[OUTDATED] KILLSQUAD by Novarama studio

[Celeb2312]

Game Name: Killsquad
Game Engine: Unreal Engine
Game Version: 0.6.1
Options Required: Cheat Table with:

• Infinite Health
• No Cooldown Skills
• Movement Speed

Game/Steam Website: [Link]
Other Info: [wiki]N/A[/wiki]

Ive, intentionally not requested a few things that I believe would possibly break the game and/or take away from what makes it fun such as Damage multiplier or material dupe or Item stat change. Hint Hint* feel free to add those. it may or may not be a challenge.

As always I thank you guys for the great effort and time you put into creating these tables.

[Xpg]

Agree with what you said but I think it would be perfect if we can add :
Add 10 000 credits
Add 1000 DNA

[fantomas]

Agree with what you said but I think it would be perfect if we can add :
Add 10 000 credits
Add 1000 DNA

Try this code (based on v0.6.0o)

Code: Select all

[ENABLE]
{ Game   : Killsquad
  Version: 0.6.0o
  Date   : 2019-07-16
  Author : fantomas
}

aobscanmodule(aobAdnScan,Game-Win64-Shipping.exe,8B 49 10 48 8D 54 24 30 03)
alloc(newmem,$100,aobAdnScan)

label(code)
label(return)

newmem:
  mov [rcx+10],#9999

code:
  mov ecx,[rcx+10]
  lea rdx,[rsp+30]
  jmp return

aobAdnScan:
  jmp newmem
  nop
  nop
  nop
return:
registersymbol(aobAdnScan)

[DISABLE]
aobAdnScan:
  db 8B 49 10 48 8D 54 24 30

unregistersymbol(aobAdnScan)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "Game-Win64-Shipping.exe"+776081

"Game-Win64-Shipping.exe"+776060: 48 8B CF                 -  mov rcx,rdi
"Game-Win64-Shipping.exe"+776063: E8 E8 DA AC FF           -  call Game-Win64-Shipping.exe+243B50
"Game-Win64-Shipping.exe"+776068: 48 63 44 24 30           -  movsxd  rax,dword ptr [rsp+30]
"Game-Win64-Shipping.exe"+77606D: 83 F8 FF                 -  cmp eax,-01
"Game-Win64-Shipping.exe"+776070: 74 0C                    -  je Game-Win64-Shipping.exe+77607E
"Game-Win64-Shipping.exe"+776072: 48 8B C8                 -  mov rcx,rax
"Game-Win64-Shipping.exe"+776075: 48 C1 E1 05              -  shl rcx,05
"Game-Win64-Shipping.exe"+776079: 48 03 0F                 -  add rcx,[rdi]
"Game-Win64-Shipping.exe"+77607C: EB 03                    -  jmp Game-Win64-Shipping.exe+776081
"Game-Win64-Shipping.exe"+77607E: 48 8B CB                 -  mov rcx,rbx
// ---------- INJECTING HERE ----------
"Game-Win64-Shipping.exe"+776081: 8B 49 10                 -  mov ecx,[rcx+10]
"Game-Win64-Shipping.exe"+776084: 48 8D 54 24 30           -  lea rdx,[rsp+30]
// ---------- DONE INJECTING  ----------
"Game-Win64-Shipping.exe"+776089: 03 CE                    -  add ecx,esi
"Game-Win64-Shipping.exe"+77608B: 4C 8B C5                 -  mov r8,rbp
"Game-Win64-Shipping.exe"+77608E: 8B F3                    -  mov esi,ebx
"Game-Win64-Shipping.exe"+776090: 0F 49 F1                 -  cmovns esi,ecx
"Game-Win64-Shipping.exe"+776093: 48 8B CF                 -  mov rcx,rdi
"Game-Win64-Shipping.exe"+776096: E8 B5 DA AC FF           -  call Game-Win64-Shipping.exe+243B50
"Game-Win64-Shipping.exe"+77609B: 48 63 44 24 30           -  movsxd  rax,dword ptr [rsp+30]
"Game-Win64-Shipping.exe"+7760A0: 83 F8 FF                 -  cmp eax,-01
"Game-Win64-Shipping.exe"+7760A3: 74 0A                    -  je Game-Win64-Shipping.exe+7760AF
"Game-Win64-Shipping.exe"+7760A5: 48 8B D8                 -  mov rbx,rax
}

[fantomas]

NoCost (Equipment & Weapons)

Code: Select all

{ Game   : Killsquad
  Version: 0.6.0o
  Date   : 2019-07-16
  Author : fantomas
}

[ENABLE]
aobscanmodule(aobEquipmentsAndWeaponsAmeliorationScan,Game-Win64-Shipping.exe,8B 43 18 48 8D 53 20 48)
alloc(newmem,$100,aobEquipmentsAndWeaponsAmeliorationScan)
registersymbol(aobEquipmentsAndWeaponsAmeliorationScan)

newmem:
aobEquipmentsAndWeaponsAmeliorationScan+02:
  db 24

[DISABLE]
aobEquipmentsAndWeaponsAmeliorationScan+02:
  db 18

unregistersymbol(aobEquipmentsAndWeaponsAmeliorationScan)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "Game-Win64-Shipping.exe"+67AE98

"Game-Win64-Shipping.exe"+67AE75: 48 89 74 24 10        -  mov [rsp+10],rsi
"Game-Win64-Shipping.exe"+67AE7A: 57                    -  push rdi
"Game-Win64-Shipping.exe"+67AE7B: 48 83 EC 40           -  sub rsp,40
"Game-Win64-Shipping.exe"+67AE7F: 48 8B 02              -  mov rax,[rdx]
"Game-Win64-Shipping.exe"+67AE82: 48 8B DA              -  mov rbx,rdx
"Game-Win64-Shipping.exe"+67AE85: 48 89 01              -  mov [rcx],rax
"Game-Win64-Shipping.exe"+67AE88: 48 8B F1              -  mov rsi,rcx
"Game-Win64-Shipping.exe"+67AE8B: 48 83 C1 08           -  add rcx,08
"Game-Win64-Shipping.exe"+67AE8F: 48 83 C2 08           -  add rdx,08
"Game-Win64-Shipping.exe"+67AE93: E8 78 29 BC FF        -  call Game-Win64-Shipping.exe+23D810
// ---------- INJECTING HERE ----------
"Game-Win64-Shipping.exe"+67AE98: 8B 43 18              -  mov eax,[rbx+18]
"Game-Win64-Shipping.exe"+67AE9B: 48 8D 53 20           -  lea rdx,[rbx+20]
// ---------- DONE INJECTING  ----------
"Game-Win64-Shipping.exe"+67AE9F: 48 8D 4E 20           -  lea rcx,[rsi+20]
"Game-Win64-Shipping.exe"+67AEA3: 89 46 18              -  mov [rsi+18],eax
"Game-Win64-Shipping.exe"+67AEA6: E8 C5 42 3B 00        -  call Game-Win64-Shipping.exe+A2F170
"Game-Win64-Shipping.exe"+67AEAB: 48 8D 53 38           -  lea rdx,[rbx+38]
"Game-Win64-Shipping.exe"+67AEAF: 48 8D 4E 38           -  lea rcx,[rsi+38]
"Game-Win64-Shipping.exe"+67AEB3: E8 58 29 BC FF        -  call Game-Win64-Shipping.exe+23D810
"Game-Win64-Shipping.exe"+67AEB8: 48 8D 53 48           -  lea rdx,[rbx+48]
"Game-Win64-Shipping.exe"+67AEBC: 48 8D 4E 48           -  lea rcx,[rsi+48]
"Game-Win64-Shipping.exe"+67AEC0: E8 4B 29 BC FF        -  call Game-Win64-Shipping.exe+23D810
"Game-Win64-Shipping.exe"+67AEC5: 0F B6 43 58           -  movzx eax,byte ptr [rbx+58]
}

--Edit--

Fast Kill (may or may not work)

Code: Select all

{ Game   : Killsquad
  Version: 0.6.0o
  Date   : 2019-07-16
  Author : fantomas
}

[ENABLE]
aobscanmodule(aobEnemySharedHealthScan,Game-Win64-Shipping.exe,F3 0F 10 71 08 EB * 48 85)
alloc(newmem,$100,aobEnemySharedHealthScan)

label(code)
label(return)

newmem:
  cmp r13,0  //0:player
  je code
  movss [rcx+08],xmm2
  movss xmm6,[rcx+08]
  jmp return

code:
  movss xmm6,[rcx+08]
  jmp return

aobEnemySharedHealthScan:
  jmp newmem
return:
registersymbol(aobEnemySharedHealthScan)

[DISABLE]
aobEnemySharedHealthScan:
  db F3 0F 10 71 08

unregistersymbol(aobEnemySharedHealthScan)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "Game-Win64-Shipping.exe"+36B11B

"Game-Win64-Shipping.exe"+36B0F8: 84 C0                 -  test al,al
"Game-Win64-Shipping.exe"+36B0FA: 75 02                 -  jne Game-Win64-Shipping.exe+36B0FE
"Game-Win64-Shipping.exe"+36B0FC: 33 DB                 -  xor ebx,ebx
"Game-Win64-Shipping.exe"+36B0FE: 48 8B 55 DF           -  mov rdx,[rbp-21]
"Game-Win64-Shipping.exe"+36B102: 48 8B 8F B8 00 00 00  -  mov rcx,[rdi+000000B8]
"Game-Win64-Shipping.exe"+36B109: 48 8B 52 20           -  mov rdx,[rdx+20]
"Game-Win64-Shipping.exe"+36B10D: E8 6E E4 FC FF        -  call Game-Win64-Shipping.exe+339580
"Game-Win64-Shipping.exe"+36B112: 48 63 4B 44           -  movsxd  rcx,dword ptr [rbx+44]
"Game-Win64-Shipping.exe"+36B116: 48 03 C8              -  add rcx,rax
"Game-Win64-Shipping.exe"+36B119: 74 29                 -  je Game-Win64-Shipping.exe+36B144
// ---------- INJECTING HERE ----------
"Game-Win64-Shipping.exe"+36B11B: F3 0F 10 71 08        -  movss xmm6,[rcx+08]
// ---------- DONE INJECTING  ----------
"Game-Win64-Shipping.exe"+36B120: EB 22                 -  jmp Game-Win64-Shipping.exe+36B144
"Game-Win64-Shipping.exe"+36B122: 48 85 DB              -  test rbx,rbx
"Game-Win64-Shipping.exe"+36B125: 74 0A                 -  je Game-Win64-Shipping.exe+36B131
"Game-Win64-Shipping.exe"+36B127: 48 8B 0B              -  mov rcx,[rbx]
"Game-Win64-Shipping.exe"+36B12A: E8 71 73 02 00        -  call Game-Win64-Shipping.exe+3924A0
"Game-Win64-Shipping.exe"+36B12F: EB 10                 -  jmp Game-Win64-Shipping.exe+36B141
"Game-Win64-Shipping.exe"+36B131: 48 8B 8F B8 00 00 00  -  mov rcx,[rdi+000000B8]
"Game-Win64-Shipping.exe"+36B138: 48 8D 55 CF           -  lea rdx,[rbp-31]
"Game-Win64-Shipping.exe"+36B13C: E8 AF 3E FD FF        -  call Game-Win64-Shipping.exe+33EFF0
"Game-Win64-Shipping.exe"+36B141: 0F 28 F0              -  movaps xmm6,xmm0
}

[Celeb2312]

Ill test those later tonight and let you know

[mdsyahir]

all i ever want is the cooldown, huhu

[fantomas]

all i ever want is the cooldown, huhu

I know, and I would have make it gladely but to find the value (in the most cases, it is a 0/1 float value that's increasing/decreasing), I have to use 'Unknown initial value' scan type which it is asking more ram and I only have 4gb ram. It is a real pain in ass to find it. So I'm doing with what I have, sorry.

[Xinfon]

this error for me
please upload exe. ct

[Celeb2312]

Agree with what you said but I think it would be perfect if we can add :
Add 10 000 credits
Add 1000 DNA

My Friend says Credit/DNA is stupid simple to do. Address is not hidden in memory, basic 4 byte scan with value freeze works.

[Idlehands88]

Player Pointers (Must Dodge)
- Health
- Max Health
- Cooldown Multiplier (DO NOT SET TO ZERO)
- Dodges Remaining
- Max Dodges
- Experience Multiplier
Max Items on Pickup/Use

[fantomas]

this error for me
please upload exe. ct

I didn't post any table yet, nor any lua script. I just shared some scripts that you'll have to copy/past in AA (Auto assembly) window (Ctrl+Alt+A) and
assign it to your current cheat table (File -> Assign to current cheat table) if you want to give them a try.

[Xinfon]

Player Pointers (Must Dodge)
- Health
- Max Health
- Cooldown Multiplier (DO NOT SET TO ZERO)
- Dodges Remaining
- Max Dodges
- Experience Multiplier
Max Items on Pickup/Use

works fine thanks

[mdsyahir]

all i ever want is the cooldown, huhu

I know, and I would have make it gladely but to find the value (in the most cases, it is a 0/1 float value that's increasing/decreasing), I have to use 'Unknown initial value' scan type which it is asking more ram and I only have 4gb ram. It is a real pain in ass to find it. So I'm doing with what I have, sorry.

its ok bro, i dont want to push you since this is complicated for me and all i ever did was request, take your time man

[mdsyahir]

NoCost (Equipment & Weapons)

Code: Select all

{ Game   : Killsquad
  Version: 0.6.0o
  Date   : 2019-07-16
  Author : fantomas
}

[ENABLE]
aobscanmodule(aobEquipmentsAndWeaponsAmeliorationScan,Game-Win64-Shipping.exe,8B 43 18 48 8D 53 20 48)
alloc(newmem,$100,aobEquipmentsAndWeaponsAmeliorationScan)
registersymbol(aobEquipmentsAndWeaponsAmeliorationScan)

newmem:
aobEquipmentsAndWeaponsAmeliorationScan+02:
  db 24

[DISABLE]
aobEquipmentsAndWeaponsAmeliorationScan+02:
  db 18

unregistersymbol(aobEquipmentsAndWeaponsAmeliorationScan)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "Game-Win64-Shipping.exe"+67AE98

"Game-Win64-Shipping.exe"+67AE75: 48 89 74 24 10        -  mov [rsp+10],rsi
"Game-Win64-Shipping.exe"+67AE7A: 57                    -  push rdi
"Game-Win64-Shipping.exe"+67AE7B: 48 83 EC 40           -  sub rsp,40
"Game-Win64-Shipping.exe"+67AE7F: 48 8B 02              -  mov rax,[rdx]
"Game-Win64-Shipping.exe"+67AE82: 48 8B DA              -  mov rbx,rdx
"Game-Win64-Shipping.exe"+67AE85: 48 89 01              -  mov [rcx],rax
"Game-Win64-Shipping.exe"+67AE88: 48 8B F1              -  mov rsi,rcx
"Game-Win64-Shipping.exe"+67AE8B: 48 83 C1 08           -  add rcx,08
"Game-Win64-Shipping.exe"+67AE8F: 48 83 C2 08           -  add rdx,08
"Game-Win64-Shipping.exe"+67AE93: E8 78 29 BC FF        -  call Game-Win64-Shipping.exe+23D810
// ---------- INJECTING HERE ----------
"Game-Win64-Shipping.exe"+67AE98: 8B 43 18              -  mov eax,[rbx+18]
"Game-Win64-Shipping.exe"+67AE9B: 48 8D 53 20           -  lea rdx,[rbx+20]
// ---------- DONE INJECTING  ----------
"Game-Win64-Shipping.exe"+67AE9F: 48 8D 4E 20           -  lea rcx,[rsi+20]
"Game-Win64-Shipping.exe"+67AEA3: 89 46 18              -  mov [rsi+18],eax
"Game-Win64-Shipping.exe"+67AEA6: E8 C5 42 3B 00        -  call Game-Win64-Shipping.exe+A2F170
"Game-Win64-Shipping.exe"+67AEAB: 48 8D 53 38           -  lea rdx,[rbx+38]
"Game-Win64-Shipping.exe"+67AEAF: 48 8D 4E 38           -  lea rcx,[rsi+38]
"Game-Win64-Shipping.exe"+67AEB3: E8 58 29 BC FF        -  call Game-Win64-Shipping.exe+23D810
"Game-Win64-Shipping.exe"+67AEB8: 48 8D 53 48           -  lea rdx,[rbx+48]
"Game-Win64-Shipping.exe"+67AEBC: 48 8D 4E 48           -  lea rcx,[rsi+48]
"Game-Win64-Shipping.exe"+67AEC0: E8 4B 29 BC FF        -  call Game-Win64-Shipping.exe+23D810
"Game-Win64-Shipping.exe"+67AEC5: 0F B6 43 58           -  movzx eax,byte ptr [rbx+58]
}

--Edit--

Fast Kill (may or may not work)

Code: Select all

{ Game   : Killsquad
  Version: 0.6.0o
  Date   : 2019-07-16
  Author : fantomas
}

[ENABLE]
aobscanmodule(aobEnemySharedHealthScan,Game-Win64-Shipping.exe,F3 0F 10 71 08 EB * 48 85)
alloc(newmem,$100,aobEnemySharedHealthScan)

label(code)
label(return)

newmem:
  cmp r13,0  //0:player
  je code
  movss [rcx+08],xmm2
  movss xmm6,[rcx+08]
  jmp return

code:
  movss xmm6,[rcx+08]
  jmp return

aobEnemySharedHealthScan:
  jmp newmem
return:
registersymbol(aobEnemySharedHealthScan)

[DISABLE]
aobEnemySharedHealthScan:
  db F3 0F 10 71 08

unregistersymbol(aobEnemySharedHealthScan)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "Game-Win64-Shipping.exe"+36B11B

"Game-Win64-Shipping.exe"+36B0F8: 84 C0                 -  test al,al
"Game-Win64-Shipping.exe"+36B0FA: 75 02                 -  jne Game-Win64-Shipping.exe+36B0FE
"Game-Win64-Shipping.exe"+36B0FC: 33 DB                 -  xor ebx,ebx
"Game-Win64-Shipping.exe"+36B0FE: 48 8B 55 DF           -  mov rdx,[rbp-21]
"Game-Win64-Shipping.exe"+36B102: 48 8B 8F B8 00 00 00  -  mov rcx,[rdi+000000B8]
"Game-Win64-Shipping.exe"+36B109: 48 8B 52 20           -  mov rdx,[rdx+20]
"Game-Win64-Shipping.exe"+36B10D: E8 6E E4 FC FF        -  call Game-Win64-Shipping.exe+339580
"Game-Win64-Shipping.exe"+36B112: 48 63 4B 44           -  movsxd  rcx,dword ptr [rbx+44]
"Game-Win64-Shipping.exe"+36B116: 48 03 C8              -  add rcx,rax
"Game-Win64-Shipping.exe"+36B119: 74 29                 -  je Game-Win64-Shipping.exe+36B144
// ---------- INJECTING HERE ----------
"Game-Win64-Shipping.exe"+36B11B: F3 0F 10 71 08        -  movss xmm6,[rcx+08]
// ---------- DONE INJECTING  ----------
"Game-Win64-Shipping.exe"+36B120: EB 22                 -  jmp Game-Win64-Shipping.exe+36B144
"Game-Win64-Shipping.exe"+36B122: 48 85 DB              -  test rbx,rbx
"Game-Win64-Shipping.exe"+36B125: 74 0A                 -  je Game-Win64-Shipping.exe+36B131
"Game-Win64-Shipping.exe"+36B127: 48 8B 0B              -  mov rcx,[rbx]
"Game-Win64-Shipping.exe"+36B12A: E8 71 73 02 00        -  call Game-Win64-Shipping.exe+3924A0
"Game-Win64-Shipping.exe"+36B12F: EB 10                 -  jmp Game-Win64-Shipping.exe+36B141
"Game-Win64-Shipping.exe"+36B131: 48 8B 8F B8 00 00 00  -  mov rcx,[rdi+000000B8]
"Game-Win64-Shipping.exe"+36B138: 48 8D 55 CF           -  lea rdx,[rbp-31]
"Game-Win64-Shipping.exe"+36B13C: E8 AF 3E FD FF        -  call Game-Win64-Shipping.exe+33EFF0
"Game-Win64-Shipping.exe"+36B141: 0F 28 F0              -  movaps xmm6,xmm0
}

fast kill makes player and the mob becoming invulnerable

[Celeb2312]

Player Pointers (Must Dodge)
- Health
- Max Health
- Cooldown Multiplier (DO NOT SET TO ZERO)
- Dodges Remaining
- Max Dodges
- Experience Multiplier
Max Items on Pickup/Use

Cool Down is very much loved.

Edit: Thanks to Idlehands88 & fantomas for helping to complete this request