CE help

Ax1oN · 12/27/2010, 15:54

Can some1 tell me what is CE, how to use, what value, lol, i don't understand ;d

MaxG666 · 12/27/2010, 16:16

Then read a tut.

~~DeathByMoogles~~ · 12/27/2010, 16:58

This is not the place to discuss this.
First of all, CheatEngine comes with a built-in tutorial that it tries really hard to get you to do, which basically explains the essence of using it.
Secondly, CheatEngine has official forums which would be a much, much better place to ask, since asking here only floods the forums with useless **** and spam.

Have a good day.

,DeathByMoogles

RzrBck · 12/27/2010, 18:19

Quote:

Originally Posted by DeathByMoogles

This is not the place to discuss this.
First of all, CheatEngine comes with a built-in tutorial that it tries really hard to get you to do, which basically explains the essence of using it.
Secondly, CheatEngine has official forums which would be a much, much better place to ask, since asking here only floods the forums with useless **** and spam.

Have a good day.

,DeathByMoogles

Lol. Like everything else here is pure contributive and educational.

OT:
forums.cheatengine.org - main site.
forum.cheatengine.org - tutorials, hacks nd stuff.

Cheat Engine manipulates the machine language (correct me if I'm wrong) generated by a certain process, 9Dragons in our case.
If you cast a spell in game, in machine language a few things happen:
- it checks what damage it's supposed to do
- it checks what cool down it's supposed to have
- ... a lot more

Once it find's these - it sends it to your "screen", and you see just your normal spell, doing normal damage.

The trick is, to manipulate the results 9Dragons found with CheatEngine (- a program specially designed for this job by DarkByte): So if the 9Dragons's process has found that you do 2 damage - you search the "2" and replace it with for example "1337".
Voila now you've just 'memory hacked' the game.

Unfortunately some value's are calculated at 9Dragons server and NOT at your own PC: Hence changing them does not have any effect (Gold etc. etc.)

/end of what I think is a proper answer to his question.

~~DeathByMoogles~~ · 12/27/2010, 18:29

Quote:

Originally Posted by RzrBck

Lol. Like everything else here is pure contributive and educational.

OT:
forums.cheatengine.org - main site.
forum.cheatengine.org - tutorials, hacks nd stuff.

Cheat Engine manipulates the machine language (correct me if I'm wrong) generated by a certain process, 9Dragons in our case.
If you cast a spell in game, in machine language a few things happen:
- it checks what damage it's supposed to do
- it checks what cool down it's supposed to have
- ... a lot more

Once it find's these - it sends it to your "screen", and you see just your normal spell, doing normal damage.

The trick is, to manipulate the results 9Dragons found with CheatEngine (- a program specially designed for this job by DarkByte): So if the 9Dragons's process has found that you do 2 damage - you search the "2" and replace it with for example "1337".
Voila now you've just 'memory hacked' the game.

Unfortunately some value's are calculated at 9Dragons server and NOT at your own PC: Hence changing them does not have any effect (Gold etc. etc.)

/end of what I think is a proper answer to his question.

All cheat engine does is manupilate values in the memory of a process, hence why it often does not work for most online games, because the games are constantly recieving packets containing new values that will overwrite the old ones. So if you change the recast value to .1, and you cast a spell, the server checks a timestamp to see when last casted, and then tells the game whether the proper amount of time has gone by for you to recast the spell.

I hope that clears things up?
P.S. It's not "machine language" its just memory.

Oh, memory can also be manipulated in another way, called NOP'ing.
Here's some code from my Combat Arms hack that uses NOP'ing
NOP stands for No Operation Performed.
If, in ASM (Assembly) the address 0x3736EFDC is used to JMP (jump) to a function that prevents the characters nametags from being shown over their head, we want to replace the bytes in the address with 90 (\x90) so that the function becomes null. This makes it so that instead of NOT showing the nametags, we can see the enemies nametags above their heads at all times (I KNOW WHERE U R, DAWG). the "if(*(int*)0x3781A88C == 1)" checks to see if we are in a game, and if we are, it goes ahead and NOP's the nametag addresses, or, if we AREN'T in a game (ELSE) it puts the bytes in the addresses back to their original values. I hope you guys understand how it works now.

Cheat Engine allows you to change the values inside of addresses, sort of like the memcpy function.

Code:

if(*(int*)0x3781A88C == 1)
			{
				memcpy((LPVOID)0x3736EFDC,"\x90\x90",2);
				memcpy((LPVOID)0x3736F07D,"\x90\x90",2); 
			}
else
			{
				memcpy((LPVOID)0x3736EFDC,"\x75\x21",2);
				memcpy((LPVOID)0x3736F07D,"\x75\x05",2);
			}

I'm a pro hacker btw.

RzrBck · 12/27/2010, 19:13

Quote:
Originally Posted by DeathByMoogles
All cheat engine does is manupilate values in the memory of a process, hence why it often does not work for most online games, because the games are constantly recieving packets containing new values that will overwrite the old ones. So if you change the recast value to .1, and you cast a spell, the server checks a timestamp to see when last casted, and then tells the game whether the proper amount of time has gone by for you to recast the spell.

I hope that clears things up?
P.S. It's not "machine language" its just memory.

Oh, memory can also be manipulated in another way, called NOP'ing.
Here's some code from my Combat Arms hack that uses NOP'ing
NOP stands for No Operation Performed.
If, in ASM (Assembly) the address 0x3736EFDC is used to JMP (jump) to a function that prevents the characters nametags from being shown over their head, we want to replace the bytes in the address with 90 (\x90) so that the function becomes null. This makes it so that instead of NOT showing the nametags, we can see the enemies nametags above their heads at all times (I KNOW WHERE U R, DAWG). the "if(*(int*)0x3781A88C == 1)" checks to see if we are in a game, and if we are, it goes ahead and NOP's the nametag addresses, or, if we AREN'T in a game (ELSE) it puts the bytes in the addresses back to their original values. I hope you guys understand how it works now.

Cheat Engine allows you to change the values inside of addresses, sort of like the memcpy function.
Code:
if(*(int*)0x3781A88C == 1)
			{
				memcpy((LPVOID)0x3736EFDC,"\x90\x90",2);
				memcpy((LPVOID)0x3736F07D,"\x90\x90",2); 
			}
else
			{
				memcpy((LPVOID)0x3736EFDC,"\x75\x21",2);
				memcpy((LPVOID)0x3736F07D,"\x75\x05",2);
			}
I'm a pro hacker btw.

Ain't nop called in CE 'replace with code that does nothing' (i.e. 90)?
I tryed to put this in 'normal' english - so that they get the basic idea.
Comes down to the value's not beeing calculated on your PC rite?
I thought it was asml => close to machine code in 'normal' english rite?

Not meant as an insult - I just had to, cause I felt u made my post look like it's "noob" which considering its goal (handing out some info about CE to a new-b) is not imho.

Besides: A pro hacker compared to the average on e*pvp or a pro hacker in general :?

~~DeathByMoogles~~ · 12/27/2010, 19:44

Quote:

Originally Posted by RzrBck

Ain't nop called in CE 'replace with code that does nothing' (i.e. 90)?
I tryed to put this in 'normal' english - so that they get the basic idea.
Comes down to the value's not beeing calculated on your PC rite?
I thought it was asml => close to machine code in 'normal' english rite?

Not meant as an insult - I just had to, cause I felt u made my post look like it's "noob" which considering its goal (handing out some info about CE to a new-b) is not imho.

Besides: A pro hacker compared to the average on e*pvp or a pro hacker in general :?

Ain't nop called in CE 'replace with code that does nothing' (i.e. 90)?

I wouldn't know, I don't really use cheat engine. It's more fun to use OllyDBG and then write my own hacks in C++ instead of using CheatEngine to temporarily manipulate a value

I tryed to put this in 'normal' english - so that they get the basic idea.

For the most part your 'basic ideas' were correct, but not entirely. I fixed that.

Comes down to the value's not beeing calculated on your PC rite?

Not quite. First off, this is not being calculated on your PC. These functions are being ran in a process. When you NOP the bytes in an address, you prevent that code from being ran. If an anti cheat, like HackShield or GameGuard, had a function like CMP EAX, EDX, which compared the size (in bytes most likely) of the main .dll library to what it should be (say, for example we hook into it, and add a few things. Before the size of the library might have been 310,000,000, but now its 310,001,823) and if it finds that the size/addresses have been altered, then it shuts the process down. To prevent this, we should change all the bytes in the CMP (compare) function to /x90, preventing the compare from being ran, effectively making our hack undetectable.

I hope you were able to understand me?

I thought it was asml => close to machine code in 'normal' english rite?

Yeah, Assembly is a very low level language, one step up from binary. It is essentially "machine code" for the noobs.

Besides: A pro hacker compared to the average on e*pvp or a pro hacker in general :?

What do you think? (not done yet.)

To the average noob on epvp, I'm a god.
Compared to other hackers, I'm still sort of a noob. I have seen some code that not even I was able to comprehend.

Have a look at that.

RzrBck · 12/27/2010, 20:08

Quote:

What do you think? (not done yet.)

To the average noob on epvp, I'm a ***.
Compared to other hackers, I'm still sort of a noob. I have seen some code that not even I was able to comprehend.

Have a look at that.

u canz code!

But it's for an FPS rite? I've messed with WarRock wayy back, but didn't found enough motivation to dig deep.

Just curious on this one: how are your reversing skills? I'm wondering what's inside the *.XP files from the 9Dragons\DATA\*.*
In another mmorpg (maplestory) one would find in Skill.wz (would be Skill.XP in our case) find the damage dealt by certain skills, whether it's instant cast or it has an img to load etc. and modify it >> pretty **** sweet considering most clients don't make md5 check's of their files..

~~DeathByMoogles~~ · 12/27/2010, 20:13

Quote:

Originally Posted by RzrBck

u canz code!
But it's for an FPS rite? I've messed with WarRock wayy back, but didn't found enough motivation to dig deep.

Just curious on this one: how are your reversing skills? I'm wondering what's inside the *.XP files from the 9Dragons\DATA\*.*
In another mmorpg (maplestory) one would find in Skill.wz (would be Skill.XP in our case) find the damage dealt by certain skills, whether it's instant cast or it has an img to load etc. and modify it >> pretty **** sweet considering most clients don't make md5 check's of their files..

My reversing skills are not great. I got most of my information from UC (addresses and such) and then used Olly to find the number of bytes in an address.

And yeah, CA is an FPS a lot like Warrock.
Warrock sucks though.
CA sucks slightly less.

Wow, I started writing this and I'm not sure where this came from BUT

9Disciple is a proxy I'm pretty sure.
It sets up a connection like this
Client --> 9Disciple --> Game Server
It can then read/edit/send packets sent from the client to the game server. This allows for hacks like super fast cast and other things you can't do with memory editing alone. In the Conquer Online section, theres the source for a CO Proxy if you want to check it out.

I'm basing this thesis on the fact that if you close 9Disciples you DC from the server,and also some of the features that it has that i KNOW can't really be done with memory alone.

MaxG666 · 12/27/2010, 20:36

Usually i hate when people just put a link to C++ tutorial in a post, but this time it actually is needed. Cheat Engine is almost self explanatory, you choose the process, and search for stuff, modify stuff, bam its done. I don't even know how to hack and i figured out how to use cheat engine in less than 2 minutes.

~~DeathByMoogles~~ · 12/27/2010, 21:20

Quote:

Originally Posted by MaxG666

Usually i hate when people just put a link to C++ tutorial in a post, but this time it actually is needed. Cheat Engine is almost self explanatory, you choose the process, and search for stuff, modify stuff, bam its done. I don't even know how to hack and i figured out how to use cheat engine in less than 2 minutes.

Exactly. My 7 year old sister could use cheat engine.
I don't know why you would ever need instructions for it, and it even comes with a tutorial for n00bs