Code Injection - Full
So in most games to really do any thing cool, you will want or need to use code injection.
Now there are different types of injection, the most common methods are DLL injection and assembly injection. We will be going over assembly injection.
Specifically what's called a full assembly injection.
Any game will work but I will be using Windows Solitaire.
First you will need to find the score.
If unsure how to find values see: Finding Values - Integers
Finding the injection point
After you have found the address of the score then we can find the injection point. Where this is depends on what we want to do so in Windows Solitaire the score decreases over timer, lets make it increase the score.
First we need to find the code we want so select the address of the score in the address list, right-click and select find out what writes to this address.
A message window will tell you this will attach the debugger of Cheat Engine to the current process. Continue?. click the yes button.
If you are having trouble try changing the debugger settings.
Now we wait for the score to decrease.
Then you should see some code come up in the debugger window, with the number of times it as written to the address:
Code: Select all
FF8396CC - 41 83 43 14 FE - add dword ptr [r11+14],-02
Once some code comes up you can click the stop button.
Then click on the line of code, this should enable the buttons, now click the show disassembler button.
This will bring up the disassembler / memory view form.
With the disassembler / memory view form open, on the highlighted line of code right-click and select find out what addresses this instruction accesses.
Now let it run for a while, make some moves, and see what comes up. In most games this is a good thing to do because many functions deal with multiple addresses.
So we are looking to see that this only accesses the score address.
So if only the address we want (the score) comes up then we can close the window, click the form close button or click the stop button then it becomes a close button and just click it again.
Now on the memory view form menu select tools then select auto assemble, or just press Ctrl+A.
Writing the injection code
We'll setup a script to enable and disable the injection.
The easiest way to do this is with templates, so on the form's menu click template then click cheat table framework code.
This will give you the base code needed to add a script to the table.
So now on the form's menu click template then click full injection.
You will be prompted for the address if you haven't changed the selected code in the memory view form, then click the ok button.
This will give you the base code needed for a full injection.
Now the easiest thing to do here, since the code already adds is to just make the number positive.
Note the yellow lines, these mark code changes on that line.so here line 26 is showing that it has changed.
Now we can add this to the table, so on the form's menu click file then click assign to current cheat table.
This should create a memory record in the tables address list.
Testing the injection code
Now we are ready to test the code.
With the memory view form visible, looking at the injection line, enable the script (click the box or with it selected press the space bar).
You should see a red X in the enabler box, a jump command, and the same code as before the injection on the next line, if all went as planed.
Now check that the score gets increased.
Now disable the script, same steps as enabling, and the red X should be gone and the original code should be injected back.
Now check that the score gets decreased.
And that's that basics of assembly injection with Cheat Engine.
See also External links