Hacking VitaCheat/FinalCheat Database

[Deleted User]

uu

 

[NeoGranzon]

It's a great help to update cheat database in github. Most of us don't have an account to upload in github; Thank you. My apologies but l don't have codes to upload for now.

B2 code is a great code. There's a lack of info in roah's wiki that can be misleading. Making a step-by-step tutorial can point things out. B2 codes will never work beyond its segment range.

I discovered the pointer to the starting block (where you begin to see normal value after the XX XX XX bytes) within the segment.
This is helpful for some address that are out of range from memory module. I hope this method will be applicable to all games.

Spoiler: Codes

This is the example of my findings:

The speed hack address 82xDE720 is already out of range from this module which is:
seg1 812806A0 - 812CD110 (for example)
you can't make a B2 code with it. To solve this problem, find the starting memory block. I used GoHANmem with "Scan Block" function. With that, I found the starting range block which is 81F00000. Search this hex with vitacheat to find the pointer. I found 4 adresses, 2 of them are the same and it's within the memory module. I picked 8128BDD8 which +B738 offset from seg1. The address 8128BDD8 is a direct pointer to 81F00000.

_V0 Speed Hack
$B200 00000001 00000000
$3201 0000B738 006DE720
$3300 00000000 00000000

This is compatible for all different regions and dumps but not for the patched ones. Only best for static address.

To find the pointer within the module with vitacheat, Use Fuzzy Search with your address that you found (speed hack for example), set the search type into "less than or equal" (<=) and limit the range from 81000000 to the end of seg1 (it will include seg0). After the result list down the the address and its value, pick the value which is closer to your address that you found. then resart, repeat and:

_V0 Speed Hack
$B200 00000001 00000000
$3201 0003E990 00003AE0
$3300 00000000 00000000

_V0 Mira
$B200 00000001 00000000
$3201 0003E990 000A5038
$3300 00000000 00000064

This will work in all version, regions, dumps, and to whatever patch you put in rePatch. Unless rePatch omits the address that you want to modify (not sure)

notes:

• 
  
• Speed hack 82xDE720 where x sometimes change.
  
  
• Memory module "here" is the eboot.bin vitacheat mostly use this module to display the seg0 & seg1 when you push the R-Analog-UP in "Browse Memory"
  
  
• seg1 812806A0 - 812CD110 you can see this by pushing the right analog up in "Browse Memory". This is useful for B2 code.
  
  
• "Memory block" is a chunk of data from RAM. the biggest will be the game files. GoHANmem can differentiate each block.
  
  
• GoHANmem can determine the range of memory block while vitacheat cannot.
  
  
• VitaCheat can specifically determine the memory executable modules and it's names while GoHANmem cannot. vitacheat only recognize executable modules like suprx, skprx. you can see more of it when you dump a memory with vitacheat.

@Zernix ,in fact in the guide on github how to find codes the section:B200,Button Pad,ConditionandArm,it is not clear how to create the codes.
I asked some time ago if you could create a tutorial that would explain better,but i was ignored.

 

[tomberyx]

It's a great help to update cheat database in github. Most of us don't have an account to upload in github; Thank you. My apologies but l don't have codes to upload for now.

B2 code is a great code. There's a lack of info in roah's wiki that can be misleading. Making a step-by-step tutorial can point things out. B2 codes will never work beyond its segment range.

I discovered the pointer to the starting block (where you begin to see normal value after the XX XX XX bytes) within the segment.
This is helpful for some address that are out of range from memory module. I hope this method will be applicable to all games.

Spoiler: Codes

This is the example of my findings:

The speed hack address 82xDE720 is already out of range from this module which is:
seg1 812806A0 - 812CD110 (for example)
you can't make a B2 code with it. To solve this problem, find the starting memory block. I used GoHANmem with "Scan Block" function. With that, I found the starting range block which is 81F00000. Search this hex with vitacheat to find the pointer. I found 4 adresses, 2 of them are the same and it's within the memory module. I picked 8128BDD8 which +B738 offset from seg1. The address 8128BDD8 is a direct pointer to 81F00000.

_V0 Speed Hack
$B200 00000001 00000000
$3201 0000B738 006DE720
$3300 00000000 00000000

This is compatible for all different regions and dumps but not for the patched ones. Only best for static address.

To find the pointer within the module with vitacheat, Use Fuzzy Search with your address that you found (speed hack for example), set the search type into "less than or equal" (<=) and limit the range from 81000000 to the end of seg1 (it will include seg0). After the result list down the the address and its value, pick the value which is closer to your address that you found. then resart, repeat and:

_V0 Speed Hack
$B200 00000001 00000000
$3201 0003E990 00003AE0
$3300 00000000 00000000

_V0 Mira
$B200 00000001 00000000
$3201 0003E990 000A5038
$3300 00000000 00000064

This will work in all version, regions, dumps, and to whatever patch you put in rePatch. Unless rePatch omits the address that you want to modify (not sure)

notes:

• 
  
• Speed hack 82xDE720 where x sometimes change.
  
  
• Memory module "here" is the eboot.bin vitacheat mostly use this module to display the seg0 & seg1 when you push the R-Analog-UP in "Browse Memory"
  
  
• seg1 812806A0 - 812CD110 you can see this by pushing the right analog up in "Browse Memory". This is useful for B2 code.
  
  
• "Memory block" is a chunk of data from RAM. the biggest will be the game files. GoHANmem can differentiate each block.
  
  
• GoHANmem can determine the range of memory block while vitacheat cannot.
  
  
• VitaCheat can specifically determine the memory executable modules and it's names while GoHANmem cannot. vitacheat only recognize executable modules like suprx, skprx. you can see more of it when you dump a memory with vitacheat.

really good investigation done. Very well done, there are some things that I have not yet considered, and now I will try your KungFu on other games that I have already given up. Thanks for your effort, finally someone who writes something useful.

 

[MichaelWilliams1234]

Hello friends how are you doing can you help me with this game is It Wrong To Try To Pick Up Girls In A Dungeon Infinite Combate PCSG01002 v1.02 look at the size of the enemy something must be wrong please help me thanks

 

[waarty]

sorry, where are you in the game?
you can do, screen with psvita
press the PS button and the START button at the same time

 

[tomberyx]

# Title: Severed
# ID: PCSB00702
# Region: EU
# Version: 1.00
# Type: NoNpDrm
# Code Author: tomberyx

Spoiler: Code

# PCSB00702

_V0 inf.max Money
$B200 00000001 00000000
$0100 00032C18 00000309

_V0 all Body-Parts
$B200 00000001 00000000
$4101 00032C1C 00000309
$0007 00000004 00000000

_V0 One Hit Kill
$3202 8177A448 00000068
$0000 00000000 000000DC
$0000 00000000 3F800000

_V0 One Hit Kill [alternative]
$3202 816FA448 00000068
$0000 00000000 000000DC
$0000 00000000 3F800000

 

[Tartaros]

Codes for "Croixleur Sigma", Please??

 

[doopyfloopy]

Anybody got Fate/Extella Link codes?

Specially unlimited drive or NP?

 

[Deleted User]

jh

 

[Zernix]

_V0 One Hit Kill Final DD
$D301 82000000 FFFFFFFF
$0200 82AA4580 0F002000
$D301 82100000 FFFFFFFF
$0200 82BA4580 0F002000

I need help to find this cheat. I might find a clue for battle related codes. Thank you

@Zernix ,in fact in the guide on github how to find codes the section:B200,Button Pad,ConditionandArm,it is not clear how to create the codes.
I asked some time ago if you could create a tutorial that would explain better,but i was ignored.

Button Pad and Condition are explained just fine. The ARM write however is the most complicated. It requires ASM language in ARM to fully utilize its purpose. When you use it to modify a value, the original value will restore back once you deactivate this cheat. An example of functional ARM code type is just below: ($AX00)

Below is the Odin Sphere ASA version cheat code. I view the memory and try find the code for us version but not success. So pls help


# ID: PCSH00218
# Title: Odin Sphere Leifthrasir
# Region: ASA
# Version: 1.00
# Type: MaiDump, NoNpDRM
# Code Author: speedfly, d3m3vilurr
# Source: https://github.com/r0ah/vitacheat/blob/master/db/PCSH00218.psv
# Original Source: http://www.speedfly.cn/19491.html
# Original Source: http://dq.tieba.com/p/5980051522
# Original Source: https://github.com/r0ah/vitacheat/pull/76
_V0 Instant Kill//秒杀(不含BOSS) (MaiDump)
$A200 818D1920 E3A000DA
$A200 818D1924 E5D51001
$A200 818D1928 E302670F
$A200 818D192C E1500001
$A200 818D1930 11E04006
$A200 818D1934 E59502CC
$A200 818D1938 E0888004
$A200 818D193C E51FF004
$A200 818D1940 812E55C5
$A100 812E55BE 00004778
$A200 812E55C0 EA17B0D6
_V0 Invicible//无敌 (MaiDump)
$A200 818D1950 E59AA0DC
$A200 818D1954 E28ABA01
$A200 818D1958 E3A040F0
$A200 818D195C E58B494C
$A200 818D1960 E51FF004
$A200 818D1964 813C6D41
$A200 813C6D38 47781C00
$A200 813C6D3C EA142B03
_V0 Inf PP//PP使用后保持99 (MaiDump)
$A200 815506F6 0AB7EDC4
_V0 Inf HP//HP保持最大 (MaiDump)
$A200 81836C00 E3A050DA
$A200 81836C04 E5D08001
$A200 81836C08 E1550008
$A200 81836C0C 0302170F
$A200 81836C10 E1A05000
$A200 81836C14 E59582D4
$A200 81836C18 E51FF004
$A200 81836C1C 812E55BD
$A100 812E55B6 00004778
$A200 812E55B8 EA154590

As I said on above is related, the first 4 code are ARM codes so it's impossible to just looking at them and it's tricky to convert. The rest are Multi-level pointers and since it's a different dump (Mai) and region (ASA) it's difficult to just looking at them. You need to find the pointer for your region.

This is the good game to try B2 code conversion. If there's someone generous who can give the latest cheats database (for ASA region) from speedfly or baidu, please give us a link we can download without logging-in. So that anyone can convert them to B2 code.

 

[tomberyx]

I need help to find this cheat. I might find a clue for battle related codes. Thank you


Button Pad and Condition are explained just fine. The ARM write however is the most complicated. It requires ASM language in ARM to fully utilize its purpose. When you use it to modify a value, the original value will restore back once you deactivate this cheat. An example of functional ARM code type is just below: ($AX00)


As I said on above is related, the first 4 code are ARM codes so it's impossible to just looking at them and it's tricky to convert. The rest are Multi-level pointers and since it's a different dump (Mai) and region (ASA) it's difficult to just looking at them. You need to find the pointer for your region.

This is the good game to try B2 code conversion. If there's someone generous who can give the latest cheats database (for ASA region) from speedfly or baidu, please give us a link we can download without logging-in. So that anyone can convert them to B2 code.

I'm not sure, but I think this code changes the attack value in the status menu.
I have very little time for the next two weeks.
Unfortunately, I can't tell you in detail because I didn't install the game. see you soon

 

[Zernix]

I'm not sure, but I think this code changes the attack value in the status menu.
I have very little time for the next two weeks.
Unfortunately, I can't tell you in detail because I didn't install the game. see you soon

really unfortunate.. thanks for the code and for hanging around with us. take your time

 

[NeoGranzon]

I need help to find this cheat. I might find a clue for battle related codes. Thank you


Button Pad and Condition are explained just fine. The ARM write however is the most complicated. It requires ASM language in ARM to fully utilize its purpose. When you use it to modify a value, the original value will restore back once you deactivate this cheat. An example of functional ARM code type is just below: ($AX00)


As I said on above is related, the first 4 code are ARM codes so it's impossible to just looking at them and it's tricky to convert. The rest are Multi-level pointers and since it's a different dump (Mai) and region (ASA) it's difficult to just looking at them. You need to find the pointer for your region.

This is the good game to try B2 code conversion. If there's someone generous who can give the latest cheats database (for ASA region) from speedfly or baidu, please give us a link we can download without logging-in. So that anyone can convert them to B2 code.

@Zernix thanks for reply,but while reading the guide i still haven't figured out how to create Button Pad and Condition codes.

 

[Zernix]

@Zernix thanks for reply,but while reading the guide i still haven't figured out how to create Button Pad and Condition codes.

Use TempAR-Vita to create those codes easier. They are additional codes like accessory to the common cheats that you have.

1. Go to vitacheat tab in the app,
   
2. Select the code type that you need to use like "Write"

"Optional Code Types" on the middle above the generated codes:

1. Choose the Button Type if needed
   
2. Choose what buttons or conditions that you like.

Edit: numbering

 

[NeoGranzon]

Use TempAR-Vita to create those codes easier. They are additional codes like accessory to the common cheats that you have. When you're in vitacheat tab in the app, select the code type that you need to use like "Write" then on the middle above the generated codes, choose the Button Type if needed then choose what buttons or conditions that you like.

@Zernix ,the problem with TempAr-Vita 4.0 is when select to create Buttom Pad and Condition code,does not allow me to enter any code the box remains gray,for this reason don't use it.

 

[Zernix]

@Zernix ,the problem with TempAr-Vita 4.0 is when select to create Buttom Pad and Condition code,does not allow me to enter any code the box remains gray,for this reason don't use it.

You don't need to select them in "Code Type". They are additional codes not main codes. If you see the "Optional Code Types" above the generated codes, you can choose what options you need. I edited my previous reply

 

[tomberyx]

About Combo-Button !
What you need is just a Picture of the button numbers and nothing else.

I do it with a pic on my cellpohne,the instruction is always the same nobody need a tool to create combo-button codes but ist's nice to have.

For Example:
$0200 81234567 00000000 Zero-Time in Game

$C201 00000001 00000008 (8=Start)-Button Combo
$0200 81234567 00000000 Zero-Time


Finish-code

V_ Push Start for zero-time
$C201 00000001 00000008
$0200 81234567 00000000

Thats it!
You can change (8) for other buttons.

 

[MichaelWilliams1234]

Hello friends how are you all I have some bugs with this game PCSG01002 is it wrong to pick up girls in a dungeon I'm on firmware 3.68 hencore can someone help me with this game please thank you very much

 

[tomberyx]

This issue (grafic-Glitches) also happend to me on 3.65.
You are not the only one. The best thing in this case is, delete the game and do not install again, thats what i did to solve this issue;-). I do not think that somebody can fix that

 

[waarty]

, I do not understand
that effect is given after, who activate the cheats?
some addresses / currencies can have that effect