Hacking VitaCheat/FinalCheat Database

Yohoki · Sep 26, 2022

Smoker1 said:
@Yohoki - Where would it show the Seg0/1 Size?

when you make a dump, it's in the .txt file that comes with it. example:

Code:

00. module name :ys8_release_true
path: ux0:/patch/PCSE01103/eboot.bin
vaddr: 0x81000000
memsz: 0x338b30
vaddr: 0x81340000
memsz: 0x3bc90

EDIT:

Squashed a bug that was causing a lot more pointers to highlight, even if they were outside the segments. Whoops. There's now only ONE pointer in this list that looks valid. Only one pointer that points to the right area AND is inside the seg0/1 ranges.

monodevil · Sep 26, 2022

Yohoki said:
I think it's time to start fresh.... which is REALLY painful, because I've been sitting on 120gb of dumps...... But I REALLY believe that this noASLR plugin is the fix we've been needing for years. It REALLY hurts to delete that many dumps, hundeds of lines of notes, test codes....

The only thing I'm leaving is my Plants vs Zombies codes, because that one code that I wrote has a special placed in my heart, and nobody here has made anything like it.... hacking vitacheat's code list, to edit the cheat being run, as the cheat is running.... It's my baby and I love how janky it is.

RIP years of data that I spent hours skimming through in HxD. But, it's time to make a comeback. >

I feel the same. I put a lot of effort in my crummy address charts

but I think those are still useful. Finally breaking open Dragon's Crown has been my favorite achievement, even though I had a lot of help getting started. Needing a condition was the worse part about that game. Though I guess this is going to eliminate a lot of games where I needed a condition just to keep the code working huh?

I haven't had much time to do or test things so some other questions I'd like to know is:

Would a new thread be necessary for no ASLR code posting then or do they still work for those with ASLR still running?
Do old B2 codes found with ASLR on still work with ASLR off?

NeoGranzon · Sep 26, 2022

@Yohoki ,couldn't you make an app (homebrew)to find pointers directly from the PS Vita?

Yohoki · Sep 26, 2022

monodevil said:
I feel the same. I put a lot of effort in my crummy address charts but I think those are still useful. Finally breaking open Dragon's Crown has been my favorite achievement, even though I had a lot of help getting started. Needing a condition was the worse part about that game. Though I guess this is going to eliminate a lot of games where I needed a condition just to keep the code working huh?

I haven't had much time to do or test things so some other questions I'd like to know is:

Would a new thread be necessary for no ASLR code posting then or do they still work for those with ASLR still running?

Do old B2 codes found with ASLR on still work with ASLR off?

Dragon's Crown was my first game to hack on.

1. I don't think a new thread will be necessary. Unless we just want to start anew altogether. I don't think OC is still frequenting this thread, but it isn't really necessary.

2. People with noASLR CANNOT make normal codes for those with ASLR still running. UNLESS!!! They use b200 codes. B200 codes will work regardless of ASLR running or not. So if you make a code that does not use b200, you will need to mark in the notes that the user should install noASLR.skprx. If you DO use b200 codes, and ONLY b200 codes, then the pointers should work flawlessly. That's the whole point in disabling ASLR, is so that we as hackers can make a better code, and the users don't need to do anything
TL : DR If you use b200 codes, the users will not need the noASLR plugin. It will only affect us as hackers.

3. YES! The whole point of b200 codes is that they're rooted in a static part of code. That block of code may move around as a chunk, but it's location inside that chunk is always the same. Disabling ASLR just makes that chunk of code stop moving while we do the hacking. noASLR can be safely turned off after a b200 code is found and the code should remain working, even if the user's system language is change, or maybe even with minor update/dlc/mod differences.
TL : DR If the b200 code works with ASLR turned off, it should also work enabled.

Yohoki · Sep 26, 2022

NeoGranzon said:
@Yohoki ,couldn't you make an app (homebrew)to find pointers directly from the PS Vita?

Couldn't you, smarty pants?

If you would like to learn software development, then by all means. There's PSVita Software development kits available here, and tutorials. Here's a good place to start: https://wololo.net/2016/11/23/vita-programming-tutorial-part-1-hello-world/

Good luck! Thanks for volunteering!

As for myself, I've always said I'm not a programmer. I don't really make my own programs, and have only really made one or two simple tools over my years. I'm not going to learn to program a new tool on the vita. Sorry.

NeoGranzon · Sep 26, 2022

Yohoki said:
Couldn't you, smarty pants?

If you would like to learn software development, then by all means. There's PSVita Software development kits available here, and tutorials. Here's a good place to start: https://wololo.net/2016/11/23/vita-programming-tutorial-part-1-hello-world/

Good luck! Thanks for volunteering!

As for myself, I've always said I'm not a programmer. I don't really make my own programs, and have only really made one or two simple tools over my years. I'm not going to learn to program a new tool on the vita. Sorry.

@Yohoki ,

i asked a simple question,good luck with your dumps.

Yohoki · Sep 26, 2022

Hearing begging is why I left, and not why I came back. I gave an answer and pointed you in the right direction if you'd like to go that path. If not, we're stuck with making dumps on vitacheat and pointer searching on PC.

To be fair, if you understand how pointers work, you can find pointers and b200 codes without dumps as well. It's just not as easy and a lot more time consuming.... Not to mention if you make a mistake, it's very likely you crash the game and have to restart. A lot better to have the dump on PC, where it won't matter if your game crashes during testing the code.

tomberyx · Sep 26, 2022

I'm trying to compress/leave it out multiple Pointers to on pointer.
For example Ys8
3201 00007DD4 000XXXXX

It must be possible to bring all pointers at least to 1 Line. If it works then we can create these codes with Vita alone but the hope is not big at the momemt.., so far all codes that have a XYZ pattern works perfectly with this Methode.

monodevil · Sep 26, 2022

Yohoki said:
1. I don't think a new thread will be necessary. Unless we just want to start anew altogether. I don't think OC is still frequenting this thread, but it isn't really necessary.

1) Yeah I was just wondering how should I post codes from now on, if I have to type something like "NOASLR" or "PERFECTED" to let users know that these are the better working codes to use and to ignore the first 7,000+ posts lol. On the other hand a new thread COULD also draw in some new(or old) blood and get people interested again and we still have to let people know that if they ever want to use the old codes or use the new no ASLR B2 codes that they need to turn off or on the noaslr.skprx plugin.

Yohoki said:
2. People with noASLR CANNOT make normal codes for those with ASLR still running. UNLESS!!! They use b200 codes. B200 codes will work regardless of ASLR running or not. So if you make a code that does not use b200, you will need to mark in the notes that the user should install noASLR.skprx. If you DO use b200 codes, and ONLY b200 codes, then the pointers should work flawlessly. That's the whole point in disabling ASLR, is so that we as hackers can make a better code, and the users don't need to do anything
TL : DR If you use b200 codes, the users will not need the noASLR plugin. It will only affect us as hackers

2) Yeah that's what I meant when I was referring to "no ASLR code". I should have typed "no ASLR B2"(that's becoming a mouthful).

Yohoki · Sep 26, 2022

tomberyx said:
I'm trying to compress/leave it out multiple Pointers to on pointer.
For example Ys8
3201 00007DD4 000XXXXX

It must be possible to bring all pointers at least to 1 Line. If it works then we can create these codes with Vita alone but the hope is not big at the momemt.., so far all codes that have a XYZ pattern works perfectly with this Methode.

That depends on the game. There's no clear-cut solution for every game. It all depends on how the programmers made the game, and how concerned they were about anti-cheat. Ys seems to have a specific "map" region where all the character's are laid out and their character's individual stats' locations are placed there as well. That's why that code takes a level 2 pointer. Could it be done with a single? Possibly. But it seems like the programmers used that specific path, so it's what I've used.

Some games, though, just have a single HP bar, so they don't need to keep track of multiple characters and their individual stats, etc. Those games will likely be OK to use a single pointer.

Another option, some games don't care to use pointers at all. They're aware that they have a Seg0 and Seg1, and will load the game code in seg0 and variables in seg1. In these cases, no pointer might be needed, and only the b200 will work.

It all depends on the game, the programmers' decisions, and the company's stance on anti-cheat.

monodevil said:
1) Yeah I was just wondering how should I post codes from now on, if I have to type something like "NOASLR" or "PERFECTED" to let users know that these are the better working codes to use and to ignore the first 7,000+ posts lol. On the other hand a new thread COULD also draw in some new(or old) blood and get people interested again and we still have to let people know that if they ever want to use the old codes or use the new no ASLR B2 codes that they need to turn off or on the noaslr.skprx plugin.

2) Yeah that's what I meant when I was referring to "no ASLR code". I should have typed "no ASLR B2"(that's becoming a mouthful).

Nope. No need to warn users that the new codes require anything new If you're using b200s with the new plugin. Your codes should work with or without ASLR.

If you don't make b200s, any codes you make with ASLR disabled will require the user to also disable ASLR. A simple note would probably be fine for that. It's easy enough to check though. Just try disabling the plugin before releasing your codes. If it still works, great. If not, add a note.

There's not really a difference between 'ASLR b2' and 'NoASLR b2' That's why it's compatible with users even with ASLR still enabled. The only difference is when we create the codes and how visible the pointers are in pointer searchers. In fact, I can find the same b200 code in any of my YsVIII dumps, from before or after noASLR.

tomberyx · Sep 26, 2022

How is it possible to artificially create the pattern XYZ so that you can check a B200 code to see if it works on XY? I think it is important to do something here. I have 2 Vitas one uses X and the other uses Y when I create a B200 then I do it on X and try the code on Y if Y accepts it then X works for sure.

Yohoki · Sep 26, 2022

tomberyx said:
How is it possible to artificially create the pattern XYZ so that you can check a B200 code to see if it works on XY? I think it is important to do something here. I have 2 Vitas one uses X and the other uses Y when I create a B200 then I do it on X and try the code on Y if Y accepts it then X works for sure.

I don't know how to recreate it.

The ASLR is a security feature, so it's meant to be a bit mysterious in how it works. It's WHOLE job is to keep hackers from hacking. If your one vita usually has pattern X and the other has pattern Y, then try making a b200 code on one with noASLR, and try that code on your second with ASLR active.

Here, this might help you create that code: https://github.com/Yohoki/TempAR-Vita/releases/tag/v5.0

New version of TempAR - Vita Edition Released.

tomberyx · Sep 26, 2022

Good work Yohoki !
I will use it and hope it will make some things easier and other things faster. Bravo !

NeoGranzon · Sep 26, 2022

Yohoki said:
Hearing begging is why I left, and not why I came back. I gave an answer and pointed you in the right direction if you'd like to go that path. If not, we're stuck with making dumps on vitacheat and pointer searching on PC.

To be fair, if you understand how pointers work, you can find pointers and b200 codes without dumps as well. It's just not as easy and a lot more time consuming.... Not to mention if you make a mistake, it's very likely you crash the game and have to restart. A lot better to have the dump on PC, where it won't matter if your game crashes during testing the code.

@Yohoki ,i didn't ask for alms from you or anyone else,i asked if you could create an app to find pointers directly from PS Vita.
The games i can complete them by myself,it shows that you have been away from this thread for a long time.
Sincerely!

tomberyx · Sep 26, 2022

@Yohoki
Why don't you make an app that deletes posts from members automatically ?
That would be much more useful than a Vitacheat app and saves nerves or is there a N200 code for it?

Guyverd · Sep 26, 2022

NeoGranzon said:
@Guyverd ,what cheat do you use?
Simple for Gundam Extreme VS Force USA version you will not find them here and elsewhere if they have not been created.
Next time,instead of taking a picture of the PS Vita,taking a screenshot(PS+Start button)is more defined to see.

For SD Gundam G Generation Genesis, I used
Inf. Capital
All Pilots have inf. Ace Point
Pilots level 99 after kill enemy
Enemy kills 9999
Unit EXP
I activated then during the battle.

For Gundam Extreme VS Force, what cheat version do you have?
I only found ASIA version yet it doesn't work for ASIA and English translated from ASIA ver.

NeoGranzon · Sep 26, 2022

In this thread is full

Guyverd said:
For SD Gundam G Generation Genesis, I used
Inf. Capital
All Pilots have inf. Ace Point
Pilots level 99 after kill enemy
Enemy kills 9999
Unit EXP
I activated then during the battle.

For Gundam Extreme VS Force, what cheat version do you have?
I only found ASIA version yet it doesn't work for ASIA and English translated from ASIA ver.

@Guyverd ,for SD Gundam Generation Genesis you use cheat of my video or not?
I have Japan version of Gundam Extreme VS Force,i created them but never published them here.

tomberyx · Sep 26, 2022

# Title: Coven and Labirynth of Refrain
# ID: PCSG00795
# Region: Jap
# Version: 1.02
# Type: NoNpDrm
# Code Author: tomberyx
# only for VitaCheat z06 and FW 3.65+

# PCSG00795

_V0 Game Speed 2x [hold Up]
$B200 00000001 00000000
$C201 00000001 00000010
$0000 000A229C 00000000

_V0 inf.HP & DP [all Players]
$B200 00000001 00000000
$3201 000A2134 00000E88
$0000 00000000 00012FD1
$B200 00000001 00000000
$3201 000A2134 00000A98
$0000 00000000 00012FD1
$B200 00000001 00000000
$3201 000A2134 001405E8
$0000 00000000 00012FD1
$B200 00000001 00000000
$3201 000A2134 001E0318
$0000 00000000 00012FD1
$B200 00000001 00000000
$3201 000A2134 001E0708
$0000 00000000 00012FD1
$B200 00000001 00000000
$3201 000A2134 00000E8C
$0000 00000000 00012FD1
$B200 00000001 00000000
$3201 000A2134 00000A9C
$0000 00000000 00012FD1
$B200 00000001 00000000
$3201 000A2134 001405EC
$0000 00000000 00012FD1
$B200 00000001 00000000
$3201 000A2134 001E031C
$0000 00000000 00012FD1
$B200 00000001 00000000
$3201 000A2134 001E070C
$0000 00000000 00012FD1

_V0 max.Reinforce
$B200 00000001 00000000
$3101 000A2130 00000050
$0000 00000000 00000309

_V0 max.Level [after Fight]
$B200 00000001 00000000
$3201 00000148 0001D27C
$0000 00000000 00A98AC7

_V0 max.Mana Item-Drop [Dungeon] Caution
$B200 00000001 00000000
$3101 000A2130 00000044
$0000 00000000 00001770

_V0 inf.max Mana
$B200 00000001 00000000
$3201 000A2130 00000048
$0000 00000000 000BDE31

_V0 inf.max Money
$B200 00000001 00000000
$3201 000A2130 00000040
$0000 00000000 000BDE31

_V0 inf.max Karma
$B200 00000001 00000000
$3001 000A2130 0000004C
$0000 00000000 00000063

tomberyx · Sep 26, 2022

Coming Soon!
Dragon Quest Heroes 2 (Jap En-trans)
With deep Kick-Ass Codes

Progress;
-Inf.Everything
-Hold X to Fly
-Kill all Enemies
-Teleport
-crazy Experimental Codes
I got the Golden-Pointer it works from 82-8F erverything is possible ...

falconcrest · Sep 26, 2022

tomberyx said:
Coming Soon!
Dragon Quest Heroes 2 (Jap En-trans)
With deep Kick-Ass Codes

Progress;
-Inf.Everything
-Hold X to Fly
-Kill all Enemies
-Teleport
-crazy Experimental Codes
I got the Golden-Pointer it works from 82-8F erverything is possible ...

nice!
will be looking forward to this!

Hacking VitaCheat/FinalCheat Database

Well-Known Member

Well-Known Member

シュウ 「グラビトロンカノン 発射!」

Well-Known Member

Well-Known Member

シュウ 「グラビトロンカノン 発射!」

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

シュウ 「グラビトロンカノン 発射!」

Well-Known Member

Well-Known Member

シュウ 「グラビトロンカノン 発射!」

Well-Known Member

Attachments

Well-Known Member

Attachments

Well-Known Member

Similar threads

Popular threads in this forum

シュウ「グラビトロンカノン発射!」

シュウ「グラビトロンカノン発射!」

シュウ「グラビトロンカノン発射!」

シュウ「グラビトロンカノン発射!」