FearLess Cheat Engine

Posted: **Sat Aug 08, 2020 6:58 pm**

axellslade wrote: ↑
Sat Aug 08, 2020 3:18 pm
teinousi said app, I'm pretty sure he/she is talking about the FearlessRevolution app.
It has the "invisible" option, but those aren't maintained by you guys I'm sure.
[Link]
[Link]

yes this is , sorry im spelling wrong the app’s name , but now i back to ct version its no crash anymore

Posted: **Sat Aug 08, 2020 7:10 pm**

Hello! Could anyone give me an idea on how to find the timer on the Hunter's Lodge trials? Couldn't find it and I don't have a good controller (and can't afford one now), so it's a real pain to complete some in time having to get some precise shots with it. :/

Posted: **Sat Aug 08, 2020 7:13 pm**

rafaelrennow wrote: ↑
Sat Aug 08, 2020 7:10 pm
Hello! Could anyone give me an idea on how to find the timer on the Hunter's Lodge trials? Couldn't find it and I don't have a good controller (and can't afford one now), so it's a real pain to complete some in time having to get some precise shots with it. :/

If at first you don't succeed, try, try again.

Or use 'concentration'.

Posted: **Sat Aug 08, 2020 7:20 pm**

HylianZ wrote: ↑
Sat Aug 08, 2020 7:13 pm

rafaelrennow wrote: ↑
Sat Aug 08, 2020 7:10 pm
Hello! Could anyone give me an idea on how to find the timer on the Hunter's Lodge trials? Couldn't find it and I don't have a good controller (and can't afford one now), so it's a real pain to complete some in time having to get some precise shots with it. :/
If at first you don't succeed, try, try again.

Or use 'concentration'.

I'm using it and, btw, thanks A LOT for that, but my controller is so bad it's still getting hard to do. I tried reducing the sensibility, but it didn't change much for me, so I'm screwed. lol

Posted: **Sat Aug 08, 2020 7:23 pm**

rafaelrennow wrote: ↑
Sat Aug 08, 2020 7:20 pm
I'm using it and, btw, thanks A LOT for that, but my controller is so bad it's still getting hard to do. I tried reducing the sensibility, but it didn't change much for me, so I'm screwed. lol

Why not just use KB/M? Even if it's just for the trials?

Posted: **Sat Aug 08, 2020 7:34 pm**

HylianZ wrote: ↑
Sat Aug 08, 2020 7:23 pm

rafaelrennow wrote: ↑
Sat Aug 08, 2020 7:20 pm
I'm using it and, btw, thanks A LOT for that, but my controller is so bad it's still getting hard to do. I tried reducing the sensibility, but it didn't change much for me, so I'm screwed. lol
Why not just use KB/M? Even if it's just for the trials?

Oh, well, my mouse is on its final hours too. Hahahahaha!

Posted: **Sun Aug 09, 2020 12:59 am**

Has anyone found a way to edit the weapon and armor mods?

Posted: **Sun Aug 09, 2020 1:00 am**

Doc Bones wrote: ↑
Sun Aug 09, 2020 12:59 am
Has anyone found a way to edit the weapon and armor mods?

Yeah. We've hacked everything, we're just not sharing it. Hahahahahaha! Suffer!

Posted: **Sun Aug 09, 2020 1:03 am**

HylianZ wrote: ↑
Sun Aug 09, 2020 1:00 am

Doc Bones wrote: ↑
Sun Aug 09, 2020 12:59 am
Has anyone found a way to edit the weapon and armor mods?
Yeah. We've hacked everything, we're just not sharing it. Hahahahahaha! Suffer!

T-thanks

Posted: **Sun Aug 09, 2020 2:08 am**

Work in progress, sorry for the long wait. But there will be some goodies inside

BR,
Sun

Posted: **Sun Aug 09, 2020 4:24 am**

Hi, not really a professional with game-hacking or assembly or anything, (in fact, I hardly know anything but the basics...) but I put together two things I needed, and thought I'd share in case someone else wanted them. First is a script that finds the current amount of inventory spaces used (for materials ONLY) when you perform a variety of actions, with the simplest probably being just opening your inventory. You can set the value to whatever you want, and the game will remember it (i.e., you can have 50 items, set it to one, pick up another item, and it'll continue counting up from 1), or you can just freeze it. The second script finds the amount of time you've spent in a hunting trial (Tested it in the first hunting trial area, as that's all I've been to.) You can then either just freeze it, or set it to whatever you want so you can breeze through your trials. Hope they both work!

Code: Select all

<?xml version="1.0" encoding="utf-8"?>
<CheatTable>
  <CheatEntries>
    <CheatEntry>
      <ID>3</ID>
      <Description>"Find Inventory"</Description>
      <Options moHideChildren="1"/>
      <LastState/>
      <VariableType>Auto Assembler Script</VariableType>
      <AssemblerScript>{ Game   : HorizonZeroDawn.exe
  Version: 
  Date   : 2020-08-08
  Author : Oridjinn

  This script does blah blah blah
}

[ENABLE]

aobscanmodule(INJECT,HorizonZeroDawn.exe,41 8B 46 6C 89 44 24 3C) // should be unique
alloc(newmem,$1000,"HorizonZeroDawn.exe"+1539249)
alloc(InvPoint,8)
registersymbol(InvPoint)

label(code)
label(return)

newmem:

code:
  push rax
  mov rax,InvPoint
  mov [rax],r14
  pop rax
  mov eax,[r14+6C]
  mov [rsp+3C],eax
  jmp return

INJECT:
  jmp newmem
  nop 3
return:
registersymbol(INJECT)

[DISABLE]

INJECT:
  db 41 8B 46 6C 89 44 24 3C

unregistersymbol(INJECT)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "HorizonZeroDawn.exe"+1539249

"HorizonZeroDawn.exe"+1539221: 41 8B 46 58           -  mov eax,[r14+58]
"HorizonZeroDawn.exe"+1539225: 89 44 24 28           -  mov [rsp+28],eax
"HorizonZeroDawn.exe"+1539229: 41 8B 46 5C           -  mov eax,[r14+5C]
"HorizonZeroDawn.exe"+153922D: 89 44 24 2C           -  mov [rsp+2C],eax
"HorizonZeroDawn.exe"+1539231: 41 8B 46 60           -  mov eax,[r14+60]
"HorizonZeroDawn.exe"+1539235: 89 44 24 30           -  mov [rsp+30],eax
"HorizonZeroDawn.exe"+1539239: 41 8B 46 64           -  mov eax,[r14+64]
"HorizonZeroDawn.exe"+153923D: 89 44 24 34           -  mov [rsp+34],eax
"HorizonZeroDawn.exe"+1539241: 41 8B 46 68           -  mov eax,[r14+68]
"HorizonZeroDawn.exe"+1539245: 89 44 24 38           -  mov [rsp+38],eax
// ---------- INJECTING HERE ----------
"HorizonZeroDawn.exe"+1539249: 41 8B 46 6C           -  mov eax,[r14+6C]
"HorizonZeroDawn.exe"+153924D: 89 44 24 3C           -  mov [rsp+3C],eax
// ---------- DONE INJECTING  ----------
"HorizonZeroDawn.exe"+1539251: 41 8B 46 70           -  mov eax,[r14+70]
"HorizonZeroDawn.exe"+1539255: 89 44 24 40           -  mov [rsp+40],eax
"HorizonZeroDawn.exe"+1539259: 41 8B 46 74           -  mov eax,[r14+74]
"HorizonZeroDawn.exe"+153925D: 89 44 24 44           -  mov [rsp+44],eax
"HorizonZeroDawn.exe"+1539261: 48 85 DB              -  test rbx,rbx
"HorizonZeroDawn.exe"+1539264: 74 66                 -  je HorizonZeroDawn.exe+15392CC
"HorizonZeroDawn.exe"+1539266: 48 8B 43 30           -  mov rax,[rbx+30]
"HorizonZeroDawn.exe"+153926A: 48 85 C0              -  test rax,rax
"HorizonZeroDawn.exe"+153926D: 74 5D                 -  je HorizonZeroDawn.exe+15392CC
"HorizonZeroDawn.exe"+153926F: 48 8B 70 30           -  mov rsi,[rax+30]
}
</AssemblerScript>
      <CheatEntries>
        <CheatEntry>
          <ID>4</ID>
          <Description>"Inventory Space"</Description>
          <LastState Value="49" RealAddress="153A2D8B4FC"/>
          <VariableType>4 Bytes</VariableType>
          <Address>InvPoint</Address>
          <Offsets>
            <Offset>6C</Offset>
          </Offsets>
        </CheatEntry>
      </CheatEntries>
    </CheatEntry>
    <CheatEntry>
      <ID>10</ID>
      <Description>"Find Hunting Timer"</Description>
      <Options moHideChildren="1"/>
      <LastState/>
      <VariableType>Auto Assembler Script</VariableType>
      <AssemblerScript>{ Game   : HorizonZeroDawn.exe
  Version: 
  Date   : 2020-08-08
  Author : Oridjinn

  This script does blah blah blah
}

[ENABLE]

aobscanmodule(HuntingTimer,HorizonZeroDawn.exe,C5 FA 11 41 1C 84 C0 75 72) // should be unique
alloc(newmem,$1000,"HorizonZeroDawn.exe"+B78502)
alloc(HuntTime,8)
registersymbol(HuntTime)

label(code)
label(return)

newmem:

code:
  push rax
  mov rax,HuntTime
  mov [rax],rcx
  pop rax
  vmovss [rcx+1C],xmm0
  jmp return

HuntingTimer:
  jmp newmem
return:
registersymbol(HuntingTimer)

[DISABLE]

HuntingTimer:
  db C5 FA 11 41 1C

unregistersymbol(HuntingTimer)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "HorizonZeroDawn.exe"+B78502

"HorizonZeroDawn.exe"+B784D5: 4C 8D 35 3C 9A 1A 01  -  lea r14,[HorizonZeroDawn.exe+1D21F18]
"HorizonZeroDawn.exe"+B784DC: 0F 1F 40 00           -  nop dword ptr [rax+00]
"HorizonZeroDawn.exe"+B784E0: 48 8B 3E              -  mov rdi,[rsi]
"HorizonZeroDawn.exe"+B784E3: 48 8B 4F 20           -  mov rcx,[rdi+20]
"HorizonZeroDawn.exe"+B784E7: 80 79 10 00           -  cmp byte ptr [rcx+10],00
"HorizonZeroDawn.exe"+B784EB: 0F 84 8C 00 00 00     -  je HorizonZeroDawn.exe+B7857D
"HorizonZeroDawn.exe"+B784F1: C5 FA 10 41 1C        -  vmovss xmm0,[rcx+1C]
"HorizonZeroDawn.exe"+B784F6: C5 F8 2F 41 14        -  vcomiss xmm0,xmm0,[rcx+14]
"HorizonZeroDawn.exe"+B784FB: C5 FA 58 C6           -  vaddss xmm0,xmm0,xmm6
"HorizonZeroDawn.exe"+B784FF: 0F 93 C0              -  setae al
// ---------- INJECTING HERE ----------
"HorizonZeroDawn.exe"+B78502: C5 FA 11 41 1C        -  vmovss [rcx+1C],xmm0
// ---------- DONE INJECTING  ----------
"HorizonZeroDawn.exe"+B78507: 84 C0                 -  test al,al
"HorizonZeroDawn.exe"+B78509: 75 72                 -  jne HorizonZeroDawn.exe+B7857D
"HorizonZeroDawn.exe"+B7850B: 48 8B 47 20           -  mov rax,[rdi+20]
"HorizonZeroDawn.exe"+B7850F: C5 FA 10 40 1C        -  vmovss xmm0,[rax+1C]
"HorizonZeroDawn.exe"+B78514: C5 F8 2F 40 14        -  vcomiss xmm0,xmm0,[rax+14]
"HorizonZeroDawn.exe"+B78519: 72 62                 -  jb HorizonZeroDawn.exe+B7857D
"HorizonZeroDawn.exe"+B7851B: 80 7F 34 00           -  cmp byte ptr [rdi+34],00
"HorizonZeroDawn.exe"+B7851F: 74 06                 -  je HorizonZeroDawn.exe+B78527
"HorizonZeroDawn.exe"+B78521: 80 7F 35 00           -  cmp byte ptr [rdi+35],00
"HorizonZeroDawn.exe"+B78525: 75 0E                 -  jne HorizonZeroDawn.exe+B78535
}
</AssemblerScript>
      <CheatEntries>
        <CheatEntry>
          <ID>11</ID>
          <Description>"No description"</Description>
          <LastState Value="10.71066475" RealAddress="14E1508569C"/>
          <VariableType>Float</VariableType>
          <Address>HuntTime</Address>
          <Offsets>
            <Offset>1C</Offset>
          </Offsets>
        </CheatEntry>
      </CheatEntries>
    </CheatEntry>
  </CheatEntries>
</CheatTable>

Posted: **Sun Aug 09, 2020 4:34 am**

Oridjinn wrote: ↑
Sun Aug 09, 2020 4:24 am
First is a script that finds the current amount of inventory spaces

Nicely done! Using your inventory space AOB, I found the offsets for weapons, armor, and modifications. Now you can go ham with all of them.

Code: Select all

<?xml version="1.0" encoding="utf-8"?>
<CheatTable>
  <CheatEntries>
    <CheatEntry>
      <ID>3</ID>
      <Description>"Find Inventory"</Description>
      <Options moHideChildren="1"/>
      <LastState/>
      <VariableType>Auto Assembler Script</VariableType>
      <AssemblerScript>{ Game   : HorizonZeroDawn.exe
  Version: 
  Date   : 2020-08-08
  Author : Oridjinn

  This script does blah blah blah
}

[ENABLE]

aobscanmodule(INJECT,HorizonZeroDawn.exe,41 8B 46 6C 89 44 24 3C) // should be unique
alloc(newmem,$1000,"HorizonZeroDawn.exe"+1539249)
alloc(InvPoint,8)
registersymbol(InvPoint)

label(code)
label(return)

newmem:

code:
  push rax
  mov rax,InvPoint
  mov [rax],r14
  pop rax
  mov eax,[r14+6C]
  mov [rsp+3C],eax
  jmp return

INJECT:
  jmp newmem
  nop 3
return:
registersymbol(INJECT)

[DISABLE]

INJECT:
  db 41 8B 46 6C 89 44 24 3C

unregistersymbol(INJECT)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "HorizonZeroDawn.exe"+1539249

"HorizonZeroDawn.exe"+1539221: 41 8B 46 58           -  mov eax,[r14+58]
"HorizonZeroDawn.exe"+1539225: 89 44 24 28           -  mov [rsp+28],eax
"HorizonZeroDawn.exe"+1539229: 41 8B 46 5C           -  mov eax,[r14+5C]
"HorizonZeroDawn.exe"+153922D: 89 44 24 2C           -  mov [rsp+2C],eax
"HorizonZeroDawn.exe"+1539231: 41 8B 46 60           -  mov eax,[r14+60]
"HorizonZeroDawn.exe"+1539235: 89 44 24 30           -  mov [rsp+30],eax
"HorizonZeroDawn.exe"+1539239: 41 8B 46 64           -  mov eax,[r14+64]
"HorizonZeroDawn.exe"+153923D: 89 44 24 34           -  mov [rsp+34],eax
"HorizonZeroDawn.exe"+1539241: 41 8B 46 68           -  mov eax,[r14+68]
"HorizonZeroDawn.exe"+1539245: 89 44 24 38           -  mov [rsp+38],eax
// ---------- INJECTING HERE ----------
"HorizonZeroDawn.exe"+1539249: 41 8B 46 6C           -  mov eax,[r14+6C]
"HorizonZeroDawn.exe"+153924D: 89 44 24 3C           -  mov [rsp+3C],eax
// ---------- DONE INJECTING  ----------
"HorizonZeroDawn.exe"+1539251: 41 8B 46 70           -  mov eax,[r14+70]
"HorizonZeroDawn.exe"+1539255: 89 44 24 40           -  mov [rsp+40],eax
"HorizonZeroDawn.exe"+1539259: 41 8B 46 74           -  mov eax,[r14+74]
"HorizonZeroDawn.exe"+153925D: 89 44 24 44           -  mov [rsp+44],eax
"HorizonZeroDawn.exe"+1539261: 48 85 DB              -  test rbx,rbx
"HorizonZeroDawn.exe"+1539264: 74 66                 -  je HorizonZeroDawn.exe+15392CC
"HorizonZeroDawn.exe"+1539266: 48 8B 43 30           -  mov rax,[rbx+30]
"HorizonZeroDawn.exe"+153926A: 48 85 C0              -  test rax,rax
"HorizonZeroDawn.exe"+153926D: 74 5D                 -  je HorizonZeroDawn.exe+15392CC
"HorizonZeroDawn.exe"+153926F: 48 8B 70 30           -  mov rsi,[rax+30]
}
</AssemblerScript>
      <CheatEntries>
        <CheatEntry>
          <ID>28</ID>
          <Description>"Weapons"</Description>
          <LastState Value="1" RealAddress="18B0BA77778"/>
          <VariableType>4 Bytes</VariableType>
          <Address>InvPoint</Address>
          <Offsets>
            <Offset>58</Offset>
          </Offsets>
        </CheatEntry>
        <CheatEntry>
          <ID>25</ID>
          <Description>"Outfits"</Description>
          <LastState Value="2" RealAddress="18B0BA77788"/>
          <VariableType>4 Bytes</VariableType>
          <Address>InvPoint</Address>
          <Offsets>
            <Offset>68</Offset>
          </Offsets>
        </CheatEntry>
        <CheatEntry>
          <ID>26</ID>
          <Description>"Modifications"</Description>
          <LastState Value="3" RealAddress="18B0BA77784"/>
          <VariableType>4 Bytes</VariableType>
          <Address>InvPoint</Address>
          <Offsets>
            <Offset>64</Offset>
          </Offsets>
        </CheatEntry>
        <CheatEntry>
          <ID>24</ID>
          <Description>"Resources"</Description>
          <LastState Value="75" RealAddress="18B0BA7778C"/>
          <VariableType>4 Bytes</VariableType>
          <Address>InvPoint</Address>
          <Offsets>
            <Offset>6C</Offset>
          </Offsets>
        </CheatEntry>
      </CheatEntries>
    </CheatEntry>
  </CheatEntries>
</CheatTable>

Posted: **Sun Aug 09, 2020 5:09 am**

So here's something I came up with. If you dissasemble an item, this will give you the address of its quantity. If you wanted to get 99 of something, discard it, then change it to 99 and reopen your menu.

Code: Select all

<?xml version="1.0" encoding="utf-8"?>
<CheatTable>
  <CheatEntries>
    <CheatEntry>
      <ID>38</ID>
      <Description>"Item Finder"</Description>
      <Options moHideChildren="1"/>
      <LastState/>
      <VariableType>Auto Assembler Script</VariableType>
      <AssemblerScript>{ Game   : HorizonZeroDawn.exe
  Version: 
  Date   : 2020-08-08
  Author : Zach

  This script does blah blah blah
}

[ENABLE]

aobscanmodule(Item_Find,HorizonZeroDawn.exe,89 41 58 48 8B 8B C8 01 00 00) // should be unique
alloc(newmem,$1000,Item_Find)
globalalloc(ItemFind,4)
label(code)
label(return)

newmem:
push rax,
lea rax,[rcx+58]
mov [ItemFind],rax
pop rax
code:
  mov [rcx+58],eax
  mov rcx,[rbx+000001C8]
  jmp return

Item_Find:
  jmp newmem
  nop 5
return:
registersymbol(Item_Find)

[DISABLE]

Item_Find:
  db 89 41 58 48 8B 8B C8 01 00 00

unregistersymbol(Item_Find)
dealloc(newmem)
dealloc(ItemFind)
{
// ORIGINAL CODE - INJECTION POINT: "HorizonZeroDawn.exe"+FEA930

"HorizonZeroDawn.exe"+FEA90B: 5D                             -  pop rbp
"HorizonZeroDawn.exe"+FEA90C: C3                             -  ret 
"HorizonZeroDawn.exe"+FEA90D: 8B 41 58                       -  mov eax,[rcx+58]
"HorizonZeroDawn.exe"+FEA910: 3B D0                          -  cmp edx,eax
"HorizonZeroDawn.exe"+FEA912: 48 89 9C 24 30 01 00 00        -  mov [rsp+00000130],rbx
"HorizonZeroDawn.exe"+FEA91A: 48 8B 59 48                    -  mov rbx,[rcx+48]
"HorizonZeroDawn.exe"+FEA91E: 4C 89 A4 24 00 01 00 00        -  mov [rsp+00000100],r12
"HorizonZeroDawn.exe"+FEA926: 44 8B E0                       -  mov r12d,eax
"HorizonZeroDawn.exe"+FEA929: 44 0F 4C E2                    -  cmovl r12d,edx
"HorizonZeroDawn.exe"+FEA92D: 41 2B C4                       -  sub eax,r12d
// ---------- INJECTING HERE ----------
"HorizonZeroDawn.exe"+FEA930: 89 41 58                       -  mov [rcx+58],eax
"HorizonZeroDawn.exe"+FEA933: 48 8B 8B C8 01 00 00           -  mov rcx,[rbx+000001C8]
// ---------- DONE INJECTING  ----------
"HorizonZeroDawn.exe"+FEA93A: 48 85 C9                       -  test rcx,rcx
"HorizonZeroDawn.exe"+FEA93D: 0F 84 3D 02 00 00              -  je HorizonZeroDawn.exe+FEAB80
"HorizonZeroDawn.exe"+FEA943: 48 81 C1 88 02 00 00           -  add rcx,00000288
"HorizonZeroDawn.exe"+FEA94A: 4C 89 AC 24 F8 00 00 00        -  mov [rsp+000000F8],r13
"HorizonZeroDawn.exe"+FEA952: 48 8D 15 D7 94 79 01           -  lea rdx,[HorizonZeroDawn.exe+2783E30]
"HorizonZeroDawn.exe"+FEA959: E8 F2 06 B7 FF                 -  call HorizonZeroDawn.exe+B5B050
"HorizonZeroDawn.exe"+FEA95E: 4C 8B E8                       -  mov r13,rax
"HorizonZeroDawn.exe"+FEA961: 48 85 C0                       -  test rax,rax
"HorizonZeroDawn.exe"+FEA964: 0F 84 0E 02 00 00              -  je HorizonZeroDawn.exe+FEAB78
"HorizonZeroDawn.exe"+FEA96A: 48 8D 48 58                    -  lea rcx,[rax+58]
}
</AssemblerScript>
      <CheatEntries>
        <CheatEntry>
          <ID>39</ID>
          <Description>"No description"</Description>
          <LastState Value="46" RealAddress="1C24F14C7E8"/>
          <VariableType>4 Bytes</VariableType>
          <Address>ItemFind</Address>
          <Offsets>
            <Offset>0</Offset>
          </Offsets>
        </CheatEntry>
      </CheatEntries>
    </CheatEntry>
  </CheatEntries>
</CheatTable>

And here's another, Infinite Shop Quantity:

Code: Select all

<?xml version="1.0" encoding="utf-8"?>
<CheatTable>
  <CheatEntries>
    <CheatEntry>
      <ID>48</ID>
      <Description>"Infinite Shop Quantity"</Description>
      <LastState Activated="1"/>
      <VariableType>Auto Assembler Script</VariableType>
      <AssemblerScript>{ Game   : HorizonZeroDawn.exe
  Version: 
  Date   : 2020-08-09
  Author : Zach

  This script does blah blah blah
}

[ENABLE]

aobscanmodule(INJECT,HorizonZeroDawn.exe,29 7C C8 20 48 8B 03) // should be unique
alloc(newmem,$1000,"HorizonZeroDawn.exe"+132F826)

label(code)
label(return)

newmem:

code:
  mov [rax+rcx*8+20],#10
  mov rax,[rbx]
  jmp return

INJECT:
  jmp newmem
  nop 2
return:
registersymbol(INJECT)

[DISABLE]

INJECT:
  db 29 7C C8 20 48 8B 03

unregistersymbol(INJECT)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "HorizonZeroDawn.exe"+132F826

"HorizonZeroDawn.exe"+132F808: E8 E3 C0 FE FF        -  call HorizonZeroDawn.exe+131B8F0
"HorizonZeroDawn.exe"+132F80D: 83 F8 FF              -  cmp eax,-01
"HorizonZeroDawn.exe"+132F810: 74 41                 -  je HorizonZeroDawn.exe+132F853
"HorizonZeroDawn.exe"+132F812: 3B 43 0C              -  cmp eax,[rbx+0C]
"HorizonZeroDawn.exe"+132F815: 73 3C                 -  jae HorizonZeroDawn.exe+132F853
"HorizonZeroDawn.exe"+132F817: 48 98                 -  cdqe 
"HorizonZeroDawn.exe"+132F819: 48 8D 0C 80           -  lea rcx,[rax+rax*4]
"HorizonZeroDawn.exe"+132F81D: 48 8B 03              -  mov rax,[rbx]
"HorizonZeroDawn.exe"+132F820: 83 3C C8 00           -  cmp dword ptr [rax+rcx*8],00
"HorizonZeroDawn.exe"+132F824: 74 2D                 -  je HorizonZeroDawn.exe+132F853
// ---------- INJECTING HERE ----------
"HorizonZeroDawn.exe"+132F826: 29 7C C8 20           -  sub [rax+rcx*8+20],edi
"HorizonZeroDawn.exe"+132F82A: 48 8B 03              -  mov rax,[rbx]
// ---------- DONE INJECTING  ----------
"HorizonZeroDawn.exe"+132F82D: 83 7C C8 20 00        -  cmp dword ptr [rax+rcx*8+20],00
"HorizonZeroDawn.exe"+132F832: 7F 1F                 -  jg HorizonZeroDawn.exe+132F853
"HorizonZeroDawn.exe"+132F834: 48 83 C0 08           -  add rax,08
"HorizonZeroDawn.exe"+132F838: 48 8D 14 C8           -  lea rdx,[rax+rcx*8]
"HorizonZeroDawn.exe"+132F83C: 48 8B CB              -  mov rcx,rbx
"HorizonZeroDawn.exe"+132F83F: E8 AC C0 FE FF        -  call HorizonZeroDawn.exe+131B8F0
"HorizonZeroDawn.exe"+132F844: 83 F8 FF              -  cmp eax,-01
"HorizonZeroDawn.exe"+132F847: 74 0A                 -  je HorizonZeroDawn.exe+132F853
"HorizonZeroDawn.exe"+132F849: 8B D0                 -  mov edx,eax
"HorizonZeroDawn.exe"+132F84B: 48 8B CB              -  mov rcx,rbx
}
</AssemblerScript>
    </CheatEntry>
  </CheatEntries>
</CheatTable>

Posted: **Sun Aug 09, 2020 7:36 am**

SunBeam wrote: ↑
Sun Aug 09, 2020 2:08 am
Work in progress, sorry for the long wait. But there will be some goodies inside

BR,
Sun

Hey Sun, amazing work so far! Thank you for your findings! Is there any way by chance to find a way to disable photomode restrictions in cutscenes and towns? I believe many would love to have a bit more freedom while taking screens in this amazing looking game! Without stress ofc

Posted: **Sun Aug 09, 2020 8:24 am**

Game version: CDX day1 | 10.5 v6278995
Table Version: 20211110_v0.9

.:|FEATURES|:.

Ammo (activate only 1)
- Unlimited Ammo
- Unlimited Ammo + Rapid fire + Multishot
Unlimited Skillpoints (spend some to update)
Inventory Limits (temporary)
Freecraft/freebuy (adds spent materials back) (DEACTIVATE WHEN DONE BUYING/CRAFTING)
Set FOV (to apply: change fov in settings to any, apply, exit options menu)
- activate script and enter desired FOV (don't go above 150)
Pointers:
- God Mode (1=on,0=off)
- Current Hp
- extra HP (200+extra)

.:|NOTES|:.

"Unlimited Ammo" - side effect= gives you one extra scrap per trade
"Unlimited Ammo + Rapid fire + Multishot" - IS VERY CHEATY, USE ONLY IF YOU WANT TO NUKE ROBOTS
"Inventory Limits" - resets on game reload
"Freecraft/freebuy" - conflicts with ammo usage, deactivate when done using for upgrade/buy
FOV - game gets kinda weird when you set fov over 150 so avoid that, use only(50-150).

.:|CHANGELOG|:.
v0.2: fixed unlimited health
v0.3: just realized you can upgrade quiver, so now setting 99 arrows with "Unlimited Ammo" script to prevent waste
v0.4: removed AOB to find hp, that location was shared with enemies and not safe to freeze (hp bar glitch). Use pointer to freeze player hp, if it doesn't work try another [if you prefered old way which let you easily detect enemies its under DO NOT TOUCH]
v0.5: added pointers for arrows, bow slow time, temporary max hp, temporary inventory limits
v0.6: updated pointers for arrows[changed after capacity upgrades] (see image for alternates if they don't work)
v0.7: changed logic of Unlimited Ammo, (side effect now is you get one extra scrap per trade)
v0.8: added custom FOV, updated bow slow time pointer
v0.9: updated for 10.5 v6278995

FearLess Cheat Engine

Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]

Re: Horizon Zero Dawn [Engine:Decima]