RELEASE sys-netcheat - Simple open-source cheat-engine.

Discussion in 'Switch - Emulation, Homebrew & Software Projects' started by jakibaki, Jul 24, 2018.

  1. jakibaki
    OP

    jakibaki GBAtemp Regular

    Member
    9
    Mar 3, 2017
    Germany
    It‘s not even loading anything from sd so nope :)
     
    Shirpie likes this.
  2. Paffo

    Paffo Advanced Member

    Newcomer
    4
    Aug 10, 2018
    Italy
    I'm using a 64GB sdcard formatted with exFat, im using this when im home and NSwitchDebugger "on the go" and so far so good, corrupted not even once.
     
    Shirpie likes this.
  3. Shirpie

    Shirpie Advanced Member

    Newcomer
    3
    May 15, 2018
    United Kingdom
    United Kingdom
    awesome thanks
     
  4. Shirpie

    Shirpie Advanced Member

    Newcomer
    3
    May 15, 2018
    United Kingdom
    United Kingdom
    hi im having some issue with the netcat program, i try to run the
    nc IP_OF_YOUR_SWITCH 5555 command but it just closes the app what do i do, i tried putting my switch ip address but it does the same thing
     
  5. Paffo

    Paffo Advanced Member

    Newcomer
    4
    Aug 10, 2018
    Italy
    demoman pls...

    how does the ip of your switch look like, just to be sure
     
  6. Shirpie

    Shirpie Advanced Member

    Newcomer
    3
    May 15, 2018
    United Kingdom
    United Kingdom
    The format of the ip is XXX.XXX.X.XXX
     
  7. Arch Feline

    Arch Feline GBAtemp Regular

    Member
    4
    May 7, 2007
    United States
    I do not know how to launch a game from Hekate. The game is on a cartridge. My plan is to start Kai's race in Okami HD and then freeze the timer (hey, hey). I used a minimal build from https://www.sdsetup.com/console?switch which include sys-netcheat and sys-netcheat is in the module folder.

    I did get the Hekate menu up but then realized I needed to change the hekate_IPL.ini.

    I have enough trouble with the paperclip that I would like to get this up the next try. Help appreciated.
    Code:
    [config]
    autoboot=0
    autoboot_list=0
    bootwait=5
    customlogo=1
    verification=2
    backlight=100
    autohosoff=0
    
    {AtlasNX/Kosmos v11.0.1}
    { }
    {Discord: https://discord.gg/qbRAuy7}
    { }
    
    {-- Custom Firmwares --}
    [CFW]
    kip1=modules/required/loader.kip
    kip1=modules/required/pm.kip
    kip1=modules/required/sm.kip
    kip1=modules/required/fs_mitm.kip
    
    kip1=modules/sys-netcheat.kip
    secmon=modules/required/exosphere.bin
    kip1patch=nosigchk
    atmosphere=1
    { }
    
    {---- Miscellaneous ---}
    [Stock]
    [No LayeredFS]
    kip1=modules/required/loader.kip
    kip1=modules/required/pm.kip
    kip1=modules/required/sm.kip
    secmon=modules/required/exosphere.bin
    kip1patch=nosigchk
    
    debugmode=1
    atmosphere=1
    { }
    
     
  8. Arch Feline

    Arch Feline GBAtemp Regular

    Member
    4
    May 7, 2007
    United States
    I am running this from my PC which is on windows so I have no clue what "
    nc IP_OF_YOUR_SWITCH 5555" translate to.

    — Posts automatically merged - Please don't double post! —

    Guess I run it from the command line of windows
     
  9. Paperjin

    Paperjin Member

    Newcomer
    2
    Nov 11, 2017
    United States
    kip1=modules/sys-netcheat.kip

    This line is assuming the kip is just in modules
    If you are using the normal structure of kosmos, it should be in it's own folder.

    kip1=modules/sysnetcheat/sys-netcheat.kip
     
    MikeHawke likes this.
  10. jakibaki
    OP

    jakibaki GBAtemp Regular

    Member
    9
    Mar 3, 2017
    Germany
    If you got the sys-netcheat from sdsetup you can just select more configurations in the hekate bootmenu and sys-netcheat from there.
     
    Last edited by jakibaki, Nov 20, 2018
    Arch Feline likes this.
  11. Arch Feline

    Arch Feline GBAtemp Regular

    Member
    4
    May 7, 2007
    United States
    *** This has to be right but it was not enough

    *** I did try this. Other members with windows got it to work this way.

    *** I will try
    colossal's method next I guess.
     
  12. Arch Feline

    Arch Feline GBAtemp Regular

    Member
    4
    May 7, 2007
    United States
    I bricked my Switch? I went through the menus and chose Stock. I was disconnected from RCMsmashGUI but the joy-cons were still lit. I put the joy-cons back on and opened the sd card tray. Now it is dead. Ideas?

    — Posts automatically merged - Please don't double post! —

    The joy-cons are still flashing.
     
  13. Arch Feline

    Arch Feline GBAtemp Regular

    Member
    4
    May 7, 2007
    United States
    no harm done. support channel.
     
  14. Arch Feline

    Arch Feline GBAtemp Regular

    Member
    4
    May 7, 2007
    United States
    My problem was replacing hekate_ipl.ini in sd\bootloader instead of in bootloader. real sorry about multiple post. :unsure: I see how to edit my posts. The button is in a new position.

    Some progress from the advice I have received and previous posts on this topic. I used the default build and for bootloader\hekate_ipl.ini (not SD\bootloader) I used the code posted by RichKK on a previous page. Now I can launch a boot of my Switch but I have to press A immediately when the Switch displays the screen with the A prompt and once I open the game, Okami, from cartridge I have trouble with the "+" button which is needed to get to the continue option. I have not been able to get past this.
    EDIT I got past this by pressing - on the left joy-con. Perhaps I just needed to turn on the left joy-con?

    I inserted the lines in SD\bootloader\ini\sys-netcheat.ini into SD\bootloader\hekate_ipl.ini. I am removing the svcperm= 1. Now to see if this helps. I like how Colassal gives an interface which is not a command window.

    And the problem I had earlier with the Switch? Team Atlas: Just hold down power button for more than 15 seconds.


    BURNING QUESTION Where does the port number come from? Do I need to do a port forward somewhere? (windows10 pc)
     
    Last edited by Arch Feline, Nov 21, 2018
  15. 0x40

    0x40 systemd = nasa spyware!

    Member
    3
    Apr 20, 2013
    United States
    /
    Port number is hard-coded to 5555, but you can change this line and recompile if you want to use a different one. You shouldn't forward the port (unless you want to give strangers full access to your Switch) but you may need to allow outgoing traffic from that port on your pc, depending on how your firewall is set up.
     
    jakibaki and Arch Feline like this.
  16. Arch Feline

    Arch Feline GBAtemp Regular

    Member
    4
    May 7, 2007
    United States
    Okami HD. Now that Sys-netcheat is running... I want to find the timer for the race against Kai in Yospet Forest. This race is only available before the final dungeon. If you could do it earlier - like when you reach Ponc'tan - you could try it off and on while you are playing the game. I beat this on the Wii and I am a way better gamer now so why can I not beat it on the Switch? I am not going to lose though. I am going to hack this game - with the help of my friends.
    Link to 30 sec video for flavor. EDIT I made a mistake before this one is mine and 30 seconds.

    I will try anything. Now I am trying u8 - u64 for the timer in seconds counting down. Next I will try it counting up. Suggestions welcome.

    EDIT I start the race and press + to pause the timer. Most of my nested searches end up empty which seems reasonable. I find the following 2 occurrences weird :

    So I start with time elapsed and let it increment (by leaving the + menu). Sometimes the list only loses a few addresses after 2 or 3 increments with nested searches or even 5 increments and nested searches. I expect stuff to be changing but a whole lot of counters being incremented by same amount as mine and after the same pauses?
    EDIT. Okami takes up 9.4 gigabytes but this only explains the need for nested searches. This does not explain how after the 8th consecutive csearch I had 49 hits but the next csearch only reduced the number of hits to 29. /EDIT

    The other bit of weird is that the addresses occur in different ranges. I started out with 32xxxxxxxx and had this for several boots of the switch. Then I had 52xxxxxxxx, on another boot 67xxxxxxxx and so on. Is the game loading in different places or is Sys-netcheat looking somewhere random? If it matters I am using the physical copy released in Japan with universal subtitles. EDIT. Does the code dynamically allocate stacks to confound hackers?

    Example https://i.imgtc.com/OHbrXw5.jpg

    :moogle: ONE request. Let me get a match on a timer in microseconds when I only know the value in seconds.


    Thank you Paperjin, Jakibaki, 0x40, Colassal, Team Atlas, GBAtempers and GBAtemp. Finally got it to work by tweaking fire wall per 0x40, right clicking to run the client server as admin, and carefully reading Team Atlas' guide. I just set up my SD card from scratch. default build. extract. copy contents of sd folder to root of SDcard. Insert lines from sys-netcheat.ini to hekate_IPL.ini.
    Before you start doing rcm mode payloads, have a charger for your joy-cons otherwise you have to dock them on the switch to charge them and remove the paper clip.

    Monday 2019.NOV.4: I thought I had mastered launching. After failing to connect with Remote Client for hours and trying everything, I thought of checking the switch's IP. It exchanged with the PC. Du-uh.

    :yay: * * * * * *

    I have tried looking for mss and seconds in all sizes counting up and counting down and different initial values. I am going to repeat my searches because it is so easy to make mistakes. I have gotten some freezes when poking values but to be expected. Is it possible that the game counts tenths of a second or even micro seconds? :wacko: Micro seconds is traditional but I think I need a search which only matches up to seconds because microseconds could be anything. I am reading this c++ link https://en.cppreference.com/w/cpp/chrono. Having read this it seems that the chrono library was launched in 2011 and therefore was not available when Okami was developed.

    Perhaps a 32 bit variable (2,147,483,647 max positive value) 0 0MS .nnn nnn ? Game starts with 4:59. Whether it does tenth of seconds or microseconds, I need a floor search or >= displayed value and less than displayed value minus one.
     
    Last edited by Arch Feline, Dec 6, 2018
  17. SaintEX

    SaintEX GBAtemp Regular

    Member
    4
    May 24, 2018
    United Arab Emirates
    Somewhere I don't belong.
    Would this work on Atmosphere in 6.2.0?
     
    lanarchyste likes this.
  18. Arch Feline

    Arch Feline GBAtemp Regular

    Member
    4
    May 7, 2007
    United States
    I thought I asked this but

    ssearch u8 30 --- does this search for 0001 1110?

    * * ** * * * * *

    I constructed this table

    -30 ffe2 65506
    -60 ffc4 65476
    -90 ffa6 65446
    -120 ff88 65416
    -150 ff6a 65386
    -180 ff4c 65356

    with the hope that ssearch u16 65506 will search for -30

    True or False?

    * * * * *

    Say I am searching for 300. 300 will take 16 bits but it does not need to be aligned on an address which is a multiple of 2. If I code "ssearch u8 300", will Sys-netcheat make 16 bit compares?

    * * * * *

    Does poke left adjust? Does poke place leading/trailing blanks or zeroes?

    * * * * *
    No response? So "open source" means all your questions have been answered in advance? Is there a google translate option for source code?

    [peruses code, mumbles]

    void poke(int valSize, u64 addr, u64 val)
    u64 freezeVals[FREEZE_LIST_LEN];

    . . .
    poke(valSizes[freezeTypes], freezeAddrs, freezeVals);


    [Reads C++ type characteristics]
    [Pats self on back]

    Got it.

    Still need a floor function for timer doing micro seconds or tenth of seconds.
    * * * * *

    @SaintEX the readme says launch with hekate.
     
    Last edited by Arch Feline, Dec 5, 2018
  19. SaintEX

    SaintEX GBAtemp Regular

    Member
    4
    May 24, 2018
    United Arab Emirates
    Somewhere I don't belong.
    Ah I did not see that, thanks a lot then. Cheers!
     
  20. macia10

    macia10 GBAtemp Regular

    Member
    5
    Aug 13, 2012
    Poland
    Hi,
    You need to search for an actual number :) If you are looking for 30 just type ssearch u32 30.
     
Quick Reply
Draft saved Draft deleted
Loading...