創作內容
ce 必學!節省80%時間~特徵碼| Code: |
| [ENABLE] //code from here to '[DISABLE]' will be used to enable the cheat alloc(newmem,2048) //2kb should be enough label(returnhere) label(originalcode) label(exit) newmem: //this is allocated memory, you have read,write,execute access mov [ebx+00000464],(int)1000 originalcode: mov eax,[ebx+00000464] exit: jmp returnhere "Tutorial-i386.exe"+22988: jmp newmem nop returnhere: [DISABLE] //code from here till the end of the code will be used to disable the cheat dealloc(newmem) "Tutorial-i386.exe"+22988: mov eax,[ebx+00000464] //Alt: db 8B 83 64 04 00 00 |
| Code: |
| [ENABLE] //code from here to '[DISABLE]' will be used to enable the cheat alloc(newmem,2048) //2kb should be enough label(returnhere) label(originalcode) label(exit) label(whatever) //make a label that you can use for your aobscan registersymbol(whatever) //also register it as a symbol aobscan(aob1,8B 83 64 04 00 00 3D) //use aobscan to search for the code, more explanation later newmem: //this is allocated memory, you have read,write,execute access mov [ebx+00000464],(int)1000 originalcode: mov eax,[ebx+00000464] exit: jmp returnhere aob1: //replace the static address with your aobscan, which is called aob1 in my case whatever: //store aob1 on the whatever label jmp newmem nop returnhere: [DISABLE] //code from here till the end of the code will be used to disable the cheat dealloc(newmem) whatever: //replace the static address with the whatever label db 8B 83 64 04 00 00 //restore the original byte pattern 修改 特徵碼 db + 原來特徵碼 不用減最後一個 unregistersymbol(whatever) //we don't need this symbol anymore so unregister it |
Lobster0627 給 各位巴友:
大家可以多多來我的YT頻道看看哦(*´∀`)~♥https://www.youtube.com/@lobstersandwich0627看更多我要大聲說昨天18:54
未分類 (11)