"No exceptional circumstances whatsoever, whether a state of war or a threat of war, internal political instability, or any other public emergency, may be invoked as a justification of torture." -- U.N. Convention Against Torture
GAME HACKING and SOFTWARE CRACKING Part 1
written by SNL a.k.a Futex / Pwnie
(Memory scanning / Pode injection and Packet editing)
This paper is intended for N00bs threw to the level of Basic Understanding/Intermediate.
Greetings Old and New....
1337s and n0wbs
this is my first tutorial for HTS and i thought it fitting to write one because this site has inspired me so much. :)
I Felt the need to right this after doing some aplication cracking games at HTS.
I will start with some game hacking and end with some more usefull applications of these teqniques.
Stay tuned for Part 2 it shall be only days away..........
To make the most out of this tutorial we will use a example that you all have access to..
MINESWEEP or maybe PINBALL up to you lol its all the same!....kinda
So lets get our self a packet editor use google to find a free editor or you can download my favorite from:
If you do use cheat engine i highly suggest you do all the tutorials that come free with cheat engine.
1-8 are all exerlent and will serve you well.
But back to the job at hand and that is cheating at pinball (yes i choose pinball, minesweep is so.....boring)
So asuming that your favorite memory scanner/editor is installed (*cough* cheatengine) you can begin by loading the scanner/editor.
Lets have a look around the cheat engine control panel.
<CHEAT ENGINE SCREEN SHOT HERE>
we have 3 buttons to the left..
The computer image is the "process selector" (choose the game/application you would like to scan)
The Folder is used for loading a pre made TABLE.
and the Disk let is for saving a TABLE you just created.
Now you will find if you are like me and use your skills for online games you will find TABLES are useless because the values change everythime you run the game, or change a lvl.
You will also find on the main Cheat engine control panel a place for the searched address to sit, a next scan button and first scan button and a undo button
they re all self explanatory, along with the Value, field.... though you may be confused by the scan type.
The scan type is what type of memory you are looking for for most windows apps use 4bytes, we wont go into Floats, binary and Doubles just yet, the rest should explain them selfs. also the Scn type should explain its self for example if you were looking for a Value that you did not know (hevan Forbid) for example a number less health bar in farcry lol, you would scan first as "unknown initial value" get shot a few times, then "Next scan" as "changed value" or even better "Decreased Value"... getting the idea now :) (*DING LIGHT BULB*)
now back to were i was .. before i forgot were i was going...
so we would like to cheat the game pinball (wind0wz version) we know its likely to store its memory as 4byts because it is a windows app so we can safely set our "Value Type" to 4bytes. Click the "Process Selector" and choose pinball.exe / or minesweep or whatever the fudge u toy with!
now lets find a value worth changing (*gough* score is a good start)
sooo the Score it is lets fire a few rounds of pinball and get the score ticking up.
save you the time searching to find what start the dodgy game ill tell u PRESS "SPACE" once!!
YAY 7500 what a score.... (dont bother playing we are trying to cheat)
hmm i notice something else to im on 1 ball.
ok lets do a "New Scan" then "First Scan" for our score thats 7500 (or watever u find yours to be u pinball king u)
a scan for 7500 in 4bytes shows me in the left collum that i have 6 Memory Adresses that contain the Value im after. (notice 2 are green thats a different story)
So we have 6 Options and we only whant one!! theres a few ways to go about narrowing down our search just like theres many ways to start our search but we choose exact value
so lets alt+tab back to pinball.exe and send another ball around the track (to increase our score).
Yay nice my score is now 96750 (now who is the pinball king). I also noticed that i have a nother ball cool lets keep that in mind.
ok now backl to your favorite memory editor/searcher, notice that one of the 6 inital addresses values have changed. (if not do a NEW scan FIRST scan with the new SCORE, play a round of pinball and watch your value in cheatengine go up) once you are sure that you have the value you can moov on to adding it to the cheatengine table and changing its value.
I found that i hade 2 Values that changed (later in this guide ill explain how one is false, just reading from the other though if you change the false one the real wont change.)
so to be safe for the simplicity of this already over bracketed / noted document we will just add both addresses to our TABLE do this by selecting all the address you whant to add and then click the red arrow "add address to address list" yay the value are now below in our list now we can do so much more to this address ( experiment: Right click a one of the two values you suspect to be fake and choose "find out what writes to this address" or anything else really experementing leads to learning nothing was learned with out adventuring first so dont be scared worst thing that could happen is your house will burn down and your mum will die) so lets simply change the Value to 999999 or some bullshit click the freeze box and bobs your uncle.. grats on the 1337 score you pinball champ you!!!
To be continued..........
so that was just Memory scanning theres so much more Pode injection and Packet editing will be posted after i sleep though if this ends up nowhere then im not wasting my time lol.
If i used the word Value were i should of used Address then dont shot me its 4am here.
a Address is the part of memory were the Value is stored.
Memory Editing and Packet Sending/Sniffing and HEX tool i use is a nice Allinone app for our uses and it is called Cheat engine 5.3
you can download this from there community free of charge just remember dont leech.. LEECH , LEARN THEN TEECH.
Injection and Packet Sending tool
WEP Pro can be usefull for games.
and as a last resort ....
firstname.lastname@example.org (have you any questions im free to asist you please dont ask me to create a noCD patch that really shits me off).
i dont mind posting my real email (one of many) though please dont start any shit or i will disown it all SPAM will be reported to you ISP
and i will see to it my self that you will be serverly punished by the full extent of the law.... My penis is big anoth i dont need you tablets!!
shouts to Dark Bite, Mopar , Ketniks and any remaning 2600 members hanging around sydney (^_^ lol)
Cast your vote on this article 10 - Highest, 1 - Lowest
Comments: Published: 24 comments.
HackThisSite is is the collective work of the HackThisSite staff, licensed under a CC BY-NC license.
We ask that you inform us upon sharing or distributing.