Cheat Tool Set - A tool like CE

H

H4x0rBattie

Cheater
Joined
Oct 21, 2017
Messages
44
Hi.

Cheat tool set (CTS) is a tool like CE written in C# .NET and C++.



Current version: 1.19 (As of April 20th 2020) Changes: https://overlayhack.com/cheat-tool-set#856

FEATURES:

Memory scanner (Currently uses up to 12 threads depending on your CPU)
Memory viewer / editor
Memory pointer scanner
IAT (Import Address Table) scanning tool
Debug viewer
Windows debugger: Read, Write and instruction execute (Find out what addresses this instruction accesses).
Disassembler - Includes a built-in assembly signature maker plugin that attempts to generate unique signatures
Dump strings tool
Dump the main executable
A basic DLL injector

OFFICIAL SITE: https://overlayhack.com/cheat-tool-set/62EDB419

Download is available on the official site.

What is the difference compared to Cheat Engine (CE)?

- One of a kind memory viewer/editor. The memory viewer has a traditional view and a disassembly mode.
- The software has unique functionality that is worth trying out. There are some optimizations missing but they come on time.
- The core functionality is pretty much the same.
- There is no x86 (32-bit) support

Memory viewer itself in the tool makes the distinction to the competition.

To cut a long story short: Previously unfound values can be found with the tool. The tool is a work in progress.

CREDITS: In the about box

https://youtu.be/clkw998stIo
 
SunBeam

SunBeam

Administrator
Staff member
Administrator
Joined
Feb 4, 2018
Messages
3,484
Expect heavy criticism :D
 
J

JohnFK

Expert Cheater
Joined
Aug 29, 2017
Messages
52
A tool like CE with always online DRM, lol. Crashes without internet, offline version?
 
H

H4x0rBattie

Cheater
Joined
Oct 21, 2017
Messages
44
Are you kidding or trolling? The software only attempts to connect to internet if you click the "Check for update" button.

The software does not require internet connection.
 
J

JohnFK

Expert Cheater
Joined
Aug 29, 2017
Messages
52
In sandboxie with restricted internet access it crashes. Not running your closed source obfuscated exe outside.
Your program has same but less features open source alternatives have like CE, cryengine, squalr or reclass (which all run fine sandboxed btw).

Maybe spending work on features first instead of all that hard obfuscation? Just my opinion. I'll stick to CE.
 
H

H4x0rBattie

Cheater
Joined
Oct 21, 2017
Messages
44
I did unplug the internet cable and the software started just fine on my computer. You use what you want. If you bother reading changelog I attached; you should figure out that you can do scans with CTS that are not possible with any other existing tool.

There are features in the tool that are not available in any other current tool, if you bother looking at the tool closer. There was a bug prior 1.02 and the software crashed on some systems upon starting the software.

Can you tell us what are the features other tool offers (cryengine, squalr or reclass ) that CE does not offer? ReClass differs from the listed tools with it's memory viewer.

I did tested a long time ago cryengine but I did not found any reason why should I use it instead of CE. It seemed to me more like informative tool instead of really challenging CE with it's features. Did I missed something?

I also recently tested squalr and did not found anything it offers that CE does not. ReClass differs from the other tool by it's memory viewer and class generation.

My implementation of memory viewer is similar to ReClass but once again if you take a closer look. It's not exactly the same. Also I haven't finished memory viewer yet. Remember it's me, just one guy working on the tool. Each tool is difficult or very difficult to code and requires a special knowledge as well. It is very time consuming as well.

For example memory viewer in CTS has 2 Byte and 4 Byte alignment (the default 8). I don't remember seeing these features in any other tool where you can switch between the three.

Also I don't remember ReClass having ability to write memory unless recently implemented. ReClass is a good tool but I wanted to implement things my own
ways.

Have you even looked at CTS pointer scanner?

AFAIK CTS is the second tool in the world that has pointer scanning feature implemented that is comparable to CE with new features. For example pointer paths are copyable. You can dereference a pointer path. A custom path scan. There are major features speeding up things literally. This is the reason I coded the tool.

Do a level 1 static pointer path scan with CTS. It takes about 15 seconds on my i7 system and memory usage is really low. CE always generates a pointer map.

If you need to do bigger than level 6 and 0x400 (512) scans, then you might want to use CE instead. That's why my tool has the option (Generate a pointer map). Ticking it enables CE equivalent behavior but it is not needed for a smaller scans. I hope you now get where the tool is coming from.

A paste from the official site: The software does not automatically connect to internet; only if you click the "Check for update" button. No personal data is sent.

No I did not spend over one year coding and coming up with just another tool that does not offer anything new.

And what comes to closed source. There are already enough source codes available. If others release source code, it does not mean I have to do that as well. It's been about a week after initial release. I cannot release the source code that fast.

Changelog for 1.01:

- Fixed an issue with "A sequence of values" scan with value type "Hex".
- "A sequence of values" scan supports now also the following data types: "Byte" and "2 Bytes"
- "A sequence of values" scan can now find values that are padded by "n" bytes
- Added "2 Byte" alignment in memory viewer
- Added "Browse this address in memory viewer" option in main view

Changelog for 1.02:

- Synchronize concurrent dictionary entries (in memory results of a current scan) accordingly with main view.
- Fixed a possible crash (unhandled exception) upon starting the software that occurred on some systems: https://overlayhack.com/cheat-tool-set/52
- Unknown initial value scan supports now also the following data types: "Byte" and "2 Bytes"
- Added an option to narrow down results in main view based on a value times changed count

The last feature requires a little more explanation:

Normally when you scan for a byte value (0 or 1). This scan type is the most difficult due to the fact there are a lot more of results compared to any other scan.

You usually use game mechanics to get values changed according to your preference i.e opening or closing something in the menu.

What if those values are constantly changing between 0,1 or changing between any other byte values and there are several hundred or thousands of results and you can't get the list any smaller?

This is exactly where this feature is coming from. You know the exact count as you're using game mechanics ...

Version 1.02 download: https://overlayhack.com/CTS_v102.rar
Virustotal results: https://www.virustotal.com/en-gb/file/66a31bb9c68ca0cc6869df5e3f2c062eee728606eef40f5cc9fcfa0bc878435d/analysis/1530752878/

They've reviewed the software at softpedia: http://www.softpedia.com/get/Programming/Debuggers-Decompilers-Dissasemblers/Cheat-Tool-Set.shtml


PS. Perhaps admin want to update the first post with the new version as I cannot seem to be able to edit that post any longer.

I already have a CE equivalent VEH debugger implemented (Read/Write/Execute). I have improvements in my mind for Execute (Find out what addresses this instruction access) once again speeding things up but I haven't started implementing GUI yet.

Also disassembly view is missing but these features are the most difficult and requires more time. I will think about will I even bother with this feature as CE already have it.
 
J

JohnFK

Expert Cheater
Joined
Aug 29, 2017
Messages
52
AFAIK CTS is the second tool in the world that has pointer scanning feature implemented that is comparable to CE with new features.​

Third tool after CH cosmos

I cannot release the source code that fast.
Ugh, github? You can bring up a website, a download, let it review at softpedia but releasing source is a matter of time?
But well, I guess you misunderstood me. You can release it closed source as much as you want, I don't complain because it is. I just tell you that there are WORKING and BETTEr solutions which are EVEN open source.

I already have a CE equivalent VEH debugger implemented (Read/Write/Execute). I have improvements in my mind for Execute (Find out what addresses this instruction access) once again speeding things up but I haven't started implementing GUI yet.
Why releasing it then when its not finished? Why not just getting things done and then nobody like me comes, test your tool and figures that it has less features than existing solutions.

- VEH debugger (or debugger in general)
- Does your tool can open and execute CE scripts?

I couldn't see both when trying it out. This will be the reasons why nobody will care about your tool. It will just be another CE clone with less features like all the others and because you put a lot of affort into hiding your source, nobody can help you to improve it.

You can dislike me for giving you feedback you don't like to hear but I'm just honest with you. We all got CE, its a beast. Its working, it has a huge community with thousands of scripts. Everything is open source, everything runs stable and very well for years. Why should we bother with yours? Its just like Ch cosmos, they tried to copy CE features, made it worser than original, decided to stay closed source and people obviously dont use it. Make sure you get these two things done and then you will have the chance that more people trying out your tool.
 
H

H4x0rBattie

Cheater
Joined
Oct 21, 2017
Messages
44
Which one from the tools you listed can do this? https://fearlessrevolution.com/threads/cheat-tool-set-a-tool-like-ce.7279/post-50136. The answer is none. This feature in CTS is already enough to make it unique tool. Not even Scylla can do that ...

If things really are as you said, why you're begging so badly for the source code? Why people are asking for CE alternative in forums?

I never advertised that a VEH debugger is currently included. I just said that I've implemented one. And what comes to the source code anyway, it requires a lot of documentation etc. My native language is not english and I have often serious issues to document the code.

Also if CE really offered all what I needed, why do you think I even bothered? The tool is not a literal port of "CE". This is not where the tool is coming from.

Why you would want to open CE scripts with CTS? If you don't get it now where the tool is coming from, it's not for you.

Of course the tool has to be released some day. You need to also realize that CE has been developed for about 18 years. CTS for about a year.

Pretty much based on your current answers it's almost pointless to continue any discussion with you in the future.
 
J

JohnFK

Expert Cheater
Joined
Aug 29, 2017
Messages
52
The tool is not a literal port of "CE"
You advertised it yourself as "tool like CE". I made clear yours isn't. Not even close. It does nothing better CE does. It has features CE hasnt but these features like import table are about 0% important for game hacking. You can be proud as fuck about it, the reality is that 99,9% of users here don't care about.

If things really are as you said, why you're begging so badly for the source code?
Just for you: Keep your source code to yourself. I dont care, as I just keep using CE. Hope that's clear now.

I knew you would hate me for telling you the truth. But as SunBeam said, the tools "like CE" are popping out from nowhere, claim to be different. Turned out to be pointless and stucking in maybe two handful of people using it. That's the truth. You can be proud to be the 2nd, yo ucan be proud to figured something out. In the end people like me and 99% others care about functionality. They don't like installing a tool just to switch to another all the time because the first one is missing core features. I usually don't even do this kind of discussions, just registered the account here at time where downloading tables required one. Yet again I decided to give you a honest feedback, so I did. And now you can at least be happy that I am also no longer interested in a further discussion. Good luck with future development.
 
F

Frenchie

Noobzor
Joined
Jul 19, 2018
Messages
8
As someone who has used several memory tools, any effort to make a new one is welcomed be me. I think the first tool was Cheat' o Matic, followed by WIn Hack, etc. All these programmers had one thing in common, they made it for themselves, asked no money for it and appreciated any positive comments for their hard work. For all the haters that see it as a CE rip-off don't bother giving a bad reply nobody in the world cares about.

What memory tools are missing are multiple search windows. You could give each search a "tab". So, while search for a health value you could also look for an ammo value. When your results are narrowed down, you'll have an address range on both and that could be used as a "comparison" if you expect these 2 address ranges to be close. Then you might want to see both results next to each other.

Some games might relocate their values, so you need research a known value and add/subtract a value to match the new address. Some games have value sections that are not fixed, so you might need to "relocate" each section.

And there might be an option to save your table as a "trainer".

Each tool programmer must have a basis to work from and then give it special features like above. In the end programmers learn from each other and benefit comparing notes/sources. This all benefits us the end-user. It doesn't matter if you have 10 or 5000 users. As long as you enjoy programming it.
 
koderkrazy

koderkrazy

Expert Cheater
Fearless Donors
Table Maker
Joined
Jun 17, 2018
Messages
255
What memory tools are missing are multiple search windows. You could give each search a "tab".
As a workaround. you can attach multiple cheat engines to single game exe at a time.
 
H

H4x0rBattie

Cheater
Joined
Oct 21, 2017
Messages
44
Each tool programmer must have a basis to work from and then give it special features like above. In the end programmers learn from each other and benefit comparing notes/sources. This all benefits us the end-user. It doesn't matter if you have 10 or 5000 users. As long as you enjoy programming it.
I've just released v1.04 (updated the download link in the first post) so it always points to the latest version.

Changes in 1.04: https://overlayhack.com/cheat-tool-set#110
 
H

H4x0rBattie

Cheater
Joined
Oct 21, 2017
Messages
44
Hi. I've released v1.06. I've just edited the first post and the download link is there.

Changelog for v1.06:

Main:

Added "Array of bytes" scan

Pointer scanner:

Pointer map generation is significantly faster than in any prior release
Fixed issues when "Generate a pointer map" was enabled
Results are sortable by a column

Value finder:

The maximum offset can be bigger than 0x7FFF
Fixed an issue with re-scan

Memory viewer:

Execute "Add" on a background thread to avoid UI thread "Stopped from responding" when adding a 102400 bytes
 
H

H4x0rBattie

Cheater
Joined
Oct 21, 2017
Messages
44
v1.08

Hi. I've just released v108. If the debugger worked with your game. Please post the name of the game.

Main:

"First scan" has been optimized a bit and is at least two times faster than in any prior release
"Next scan" has been optimized and is considerably faster than in any prior release

"Unknown initial value" scan: Added an option to dump process memory to file instead of using an in memory copy
"Unknown initial value" scan: Added "Smaller than ..." and "Bigger than ..." comparison

Renamed "Value finder" to "Debug viewer" as it is more appropriate name
Restored I/O stats (seems to work reliably now)

The cancel button should work now

Debugger:

Resolve prior assembly instruction more reliably
Added 'Replace with code that does nothing (NOP)'
Added 'Restore the original instruction' for your convenience
Fixed an issue that prevented some instructions from appearing in the list
Attempt to show also "register offset" value in the output


Debug viewer:

Fixed an issue with "String value" scan that prevented results from appearing in the list
Added unicode string support

Minor other bug fixes
 
TheyCallMeTim13

TheyCallMeTim13

Enchanter
Staff member
Administrator
Fearless Donors
Talents
Joined
Mar 3, 2017
Messages
1,794
Frenchie said:
...What memory tools are missing are multiple search windows. You could give each search a "tab"...
Try Ctrl+T on the CE main form, or CE main menu then File->Add scan tab.
 
TheyCallMeTim13

TheyCallMeTim13

Enchanter
Staff member
Administrator
Fearless Donors
Talents
Joined
Mar 3, 2017
Messages
1,794
Re: v1.08

H4x0rBattie said:
Noticed your not posting/updating at the CEF, why so? Did we run you off there?
 
J

JohnFK

Expert Cheater
Joined
Aug 29, 2017
Messages
52
Estimated scan time is completely off. For example it starts with 50 seconds, counts down to 30 seconds, then counts down and up for a while and ends with -1 and your progress bar never resets making me thought it would still scan. Overall scan duration was 122 seconds. Game was 64-bit and settings were unknown scan 4 bytes.

More interesting results comparing to CE:
Cheat Tool Set: 62 seconds
CheatEngine: <3 seconds

Next, take the results and scan for "Changed":
Cheat Tool Set: 147 seconds
CheatEngine: <3 seconds

As you can see, there is great potential for optimizing your memory scanner.

For the debugger why you only support 1 breakpoint at all, whats about the other 3 debug registers? Also I cannot find xmm registers. And how can I add a breakpoint in memory viewer and step through?

//edit: Your VEH debugger does not inject anything into the target game nor does AddVectoredExceptionHandler gets called but DebugActiveProcess and WaitForDebugEvent. What kind of VEH is this? Looks like a normal windows debugger to me :|

//edit2: Yep, its definitely NOT a veh debugger:

CE:


Attached my test application for verification. But I've also noticed its much easier to figure out you are using windows debugger API by just calling IsDebuggerPresent which returns true for your tool, with a VEH debugger it would return false.

I hope nobody paid you $300 for your source code yet as this goes close to be scam.
 

Attachments

H

H4x0rBattie

Cheater
Joined
Oct 21, 2017
Messages
44
Thanks JohnFK for pointing out the issue.
As you can see, there is great potential for optimizing your memory scanner.
Yes and I did. 1.09 dev. version has it fixed. "Unknown initial value" scan "First scan" is now faster than CE. After the first scan has completed for the "Unknown initial value". The first "Next scan" is clearly faster than CE. The more RAM the opened process consumes, the more clearly you will see the difference.

This comparison is not even fair because CE is using on my system 8x threads whilst CTS uses just 4x threads. Also you must have game paused before you do any comparison anyway.

CE's progress (6.8.1) bar is also off. It gives you an illusion that a scan has completed though it is not.

You can re-produce it at any time by doing as follows:

1) Start "Unknown initial value" with game that uses at least 2GB of RAM
2) Wait until progress lets you know that "Next scan" has been "completed". Immediately after that click the "Next scan" button again and below happens:



CE allows you to "Next scan" after there is nothing to write to files. I measured this with a stopwatch and 1.09 dev. version of CTS was clearly faster. I think this is a bug in CE but anyway.
For the debugger why you only support 1 breakpoint at all, whats about the other 3 debug registers? Also I cannot find xmm registers. And how can I add a breakpoint in memory viewer and step through?
It is easy to ask for "Why this and that". Use CE if you need more than one. These features do not happen by clicking on the fingers. Why should I re-invent the wheel? Debugger features are the most difficult ones to implement and I will only add what I need most and I do not discuss beforehand what I need.
I hope nobody paid you $300 for your source code yet as this goes close to be scam.
And now? On other CE forum some claimed (if I remember correctly) that I haven't coded the software ...

The tool is using 4x threads vs CE's 8 and is now (1.09 dev. version) notably faster with "Unknown initial value" scan. Also did not you noticed "Dump process memory to file" option that does not exist in any other current tool for "Unknown initial value" scan.

And why do you even care? It's easy to say because you did not develop the program for a second. The definition of scam is something else therefore; please do not mention my tool and scam in same sentence unless you're here to slander.

Let me ask you another question. Lets say if it was you who worked 4 hours on the tool every day for over a year. How much you would ask for it?

PS.

I do not want to brag but I've seen really a lot of effort into the software. That is why I do not accept these false claims in any form.
 
J

JohnFK

Expert Cheater
Joined
Aug 29, 2017
Messages
52
H4x0rBattie said:
The definition of scam is something else therefore; please do not mention my tool and scam in same sentence unless you're here to slander.
You wrote your software has a VEH debugger which is not true as I've proven above. Instead its using a windows debugger API. You sell something and advertise it with features it doesn't have and that's what makes it scam and why I hope nobody paid that money to you in expectation of a VEH debugger source code.

That's scam per definition but can easily be solved by just correct your feature list or add a real VEH debugger.
 
Top