ROM Hack Cheat Codes AMS and Sx Os, Add and Request

Eiffel2018

Well-Known Member
Member
Joined
Aug 23, 2020
Messages
403
Trophies
1
Age
21
XP
2,334
Country
Hong Kong
Do you mean the data is encrypted? But that normally only stop memory hacker, not ASM hacker who hacked it when it gets decoded.
Not exactly, the real data(not the display one) store in the memory with Byte Array, and it is difficult to found out its memory address

--------------------- MERGED ---------------------------

upload_2021-9-16_20-35-31.png

upload_2021-9-16_20-36-22.png


I'm not sure is it the true place to modify
 
  • Like
Reactions: crazy_p

Eiffel2018

Well-Known Member
Member
Joined
Aug 23, 2020
Messages
403
Trophies
1
Age
21
XP
2,334
Country
Hong Kong
You use Ghidra?
no, never use that. I use Yuzu + Cheat Engine + IDA Pro mostly.
For the above code, they are cracked by il2cpp, only used for Unity games

--------------------- MERGED ---------------------------

Not exactly, the real data(not the display one) store in the memory with Byte Array, and it is difficult to found out its memory address

--------------------- MERGED ---------------------------

View attachment 276078
View attachment 276079

I'm not sure is it the true place to modify

For the HP system
upload_2021-9-16_20-47-45.png

The real data (named "mem") is stored at something like [[[[main+XXXXXX]+XX]+XX]+8]+XX
 

xtatu

Well-Known Member
Member
Joined
Dec 4, 2018
Messages
550
Trophies
1
Age
41
Location
japan
XP
4,643
Country
Brazil
Ni no Kuni II Revenant Kingdom PRINCES EDITION
tid:0100BE7013E06000
bid:2C931E8A8748ECCF
ver1.0.0

[ hitanywhere]
04000000 0061E688 D65F03C0

[hitanywhere off]
04000000 0061E688 D10743FF
test

tid:0100BE7013E06000
bid:14C7986BEB94A1A1
ver1.1.0

[ hitanywhere]
04000000 006194C8 D65F03C0

[hitanywhere off]
04000000 006194C8 D10743FF
 
Last edited by xtatu,

TomSwitch

Well-Known Member
Member
Joined
Jan 10, 2019
Messages
1,432
Trophies
1
Age
41
XP
4,387
Country
United States
Not exactly, the real data(not the display one) store in the memory with Byte Array, and it is difficult to found out its memory address

--------------------- MERGED ---------------------------

View attachment 276078
View attachment 276079

I'm not sure is it the true place to modify
If you can find the place where it is going in or coming out then you can intercept and change unless both player character and enemy both uses the same code then you have to have some way to tell which is which. Any way you are more pro than me when it comes to ASM so it is just extra idea for your consideration.

Another thing is it seem like there are loop hole in the scheme as Jericoss has found something he did change but maybe still not sure if the pointer is good?

My 2 cents about serialization. There is two use for it. One is so it can be save in a file. The other is to make our life as game hacker difficult. It may be the first case and not the second. (Jericoss found something to modify kind of indicated maybe it is the first).
 
Last edited by TomSwitch,
  • Like
Reactions: crazy_p

matias3ds

Well-Known Member
OP
Member
Joined
Oct 25, 2017
Messages
3,397
Trophies
1
Age
35
XP
6,327
Country
Argentina
Ni no Kuni II Revenant Kingdom PRINCES EDITION
tid:0100BE7013E06000
bid:2C931E8A8748ECCF
ver1.0.0

[ hitanywhere]
04000000 0061E688 D65F03C0

[hitanywhere off]
04000000 0061E688 D10743FF
test

tid:0100BE7013E06000
bid:2C931E8A8748ECCF
ver1.1.0

[ hitanywhere]
04000000 006194C8 D65F03C0

[hitanywhere off]
04000000 006194C8 D10743FF
The bid is reapeated on ver 1.0.0 and ver 1.1.0
 
  • Like
Reactions: xtatu

Eiffel2018

Well-Known Member
Member
Joined
Aug 23, 2020
Messages
403
Trophies
1
Age
21
XP
2,334
Country
Hong Kong
Ni no Kuni II, Revenant Kingdom
[Ni no Kuni II, Revenant Kingdom PRINCE’S EDITION v1.10 (v65536) ]
[ TID: 0100BE7013E06000 BID: 14C7986BEB94A1A1 ]
[--------------------------------------------------------------------------]

[Invincible]
080E0000 01162800 B947C12A D503201F
080E0000 01162808 1A881168 7100015F
080E0000 01162810 D65F03C0 B943F92A
040E0000 00235A00 943CB380

[Damage 5x]
080E0000 01162830 B947C109 D503201F
080E0000 01162838 528000A9 7100013F
080E0000 01162840 1A8912B5 1B157D29
080E0000 01162848 D65F03C0 B943F908
040E0000 002359B8 943CB39E

[EXP 5x]
040E0000 00382734 0B020856

[Inf. MP]
040E0000 0023F228 2A1F03E9

[Running Speed]
040E0000 00300FA8 1E2F9000

[Free shopping]
040E0000 00814F5C 2A1F03E0
040E0000 0081495C 2A1F03E0

[--------------------------------------------------------------------------]
[Created by Eiffel2018]

[Ni no Kuni II, Revenant Kingdom All In One Edition v1.10 (v65536) ]
[ TID: 0100C4E013E5E000 BID: 5B67EF657677FD66 ]
[--------------------------------------------------------------------------]

[Invincible]
080E0000 01162800 B947C12A D503201F
080E0000 01162808 1A881168 7100015F
080E0000 01162810 D65F03C0 B943F92A
040E0000 00235A00 943CB380

[Damage 5x]
080E0000 01162830 B947C109 D503201F
080E0000 01162838 528000A9 7100013F
080E0000 01162840 1A8912B5 1B157D29
080E0000 01162848 D65F03C0 B943F908
040E0000 002359B8 943CB39E

[EXP 5x]
040E0000 00382734 0B020856

[Inf. MP]
040E0000 0023F228 2A1F03E9

[Running Speed]
040E0000 00300FA8 1E2F9000

[Free shopping]
040E0000 00814F5C 2A1F03E0
040E0000 0081495C 2A1F03E0

[--------------------------------------------------------------------------]
[Created by Eiffel2018]

--------------------- MERGED ---------------------------

If you can find the place where it is going in or coming out then you can intercept and change unless both player character and enemy both uses the same code then you have to have some way to tell which is which. Any way you are more pro than me when it comes to ASM so it is just extra idea for your consideration.

Another thing is it seem like there are loop hole in the scheme as Jericoss has found something he did change but maybe still not sure if the pointer is good?

My 2 cents about serialization. There is two use for it. One is so it can be save in a file. The other is to make our life as game hacker difficult. It may be the first case and not the second. (Jericoss found something to modify kind of indicated maybe it is the first).
The point is that it takes a lot of time. It is difficult to find out the memory address alone, as you used to find Shiren the Wanderer: The Tower of Fortune and the Dice of Fa
 
Last edited by Eiffel2018,

xtatu

Well-Known Member
Member
Joined
Dec 4, 2018
Messages
550
Trophies
1
Age
41
Location
japan
XP
4,643
Country
Brazil
Ni no Kuni II Revenant Kingdom PRINCES EDITION

tid:0100BE7013E06000
bid:14C7986BEB94A1A1
ver1.1.0

[ hitanywhere]
04000000 006194C8 D65F03C0

[hitanywhere off]
04000000 006194C8 D10743FF

[speed run normal]
04000000 00300FA8 1E2E1000

[speed run 1,25x]
04000000 00300FA8 1E2E9000

[speed run 1,5x]
04000000 00300FA8 1E2F1000

[speed run 1,75x]
04000000 00300FA8 1E2F9000

[speed run 2x]
04000000 00300FA8 1E201000

[ no target enemies map on]
04000000 0095FD74 1E27F00B

[ no target enemies map off]
04000000 0095FD74 1E2E100B

[size normal]
04000000 00AE418C 1E2E1009

[size 1.25x]
04000000 00AE418C 1E2E9009

[size 1.5x]
04000000 00AE418C 1E2F1009

[size 1.75x]
04000000 00AE418C 1E2F9009

[size 2x]
04000000 00AE418C 1E201009
 
Last edited by xtatu,

piek50

Well-Known Member
Member
Joined
Jun 24, 2019
Messages
433
Trophies
0
XP
1,111
Country
Suriname
Goodday everyone i have a cheat request.
Flynn : Son of Crimson v1.0
Tid: 01005F2014B80000
Bid: 0570324e7dc2d797
infinite jump or moon jump
infinite health on/off
infinite currency / red crystals
infinite green crystals / health potion
infinite sp/mp
Thanks in advance,
 

crazy_p

Well-Known Member
Member
Joined
Sep 3, 2016
Messages
854
Trophies
1
XP
3,195
Country
Switzerland
Dead Cells
TID: 0100646009FBE000
BID: DA6049B1703BCB2C
Version: 1.15.0

Code:
[Moon Jump]
[Inf. Health]
[Invisible to Enemies (On)]
[Invisible to Enemies (Off)]
[Abilities Max]
[Speed Up]
[Normal Speed]
[Size Up]
[Normal Size]
[Max Cells]
[0 Cells]
[Max Money]
[Inf. Potions]
[Items no Cooldown]

Credits: crazy_p, Patjenova, ZiT
 

Attachments

  • 0100646009FBE000.zip
    1.1 KB · Views: 46

Jericoss

Well-Known Member
Member
Joined
Sep 24, 2019
Messages
1,476
Trophies
1
XP
3,523
Country
Mexico
Not exactly, the real data(not the display one) store in the memory with Byte Array, and it is difficult to found out its memory address

--------------------- MERGED ---------------------------

View attachment 276078
View attachment 276079

I'm not sure is it the true place to modify

Ooops! I misunderstand. Ok maybe for ASM because for pointers is different.
And I remeber RICO was a really strange (My face when I did Ones cheats I said..WHAAAAT!!).

Ok try.... I didnt play to much. Dont like this game.. I have others addresses if that not work.

Rico London
TID 01000110103E4000
BID FDBE3DD3E203C34D v 1.0.0

[*HP Jericoss]
580F0000 043F0CD0
580F1000 000000B8
580F1000 00000000
580F1000 00000030
780F0000 00000028
640F0000 00000000 00000064

[*Machine Gun Bullets]
580F0000 043EE6A0
580F1000 000000B8
580F1000 00000030
580F1000 00000030
780F0000 0000012C
640F0000 00000000 00000011

[*HP Jericoss]
580F0000 047F90A0
580F1000 000000B8
580F1000 00000040
580F1000 00000040
580F1000 00000040
580F1000 00000058
580F1000 000000B8
580F1000 00000000
580F1000 00000030
780F0000 00000028
640F0000 00000000 00000064


Try This [email protected]burhansalih

Rico
TID 01009D5009234000
BID B4856C0770F71E4E

[*HP Jericoss]
580F0000 04F5A068
580F1000 00000058
580F1000 00000010
580F1000 00000030
580F1000 000000C8
580F1000 00000078
580F1000 00000010
580F1000 00000010
580F1000 00000028
780F0000 00000040
640F0000 00000000 44340000

[*Inf Bullets Jericoss]
580F0000 04EB51F0
580F1000 000000B8
580F1000 00000000
580F1000 00000020
580F1000 00000030
580F1000 00000030
580F1000 00000080
580F1000 00000010
580F1000 00000020
780F0000 00000040
640F0000 00000000 0000000C
 
Last edited by Jericoss,

NuRaider

New Member
Newbie
Joined
Sep 17, 2021
Messages
1
Trophies
0
Age
37
XP
2
Country
Indonesia
Advice: No sharks were harmed in the 60 tests I made to find the main health values.

After some search, I found out what's the deal with the Health cheat not working and removed it.

If anyone wants to help, start a new game and play until you reach Fawtick Bay. There, at lvl 1 the health is 500, and the value is float.

My easiest way to find it is by searching 500 with float normally, taking 5% or 10% damage, and searching again using an unknown value between (A...B) 300 and 499. (I can also confirm that at lvl 15 the health is around 1775 due to some tests)

Search for 2 addresses with the same value, freeze both, and take damage to confirm.
Now, look at the end of both addresses and find the one that ends with 68. The cheat I made previously uses the 6C address, so ignore it.

The problem I'm facing is: I find the lvl 1 health pointer and it works fine while at lvl 1, but if I try to use it in my lvl 15 save, the game crashes.

I will try to find the pointer that holds the general health addresses but as I'm not experienced with it, I beg for the help of you guys.

Can you update cheats for version 1.0.2

Build ID : e8418c6b4bdcc1ee

Anyone? Thanks in advance.
 
General chit-chat
Help Users
    TheLiamChannel @ TheLiamChannel: i'll pm you then