[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"Tutorial-x86_64.exe"+2EEFC)
label(returnhere)
label(originalcode)
label(exit)
label(help)//定义help
label(kill)//定义kill
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
cmp [rbx+14],1//1=我方阵营
je help
cmp [rbx+14],2//2=敌方阵营
je kill
originalcode:
//movss xmm1,[rbx+08]//这行注释掉,分别写在 help 和 kill 函数内
help:
mov esi,0//修改 受到的伤害值=0
cvtsi2ss xmm0,esi
movss xmm1,[rbx+08]
jmp exit
kill:
mov esi,ff//修改 受到的伤害值=255
cvtsi2ss xmm0,esi
movss xmm1,[rbx+08]
jmp exit
exit:
jmp returnhere
"Tutorial-x86_64.exe"+2EEFC:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Tutorial-x86_64.exe"+2EEFC:
movss xmm1,[rbx+08]
//Alt: db F3 0F 10 4B 08
//code from here to '[DISABLE]' will be used to enable the cheat
alloc(newmem,2048,"Tutorial-x86_64.exe"+2EEFC)
label(returnhere)
label(originalcode)
label(exit)
label(help)//定义help
label(kill)//定义kill
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
cmp [rbx+14],1//1=我方阵营
je help
cmp [rbx+14],2//2=敌方阵营
je kill
originalcode:
//movss xmm1,[rbx+08]//这行注释掉,分别写在 help 和 kill 函数内
help:
mov esi,0//修改 受到的伤害值=0
cvtsi2ss xmm0,esi
movss xmm1,[rbx+08]
jmp exit
kill:
mov esi,ff//修改 受到的伤害值=255
cvtsi2ss xmm0,esi
movss xmm1,[rbx+08]
jmp exit
exit:
jmp returnhere
"Tutorial-x86_64.exe"+2EEFC:
jmp newmem
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
"Tutorial-x86_64.exe"+2EEFC:
movss xmm1,[rbx+08]
//Alt: db F3 0F 10 4B 08
