[Help] .... Trainer + addresses.

monster1777 · 03-08-2010, 06:43 PM

Hey, I was making a trainer I understand the code but I can't get the fcking STATIC addresses. I get the ones from cheatengine but they change after game restart -.-

here's the code of my trainer:

PHP Code:

  using System;

using System.Collections.Generic;

using System.ComponentModel;

using System.Data;

using System.Drawing;

using System.Linq;

using System.Text;

using System.Windows.Forms;

using ProcessMemoryReaderLib;

 
namespace Trainer

{

    public partial class Form1 : Form

    {

        public Form1()

        {

            InitializeComponent();

        }

 
        private void btnHP_Click(object sender, EventArgs e)

        {

            System.Diagnostics.Process[] myprocess = System.Diagnostics.Process.GetProcessesByName("BFBC2Game"); // the process

            ProcessMemoryReaderLib.ProcessMemoryReader preader = new ProcessMemoryReaderLib.ProcessMemoryReader();

            preader.ReadProcess = myprocess[0];

            preader.OpenProcess();

            int byteswritten;

            int bytesread;

            int value;

            int pointerbase;

            byte[] memory;

            memory = preader.ReadProcessMemory((IntPtr)0xStatic Address here, 4, out bytesread); // can't get the static address -.-

            pointerbase = BitConverter.ToInt32(memory, 0);

            pointerbase += 0xPointer; // no idea where to get it from.

            value = 100;

            memory = BitConverter.GetBytes(value);

            preader.WriteProcessMemory((IntPtr)pointerbase, memory, out byteswritten);

        }

    }

}

So the problem is that I can't get the static addresses or offsets + pointers for my trainer. So if anyone can explain how to get the static offsets and pointers please post. I will be very grateful.

**kolbybrooks** · 03-08-2010, 06:49 PM

Just get a pointer to what you want to change?

monster1777 · 03-08-2010, 06:51 PM

Quote:

Originally Posted by kolbybrooks

Just get a pointer to what you want to change?

Well I need to get the pointer of that static offset... But I don't know how to get the static offset and then the pointer from there.

Absinth · 03-08-2010, 08:07 PM

You need to find some code which changes the value ingame, or you do a pointer scan in cheat engine, then you usually have a point to start from.

monster1777 · 03-08-2010, 08:08 PM

Quote:

Originally Posted by Absinth

You need to find some code which changes the value ingame, or you do a pointer scan in cheat engine, then you usually have a point to start from.

pointer scan? First time I hear about it.

Absinth · 03-08-2010, 08:30 PM

Quote:

Originally Posted by monster1777

pointer scan? First time I hear about it.

forget about it :P

If you've found the value in cheat engine again, right klick on it and choose
"Find out what access this address", then you should see some assambler code, maybe that will help you

monster1777 · 03-08-2010, 08:37 PM

Ahhh this... Yea I made it, but sometimes I get just eax+1c or something like that ebx+1c or eax+00000000080 and I don't know what is the right pointer. The whole shit or just 1 number. And I don't know what to do later :S

**iExclusive** · 03-09-2010, 05:51 AM

Then, trace it all obviously ... 1c would be your offset, and EAX holds the value. Add that, and it should be the pointer to your DMA. Kindly do the Cheat Engine tutorial, it'll help you loads.

monster1777 · 03-09-2010, 04:13 PM

I have the address 0386272C and the pointer is 1c. It says that it is ebx+1c so it's value is 03862610. In the tut it says I have to do new scan with 03862610. But when I do this nothing shows, no addresses. Now I'm stuck and really don't know what to do next.

**iExclusive** · 03-10-2010, 09:55 AM

The pointer is 1c? You mean the offset?
Well, the value of EBX + the offset (1C) is hopefully your pointer, have you tried that?

monster1777 · 03-10-2010, 05:26 PM

Hmm look,
Click here
I made a video, it shows what am I doing all the time. In HD.

Absinth · 03-10-2010, 09:26 PM

It looks like ebx is calculated from edi (just a guess).
Try searching for edi's value (in hex!).

My assumption:
edi = 03862500 : contains a pointer to an array (or vector) of player structs (or classes)
ecx = 5 : which element of the array (or vector)

ebx = edi + ecx * 0x50 (80dec)
ammo = ebx + 0x1C

Code:

public struct PLAYER
{
    public byte[28] unknown1;
    public decimal ammo;
    public byte[48] unknown2;
}

Don't know how to define structs in C#

In C it would be:

Code:

typedef struct
{
    char unknown1[28]; // 00
    int    ammo; // 1C
    char unknown2[48]; // 20
} PLAYER;

PLAYER* player_list;

player_list[5].ammo = 135343645345634563;

But it's just a guess.
It could be completely wrong :P

**kolbybrooks** · 03-10-2010, 09:38 PM

Breakpoint the add [ebx + 1c], eax line and then get ebx.

Tick the scan read-only memory in the middle of the main window (in the scan options) then search for the value of ebx.

If you're lucky one of the game's functions will store a pointer to ebx (The struct you're looking for)

monster1777 · 03-10-2010, 10:17 PM

Quote:

Originally Posted by kolbybrooks

Breakpoint the add [ebx + 1c], eax line and then get ebx.

Tick the scan read-only memory in the middle of the main window (in the scan options) then search for the value of ebx.

If you're lucky one of the game's functions will store a pointer to ebx (The struct you're looking for)

No, it doesn't work cause when I toggle breakpoint I can't search again, because it says I am manually disassembling.

**kolbybrooks** · 03-11-2010, 12:02 AM

You have to close out the "What writes to this address" box.

Quit being so ignorant when people try to help you.