Ghidra + Cheat engine, how to find structs fastly [SUBTITLES]

Рет қаралды 8,927

Күн бұрын

You can use Cheat Engine for finding interesting values and then reverse them in Ghidra this approach dramatically speeds up reversing

Пікірлер: 22

@thogameskanaal 4 жыл бұрын

This is actually a really good workflow for decompilation! Albeit time consuming, this would be much faster than painstakingly trying to locate everything by just guessing.

@Joshy594 2 жыл бұрын

thanks for english subtitles. very cool

@BaptisteRoche 3 жыл бұрын

Hello from France! Thank you!

@quickcompilation3437 3 жыл бұрын

Структуру назавем "Хрен знает что это такое":D

@fatzzke Жыл бұрын

Thank you for the tutorial. My game is using static addresses let's see how far I get with that :)

@wvvern 3 жыл бұрын

When building the data structure, how would I handle having multiple offsets in the pointer to the address that I'm interested in? There weren't any single-offset pointers from the .exe in the game that I'm trying to learn with. I got ghidra today, so I probably should learn the basics before asking such a question lmao

@h0x91B 3 жыл бұрын

multiply pointers are actually just a struct that points to another struct and that struct points to another struct too. e.g. ptrToS1->ptrToS2->ptrToS3->some_field

@renan1494 Жыл бұрын

Thank you!

@_Pawelski 4 жыл бұрын

Is that possible that we will get english subtitles? I understand what you are doing but I have no clue what is the purpose of finding this struct

@h0x91B 4 жыл бұрын

ok, I'll do it

@h0x91B 4 жыл бұрын

done :)

@_Pawelski 4 жыл бұрын

@@h0x91B youre the best, man! Can we expect translation to every other video of yours in the future? I feel like these are pure game mod creating tutorials which are very rare on KZbin. I was very happy to stumble upon your channel but unfortunately I do not know Russian at all. I'm sure you deserve much more viewers. And thanks for quick response

@h0x91B 4 жыл бұрын

I need to force myself to do proper tutorials using `scripts` and written speech, then I'll be able to translate it properly and easily. Because now I am just recording my screen and speaking to it, so it's trashy even in Russian. I need to go to the next level.

@rodrigoreis6615 4 жыл бұрын

@@h0x91B Damm nice for improving your content , 1+ sub

@SonicegorsanCode 2 ай бұрын

Довольно интересная техника нахождения связанных с полями функций. Никогда такого не встречал. Интересно правда было бы узнать, есть ли что-то такое в IDA Pro. У меня получилось искать по полям лишь с тем неудобным ASM уровневым вариантом структур, а в C-style окне нет. Может у кого нибудь получится, приглашаю таковых в комментарии.

@GamerCare 4 жыл бұрын

what if multiply or more than 3-4 offsets as minimum only? like say i found pointer for ammo and it has 3 offsets, cant find with one offset. How to do this in Ghidra?

@h0x91B 4 жыл бұрын

Usually only one of those offsets is writable, you need to check it in the cheat engine which offset is writable...

@RetroToadstool 4 жыл бұрын

Подсел на Ваши видео. Давно хочу расковырять одну игру, на предмет алгоритма вычисления очков статистики. Дело осложняется тем, что игра на приставке 3DO. Есть возможность ее запуска на эмуляторе. Не подскажете примерный алгоритм действий на гидре?

@h0x91B 4 жыл бұрын

заходите к нам в дискорд :) если честно то я не пробывал ковырять приставки, но думаю там должно быть все схоже