Made this in C# to show how to read the current and max health of your character without code caves.
Example use
Code:
static class HpReader
{
#region APIs
[DllImport("kernel32.dll")]
private static extern int OpenProcess(int dwDesiredAccess, int bInheritHandle, int dwProcessId);
[DllImport("kernel32.dll")]
private static extern int CloseHandle(int hObject);
[DllImport("kernel32.dll")]
private static extern int ReadProcessMemory(int hProcess, int lpBaseAddress, byte[] lpBuffer, int nSize, int lpNumberOfBytesWritten);
#endregion
#region consts
const int PROCESS_ALL_ACCESS = 0x1F0FFF;
const int BaseAddr = 0x0057B580;
#endregion
#region ReadX
static int ReadInt(int handle, int addr)
{
byte[] buf = new byte[4];
ReadProcessMemory(handle, addr, buf, 4, 0);
return BitConverter.ToInt32(buf, 0);
}
static int ReadShort(int handle, int addr)
{
byte[] buf = new byte[2];
ReadProcessMemory(handle, addr, buf, 2, 0);
return BitConverter.ToInt16(buf, 0);
}
static byte ReadByte(int handle, int addr)
{
byte[] buf = new byte[1];
ReadProcessMemory(handle, addr, buf, 1, 0);
return buf[0];
}
#endregion
#region ReadHp
static int RotateLeft(int num, int shift)
{
shift = shift % 32;
if (shift == 0)
return num;
return (num << shift) | (num >> (32 - shift));
}
static int RotateRight(int num, int shift)
{
shift = shift % 32;
if (shift == 0)
return num;
return (num >> shift) | (num << (32 - shift));
}
static int sub_4ECE67(int h, int Base)
{
int ret = 1;
int v2 = ReadInt(h, Base + 4);
if (v2 != 0)
{
ret = ReadInt(h, Base + 8);
if (v2 == 1)
{
ret -= 2;
}
else if (v2 == 2)
{
if ((ret & 1) == 0)
return 0;
ret = (ret >> 1) + 1;
}
else if (v2 == 3)
{
if ((ret & 1) == 1)
return 0;
if ((ret & 1) != 0)
ret = (ret >> 1) + 1;
else
ret >>= 1;
}
}
return ret;
}
static int sub_4ECF03(int h, int Base, int num, int shift)
{
int ret = 0;
int v3 = ReadInt(h, Base + 4);
if (v3 == 0 || v3 == 2)
{
ret = RotateRight(num, shift);
}
else if (v3 == 1 || v3 == 3)
{
ret = RotateLeft(num, shift);
}
else
{
ret = v3;
}
return ret;
}
static int sub_4ECD10(int h, int Base)
{
int v3 = sub_4ECE67(h, Base);
if (v3 < 0)
throw new Exception("Error1");
if (ReadInt(h, Base + 12) == 0)
throw new Exception("Error2");
return sub_4ECF03(h, Base, ReadInt(h, (ReadInt(h, Base + 12) + 4 * v3)), v3);
}
public static int ReadHp(Process p)
{
return ReadHp(p.Id);
}
public static int ReadHp(int id)
{
int h = OpenProcess(PROCESS_ALL_ACCESS, 0, id);
if (h == 0)
throw new Exception("Could not open process!");
int ret = 0;
int NewBase = ReadInt(h,BaseAddr+3520);
if (NewBase != 0)
{
ret = sub_4ECD10(h, NewBase);
}
else
{
throw new Exception("Error0");
}
CloseHandle(h);
return ret;
}
#endregion
#region ReadMaxHp
public static int ReadMaxHp(Process p)
{
return ReadHp(p.Id);
}
public static int ReadMaxHp(int id)
{
int h = OpenProcess(PROCESS_ALL_ACCESS, 0, id);
if (h == 0)
throw new Exception("Could not open process!");
if (ReadInt(h, BaseAddr + 76) != 0)
{
return ReadInt(h, BaseAddr + 2208);
}
int health = 3 * (ReadInt(h, BaseAddr + 2184) + ReadInt(h, BaseAddr + 2192) + ReadInt(h, BaseAddr + 2200) + 8 * ReadInt(h, BaseAddr + 2196));
int v1 = ReadInt(h, BaseAddr + 2996);
if (v1 % 0x3E8u / 0xA == 1)
{
int v5 = 0;
if (v1 % 0xAu == 1)
{
v5 = 5;
}
else if (v1 % 0xAu == 2)
{
v5 = 8;
}
else if (v1 % 0xAu == 3)
{
v5 = 10;
}
else if (v1 % 0xAu == 4)
{
v5 = 12;
}
else if (v1 % 0xAu == 5)
{
v5 = 15;
}
health += health * v5 / 100;
}
int addr = ReadInt(h,BaseAddr + 4228);
for (int i = 0; i < 8; i++)
{
if (ReadInt(h, addr) != 0)
{
if (ReadByte(h,addr + 372) == 0)
{
health += ReadInt(h, addr + 328) + ReadShort(h, addr + 86) + ReadShort(h, addr + 336);
}
}
addr += 4;
}
CloseHandle(h);
return health;
}
#endregion
}
Code:
Process[] ps = Process.GetProcessesByName("conquer");
int health = HpReader.ReadHp(ps[0]);
