디시인사이드 갤러리

갤러리 이슈박스, 최근방문 갤러리

갤러리 본문 영역

영어좀 하시는분들 이것번역좀 부탁드립니다.ㅠㅠ

신랄한손놀림갤로그로 이동합니다. 2009.05.03 20:27:08
조회 179 추천 0 댓글 1

Step 6: Pointers: (PW=098712)
In the previous step I explained how to use the Code finder to handle changing locations. But that method alone
makes it difficult to find the address to set the values you want.
That\'s why there are pointers:

At the bottom you\'ll find 2 buttons. One will change the value, and the other changes the value AND the location of
the value.
For this step you don\'t really need to know assembler, but it helps a lot if you do.

First find the address of the value. When you\'ve found it use the function to find out what accesses this address.
Change the value again, and a item will show in the list. Double click that item. (or select and click on more info) and
a new window will open with detailed information on what happened when the instruction ran.
If the assembler instruction doesn\'t have anything between a \'[\' and \']\' then use another item in the list.
If it does it will say what it think will be the value of the pointer you need.
Go back to the main cheat engine window (you can keep this extra info window open if you want, but if you close it,
remember what is between the [ and ] ) and do a 4 byte scan in hexadecimal for the value the extra info told you.
When done scanning it may return 1 or a few hundred addresses. Most of the time the address you need will be the
smallest one. Now click on manually add and select the pointer checkbox.

The window will change and allow you to type in the address of a pointer and a offset.
Fill in as address the address you just found.
If the assembler instruction has a calculation (e.g: [esi+12]) at the end then type the value in that\'s at the end. else
leave it 0. If it was a more complicated instruction look at the calculation.

example of a more complicated instruction:
[EAX*2+EDX+00000310] eax=4C and edx=00801234.
In this case EDX would be the value the pointer has, and EAX*2+00000310 the offset, so the offset you\'d fill in
would be 2*4C+00000310=3A8.  (this is all in hex, use cal.exe from windows in scientific mode to calculate)

Back to the tutorial, click OK and the address will be added, If all went right the address will show P->xxxxxxx, with
xxxxxxx being the address of the value you found. If thats not right, you\'ve done something wrong.
Now, change the value using the pointer you added in 5000 and freeze it. Then click Change pointer, and if all went
right the next button will become visible.


extra:
And you could also use the pointer scanner to find the pointer to this address

-----------------------------------------------------------
Step 7: Code Injection: (PW=013370)
Code injection is a technique where one injects a piece of code into the target process, and then reroute the
execution of code to go through your own written code

In this tutorial you\'ll have a health value and a button that will decrease your health with 1 each time you click it.
Your task is to use code injection to increase the value of your health with 2 every time it is clicked

Start with finding the address and then find what writes to it.
then when you\'ve found the code that decreases it browse to that address in the disassembler, and open the auto
assembler window (ctrl+a)
There click on template and then code injection, and give it the address that decreases health (If it isn\'t already filled
in correctly)
That will generate a basic auto assembler injection framework you can use for your code.

Notice the alloc, that will allocate a block of memory for your code cave, in the past, in the pre windows 2000
systems, people had to find code caves in the memory(regions of memory unused by the game), but that\'s luckily a
thing of the past since windows 2000, and will these days cause errors when trying to be used, due to SP2 of XP
and the NX bit of new CPU\'s

Also notice the line newmem: and originalcode: and the text "Place your code here"
As you guessed it, write your code here that will increase the  health with 2.
a usefull assembler instruction in this case is the "ADD instruction"
here are a few examples:
"ADD [00901234],9" to increase the address at 00901234 with 9
"ADD [ESP+4],9" to increase the address pointed to by ESP+4 with 9
In this case, you\'ll have to use the same thing between the brackets as the original code has that decreases your
health

Notice:
It is recommended to delete the line that decreases your health from the original code section, else you\'ll have to
increase your health with 3 (you increase with 3, the original code decreases with 1, so the end result is increase
with 2), which might become confusing. But it\'s all up to you and your programming.

Notice 2:
In some games the original code can exist out of multiple instructions, and sometimes, not always, it might happen
that a code at another place jumps into your jump instruction end will then cause unknown behavior. If that
happens, you should usually look near that instruction and see the jumps and fix it, or perhaps even choose to use a
different address to do the code injection from. As long as you\'re able to figure out the address to change from inside
your injected code.
---------------------------------------------------------
Step 8: Multilevel pointers: (PW=525927)
This step will explain how to use multi-level pointers.
In step 6 you had a simple level-1 pointer, with the first address found already being the real base address.
This step however is a level-4 pointer. It has a pointer to a pointer to a pointer to a pointer to a pointer to the health.

You basicly do the same as in step 6. Find out what accesses the value, look at the instruction and what probably is
the base pointer value, and what is the offset, and already fill that in or write it down. But in this case the address
you\'ll find will also be a pointer. You just have to find out the pointer to that pointer exactly the same way as you did
with the value. Find out what accesses that address you found, look at the assembler instruction, note the probable
instruction and offset, and use that.
and continue till you can\'t get any further (usually when the base address is a static address, shown up as green)

Click Change Value to let the tutorial access the health.
If you think you\'ve found the pointer path click Change Register. The pointers and value will then change and you\'ll
have 3 seconds to freeze the address to 5000

Extra: This problem can also be solved using a auto assembler , or using the pointer scanner
Extra2: In some situations it is recommended to change ce\'s codefinder settings to Access violations when
encountering instructions like mov eax,[eax] since debugregisters show it AFTER it was changed, making it hard to
find out the the value of the pointer

 

 

Extra3: If you\'re still reading. You might notice that when looking at the assembler instructions that the pointer is
being read and filled out in the same codeblock (same routine, if you know assembler, look up till the start of the
routine). This doesn\'t always happen, but can be really useful in finding a
pointer when debugging is troublesome
--------------------------------------------------------
Step 9: Injection++: (PW=31337157)
In this step we\'ll do basically the same as in step 7(Code Injection) but now a little bit more difficult.
Now you have to edit the code that decreases health with a piece of code that sets the health to 1000 if the current
second is equal to or bigger than 30, and 2000 if it\'s smaller

This can be done using a auto assembler s that does some api calls to some routines to get the current time,
but it may be easier to use a C- injection here

Find the address of health and go to the  engine in Cheat Engine (ctrl+alt+a in memory view, or tools->
engine)

then opposed to the other tutorials I\'ll provide you with a big hint (in case you\'ve never coded in C)
----------------
#include <time.h>

struct tm *timep;
time_t c;
c=time(0);

timep=localtime(&c);

if (timep->tm_sec>=30)
  *(int *)addresstochange=1000;
else
  *(int *)addresstochange=2000;
-------------
Here change addresstochange with the address of health. Don\'t forget to add 0x in front of it. So if the address was
0012345 then fill in 0x0012345

Select inject->Inject into current process and it\'ll open an auto assembler  with a call inside it.
Now, just like in step 7 go to the address that decreases health and do autoassembler->template->code injection.
And fill in as code the call instruction you got. Note that the call will change the value of EAX and some flags may
change as well, so if you want to save them, push them before and pop them after.  And remove the original code,
it\'s not used and only makes things
harder.
Click Execute and then click "Hit me" in the trainer.
If all went right the clicking of the button caused your c- to be executed and changed the value of health
according to the current time.

Bonus:
As said before it can also be done with a normal assembler . CE allows you to fill in functionnames for call
instructions so that should make things easier
And you could also just use a dll injection with an aa . E.G:
injectdll(mydll.dll) //dll written in any languge you like

codecave:
call functionofmydll
jmp exit

추천 비추천

0

고정닉 0

0

댓글 영역

전체 댓글 0
등록순정렬 기준선택
본문 보기

하단 갤러리 리스트 영역

왼쪽 컨텐츠 영역

갤러리 리스트 영역

갤러리 리스트
번호 제목 글쓴이 작성일 조회 추천
설문 인터넷 트랜드를 가장 빠르게 알고 있을 것 같은 스타는? 운영자 24/11/25 - -
AD 해커스공무원 1타 강사진 유료 전강좌 100% 무료! 운영자 24/07/27 - -
1897 니들 대부분 학벌은 서성한 이상 좋은데 이런 낚시과라서 [3] ㅇㅇㅇ(211.170) 09.05.14 959 0
1894 갑자기 궁금해 졋는데 말이야 행시 재경직 순위권이면 [3] 뉴비(59.18) 09.05.13 720 0
1892 재경직 행시 맛보기??? [2] 핑구(165.132) 09.05.11 845 0
1891 한은VS행시재경직 [5] 핑구(165.132) 09.05.10 1771 0
1890 행시 재경직이 유별난 이유? [17] 1234(59.18) 09.05.10 9048 3
1888 행시에서 경제학 미분/적분 [2] 모노태지갤로그로 이동합니다. 09.05.09 1430 0
1886 진짜 뉴비 질문이예요..ㅠㅠ [1] (116.39) 09.05.09 315 0
1885 1학년 마치고 휴학하고 행시준비하는건 오버인가여? [2] 핑구(165.132) 09.05.08 850 0
1883 역대 행정고시 전체수석 및 재경직수석 명단 [2] kinaa(121.135) 09.05.06 5568 0
1881 고시식당 중에서 [1] 유클리드갤로그로 이동합니다. 09.05.06 349 0
1880 정책사례관련 질문 행정행정(220.118) 09.05.05 175 0
1879 psat 질문 -언어논리 + 자료해석 + 상황판단 3가지 다 치는 거임? [1] 행정뉴비1(123.248) 09.05.05 402 0
1878 행정고시 1차시험 질문이요 [1] 성대행정(211.192) 09.05.05 624 0
1877 행정직렬 급 질문 [1] 재경(119.207) 09.05.04 264 0
1875 [질문] 1차 합격 후 군입대한다면?? [3] 군대가자(122.153) 09.05.04 865 0
1873 치과의사 VS 한은,금감원. [8] cscs(118.220) 09.05.03 2199 0
영어좀 하시는분들 이것번역좀 부탁드립니다.ㅠㅠ [1] 신랄한손놀림갤로그로 이동합니다. 09.05.03 179 0
1870 국정원7급 vs 행시 [4] 마이클 만식(121.140) 09.05.03 2679 0
1869 일반행정에 합격하고 나서 부처임용받을때 통계청 가능한가요? 행시생(221.148) 09.05.02 225 0
1867 법대생이구요,그리 좋은대학 법대는 아니지만 법무행정 행시를 생각하고있어요 [3] (59.7) 09.05.01 928 0
1866 군데하루10시간하라구하자나..근데 학교를 다니면 10시간못하눈데 ㅠ 행정고시(122.42) 09.04.30 354 0
1865 행정고시 인기로 1등 2등 직렬이 뭔가요?정말궁금해여 알료주세염 ㅠ [1] 행정고시(122.42) 09.04.30 2006 0
1864 행정학과 졸업하면 취업할때 일반적으로 [3] ㅇㅇㅇㅇ(222.233) 09.04.30 645 0
1863 psat 기출 시간 잡고 풀어봣는데 마닝거(222.107) 09.04.29 514 0
1862 네오피셋 책 안에 기출 다 들어있음? [4] ㅁㅁ(121.182) 09.04.27 500 0
1861 형님들~ 조언 좀 부탁드릴게요! 위어(116.122) 09.04.27 174 0
1860 행시 질문있습니다! [2] 1212(122.44) 09.04.26 359 0
1859 카오스 왜하냐 가츠나 해라? [1] 불굴갤로그로 이동합니다. 09.04.26 149 0
1858 뉴비인데..행시는 아무과나 가도 상관없나요??? [3] ㅁㅁㅁ(119.197) 09.04.26 452 0
1857 행시 시작하려는데 질문드림 [3] ㅁㄴㅇㄹ(115.139) 09.04.26 871 0
1855 psat 교재 질문입니다. 내일 사려고 하는데 뭘사야 할지 모르겠네요;; [1] 사무관 라라갤로그로 이동합니다. 09.04.26 591 0
1854 정말궁금해서그러는데/.. [1] 구원(114.203) 09.04.25 230 0
1851 월급과 세금에 관해 법적인 문의드립니다! 유리지갑(211.235) 09.04.25 145 0
1850 형님들, 행시 교육행정이 날까요? 일반행정(서울)이 날까요? 켈빈클라인갤로그로 이동합니다. 09.04.25 551 0
1849 행정법 사례문제 ㅠ 도움좀주세요 가가린(218.148) 09.04.25 106 0
1848 어제 친구랑 이야기 하다가 제일 웃긴거 있어요..ㅎㅎ 공무원시험관련 [5] 사무관 라라갤로그로 이동합니다. 09.04.24 711 0
1847 근데 행정 1차psat말인데..이런 방식이면 더 변별력 생길텐데.. [2] ㅡㅡ(59.86) 09.04.24 361 0
1846 PSAT 2008년문제좀 풀어주세요... ㅜㅠ [19] 존뉴비(168.188) 09.04.23 732 0
1845 PSAT 기출 어디서 구할수 있음? [2] a(121.182) 09.04.22 354 0
1844 재경직 준비하기로 맘먹은 대핵교2학년짜리에요.. [1] sec(125.181) 09.04.22 296 0
1843 여기다가 회계 문제 질문 해도 됨? [2] Cfoot갤로그로 이동합니다. 09.04.22 195 0
1841 지방대 법학과3학년입니다. 행시준비하려는데여... [4] 사무관 라라갤로그로 이동합니다. 09.04.21 954 0
1840 행시에 합격해서 사무관되면 조선시대로 치면 정랑 정도 되나? [3] 있잖아.(222.107) 09.04.21 1007 0
1839 공인회계사 취득 후 행시 준비... 회계사(115.145) 09.04.21 512 0
1837 과연 사람이 이렇게 할수 있을까??? [5] 늅늅(222.234) 09.04.19 717 0
1836 경영학과 학생인데 [2] 어이쿠야(58.77) 09.04.19 421 0
1835 고위공무원단이고 호봉은 FULL일때 연봉 얼마정도임? [2] 보수단체(218.146) 09.04.19 738 0
1834 현재 2009년 예산관계조직은 어떤양태를 가지고 있는지요~ 행정인(125.129) 09.04.18 74 0
1833 행시 일행 준비하는데 ㅇㅇ 경제학은 미거시만 하면 떡을침? [1] 1212(124.3) 09.04.18 509 0
1832 9급공무원 세무직 하루 10시간공부로 몇년 잡아야함?? ㅋㅋ? [1] RHYME갤로그로 이동합니다. 09.04.18 834 0
뉴스 [포토] 염혜란, 해맑은 손인사 디시트렌드 11.30
갤러리 내부 검색
제목+내용게시물 정렬 옵션

오른쪽 컨텐츠 영역

실시간 베스트

1/8

뉴스

디시미디어

디시이슈

1/2