https://www.youtube.com/watch?v=tnxODn-pI-Y
To change this into a script with aobscan, you have to make a few modifications only (look at the comments):
可以用aobscAn 不過電腦跑太慢了
用 btre數組 查特徵碼,在修改自動匯編這樣快又不吃電腦資源
自動匯編 注入代碼 最底下都有 附加特徵碼 //Alt: db 89 41 48 83 EC 0C
可以看看
這影片教學使用方式有問題~
啟用跟禁用腳本 可能會造成 目標特徵碼變更 , 使AOBSCAN無法再找到..甚至造成當機
所以找到CE論壇 正確不會當機寫法..
http://forum.cheatengine.org/viewtopic.php?t=561407
前者:一般 後者:aobscan
| Code: |
| [ENABLE] //code from here to '[DISABLE]' will be used to enable the cheat alloc(newmem,2048) //2kb should be enough label(returnhere) label(originalcode) label(exit) newmem: //this is allocated memory, you have read,write,execute access mov [ebx+00000464],(int)1000 originalcode: mov eax,[ebx+00000464] exit: jmp returnhere "Tutorial-i386.exe"+22988: jmp newmem nop returnhere: [DISABLE] //code from here till the end of the code will be used to disable the cheat dealloc(newmem) "Tutorial-i386.exe"+22988: mov eax,[ebx+00000464] //Alt: db 8B 83 64 04 00 00 |
To change this into a script with aobscan, you have to make a few modifications only (look at the comments):
| Code: |
| [ENABLE] //code from here to '[DISABLE]' will be used to enable the cheat alloc(newmem,2048) //2kb should be enough label(returnhere) label(originalcode) label(exit) label(whatever) //make a label that you can use for your aobscan registersymbol(whatever) //also register it as a symbol aobscan(aob1,8B 83 64 04 00 00 3D) //use aobscan to search for the code, more explanation later newmem: //this is allocated memory, you have read,write,execute access mov [ebx+00000464],(int)1000 originalcode: mov eax,[ebx+00000464] exit: jmp returnhere aob1: //replace the static address with your aobscan, which is called aob1 in my case whatever: //store aob1 on the whatever label jmp newmem nop returnhere: [DISABLE] //code from here till the end of the code will be used to disable the cheat dealloc(newmem) whatever: //replace the static address with the whatever label db 8B 83 64 04 00 00 //restore the original byte pattern 修改 特徵碼 db + 原來特徵碼 不用減最後一個 unregistersymbol(whatever) //we don't need this symbol anymore so unregister it |
