movss [rbp-14],xmm5
F8C1B88C: F3 0F 10 45 EC                 -  movss xmm0,[rbp-14]
F8C1B891: F3 0F 5A C0                    -  cvtss2sd xmm0,xmm0
F8C1B895: F2 0F 2A CE                    -  cvtsi2sd xmm1,esi
F8C1B899: F2 0F 5C C1                    -  subsd xmm0,xmm1
F8C1B89D: F2 0F 5A E8                    -  cvtsd2ss xmm5,xmm0
F8C1B8A1: F3 0F 11 6D EC                 -  movss [rbp-14],xmm5
F8C1B8A6: F3 0F 10 45 EC                 -  movss xmm0,[rbp-14]
F8C1B8AB: F3 0F 5A C0                    -  cvtss2sd xmm0,xmm0
F8C1B8AF: F2 0F 5A E8                    -  cvtsd2ss xmm5,xmm0
// ---------- INJECTING HERE ----------
F8C1B8B3: F3 0F 11 6F 5C                 -  movss [rdi+5C],xmm5
// ---------- DONE INJECTING  ----------
F8C1B8B8: B8 01 00 00 00                 -  mov eax,00000001
F8C1B8BD: 48 8D 65 F0                    -  lea rsp,[rbp-10]
F8C1B8C1: 5F                             -  pop rdi
F8C1B8C2: 5E                             -  pop rsi
F8C1B8C3: C9                             -  leave 
F8C1B8C4: C3                             -  ret 
F8C1B8C5: 00 00                          -  add [rax],al
F8C1B8C7: 00 00                          -  add [rax],al
F8C1B8C9: 00 00                          -  add [rax],al
F8C1B8CB: 00 B5 00 00 00 C4              -  add [rbp-3C000000],dh
}

User avatar
Blayde
Expert Cheater
Expert Cheater
Posts: 229
Joined: Fri Aug 25, 2017 2:37 pm
Reputation: 39
Contact:

Re: The Universim v22

Post by Blayde » Fri Dec 22, 2017 12:11 am

narcolepticnerd wrote:
Thu Dec 21, 2017 11:16 pm
code:
fld dword ptr [godp]
fstp dword ptr [rdi+5C]
// movss [rdi+5C],xmm5
jmp return
You dont need this
--------------------
alloc(godp,4)
godp:
dd (float)999
newmem:

Just
----
code:
mov [rdi+5C],(float)999
jmp return

narcolepticnerd
Novice Cheater
Novice Cheater
Posts: 24
Joined: Fri Sep 01, 2017 5:41 am
Reputation: 0
Contact:

Re: The Universim v22

Post by narcolepticnerd » Fri Dec 22, 2017 12:48 am

Blayde wrote:
Fri Dec 22, 2017 12:11 am
narcolepticnerd wrote:
Thu Dec 21, 2017 11:16 pm
code:
fld dword ptr [godp]
fstp dword ptr [rdi+5C]
// movss [rdi+5C],xmm5
jmp return
You dont need this
--------------------
alloc(godp,4)
godp:
dd (float)999
newmem:

Just
----
code:
mov [rdi+5C],(float)999
jmp return
cool now I just need to find a better aob injection location, that one I have is not very stable it changes cause of some of the bytes changing.

User avatar
fantomas
Expert Cheater
Expert Cheater
Posts: 152
Joined: Sat Mar 25, 2017 7:13 pm
Reputation: 48

Re: The Universim v22

Post by fantomas » Thu Jan 11, 2018 2:53 am

narcolepticnerd wrote:
Thu Dec 21, 2017 11:16 pm
ok this code words infinite god power, you must have at least 2 already then you activate the script and pull a tree and poof infinite 999 god power and i tested it on everything.

I would search for the value first before using this cause if you try to use it before you have any power it shows a NaN

Code: Select all

{ Game   : The Universim.exe
  Version: 
  Date   : 2017-12-21
  Author : Forrest

  This script does blah blah blah
}

[ENABLE]

aobscan(godpower,F3 0F 11 6F 5C B8) // should be unique
alloc(newmem,$1000,F8C1B8B3)

label(code)
label(return)

alloc(godp,4)

godp:
dd (float)999
newmem:


code:
fld dword ptr [godp]
fstp dword ptr [rdi+5C]
//  movss [rdi+5C],xmm5
  jmp return

godpower:
  jmp newmem
return:
registersymbol(godpower)

[DISABLE]

godpower:
  db F3 0F 11 6F 5C

unregistersymbol(godpower)
dealloc(newmem)
dealloc(godp)
{
// ORIGINAL CODE - INJECTION POINT: F8C1B8B3

F8C1B887: F3 0F 11 6D EC                 -  movss [rbp-14],xmm5
F8C1B88C: F3 0F 10 45 EC                 -  movss xmm0,[rbp-14]
F8C1B891: F3 0F 5A C0                    -  cvtss2sd xmm0,xmm0
F8C1B895: F2 0F 2A CE                    -  cvtsi2sd xmm1,esi
F8C1B899: F2 0F 5C C1                    -  subsd xmm0,xmm1
F8C1B89D: F2 0F 5A E8                    -  cvtsd2ss xmm5,xmm0
F8C1B8A1: F3 0F 11 6D EC                 -  movss [rbp-14],xmm5
F8C1B8A6: F3 0F 10 45 EC                 -  movss xmm0,[rbp-14]
F8C1B8AB: F3 0F 5A C0                    -  cvtss2sd xmm0,xmm0
F8C1B8AF: F2 0F 5A E8                    -  cvtsd2ss xmm5,xmm0
// ---------- INJECTING HERE ----------
F8C1B8B3: F3 0F 11 6F 5C                 -  movss [rdi+5C],xmm5
// ---------- DONE INJECTING  ----------
F8C1B8B8: B8 01 00 00 00                 -  mov eax,00000001
F8C1B8BD: 48 8D 65 F0                    -  lea rsp,[rbp-10]
F8C1B8C1: 5F                             -  pop rdi
F8C1B8C2: 5E                             -  pop rsi
F8C1B8C3: C9                             -  leave 
F8C1B8C4: C3                             -  ret 
F8C1B8C5: 00 00                          -  add [rax],al
F8C1B8C7: 00 00                          -  add [rax],al
F8C1B8C9: 00 00                          -  add [rax],al
F8C1B8CB: 00 B5 00 00 00 C4              -  add [rbp-3C000000],dh
}
Hi

The GodPowerPoints maxValue is 1000 - You can find that value at this address: Game.Faith:FaithController:UpdateGodPowerPoints+1ef

You'll have to active mono feature (Mono tab) to see it. The opcode is movss xmm1,[rax+54] and the array of byte is F3 0F 10 48 54.

Here the script:

Code: Select all

// Game: The Universim
// Version: 0.0.23.12027 EL PACINO

[ENABLE]
Game.Faith:FaithController:UpdateGodPowerPoints+199:
  db EB 4F 90 90 90
//jmp Game.Faith:FaithController:UpdateGodPowerPoints+1ef    //a.k.a movss xmm1,[rsi+54]  <== maxGodPowerPoints [1000]
 
[DISABLE]
Game.Faith:FaithController:UpdateGodPowerPoints+199:
  db F3 0F 11 6E 5C
//movss [rsi+5C],xmm5      <== currentGodPowerPoints

akrazant
What is cheating?
What is cheating?
Posts: 1
Joined: Sun Jan 14, 2018 9:58 pm
Reputation: 0

Re: The Universim v23

Post by akrazant » Sun Jan 14, 2018 10:03 pm

is there update for v23? I try v22 on game v23 but its not work

Mrt19
Noobzor
Noobzor
Posts: 13
Joined: Sun Jul 09, 2017 4:38 pm
Reputation: 0

Re: The Universim v23

Post by Mrt19 » Thu Jan 18, 2018 9:36 pm

same problem

srattex
Cheater
Cheater
Posts: 34
Joined: Mon Jul 24, 2017 12:13 am
Reputation: 1

Re: The Universim v23

Post by srattex » Sat Jan 27, 2018 10:38 pm

Any table update guys??? Thanks!

Sylvtreeya
What is cheating?
What is cheating?
Posts: 1
Joined: Wed Jan 31, 2018 11:02 am
Reputation: 0

Re: The Universim v23

Post by Sylvtreeya » Wed Jan 31, 2018 11:04 am

please update to v23

Post Reply

Who is online

Users browsing this forum: Yahoo [Bot]