[TUT] Extremely Simple Pointer Finding Method
Posted: Sat Jan 08, 2011 9:33 am
First, NO NOOB REPLIES in this thread. NO NOOB QUESTIONS. And justcool91, if you DARE to post in this thread, you`ll get fcked up hardcore.
Please don`t quote this thread in your replies as I`ll update it frequently.
Strictly NO questions about the way to get CE working on MapleSEA. If you can`t make it to work, try to use at PRIVATE SERVERS.
As you all know, Pointer hacks are the ONLY working hack in MapleSEA. So, finding pointers are VERY IMPORTANT now.
Recently, I found a freaking way to find pointers in a very shortcut way, unlike those tutorials which needs debuggers. (I`ll add pictures when I`m free)
The program you need to use is a working Cheat Engine(CE)/Undetected Cheat Engine(UCE). Most of the advanced members have the way to get it to work, like iSean and guyz92. If you can`t get it to work on MSEA, try on a Private Server. The theory is same but sometimes AoBs might change.
First, load maple and login until you reach in game.
1. Finding Bases
First, scan values using the way you know, like AttackCount, attack once, first scan "1", attack another, next scan "2"
Okey, now, you got your address. Let`s say, the current address for AttackCount is 04AB3679. The old way that needs debugger is to attatch a debugger and "find out whay address accesses this address".......... It is very complicated. So, I`ll teach a new way.
Now, choose "Value between" on Scan Type and tick "Hex" (Value type = 4 bytes). Fill in "04AB0000" (Any you like...the lesser the better) on the first blank and "04AB3679" at the second blank. First scan.
Now, check that if an address AROUND 00CXXXXX that contains a value in the range. That might be the base address.
Lets say, we found it.
00C86838 - 04AB0001
So, this is CharBase. Now, letz proceed to another stage.
2. Finding Offsets with Base
Now, we got CharBase as the Base.
We have to find the offset. Itz so easy. Get your calculator ready with HEX. Subtract 04AB3679 by 04AB0001 and you get 3678. Done, this is your Offset.
So, CharBase = 00C86838 and AttCount = 3678
3. Finding Base with Offset.
Hey, i got MapID`s offset, AA8 and I don`t know CharInfoBase!!!
Well now, scan the value of the MapID and you`ll finally get an address. Letz say, 0662DCA8 contains the MapID`s value. Well, get your calculator, subtract 0662DCA8 with AA8, you got 0662CD00. Now, at Scan Type check "Exact Value" and tick HEX.
So we found:
00C88C4C - 0662CD00
So, CharInfoBase = 00C88C4C and MapID = AA8.
Oh yes, the bases and offsets are MapleSEA v97`s.
If you can`t find the Base, try to extend the scan range.
Oh yeah, if you want a more simple scanning, Edit the "Memory Scan Options".
From "00401000" to "00C95000" <<<---This is MapleSEA`s MSCRC range. If still can`t, check "Also scan Read Only Memory" or "Hyper Scan".
For finding AoBs to the next version, I`ll include that later. These first lol......
So these are the things that I found. Hope they`ll help you.
*These AoBs are WRONG/CHANGED in Nerrazurri`s pointer updater
ServerBase = 00C823C4
WorldOffset = 2068*
ChannelOffset = 206C*
CharInfoBase = 00C88C4C
MapIDOffset = 00000AA8*
A great tip: EXP% is "Double", not "4 byte", as it contains decimals.
Please don`t quote this thread in your replies as I`ll update it frequently.
Strictly NO questions about the way to get CE working on MapleSEA. If you can`t make it to work, try to use at PRIVATE SERVERS.
As you all know, Pointer hacks are the ONLY working hack in MapleSEA. So, finding pointers are VERY IMPORTANT now.
Recently, I found a freaking way to find pointers in a very shortcut way, unlike those tutorials which needs debuggers. (I`ll add pictures when I`m free)
The program you need to use is a working Cheat Engine(CE)/Undetected Cheat Engine(UCE). Most of the advanced members have the way to get it to work, like iSean and guyz92. If you can`t get it to work on MSEA, try on a Private Server. The theory is same but sometimes AoBs might change.
First, load maple and login until you reach in game.
1. Finding Bases
First, scan values using the way you know, like AttackCount, attack once, first scan "1", attack another, next scan "2"
Okey, now, you got your address. Let`s say, the current address for AttackCount is 04AB3679. The old way that needs debugger is to attatch a debugger and "find out whay address accesses this address".......... It is very complicated. So, I`ll teach a new way.
Now, choose "Value between" on Scan Type and tick "Hex" (Value type = 4 bytes). Fill in "04AB0000" (Any you like...the lesser the better) on the first blank and "04AB3679" at the second blank. First scan.
Now, check that if an address AROUND 00CXXXXX that contains a value in the range. That might be the base address.
Lets say, we found it.
00C86838 - 04AB0001
So, this is CharBase. Now, letz proceed to another stage.
2. Finding Offsets with Base
Now, we got CharBase as the Base.
We have to find the offset. Itz so easy. Get your calculator ready with HEX. Subtract 04AB3679 by 04AB0001 and you get 3678. Done, this is your Offset.
So, CharBase = 00C86838 and AttCount = 3678
3. Finding Base with Offset.
Hey, i got MapID`s offset, AA8 and I don`t know CharInfoBase!!!
Well now, scan the value of the MapID and you`ll finally get an address. Letz say, 0662DCA8 contains the MapID`s value. Well, get your calculator, subtract 0662DCA8 with AA8, you got 0662CD00. Now, at Scan Type check "Exact Value" and tick HEX.
So we found:
00C88C4C - 0662CD00
So, CharInfoBase = 00C88C4C and MapID = AA8.
Oh yes, the bases and offsets are MapleSEA v97`s.
If you can`t find the Base, try to extend the scan range.
Oh yeah, if you want a more simple scanning, Edit the "Memory Scan Options".
From "00401000" to "00C95000" <<<---This is MapleSEA`s MSCRC range. If still can`t, check "Also scan Read Only Memory" or "Hyper Scan".
For finding AoBs to the next version, I`ll include that later. These first lol......
So these are the things that I found. Hope they`ll help you.
*These AoBs are WRONG/CHANGED in Nerrazurri`s pointer updater
ServerBase = 00C823C4
WorldOffset = 2068*
ChannelOffset = 206C*
CharInfoBase = 00C88C4C
MapIDOffset = 00000AA8*
A great tip: EXP% is "Double", not "4 byte", as it contains decimals.