106
"[Enable Main Script]"
0000FF
Auto Assembler Script
[ENABLE]
aobscan( dwTheWorld_AOB, A1????????85C074??8B????8B????8B??8B??????????85C074 )
label( dwTheWorld )
registersymbol( dwTheWorld )
[dwTheWorld_AOB+1]:
dwTheWorld:
[DISABLE]
unregistersymbol( dwTheWorld )
108
"[Character]"
FF0000
1
109
"Player.X"
80000008
Float
dwTheWorld
44
1FC
65C
0
28
3C
111
"Player.Y"
80000008
Float
dwTheWorld
48
1FC
65C
0
28
3C
110
"Player.Z"
80000008
Float
dwTheWorld
4C
1FC
65C
0
28
3C
Increase Value
221
10
1
Decrease Value
219
10
2
Increase Value
17
221
50
3
Decrease Value
17
219
50
4
115
"MoveVector.X"
80000008
Float
dwTheWorld
E8
1FC
65C
0
28
3C
116
"MoveVector.Y"
80000008
Float
dwTheWorld
EC
1FC
65C
0
28
3C
117
"MoveVector.Z"
80000008
Float
dwTheWorld
F0
1FC
65C
0
28
3C
122
"MoveVector.Delta"
80000008
Float
dwTheWorld
16E4
1FC
65C
0
28
3C
125
"Fly.MoveVector.Delta"
80000008
Float
dwTheWorld
264
1FC
65C
0
28
3C
139
"Walk.Friction"
80000008
Float
dwTheWorld
25C
1FC
65C
0
28
3C
140
"Walk.MoveVector.Delta"
80000008
Float
dwTheWorld
240
E4
1FC
65C
0
28
3C
141
"Fly.Friction"
80000008
Float
dwTheWorld
264
1FC
65C
0
28
3C
142
"Fly.MoveVector.Delta"
80000008
Float
dwTheWorld
254
E4
1FC
65C
0
28
3C
112
"Health"
80000008
Float
dwTheWorld
261C
1FC
65C
0
28
3C
119
"HealthMax"
80000008
Float
dwTheWorld
2620
1FC
65C
0
28
3C
121
"Shield"
80000008
Float
dwTheWorld
2624
1FC
65C
0
28
3C
120
"ShieldMax"
80000008
Float
dwTheWorld
2628
1FC
65C
0
28
3C
118
"Silver"
80000008
4 Bytes
dwTheWorld
50C
65C
0
28
3C
114
"Salt"
80000008
4 Bytes
dwTheWorld
510
65C
0
28
3C
Set Value
89
130
0
113
"LockPicks"
80000008
4 Bytes
dwTheWorld
51C
65C
0
28
3C
123
"Speed"
80000008
Float
dwTheWorld
16E8
1FC
65C
0
28
3C
124
"JumpHeight"
80000008
Float
dwTheWorld
270
1FC
65C
0
28
3C
126
"[Cheats]"
FF0000
1
128
"God"
1
80000008
4 Bytes
dwTheWorld
6EC
1FC
65C
0
28
3C
127
"SloMo"
80000008
Float
dwTheWorld
398
0
28
3C
132
"PlayersOnly"
1
80000008
4 Bytes
dwTheWorld
204
0
28
3C
Set Value
97
000120DA
0
Set Value
18
97
0001205A
1
130
"Ghost"
80000008
1
129
"Fly"
80000008
Byte
dwTheWorld
84
1FC
65C
0
28
3C
131
"WallHack"
1
80000008
4 Bytes
dwTheWorld
60
1FC
65C
0
28
3C
105
"[Scripts]"
FF0000
1
23
"Infinite Ammo"
80000008
Auto Assembler Script
[ENABLE]
alloc( WeaponsHandler_Hook, 256 )
label( exit )
label( back )
WeaponsHandler_Hook:
pushfd
pushad
mov eax,[p1]
test eax,eax
je short exit
cmp [esi+8C],eax
jne short exit
popad
popfd
ret
exit:
popad
popfd
push ecx
push esi
mov esi,ecx
test [esi+3F4],20000
jmp back
aobscan( dwWeaponsHook_AOB, 51568BF1F786????000000000200 )
label( dwWeaponsHook )
registersymbol( dwWeaponsHook )
dwWeaponsHook_AOB:
dwWeaponsHook:
jmp WeaponsHandler_Hook
db 90 90 90 90 90 90 90 90 90
back:
[DISABLE]
dwWeaponsHook:
db 51 56 8B F1 F7 86 F4 03 00 00 00 00 02 00
unregistersymbol( dwWeaponsHook )
dealloc( WeaponsHandler_Hook )
6
"Cheat Handler"
80000008
Auto Assembler Script
[ENABLE]
aobscan(TOGGLEUI_AOB,68xxxxxxxx50E8xxxxxxxx83C40885C0741633C9390Dyyyyyyyy0F94C1890Dyyyyyyyy)
label(TOGGLEUI)
registersymbol(TOGGLEUI)
[TOGGLEUI_AOB+16]:
TOGGLEUI:
////////////////////////////////
alloc( EPhysicsHandler_Hook, 256 )
label( lFly )
alloc( bFly, 4 )
registersymbol( bFly )
label( lGhost )
alloc( bGhost, 4 )
registersymbol( bGhost )
label( lGod )
alloc( bGod, 4 )
registersymbol( bGod )
alloc( dwSloMo, 4 )
registersymbol( dwSloMo )
label( exit )
label( back )
alloc( KeyHandlerThread, 256 )
CreateThread( KeyHandlerThread )
label( ExitKeyHandler )
label( KeyHandlerOff )
registersymbol( KeyHandlerOff )
label( ToggleFly )
label( ToggleGhost )
label( ToggleGod )
label( Toggle )
label( Toggler )
label( ToggleSloMo1 )
label( ToggleSloMo2 )
label( ToggleSloMo3 )
label( __ToggleUI )
EPhysicsHandler_Hook:
pushfd
pushad
mov ecx,[eax+A4]
lea ecx,[ecx+398]
mov [dwSloMo],ecx
// ----[ Fly ]----
lFly:
cmp [bFly],0
je @f
mov byte ptr [eax+84],4
mov ecx,[eax+E4]
mov [ecx+254],(float)12.0
jmp lGhost
@@:
cmp byte ptr [eax+84],4
jne lGhost
mov byte ptr [eax+84],1
mov ecx,[eax+E4]
mov [ecx+254],(float)0.1
mov [bGhost],0
// !-- Ghost
lGhost:
cmp [bGhost],0
je @f
cmp [bFly],0
je @f
and dword ptr [eax+60],FFFFFFF0
jmp lGod
@@:
or dword ptr [eax+60],6
// !-- God
lGod:
cmp [bGod],0
je @f
or [eax+6EC],8
jmp exit
@@:
and [eax+6EC],FFFFFFF1
exit:
popad
popfd
movzx eax,byte ptr [eax+84]
jmp back
// ----[ Keys Handler ]----
KeyHandlerThread:
push 0a
call Sleep
cmp [KeyHandlerOff],1
je ExitKeyHandler
push 71 //F2
call GetAsyncKeyState
and eax,8000
test eax,eax
jne Toggle
cmp [Toggler],1
jne KeyHandlerThread
push 62 //VK_NUMPAD2
call GetAsyncKeyState
and eax,8000
test eax,eax
jne ToggleFly
push 63 //VK_NUMPAD3
call GetAsyncKeyState
and eax,8000
test eax,eax
jne ToggleGhost
push 66 //VK_NUMPAD6
call GetAsyncKeyState
and eax,8000
test eax,eax
jne ToggleGod
push 67 //VK_NUMPAD7
call GetAsyncKeyState
and eax,8000
test eax,eax
jne ToggleSloMo1
push 68 //VK_NUMPAD8
call GetAsyncKeyState
and eax,8000
test eax,eax
jne ToggleSloMo2
push 69 //VK_NUMPAD9
call GetAsyncKeyState
and eax,8000
test eax,eax
jne ToggleSloMo3
push 64 //VK_NUMPAD4
call GetAsyncKeyState
test ax,ax
jne __ToggleUI
jmp KeyHandlerThread
ToggleFly:
xor [bFly],1
push C8
call Sleep
jmp KeyHandlerThread
ToggleGhost:
xor [bGhost],1
push C8
call Sleep
jmp KeyHandlerThread
ToggleGod:
xor [bGod],1
push C8
call Sleep
jmp KeyHandlerThread
ToggleSloMo1:
push eax
mov eax,[dwSloMo]
mov [eax],(float)0.1
pop eax
push C8
call Sleep
jmp KeyHandlerThread
ToggleSloMo2:
push eax
mov eax,[dwSloMo]
mov [eax],(float)0.5
pop eax
push C8
call Sleep
jmp KeyHandlerThread
ToggleSloMo3:
push eax
mov eax,[dwSloMo]
mov [eax],(float)1.0
pop eax
push C8
call Sleep
jmp KeyHandlerThread
__ToggleUI:
xor [TOGGLEUI],1
push C8
call Sleep
jmp KeyHandlerThread
Toggle:
xor [Toggler],1
push 96
call Sleep
jmp KeyHandlerThread
ExitKeyHandler:
ret
Toggler:
dd 1
KeyHandlerOff:
dd 0
aobscan( dwEPhysicsHook_AOB, 0FB680????????570FB6??39BE????????74 )
label( dwEPhysicsHook )
registersymbol( dwEPhysicsHook )
dwEPhysicsHook_AOB:
dwEPhysicsHook:
jmp EPhysicsHandler_Hook
db 90 90
back:
[DISABLE]
dwEPhysicsHook:
movzx eax,byte ptr [eax+84]
KeyHandlerOff:
dd 1
unregistersymbol( dwEPhysicsHook )
unregistersymbol( KeyHandlerOff )
unregistersymbol( dwSloMo )
dealloc( dwSloMo )
unregistersymbol( bGod )
dealloc( bGod )
unregistersymbol( bGhost )
dealloc( bGhost )
unregistersymbol( bFly )
dealloc( bFly )
dealloc( EPhysicsHandler_Hook )
11
"SloMo"
80000008
Float
dwSloMo
0
8
"Fly"
80000008
4 Bytes
bFly
9
"Ghost"
80000008
4 Bytes
bGhost
10
"God"
80000008
4 Bytes
bGod
143
"TOGGLEUI"
80000008
4 Bytes
TOGGLEUI
204
"Change FoV (PG-UP, PG-DOWN, HOME)"
80000008
Auto Assembler Script
{ Game : BioShockInfinite.exe
Date : 2013-11-19
Author : mgr.inz.Player
}
[ENABLE]
aobscanmodule(FoV_OnTheFly,BioShockInfinite.exe,F3 0F 10 85 90 02 00 00 5F 5E) // should be unique
registersymbol(FoV_OnTheFly)
label(currentFOVOffset)
globalalloc(FOV_OnTheFly_Memory,$1000)
label(code)
label(return)
label(thread)
createthread(thread)
label(disableThread)
registersymbol(disableThread)
label(IncreaseFOV)
label(DecreaseFOV)
label(ResetFOV)
label(FOVOffsetStep)
registersymbol(FOVOffsetStep)
FOV_OnTheFly_Memory:
thread:
push #5
call sleep
push 21 //PG_UP
call GetAsyncKeyState
test ax,ax
jnz IncreaseFOV
push 22 //PG_DOWN
call GetAsyncKeyState
test ax,ax
jnz DecreaseFOV
push 24 //HOME
call GetAsyncKeyState
test ax,ax
jnz ResetFOV
test byte ptr [disableThread],01
jz thread
ret
label(calcStep)
IncreaseFOV:
fld [currentFOVOffset]
fadd [FOVOffsetStep]
fstp [currentFOVOffset]
call calcStep
jmp thread
DecreaseFOV:
fld [currentFOVOffset]
fsub [FOVOffsetStep]
fstp [currentFOVOffset]
call calcStep
jmp thread
ResetFOV:
fldz
fstp [currentFOVOffset]
call calcStep
jmp thread
FOVOffsetStep:
dd (float)0.2
currentFOVOffset:
dd 00
disableThread:
db 00
label(currentFoV)
registersymbol(currentFoV)
currentFoV:
dd 00
label(const)
const:
dd (float)-0.0016852808
dd (float)0.15
dd (float)90
calcStep:
fld [const+8]
fsub [currentFoV]
fabs
fmul [const]
fadd [const+4]
fstp [FOVOffsetStep]
ret
code:
movss xmm0,[currentFOVOffset]
movss [ebp+00000290],xmm0
//movss xmm0,[ebp+00000290] // orig
// INFO
movq xmm2,xmm0
addss xmm2,xmm1
movd [currentFoV],xmm2
//^^^^^^^^^^^^^^^^^^^^^
jmp return
FoV_OnTheFly:
jmp code
db 90 90 90
return:
[DISABLE]
FoV_OnTheFly:
db F3 0F 10 85 90 02 00 00
disableThread:
db 01
unregistersymbol(FoV_OnTheFly)
unregistersymbol(disableThread)
unregistersymbol(FOVOffsetStep)
unregistersymbol(currentFoV)
205
"FoV Step (INFO only)"
80000008
Float
FOVOffsetStep
206
"currentFoV (INFO only)"
80000008
Float
currentFoV
96
"[Debug]"
C0C0C0
1
97
"[Pointers]"
FF0000
1
94
"Get Base Pointers"
80000008
Auto Assembler Script
[ENABLE]
aobscan( dwTheWorldDebug_AOB, 8B15????????5368????????5652E8????????8B8C24????????A3 )
label( dwTheWorldDebug )
registersymbol( dwTheWorldDebug )
dwTheWorldDebug_AOB+1B:
dwTheWorldDebug:
[DISABLE]
unregistersymbol( dwTheWorldDebug )
95
"Signature [Address][Value]"
1
80000008
4 Bytes
dwTheWorldDebug
98
"WorldBase (p0) [Address]"
1
80000008
4 Bytes
[dwTheWorldDebug]
0
0
28
3C
99
"PawnBase (p1) [Address][In-Game]"
1
80000008
4 Bytes
[dwTheWorldDebug]
0
1FC
65C
0
28
3C
100
"[Hooks]"
FF0000
1
101
"EPhysicsHookLoc"
80000008
Auto Assembler Script
[ENABLE]
aobscan( dwEPhysicsHookDebug_AOB, 0FB680????????570FB6??39BE????????74 )
label( dwEPhysicsHookDebug )
registersymbol( dwEPhysicsHookDebug )
dwEPhysicsHookDebug_AOB:
dwEPhysicsHookDebug:
[DISABLE]
unregistersymbol( dwEPhysicsHookDebug )
102
"Signature [Address]"
1
80000008
4 Bytes
dwEPhysicsHookDebug
103
"WeaponsHandlerLoc"
80000008
Auto Assembler Script
[ENABLE]
aobscan( dwWeaponsHookDebug_AOB, 558BEC83E4F05153568BF1F7 )
label( dwWeaponsHookDebug )
registersymbol( dwWeaponsHookDebug )
dwWeaponsHookDebug_AOB:
dwWeaponsHookDebug:
[DISABLE]
unregistersymbol( dwWeaponsHookDebug )
104
"Signature [Address]"
1
80000008
4 Bytes
dwWeaponsHookDebug
Code :movq [ecx+44],xmm0
005B9F18
BioShockInfinite.exe
1B9F18
04
F3
0F
7E
00
66
0F
D6
41
44
8B
40
08
89
41
Code :lea esi,[ebx+20]
007CE67C
BioShockInfinite.exe
3CE67C
B9
10
00
00
00
8D
73
20
F3
A5
8D
78
60
Code :lea esi,[ebx+20]
007CE67C
BioShockInfinite.exe
3CE67C
B9
10
00
00
00
8D
73
20
F3
A5
8D
78
60
TeleportFlyFullyDisabled
0915045D
TeleportFlyEnabled
09150459
DisableKeyHandler
0D0704C1
hook
009FA489
dwPlayerStructPtr
0040F1E6
dwCheckClip
0066E72B
dwResetImmortalityFlag
006FD264
dwPawnHook
005D2D7A
base_0
0171A79C
p0
12DC0000
FOV_OnTheFly_Memory
3B950000
dwTheWorld
017DAD2C
FoV_OnTheFly
00685248
disableThread
3B95008D
FOVOffsetStep
3B950085
currentFoV
3B95008E
TOGGLEUI
01759734
KeyHandlerOff
14E10295
dwEPhysicsHook
006DC91D
God - default value: 0x41; enable value: 0x49;
SloMo - default value: 1.0f; change to any value, aside from 0.0f;
PlayersOnly - default value: 0x5A; freeze all: 0x9A; freeze without player: 0xDA;
Fly - default value: 0x01; fly enable: 0x04;
WallHack - default value: 0x76; wallhack enable: 0x70 or 0x8A;