Re: Sniper Elite 5 [Engine:Asura]
Posted: Fri Jun 03, 2022 6:40 pm
Community Cheat Tables of Cheat Engine
https://fearlessrevolution.com/
I know but no one is able to answer me...
What ?Fullcodes wrote: ↑Sat Jun 04, 2022 12:33 amalways level up, just test
[ENABLE]
aobscanmodule(EXPADDTest,sniper5_dx12.exe,48 89 46 08 48 8B 74 24 38) // should be unique
alloc(newmem,$1000,EXPADDTest)
label(code)
label(return)
newmem:
cmp [rsi+30],2
jne code
mov rax,[sniper5_dx12.exe+27CF5A8]
code:
mov [rsi+08],rax
mov rsi,[rsp+38]
jmp return
EXPADDTest:
jmp newmem
nop 4
return:
registersymbol(EXPADDTest)
[DISABLE]
EXPADDTest:
db 48 89 46 08 48 8B 74 24 38
unregistersymbol(EXPADDTest)
dealloc(newmem)
aob for cemixerced wrote: ↑Sat Jun 04, 2022 12:56 amWhat ?Fullcodes wrote: ↑Sat Jun 04, 2022 12:33 amalways level up, just test
[ENABLE]
aobscanmodule(EXPADDTest,sniper5_dx12.exe,48 89 46 08 48 8B 74 24 38) // should be unique
alloc(newmem,$1000,EXPADDTest)
label(code)
label(return)
newmem:
cmp [rsi+30],2
jne code
mov rax,[sniper5_dx12.exe+27CF5A8]
code:
mov [rsi+08],rax
mov rsi,[rsp+38]
jmp return
EXPADDTest:
jmp newmem
nop 4
return:
registersymbol(EXPADDTest)
[DISABLE]
EXPADDTest:
db 48 89 46 08 48 8B 74 24 38
unregistersymbol(EXPADDTest)
dealloc(newmem)
They are mouse buttons. I use a Logitech G502 Hero mouse, so they are these:
Code: Select all
mov rcx,5A // Z
..
mov rcx,56 // V
..
mov rcx,6 // VK_XBUTTON2
..
mov rcx,5 // VK_XBUTTON1
So hotfix 3 ( ) of the CH trainer now has this: Invisible Player.SunBeam wrote: ↑Wed Jun 01, 2022 7:48 pmBut then again, if it's crashing your ass, then set a breakpoint on the hook point of "Disable Sound Detection", exit the function or when it hits > Ctrl+G > [rsp] and place a 0xC3 (ret) at the function appointed by the call above it. Then you won't have the "writing to the address (0,1)" problem. That simple.
Code: Select all
sniper5_dx12.exe+75A320 - 40 55 - push rbp // prologue
sniper5_dx12.exe+75A322 - 48 8D AC 24 60FFFFFF - lea rbp,[rsp-000000A0]
..
..
SkipSoundDetection - 48 8B 3E - mov rdi,[rsi] <<
sniper5_dx12.exe+75A370- 48 85 FF - test rdi,rdi
sniper5_dx12.exe+75A373- 0F84 150E0000 - je sniper5_dx12.exe+75B18E
sniper5_dx12.exe+75A379- 48 89 9C 24 B0010000 - mov [rsp+000001B0],rbx
Code: Select all
PlayersOnly - 48 8B C4 - mov rax,rsp
sniper5_dx12.exe+6AA343- 48 83 EC 68 - sub rsp,68 { 104 }
sniper5_dx12.exe+6AA347- 80 3D A77DFE01 00 - cmp byte ptr [sniper5_dx12.exe+26920F5],00 { (1),0 }
sniper5_dx12.exe+6AA34E- 0F84 E3040000 - je sniper5_dx12.exe+6AA837
sniper5_dx12.exe+6AA354- 48 89 58 08 - mov [rax+08],rbx
sniper5_dx12.exe+6AA358- 48 89 68 18 - mov [rax+18],rbp
sniper5_dx12.exe+6AA35C- 48 89 70 20 - mov [rax+20],rsi
sniper5_dx12.exe+6AA360- 48 89 78 F8 - mov [rax-08],rdi
sniper5_dx12.exe+6AA364- 0F29 70 E8 - movaps [rax-18],xmm6
sniper5_dx12.exe+6AA368- 0F29 78 D8 - movaps [rax-28],xmm7
sniper5_dx12.exe+6AA36C- E8 3F3C0C00 - call sniper5_dx12.exe+76DFB0 <<
sniper5_dx12.exe+6AA371- 48 8D 0D 78A0E301 - lea rcx,[sniper5_dx12.exe+24E43F0] { (140D32F80) }
sniper5_dx12.exe+6AA378- E8 A3FF0A00 - call sniper5_dx12.exe+75A320 << SkipSoundDetection function
sniper5_dx12.exe+6AA37D- 48 8D 0D 5C9FE301 - lea rcx,[sniper5_dx12.exe+24E42E0] { (140D268F8) } << exits here
Code: Select all
sniper5_dx12.exe+6AA36C- E8 3F3C0C00 - call sniper5_dx12.exe+76DFB0
Code: Select all
sniper5_dx12.exe+6AA36C - E9 3F6295FF - jmp sniper5_dx12.exe+5B0 { ->->38CE0000 }
..
..
38CE0000 - 48 31 C0 - xor rax,rax
38CE0003 - FF25 00000000 71A36A4001000000 - jmp sniper5_dx12.exe+6AA371
Code: Select all
sniper5_dx12.exe+76DFB0 - 48 89 5C 24 10 - mov [rsp+10],rbx
sniper5_dx12.exe+76DFB5 - 48 89 6C 24 18 - mov [rsp+18],rbp
sniper5_dx12.exe+76DFBA - 57 - push rdi
sniper5_dx12.exe+76DFBB - 48 83 EC 20 - sub rsp,20 { 32 }
sniper5_dx12.exe+76DFBF - E8 0C040000 - call sniper5_dx12.exe+76E3D0
sniper5_dx12.exe+76DFC4 - F0 FF 05 E971D701 - lock inc [sniper5_dx12.exe+24E51B4] { (0) }
sniper5_dx12.exe+76DFCB - 44 8B 05 DA71D701 - mov r8d,[g_SkipVisualDetection] { (1) }
sniper5_dx12.exe+76DFD2 - 33 ED - xor ebp,ebp
sniper5_dx12.exe+76DFD4 - 45 85 C0 - test r8d,r8d
..
..
sniper5_dx12.exe+76E0FE - 89 05 E8860502 - mov [sniper5_dx12.exe+27C67EC],eax { (0) }
sniper5_dx12.exe+76E104 - FF C7 - inc edi
sniper5_dx12.exe+76E106 - 3B F8 - cmp edi,eax << this is a fucking iteration register, not a return value!
sniper5_dx12.exe+76E108 - 0F82 72FFFFFF - jb sniper5_dx12.exe+76E080
sniper5_dx12.exe+76E10E - 48 8B 74 24 30 - mov rsi,[rsp+30]
sniper5_dx12.exe+76E113 - 48 8B 5C 24 38 - mov rbx,[rsp+38]
sniper5_dx12.exe+76E118 - 48 8B 6C 24 40 - mov rbp,[rsp+40]
sniper5_dx12.exe+76E11D - 48 83 C4 20 - add rsp,20 { 32 }
sniper5_dx12.exe+76E121 - 5F - pop rdi
sniper5_dx12.exe+76E122 - C3 - ret
I guess he will "fix" the first one just as he fixed the Invisibility option: either bluntly using my No Stagger God Mode script -or- deriving his hook spot from mine.. Will post the outcome as soon as HF4 is live. Cuz that's what I'm force to do, track his stealing modus operandi. I'm glad google crawler will make this popular'Unlimited Health' bugs the player so that they are constantly on red bloody screen and being told they need to heal
'Unlimited Satchel Charges' doesn't work