Re: Assassin's Creed: Origins - AnvilNEXT64 Cheats and more..
Posted: Sat Nov 04, 2017 4:14 am
Here it is
The Trainer->Tool; is attached to this reply. Enjoy!
The Trainer->Tool; is attached to this reply. Enjoy!
Community Cheat Tables of Cheat Engine
https://fearlessrevolution.com/
1: Download the toolcoreymacttlenz wrote: ↑Sat Nov 04, 2017 4:52 amThe Trainer->Tool; is attached to this reply. Enjoy!
ATTACHMENTS
ACO.TeleportToWaypoint.Trainer.Tool.v1.03.rar
What to do with this? Please help
Code: Select all
0000000140698E50 | 33 FF | xor edi,edi | Message pump start of internal queue
0000000140698E52 | 0F B6 83 80 07 00 00 | movzx eax,byte ptr ds:[rbx+780] |
0000000140698E59 | 84 C0 | test al,al |
0000000140698E5B | 74 5B | je acorigins_dump.140698EB8 |
0000000140698E5D | 80 BB D0 00 00 00 00 | cmp byte ptr ds:[rbx+D0],0 |
0000000140698E64 | 74 04 | je acorigins_dump.140698E6A |
0000000140698E66 | 33 FF | xor edi,edi |
0000000140698E68 | EB 17 | jmp acorigins_dump.140698E81 |
0000000140698E6A | 48 8B D3 | mov rdx,rbx | Arg2
0000000140698E6D | 48 8D 0D 64 8D DD 03 | lea rcx,qword ptr ds:[144471BD8] | Arg1
0000000140698E74 | E8 67 6F FF FF | call <acorigins_dump.sub_14068FDE0> | sub_14068FDE0
0000000140698E79 | 48 8B F8 | mov rdi,rax |
0000000140698E7C | 48 85 C0 | test rax,rax |
0000000140698E7F | 75 3C | jne acorigins_dump.140698EBD |
0000000140698E81 | 0F B6 8B 80 07 00 00 | movzx ecx,byte ptr ds:[rbx+780] |
0000000140698E88 | 84 C9 | test cl,cl |
0000000140698E8A | 74 C6 | je acorigins_dump.140698E52 |
0000000140698E8C | F0 FF 05 1D 99 DD 03 | lock inc dword ptr ds:[1444727B0] |
0000000140698E93 | 83 C9 FF | or ecx,FFFFFFFF |
0000000140698E96 | F0 0F C1 8B 88 07 00 00 | lock xadd dword ptr ds:[rbx+788],ecx |
0000000140698E9E | 83 F9 01 | cmp ecx,1 |
0000000140698EA1 | 79 0C | jns acorigins_dump.140698EAF |
0000000140698EA3 | 48 8D 8B 90 07 00 00 | lea rcx,qword ptr ds:[rbx+790] |
0000000140698EAA | E8 31 5A D3 FF | call acorigins_dump.1403CE8E0 |
0000000140698EAF | F0 FF 0D FA 98 DD 03 | lock dec dword ptr ds:[1444727B0] |
0000000140698EB6 | EB 9A | jmp acorigins_dump.140698E52 |
0000000140698EB8 | 48 85 FF | test rdi,rdi |
0000000140698EBB | 74 0B | je acorigins_dump.140698EC8 |
0000000140698EBD | 48 8B D7 | mov rdx,rdi | Arg2
0000000140698EC0 | 48 8B CB | mov rcx,rbx | Arg1
0000000140698EC3 | E8 08 D8 FF FF | call <acorigins_dump.sub_1406966D0> | sub_1406966D0
0000000140698EC8 | 0F B6 83 80 07 00 00 | movzx eax,byte ptr ds:[rbx+780] |
0000000140698ECF | 84 C0 | test al,al |
0000000140698ED1 | 0F 85 79 FF FF FF | jne <acorigins_dump.sub_140698E50> |
Honestly this game is really worth buying. I mean if you don't have the money I respect that, but if you do and rather want to spend it on a new piece of cloth or something, just buy it. For me it's the game of the year.
Yes, it is worth every penny.seikur0 wrote: ↑Sat Nov 04, 2017 9:55 amHonestly this game is really worth buying. I mean if you don't have the money I respect that, but if you do and rather want to spend it on a new piece of cloth or something, just buy it. For me it's the game of the year.
Also ACO uses Denuvo, but since that's been cracked before, they protect their Denuvo with VMProtect, which apparently makes it quite tricky to crack.
Looks like you've tried hard enough to get stuck , will add the collision check sometime today, we released the tool like that for a reason ...
Wow, None-Compete Contract ? Really dude, Now why would you think that i am competing against you guys ? just because I worked with SunBeam to release a couple of options that I already had the code for ?.CaliberCH wrote: ↑Sat Nov 04, 2017 2:22 pmnice you were able to finally put one out AFTER we did. I wondered where you were for awhile after my posting, but it appears you went off to help others do what we did. Gotta help the competition, right? Did you suddenly find the magic sauce to make your teleport stew? And your 'perfect' version already has problems (see posting above mine,where the person is 'stucked in objects'). Funny, nobody else is reporting problems with our teleport (or health, for that matter) using as instructed on our site, but whatevs.. "Is it because you couldn't disable collisions, block player movement"<-- is completely irrelevant and not even necessary, and if you are being honest about it, likely requires 4 times the code injection points rather than the simple 2 you already checked our trainer for to see how it works. READ THE INSTRUCTIONS ON HOW TO USE THE TRAINER. You should also tell 'BooBoo' who is DDS and not some fictitious 'girl' (who worked with us, then went out on his own, then came up with some new identity to try and get around the non-compete contract he signed), to add the instructions NOT TO CLICK ON ACTUAL LOCATION ICONS, and just a spot on the map (i.e. a road, blank land, etc.).
I mainly came here, took the time to register, mainly to slap you around a bit since it's mostly YOU with the anti CH postings here, as if we are 100% in your mind at all times. Why else would you post a 1800 word reply, lol.
"Also makes you look stupid, considering the superiority fumes you put up in your condescending conversations."<-- It's YOU who are posting the superiority postings, hence the reason I came here in the first place. I've been perfectly fine 'working like a slave' over at CH and avoiding all this conflict, but it seems some just can't do the same. Can you just post your 'findings' and keep CH out of it? What we do, when we do it, and how much our trainers do or don't do is no concern to people here unless they want to buy a subscription. I thought we got beyond this bullshit with our behind the scenes Sniper and Ghost Recon discussions, which I STILL never responded here to YOUR condescending and judgmental accusations (to try and keep the peace, since Fearless was JUST starting back up from the CE problems). Like I said, we could probably like one another if you could get past YOUR perceived problems with CH.
You said we couldn't make the option, I came here to show you that we did.. FIRST. Cause.. effect. The reason I write things like 'most things cannot kill you', is so I don't look like a moron promising 'PERFECT' like you just did, only to discover that when we hack other people's 100 MB executables, we might miss something with the way our options work, or there may be some special scripted event where your health option do nothing. Until you play a 55 hour game start to finish and never died with the health option on, then you might be careful saying what your options do or don't do. And we don't look at our 90,000+ subscribers as 'plebs'. Is that how you see the throngs of people who come here basically begging for free scripts to cheat their games, as 'plebs'? But keep plugging along, you will get there eventually with you 'perfect teleport', and we will have released 300 more trainers to the 'plebs' by then..
Have a nice day all at Fearless. Glad to see the community is still helping one another here, and 'mostly' civil.
best,
Cal
The queue handler I posted is where most work ends up in the engine, which is then picked up by one of the threads running the queue (it uses several) and they then handle the message, calling the function pointed by it. It could help (if you can dissect the message format ) finding everything in the engine, really.SunBeam wrote: ↑Sun Nov 05, 2017 3:46 amNot sure exactly how the snippet above is to be used in my research, but sure, I'll have a go at it. What I can tell you about Timestop is it checks a DWORD in World. In-game value is -1, while paused is 0 (map or menu open). Also, you can get World here:Otis_Inf wrote: ↑Sat Nov 04, 2017 9:09 amTIL trainermakers have bosses and deadlines. The world is a strange place at times...
Anyone in for a timestop? Not that useful for trainers, but hey, it's important for everyone else
v1.0.3
ACOrigins.exe+11E2821 - 83 B9 58140000 00 - cmp dword ptr [rcx+00001458],00 <<< READ timestop. > 0 -> stop engine (not camera!)
edit.
Sunbeam as you love picking apart Anvil (advil? )Next, here's the internal command pump (3D engines create messages they store in a queue which is then handled by a thread and which calls the function associated with the message. It's a good start if you want to see what's going where in the system)
(code)
Looking forward to it 1 item on my list I couldn't find was how to manually toggle the hud elements at will. Hopefully with your pointers I get fresh ideas where to look...P.S.: I'll post my research in the upcoming days. With structure names and member-functions.