Angular>> cheat-and-gin>> 返回
项目作者: JesseEmond

项目描述 :
C++ cheat engine (memory scanner)
高级语言: C++
项目地址: git://github.com/JesseEmond/cheat-and-gin.git
创建时间: 2014-07-22T03:21:29Z
项目社区:https://github.com/JesseEmond/cheat-and-gin
开源协议:
下载


Cheat Engine (Memory Scanner)

Build Status

cheat-and-gin is a program that you can use to modify the memory of another process while it is running.

Such a program is popular for hacking games that are running locally, but I build one to get familiar
with the particularities of modifying a program’s memory under Window and Linux for learning purposes.

Examples

Minecraft

Here’s an example where we give ourselves 999 dirt blocks by using an old version
of the cheat engine (the 999 blocks could actually be placed!):
Minecraft

Now all you have to do is find 1 diamond to actually find 999

I don’t actually encourage cheating in Minecraft. This is more of an
interesting real test for a cheat engine… Please don’t use this in
multiplayer.

Python REPL

Here’s an example where we modify the value of a string variable in a python
REPL interprer. We can do the same with integers, for example.
Minecraft

How?!

A description of how a cheat engine works (and what platform functions are used) is provided in
the CheatEngine‘s README.

Building

I use premake4 for build configuration. You can find a download link on premake’s website.

Windows

To create a Visual Studio solution, use:

  1. premake4 vs2017

You can then build in the solution.

Linux

To create a GNU Makefile and compile, run:

  1. premake4 gmake
  2. cd build
  3. make

Cheating

Our Target

There is a provided program named FakeGame which shows some fake game parameters (health, mana, gold, …)
which change every time a newline is entered along with their associated addresses:

  1. > ./FakeGame/bin/FakeGame
  2. health(4): 100 - 0x7ffcb173c07c
  3. mana(4): 100 - 0x7ffcb173c078
  4. gold(1):   - 0x7ffcb173c077
  5. miles(2): 5 - 0x7ffcb173c074
  6. rate(4): 0.1 - 0x7ffcb173c070
  7. science(8): 0.1 - 0x7ffcb173c068

Our Attack

We can then start our cheat engine and specify the name of the process that we want to attack.
Note that we’re playing with another process’ memory, so we need extra rights. I am doing so by
running with sudo here:

  1. > sudo ./CheatEngine/bin/CheatEngine
  2. Process name: FakeGame

We enter FakeGame and we are then prompted to know the size of the variable that we want to modify:

  1. What is the type of the searched value?
  2. A) unsigned byte
  3. B) character
  4. C) 16-bit integer
  5. D) 32-bit integer
  6. E) 64-bit integer
  7. F) float
  8. G) double
  9. H) string
  10. Value type: D

Say that we want to modify the health (4 bytes), we enter the choice of 32-bit integer.

We are then asked for the current value of the target variable:

  1. Value for 32-bit integer: 100

We enter the observed 100. We are told that multiple addresses hold our value:

  1. 10 memory address(es) containing the value.
  2. Keep searching? (y/n): y

We want to pin down our address, so we’ll update our game (newline in our FakeGame process)
and keep searching with the updated value. Let’s start by updating the game:

  1. health(4): 99 - 0x7ffd647d71ac
  2. mana(4): 98 - 0x7ffd647d71a8
  3. gold(1): ! - 0x7ffd647d71a7
  4. miles(2): 15 - 0x7ffd647d71a4
  5. rate(4): 0.3 - 0x7ffd647d71a0
  6. science(8): 0.103 - 0x7ffd647d7198

We can then enter the updated value (99):

  1. Value for 32-bit integer: 99

Set a new value:

  1. What value should the new address(es) have?
  2. Value for 32-bit integer: 424242
  3. Value(s) modified.

Finally, we can admire the results of our cheat by updating the FakeGame:

  1. health(4): 424241 - 0x7ffd3d5b7c5c
  2. mana(4): 96 - 0x7ffd3d5b7c58
  3. (...)

Running Tests

  1. ./CheatEngine/tests/bin/Tests