CheatMaker 论坛

注册

 

返回列表
发新话题 回复该主题
查看: 20552|回复: 2

Cheat Engine 6.5 - 添加数值类型:2/4字节高位优先 [复制链接]

dfzetcc
头像

  • 中级会员
  • 330
  • 0
  • 473
  • 2
  • 5143.8 元
  • 2014-08-22
论坛之星
1#
t T
发表于 2015-11-09 16:54 |只看楼主



输入以下代码:
2 字节(高位优先)
  1. alloc(TypeName,256)
  2. alloc(ByteSize,4)
  3. alloc(ConvertRoutine,1024)
  4. alloc(ConvertBackRoutine,1024)

  6. TypeName:
  7. db '2 Byte Big Endian',0   //CE不支持中文m


  10. ByteSize:
  11. dd 2

  13. //The convert routine should hold a routine that converts the data to an integer (in eax)
  14. //function declared as: stdcall int ConvertRoutine(unsigned char *input);
  15. //Note: Keep in mind that this routine can be called by multiple threads at the same time.
  16. ConvertRoutine:
  17. //jmp dllname.functionname
  18. [64-bit]
  19. //or manual:
  20. //parameters: (64-bit)
  21. //rcx=address of input
  22. xor eax,eax
  23. mov ax,[rcx] //eax now contains the bytes 'input' pointed to
  24. xchg ah,al //convert to big endian

  26. ret
  27. [/64-bit]

  29. [32-bit]
  30. //jmp dllname.functionname
  31. //or manual:
  32. //parameters: (32-bit)
  33. push ebp
  34. mov ebp,esp
  35. //[ebp+8]=input
  36. //example:
  37. mov eax,[ebp+8] //place the address that contains the bytes into eax
  38. mov ax,[eax] //place the bytes into eax so it's handled as a normal 4 byte value
  39. and eax,ffff //cleanup
  40. xchg ah,al //convert to big endian

  42. pop ebp
  43. ret 4
  44. [/32-bit]

  46. //The convert back routine should hold a routine that converts the given integer back to a row of bytes (e.g when the user wats to write a new value)
  47. //function declared as: stdcall void ConvertBackRoutine(int i, unsigned char *output);
  48. ConvertBackRoutine:
  49. //jmp dllname.functionname
  50. //or manual:
  51. [64-bit]
  52. //parameters: (64-bit)
  53. //ecx=input
  54. //rdx=address of output
  55. //example:
  56. xchg ch,cl //convert the little endian input into a big endian input
  57. mov [rdx],cx //place the integer the 4 bytes pointed to by rdx

  59. ret
  60. [/64-bit]

  62. [32-bit]
  63. //parameters: (32-bit)
  64. push ebp
  65. mov ebp,esp
  66. //[ebp+8]=input
  67. //[ebp+c]=address of output
  68. //example:
  69. push eax
  70. push ebx
  71. mov eax,[ebp+8] //load the value into eax
  72. mov ebx,[ebp+c] //load the address into ebx

  74. //convert the value to big endian
  75. xchg ah,al

  77. mov [ebx],ax //write the value into the address
  78. pop ebx
  79. pop eax

  81. pop ebp
  82. ret 8
  83. [/32-bit]
复制代码
4 字节(高位优先)
  1. alloc(TypeName,256)
  2. alloc(ByteSize,4)
  3. alloc(ConvertRoutine,1024)
  4. alloc(ConvertBackRoutine,1024)

  6. TypeName:
  7. db '4 Byte Big Endian',0 //db '4 字节 (高位优先)',0

  9. ByteSize:
  10. dd 4

  12. //The convert routine should hold a routine that converts the data to an integer (in eax)
  13. //function declared as: stdcall int ConvertRoutine(unsigned char *input);
  14. //Note: Keep in mind that this routine can be called by multiple threads at the same time.
  15. ConvertRoutine:
  16. //jmp dllname.functionname
  17. [64-bit]
  18. //or manual:
  19. //parameters: (64-bit)
  20. //rcx=address of input
  21. xor eax,eax
  22. mov eax,[rcx] //eax now contains the bytes 'input' pointed to
  23. bswap eax //convert to big endian

  25. ret
  26. [/64-bit]

  28. [32-bit]
  29. //jmp dllname.functionname
  30. //or manual:
  31. //parameters: (32-bit)
  32. push ebp
  33. mov ebp,esp
  34. //[ebp+8]=input
  35. //example:
  36. mov eax,[ebp+8] //place the address that contains the bytes into eax
  37. mov eax,[eax] //place the bytes into eax so it's handled as a normal 4 byte value

  39. bswap eax

  41. pop ebp
  42. ret 4
  43. [/32-bit]

  45. //The convert back routine should hold a routine that converts the given integer back to a row of bytes (e.g when the user wats to write a new value)
  46. //function declared as: stdcall void ConvertBackRoutine(int i, unsigned char *output);
  47. ConvertBackRoutine:
  48. //jmp dllname.functionname
  49. //or manual:
  50. [64-bit]
  51. //parameters: (64-bit)
  52. //ecx=input
  53. //rdx=address of output
  54. //example:
  55. bswap ecx //convert the little endian input into a big endian input
  56. mov [rdx],ecx //place the integer the 4 bytes pointed to by rdx

  58. ret
  59. [/64-bit]

  61. [32-bit]
  62. //parameters: (32-bit)
  63. push ebp
  64. mov ebp,esp
  65. //[ebp+8]=input
  66. //[ebp+c]=address of output
  67. //example:
  68. push eax
  69. push ebx
  70. mov eax,[ebp+8] //load the value into eax
  71. mov ebx,[ebp+c] //load the address into ebx

  73. //convert the value to big endian
  74. bswap eax

  76. mov [ebx],eax //write the value into the address
  77. pop ebx
  78. pop eax

  80. pop ebp
  81. ret 8
  82. [/32-bit]
复制代码
最终效果图:
分享 转发
我来人间一趟 奔着自由与光
TOP
jiqigou
头像

  • 注册会员
  • 21
  • 0
  • 25
  • 0
  • 187 元
  • 2014-12-07
2#
t T
发表于 2015-11-09 19:48 |只看该用户

为什么在CE界面上点击了鼠标右键并没有弹出菜单“定义新的自定义类型(自动汇编)”选项啊?
最后编辑jiqigou 最后编辑于 2015-11-09 20:13:17
TOP
dfzetcc
头像

  • 中级会员
  • 330
  • 0
  • 473
  • 2
  • 5143.8 元
  • 2014-08-22
论坛之星
3#
t T
发表于 2015-11-10 07:26 |只看楼主

为什么在CE界面上点击了鼠标右键并没有弹出菜单“定义新的自定义类型(自动汇编)”选项啊?
jiqigou 发表于 11/9/2015 7:48:52 PM
在数值类型的下拉菜单框上点
我来人间一趟 奔着自由与光
TOP
上一主题| 下一主题
返回列表
发新话题 回复该主题
高级编辑器高级编辑器