Same thrill of solving a puzzle (and/or crime - especially reversing malware 😁). Thanks for watching and glad you enjoyed!

I am doing a bit of that stuff and it actually feels like treasure hunt, like you are in some fucking mysterious ancient catacomb solving its mysteries lmao. Very fascinating.

@Abraham Johnathan I had this idea for a while, but the issue I have with that is that it’s just a game. Usually I solve some actual problem which people need to be solved with what I’m doing.

@Abraham Johnathan Easy to get in to, ridiculously difficult to master :) It's a great thing to do, good luck and have fun!

Enjoy the "fun" while you can

I do believe in keeping in the mistakes and identifying them because it helps me learn too! And it’s true, there’s always so much to know and learn that there are bound to be mistakes, and that’s okay - I really appreciate when someone corrects me and helps educate me. Now that said, I would be lying if I didn’t say I also edit out a couple of hours of mistakes like my voice cracking, me cursing because I forgot something or misspoke, me forgetting to turn my phone off, me blanking on a keyboard shortcut, etc. - Y’all don’t need to know how much of a mess I am personally 😂

@jeFF0Falltrades if you edit out a lot, then it is even more impressive! The bits you left in are not only important to give a general sense of something being hard. You actually show the process of gaining information. Otherwise it is easy for a beginner to dismiss the teachers process as just being magic, I.e. there is no process, you either get it or don't get it. That can be so demotivating! But you show the process, which is truly motivating. "I can also do that! Maybe even a little bit faster than the teacher!"

@@jeFF0Falltradesso the issue where the game was only painted/rendered in tiles resolved it self automagically with the patch?

@@RandomUser2401 So some spoilers, but I’ll actually be talking more in depth about this in my upcoming vid - I realized we didn’t really dive into the “why” behind the blackness shown in the intro in this vid, but in short - yes, the patch fixes the error, and the reason we see that blackness is due to the screen not being refilled with colors properly after the window is destroyed if the max resolution of the machine is bigger than the max threshold expected. More details to come 😉

@@jeFF0Falltrades wow, so nice! That‘s so much more than the best answer I could‘ve imagine. Awesome, looking very forward to this video! Keep up the great reveng videos👌🏻

Thanks for watching!

Now 3 years since video release, and still great.

That is awesome feedback, Navnik - As long as you had fun and came out of this having more knowledge than you started with, I am more than happy. If it comes in handy for you some day - even better! Thanks for watching!

@@jeFF0Falltrades Hi Jeff, could you please help me to bypass the registry in app that the manufacturer is not existing anymore.

Ah man, thank you so much for the kinds words! So glad you were able to get something out of it; Thanks so much for watching!

So happy you enjoyed it! I have a new vid cooking now; Hoping to upload by end of Jan :-). Thanks so much for the kind words.

Thank you! Someone else pointed this out and I totally did - I even said at the start of that segment “These are the values in decimal on this page” or something 🤦‍♂️ I edited the description a while back to include this correction. Thanks for watching!

Thank you for the candid feedback! Others have remarked this on this particular video and it made me realize in retrospect that I missed the opportunity to do so in this one (I was so excited to publish this as my first vid that I think my mind was all over the place). That said, I’ve tried to improve that in my other videos so I hope you’ll find the feedback well received! Thanks so much for watching!

Thank you Randy! Yeah, this being my first one of these videos, I failed there, likely due to overexcitement 😁 - this was one of the primary pieces of feedback I got for this one, and I took it to heart. Happy to say I’ve gotten better with subsequent videos. Thanks so much for watching and for the kind words!

@@jeFF0Falltrades It is pretty rare to find this content, so I was glad to find it. The quality is very good! I look forward to watching some of the other videos!

@@RandyFortier Thank you so much! And agreed; that’s really why I’ve kept with it. That and the incredible community that’s been built up around it :-)

Hi, awesome video. I like to ask you where is a good place to really learn C language. I think C is so cool but the learning process, at least to me had been painful, as you have much more knowledge you have to know a good resource for better learning from language. Thanks.

Hi Marcos, and thanks so much! I put a few resources in the video description here, but it depends on how you best learn: If you learn better through videos and a university-course like environment, try Harvard’s CS50 course: cs50.tv/ If you prefer reading and self-learning, this is a good book as well: C Programming: A Modern Approach, 2nd Edition www.amazon.com/dp/0393979504/ref=cm_sw_r_cp_api_glc_fabc_UGX8Fb9B8FBGF Also be sure to check the resources I posted, as a few of them have lists of other resources. Hope that helps! Thanks for watching!

@@jeFF0Falltrades Thanks for your reply and a book recommendation, I like to watch some teach classes in video, but I don't refuse a good programming book. I'll take a good look at this book and let you know what I think about it.

@@jeFF0Falltrades Hi, again. There’s another hacker channel o even another hacker resource which you recommend I follow to get more hacking knowledge? Any recommendation will be welcome. ps: the book that you was recommend is awesome, pleasure reading and easy to understand. Thanks.

@@padwan1000 Hi again! I always like to recommend Colin Hardy's KZbin channel - He's been doing this a lot longer than me, and he's brilliant at it.

Thank you so much! I hope you enjoy this, and if you do, I hope you enjoy my other vids - which arguably have only gotten better in quality with time (not by much but I’d like to think a little 😂) Thanks so much for watching and for your kind words!

Thanks for watching! Yeah, that’s partly why I wanted to start with this problem - it’s a bit easier to wrap your head around than starting with something like malware analysis. I hope this is helpful to you!

Guidedhacking.com is a great start for that.

So glad to hear it! So many good games in the graveyard that could potentially be resurrected! Hope you enjoy this and my other tutorials

Thank you for watching and so happy you enjoy!

So glad to hear that - thanks so much for watching and glad you enjoyed! Good luck in your learning journey.

Oh wow you are absolutely correct - I even say “They’re in decimal on this page” out loud and I still mucked that up! Thank you for pointing this out! I have added a correction in the description of the video. I really appreciate you catching this and watching!

So glad you enjoyed and thanks for the kind words! If you ever want to dive in deeper, feel free to check out the x86 reversing series I posted here last month.

Great to hear! I’m finishing up another game modding tutorial as we speak, so stayed tuned! Thanks for watching

Thank you so much for watching and for the kind words! So glad you enjoyed! I am currently at the tail end of prep for a new, very similar video - I hope you enjoy that too 😊

@@jeFF0Falltrades Oh great, I'm looking forward to it. I'll definitely take a look. I'm new to reverse engineering and can really use videos like this :) I have a lot of fun with it

@@lennard21M It’s a great time (if not frustrating). So glad to hear it

They do and they are (or can be) wonderful. Thanks for watching!

@@jeFF0Falltrades Can you make a tutorial on how to install one though? Cause it downloads a zip and I tried looking for some to no avail, unless you can add a tutorial video to the desc. that's already made. It's also very confusing on how to install programs that are in zip files in general.

@@djglitch2.031 You know that’s not a bad idea - I’m realizing I have it preinstalled in all my vids - Next time I make a vid with Ghidra I can do a full install of it. It’s not difficult to understand once you know how Ghidra works via Java, but yeah - I do remember I had to take a few extra steps to make a shortcut to it and such and make it “act like a normal program”. Thanks for the feedback!

@@jeFF0Falltrades Np, I like the helpful programs that always seems to be in zip formats which get really annoying to work out for newbies like me.

Thank you so much! And thanks for the recommendation - I would love to do an exploit video sometime but have to tread carefully due to YT’s rules on educational videos/malicious intent etc…have had issues in the past. But I’ll try to cobble something together sometime.

Thanks for the great feedback! Some others have commented the same and I’d like to think I did a better job in my other videos - I was so excited to get this first one done I totally blanked on it haha. Thanks for watching!

The highest praise I could get is knowing this helped someone getting started: Thank you so, so much CureofQuarantine! So glad you enjoyed, and excited to do more soon.

Tusen tack! Det var ju målet då jag skapade kanalen, och det är så häftigt å se så många folk som njuter av ämnet. Tack för att du tittar!

This is why I love video games - so much passion, blood, sweat, and tears poured into giving people an escape to have fun and enjoy life.

Awesome! So glad you enjoyed and glad it inspired some tinkering! Can’t tell you how many times I walked away from a project out of frustration, only to come back and have a blast with it with fresh eyes - I hope you get some learning and fun out of it. Thanks for watching!

I talked about this in my latest RCT video from last week, but I am just gobsmacked by the skill of the early reversers who build tools like the OG RCT trainers with far fewer good RE tools we have today. It’s incredible.

Thanks so much for watching and even more for the great feedback! I’ve had a LOT of requests for more game-related reversing, so that one is heavy on my mind for the next videos - I’ll try to find something creative like this but RCT was such a gem; It’s going to be hard to top.

So glad you liked it! Thanks for watching!

Good spot - yes, I should have highlighted the little “current step” box you’re referring to, but wanted to get into the habit of using the dump view to peruse around while keeping the CPU view the same. This is a good tip, though, and I’ll try to remember to highlight that section of the GUI next time we open the debugger. Thanks for watching!

Heck yeah! It’s always so nice to hear about people like you who go out and apply this, esp when it comes to patching old school games. Congrats, great job, and thanks for watching!

More on the way soon! Have some ideas ready to go - just need to find the time to plan and record them :-). Thanks for watching and feel free to check out the other couple of vids here if they interest you!

@@jeFF0Falltrades Glad to hear it) Next is 3 hour long video about solitaire)

Oh sick!! So happy to hear that you got it working, and well done on your behalf! Thanks so much for watching and if you ever have any RE type questions, feel free to shoot me a comment/DM.

@@jeFF0Falltrades WIll do!

That’s great feedback! If you’re interested in learning more of the details at a slower pace, I’d recommend checking out my x86 assembly course posted on this channel. I’ll also have another, similar video I’m hoping to publish before year end :-) Thanks for taking the time to leave a comment and so glad you enjoyed.

@@jeFF0Falltrades Haha if only I had time to learn. :D But thanks for the recommendation, I appreciate the effort.

@@Wielorybkek So long as you’re having fun, that’s what counts 👌

Thanks for the feedback! I took both of these down for consideration in some upcoming primers for beginners - they’re both great points. Thanks for watching!

@@jeFF0Falltrades I don't think it's a you problem but rather a Microsoft documentation problem. Surely if someone is patching a disassembly there are ways to OR those property flags together and have the assembler take it from there, but it might be cleaner from Microsoft's side, to show the bitfield in addition to a 32-bit hexadecimal value.

Thank you for the kind words! I’m working on a new one now, but some work and family matters (which I’ll talk about a bit in the next video), have made it prohibitive to upload often this past year. When I do put something out, I want the quality to be there :-). Thanks so much for watching.

So glad you enjoy! I’m working on another (very similar one) at the moment - and if you’d like to really dive in, I have an x86 assembly course posted as well. Have fun and let me know if you have any questions!

@@jeFF0Falltrades such a quick response :D im amazed, yeah i would definitely be interested in an asm course, i mean theres not so much good documentation on it out there (i know basic x64 asm), im only 3 years into programming as of now (or better speaking 1,5-2, 1 year i was just fooling around), wich some might consider early to dive into such, more deeper fields but i just think its so much more fascinating than just plain java script or stuff like that, that to me just seems like talking english to a computer, computer science is the way to go for me :D

@@gamehero7198 Haha you caught me during some downtime during travel. Awesome! Well, take it at your own pace and def don’t stress out over learning everything at once. There’s always more and more to learn later. Enjoy your studies too; I was a CS major and loved every bit of it (esp writing only a max of 2 essays in uni 😂)

@@jeFF0Falltrades I mean Im self taught, I spend to much time at the computer and to little at school 😅. So yeah, my goal is currently to land a job in development. I'm currently aiming at web development. Seems like web devs are always needed but my end goal is earning a living coding C or C++ mainly, but I first wanna add something to my resumee 🤷🏻‍♂️😅

So glad to hear!! I’m in the midst of recording a new one for beginners at RE now ;-). Stay tuned! Thank you for watching!

Hahaha my wife still pokes fun at me because I spent much more time on the RE than I did playing (I think I played a single game the day after the upload, and then my nostalgia was fulfilled) 😆. No regrets; It was such a fun experiment. Thanks for watching!

You are so kind, thank you! So glad you got something out of it. Hope to have a new video out shortly! So glad you enjoyed.

Thanks and so glad you enjoyed it! There are definitely more to come 😄

Thanks so much for this! I actually learned about this feature several months after this video was uploaded (I had just switched to Ghidra from IDA around the time I uploaded this), and I wish I had known it so much earlier. Since then, I've used it a few times for both Enums and structs (like in the latest RE video I posted) and it's so handy. I continue to learn so many nice features of Ghidra just through other people giving me these tips haha. Thanks for watching and for the great tips! I hope it's helpful to others as well.

Thanks so much! So glad you enjoyed and happy to see you moving through that journey! Stay tuned for some more RE content coming up in Jan :-)….

There are a good amount of jobs involving reversing or even game-specific reversing and mods as part of game dev/anti-cheat teams! Not to mention the malware analysis route - Hope you find something that suits you regardless! And thanks for watching!

So glad to hear you enjoyed, and even more happy to be part of your journey in finding out: YES! You can do it. And that goes for everyone here; believe me, if I can, you all can. Keep learning.

Glad to hear it! Hoping to do more when the holiday season comes around.

Not sure why I missed this when you first posted it, but thank you! I’ve got another couple of ideas planned and am going on holiday here shortly, so hoping to upload another one here soon 🤞

@@jeFF0FalltradesRelax man, no stress ;) Yesss, already preparing the popcorn 🥳🥳

Thanks so much for the feedback, for watching, and nice job on patching! I also realized - in working on my next video - that I did not spend enough time talking about RVAs vs offsets vs absolute addresses (this will be pivotal in the new video) so I promise I will hit on that in the next one. Regarding your question about that instruction, there are a couple of reasons I can imagine you are seeing the hex addresses you are (i.e. 0xFFFF7A33): One might be that you are seeing a relative address jump, so you are seeing a 16-bit address relative to the instruction (so all the highest bits are 0s), or it could be a placeholder value before the real address is linked. In the context of what you were doing, I think it’s probably the latter. Thanks for watching and for the great feedback!

No idea either, but glad you are here!

So glad to hear it! Thanks so much for watching!

@@santiagomanuel6843 Of course! Hope you find it all helpful in your journey!

@@RichardBejtlich Thank you so much for the kind words and so glad you enjoyed!

@@RichardBejtlich HOLD ON!

@@RichardBejtlich I just realized: Are you Corelight’s Richard Bejtlich?! EDIT: I’m now 99% certain you are! I just wanted to let you know that I appreciate your work, especially as believe it or not, I am a successor to your work on the CIRT at GE Aero 😂 I was going crazy wondering why your name sounded so familiar and that’s why!

Me too! Thanks so much, and hope to put out more soon!

Thank you so much; I’m so glad you enjoyed. I plan to put out some more content as soon as I can - A bit busy with a new kid on the way for now, but I have some ideas that are staged for some future videos :-)

So glad you enjoyed! Thanks so much for watching and for the kind words!

Take your time...I’ll be here ¯\_(ツ)_/¯ 😁

It really does so much for the nostalgic soul - Thanks so much for watching!

Appreciate you watching it through man - thanks for the kind words and hope you enjoyed it.

Thank you so much and glad to hear! If you haven’t seen the spiritual successor to this one (the latest RCT vid on the channel), you’d likely enjoy that one as well - much stranger but more interesting 😂 Thanks so much for watching and glad you enjoyed!

So glad you enjoyed! I really appreciate the feedback. I have another video idea I am working on right now that I hope to improve in terms of a “reversing beginner’s tutorial” based on lessons learned from publishing this video. And FWIW, I still enjoy using x64dbg for now; But probably just because I know where everything is :-)

​@@jeFF0Falltrades That's very cool! I'll likely give it a watch when it's out. Best of luck with your work! :)

Small update: inspired by your video I tried doing some reverse engineering of an old MS-DOS app with Ghidra. But it turns out Ghidra has incomplete support for 16-bit real mode and gets confused by segment registers and far pointers. Either that or I'm missing something. Oh well. 😂

My wife loves to poke fun at me because I barely got a chance to play following this (I did play for a good few days though) - I was too excited about this whole exploration that I was so much more focused on getting the video out. So glad you enjoyed!

Glad to hear it!! Thanks for watching and hope to have a new video out soon.

Thank you so much for watching and for the kind words. I really tried to make this as accessible as possible - I’m glad to hear it was helpful!

Thanks so much - so glad you enjoyed it and hope you continue to get something out of it. Something new coming to the channel this week, too ;-)

So glad you enjoyed! Hope you continue to enjoy the channel, and thanks so much for watching

Thanks for watching and so glad you got something out of it! More coming soon :-)

@@jeFF0Falltrades glad to hear it! I'm definitely keeping an eye out for your vids! Personally I love watching people reverse engineering a game to fix an abscure bug. Do you know mattkc and exilelord? They made a video on lego island and guitar hero respectively, documenting their journey reversing the game. I love this stuff

I’m hoping to record it in the upcoming week! Just wrapped up writing for it over the last couple of weeks :-). I hope you enjoy it…it will be very similar to this one

Thank you so much, Byron! So glad to hear you thought so. Looking forward to making more once I finish a couple of projects :-)

So glad you enjoyed! Thanks for watching!

I hope so! Thanks so much for watching!

Thank you! Yes - other folks pointed this out too and I can’t believe I missed it during recording because I *literally* said something along the lines of “and here are the values in hex” Thanks for watching!

@@jeFF0Falltrades My bad, i didn't see those comments until after I wrote mine! And thank you very much for making the video!

@@taguetrash Hey not at all! I don’t expect you to read every one, but I do try to put corrections in the description (in this first video) or my pinned comment (all other videos)

Thank you so much, Dj-Xo! I’m so happy you enjoyed.

Thank you for the feedback! Some others mentioned the same, and I agree - I’ve gotten better at this with my more recent videos (I think I was just too excited when filming this first one that it just fell right out of my head to label everything). Thanks for watching!

Did we just become best (nerd) friends???

I am glad you found out man! I believe you can change those colors in preference, but I’m not 100% sure - I don’t have my laptop with me ATM but I’ll try to remember to follow up with you after I can check.

You did not miss it! In fact, I did a follow-up on this very section in my latest video (Part 2 of “Modding RCT into a Peele Horror Film). More details there, but TL;DR: I never figured out the exact mechanism that was causing the failure, but it appears to be related to DirectX’s compatibility with newer Windows versions - The game tries to repaint at a higher resolution, but gets overridden by DirectX at a lower resolution, causing the window to only get partially painted, and creating those black boxes you saw in the intro. The DirectX method of rendering is inly used in full screen modes, so the patch essentially makes a “borderless” windowed mode to get around this. Thanks so much for watching and for the kind words!

I was like ayo wtf

So glad you enjoy them!

Your comment is pure gold, my dude. Thanks for watching and glad you enjoyed

Thank you! So happy to hear it was helpful. I’ve got another couple planned and am going on holiday here shortly, so hoping to upload another one here soon 🤞

@@jeFF0Falltrades I think doing a game like that was a perfect example because most people who do this are looking at games and messing around with old games like RCT

Thank you so much - and thanks for watching!

As long as you did, I can die happy

Thank you so much for your kind words - I hope it was helpful to you!

Nice! Yes, it’s always a balancing act, and more and more difficult to obfuscate away code, but there are several techniques employed today to do so by both smaller and larger studios. Thanks for the kind words and for watching!

For example the address when the Filestream is initalized is shown in Ghidra to be "00401bd9", but in x32dbg its "6C14A580"

The address shown in Ghidra is just a preferred base address - in fact, your operating system can load that EXE at any memory address it wants for any variety of reasons. To adjust for this, you can tell Ghidra to remap the memory addresses it shows by going to Window->Memory Map->Set Image Base (the house button).

@@jeFF0Falltrades Ah okay I see, thank you! So why did yours match up without changing the Image Base? Did I miss the part, where you changed that?

​@@game2playz685 Nope - I did not change it; It may be you're seeing differently since ASLR is set to be used somewhere in your operating system, and so the loader will always randomize the memory address (disclaimer: not necessarily between runs in a short period of time) of the PE.

Good stuff! I know XEX is a bit more of its own beast, but feel free to check out my other RE videos here if you need help with other basic concepts behind reversing.

@@jeFF0Falltrades I'll certainly take a look! from what I know about my XEX, it's going to take way longer than 2 months to fix a bunch of stuff. But at the moment, I'm just looking to find certain sections of code.

I do believe as I play through the game, more of the code will inevitably unlock.

@@kinggalactix Good luck! And thanks for watching!

@@jeFF0Falltrades No, thank you for the guide! Good luck to you, too.

Nope! In fact, just about to record a very similar video this week! Still loving doing this channel, as opposed to my last one which did very much become a burnout. Thanks so much for the sub and for watching!

Looking forward to the vid!@@jeFF0Falltrades

@@_________________404 Would likely be easier to make a GUI for the Python script, package it into a static executable, and then just make the user point to their instance of RCT to do the patching appropriately; You might be able to package them both together in one EXE, but it would get messy with addressing and modifying the original executable.

Great question! I regret I didn’t answer this in the video here…but without saying too much, stay tuned because I’ll try to answer that question in an upcoming video which will revisit some of this 😉

@@jeFF0Falltrades Awesome! Thank you

Congratulations - You have the spirit of a seasoned reverser! 😂

Glad you enjoyed! Hope to do more soon!