Search
Member List
Calendar
Help
AntiWPA Forum
/
Community Grounds
/
Reverse Engineering 
/
Decompiling CheatEngineFiles & GamesTrainers
/
Decompiling CheatEngineFiles & GamesTrainers
|
Decompiling CheatEngineFiles & GamesTrainers
|
|
11-07-2012, 08:18 PM
Post: #6
|
|||
|
|||
|
RE: Decompiling CheatEngineFiles & GamesTrainers
Trainer are often written in asm or C.
These are zero terminate strings so it's not delphi... maybe follow the references around ' drunk drive' like unk_100034d8. However the API to write changes to another process is Kernel32.WriteProcessMemory find it in the Trainer and explorer what's happening around. Or load it in Ollydebug set a breakpoint there (Ctrl+N -> WriteProcessMemory,...) Maybe work with log-breakpoints however takes some time and is annoy to set them and write in cryptic Expression like [[esp+8]] to just get on fancy argument - and do it again to log an other. Dumpers - well I use pretty old LordPE and somethings the little hidden dumper inside Import REConstructor(RC/advCmd/Select Code Section->Fulldump) or when in Olly the plugin Ollydump |
|||
|
|
« Next Oldest | Next Newest »
|
| Messages In This Thread |
|
Decompiling CheatEngineFiles & GamesTrainers - asbb - 11-05-2012, 08:33 AM
RE: Decompiling CheatEngineFiles & GamesTrainers - cw2k - 11-07-2012 08:18 PM
RE: Decompiling CheatEngineFiles & GamesTrainers - punjab5 - 11-14-2012, 07:19 AM
RE: Decompiling CheatEngineFiles & GamesTrainers - King - 12-30-2012, 07:38 AM
RE: Decompiling CheatEngineFiles & GamesTrainers - Kachada - 08-17-2016, 06:20 AM
RE: Improved AutoIt3 Decompiler / myAutToExe Decompiler - cw2k - 11-05-2012, 04:31 PM
RE: Improved AutoIt3 Decompiler / myAutToExe Decompiler - punjab5 - 11-06-2012, 02:50 AM
RE: Improved AutoIt3 Decompiler / myAutToExe Decompiler - cw2k - 11-06-2012, 04:19 AM
RE: Improved AutoIt3 Decompiler / myAutToExe Decompiler - punjab5 - 11-06-2012, 08:38 AM
|
User(s) browsing this thread: 1 Guest(s)