Hacking VitaCheat/FinalCheat Database

[tomberyx]

# Title: Severed
# ID: PCSE00589
# Region: US
# Version: 1.00
# Type: NoNpDrm
# Code Author: tomberyx

Spoiler: Code

# PCSE00589

_V0 inf.max Money
$B200 00000001 00000000
$0100 00032C18 00000309

_V0 all Body-Parts
$B200 00000001 00000000
$4101 00032C1C 00000309
$0007 00000004 00000000

_V0 One Hit Kill
$3202 8177A448 00000068
$0000 00000000 000000DC
$0000 00000000 3F800000

_V0 One Hit Kill [alternative]
$3202 816FA448 00000068
$0000 00000000 000000DC
$0000 00000000 3F800000

 

[kapteinknutsen]

# Title: Severed
# ID: PCSE00589
# Region: US
# Version: 1.00
# Type: NoNpDrm
# Code Author: tomberyx

These codes does not seem to work, I'm afraid. There was no effect, and the game froze up pretty quickly.

I've managed to edit the values for the items in the game, so that I can bump them up and power up my character. These location of these values seem to change each time I run the game, so maybe there's some dynamic memory stuff messing this up (just guessing, I'm not a coder!)

 

[tomberyx]

Try only "One hit Kill" code.
Just to know

Edit; my first guess,your "Final cheat" is not on z06.

 

[kapteinknutsen]

Try only "One hit Kill" code.
Just to know

Edit; my first guess,your "Final cheat" is not on z06.

I tried "One hit Kill", and no luck. Didn't hang though!

Correct, I'm on z04. I'm still on v360 firmware

 

[tomberyx]

First, you need Firmware 3.65
Second, Final cheat z06 works only on 3.65
Last, my blood-Pressure went high now.
Im not able to answer more questions.

 

[kapteinknutsen]

First, you need Firmware 3.65
Second, Final cheat z06 works only on 3.65
Last, my blood-Pressure went high now.
Im not able to answer more questions.

Gotcha! Thanks for letting me know, and sorry for stressing you out!

 

[MichaelWilliams1234]

Hello friends how are you doing today can someone help me with ratchet and clank q force
Genre Action » Fighting » 3D
Region EU
Language English - Russian
Media ID PCSF-00191
Developer Insomniac Games, Tin Giant
Publisher Sony
Publish Date 2013-05-22
ZRIF KO5ifR1dQ+e7BlgiTDO0NATZH+QY4uzhGuLs4+jn7ebmGIbPfyxL/BxcGWa8q9gTbsbvLmk5GuODGwAAkt4SZQAA
Update 1.01
Dump status NoNPDRM
I need Inf HP codes hold x to fly Inf bolt and Inf time thank you very much

 

[MichaelWilliams1234]

Please Friends I need Inf HP codes for LittleBigPlanet PS Vita: Marvel Super Hero Edition
Genre Action » Platformer » 3D
Region EU
Language English - Russian
Media ID PCSF-00516
Developer Tarsier Studios
Publisher Sony
Publish Date 2014-11-28
ZRIF KO5ifR1dQ+e7BlgiTDM1NAPZ7+MUEOYZ4ujuHxIJthSf/yJsmnqKe/bznNXbyrfnGpvmaIwPbgAAfxkTlQAA
Update 1.22
Dump status NoNPDRM
Thank you very much

 

[tomberyx]

@Zernix

How does your "GoHANmem/cfg/key.txt." looks like (settings)

Here [below] is mine!
-----------------------------------------
CB


//!< Select button.SCE_CTRL_SELECT (A) 0x41
//!< Start button.SCE_CTRL_START (B) 0x42
//!< Up D-Pad button.SCE_CTRL_UP (C) 0x43
//!< Right D-Pad button.SCE_CTRL_RIGHT (D) 0x44
//!< Down D-Pad button.SCE_CTRL_DOWN (E) 0x45
//!< Left D-Pad button.SCE_CTRL_LEFT (F) 0x46
//!< Left trigger.SCE_CTRL_LTRIGGER (G) 0x47
//!< Right trigger.SCE_CTRL_RTRIGGER (H) 0x48
//!< Triangle button.SCE_CTRL_TRIANGLE (I) 0x49
//!< Circle button.SCE_CTRL_CIRCLE (J) 0x4A
//!< Cross button.SCE_CTRL_CROSS (K) 0x4B
//!< Square button.SCE_CTRL_SQUARE (L) 0x4C

-------------------------------------------

I think here I have to enter the button-cobination to open Gohanmem..
But dont know how...

 

[tomberyx]

Yes Baby!

I managed to successfully start Gohanmem on 3.65.

Now I can finally do a scan block and study your KungFu :-)

But now.its time for a beer,
it took me more than 2 hours to get it work

Spoiler: How i did to get it work

1.make a new folder in (ur0) and name it plugins

2.Put GoHANmem.suprx inside in plugins (without .suprx1)
-------ur0:/plugins/GoHANmem.suprx---------

3. Open tai-folder in (ur0) and write in config.txt under [*ALL]

*ALL
ur0lugins/GoHANmem.suprx


4.Now go VitaSettings/henkaku/refresh tai

5.Restart you vita

6. with L+start you can open Gohanmem in game


This is my config txt just to see how it looks like
-------------------------------------------------------
# For users plugins, you must refresh taiHEN from HENkaku Settings for
# changes to take place.
# For kernel plugins, you must reboot for changes to take place.
*KERNEL
ur0:tai/storagemgr.skprx
ur0:tai/0syscall6.skprx
ur0:tai/repatch.skprx
ur0:tai/fd_fix.skprx
ur0:tai/nonpdrm_un.skprx
ur0:tai/vitacheat.skprx
ur0:tai/kuio.skprx
# henkaku.skprx is hard-coded to load and is not listed here
*main
ur0:tai/notrophymsg.suprx
# main is a special titleid for SceShell
ur0:tai/henkaku.suprx
*NPXS10015
# this is for modifying the version string
ur0:tai/henkaku.suprx
*NPXS10016
# this is for modifying the version string in settings widget
ur0:tai/henkaku.suprx
*ALL
ur0:/tai/InfiniteNet.suprx
ur0lugins/GoHANmem.suprx

 

[Deleted User]

sorry,


in the installation instructions, what you wrote is reported

 

[tomberyx]

@Zernix

My new progress: to make B200 codes

Spoiler: Your instruction

The speed hack address 82xDE720 is already out of range from this module which is:
seg1 812806A0 - 812CD110 (for example)
you can't make a B2 code with it. To solve this problem, find the starting memory block. I used GoHANmem with "Scan Block" function. With that, I found the starting range block which is 81F00000. Search this hex with vitacheat to find the pointer. I found 4 adresses, 2 of them are the same and it's within the memory module. I picked 8128BDD8 which +B738 offset from seg1. The address 8128BDD8 is a direct pointer to 81F00000.

_V0 Speed Hack
$B200 00000001 00000000
$3201 0000B738 006DE720 <____ How did you find that value ?????
$3300 00000000 00000000

This is compatible for all different regions and dumps but not for the patched ones. Only best for static address.

To find the pointer within the module with vitacheat, Use Fuzzy Search with your address that you found (speed hack for example), set the search type into "less than or equal" (<=) and limit the range from 81000000 to the end of seg1 (it will include seg0). After the result list down the the address and its value, pick the value which is closer to your address that you found. then resart, repeat and:

_V0 Speed Hack
$B200 00000001 00000000
$3201 0003E990 00003AE0
$3300 00000000 00000000

_V0 Mira
$B200 00000001 00000000
$3201 0003E990 000A5038
$3300 00000000 00000064

This will work in all version, regions, dumps, and to whatever patch you put in rePatch. Unless rePatch omits the address that you want to modify (not sure)

I have reconstructed your instructions almost to the end.

Only the last point, probably the easiest part, I don't understand.

Please check the spoiler so you know where I'm hanging

Green Text: I understand this part

Red Text: no plan how to do that

Blue Text: Not started yet




--------------------- MERGED ---------------------------

sorry,


in the installation instructions, what you wrote is reported

Ok thanks , do you have a link ?

 

[Deleted User]

https://github.com/OneRice07/GoHANmem/releases

 

[tomberyx]

https://github.com/OneRice07/GoHANmem/releases

Thanks for the link!
I already know this link and 4 others but I was still unable to start Gohanmem.
So I decided to investigate why it wasn't working.
I have studied several descriptions, including those from Zernix.
In the end I found out that ux0 and ur0 play an important role, everything runs under ur0 for me and under ux0 for others. The question now remains, how should one know?
You also have to create a plugin folder and do other things. Not every description leads to success. But a lot also depends on the user and his or her Psvita attitude.

If you're happy with it, I'll just delete my description because it's as good as everyone else :-)

 

[tomberyx]

Hello friends how are you doing today can someone help me with ratchet and clank q force
Genre Action » Fighting » 3D
Region EU
Language English - Russian
Media ID PCSF-00191
Developer Insomniac Games, Tin Giant
Publisher Sony
Publish Date 2013-05-22
ZRIF KO5ifR1dQ+e7BlgiTDO0NATZH+QY4uzhGuLs4+jn7ebmGIbPfyxL/BxcGWa8q9gTbsbvLmk5GuODGwAAkt4SZQAA
Update 1.01
Dump status NoNPDRM
I need Inf HP codes hold x to fly Inf bolt and Inf time thank you very much

be patient a little longer it won't take long then I'll kick this games in the ass, Coven too

 

[NeoGranzon]

I finally got it working again after many attempts and incomplete guides

 

[tomberyx]

Why does someone put 7 pictures purely from Gohanmem without a comment?
1. He's really proud to have made it
2. He wants attention
3. He wants to show (me) that he has balls.
4. I'm completely wrong
5. Or "This is Sparta" !

 

[Zernix]

Yes Baby!

I managed to successfully start Gohanmem on 3.65.

Now I can finally do a scan block and study your KungFu :-)

But now.its time for a beer,
it took me more than 2 hours to get it work

Spoiler: How i did to get it work

1.make a new folder in (ur0) and name it plugins

2.Put GoHANmem.suprx inside in plugins (without .suprx1)
-------ur0:/plugins/GoHANmem.suprx---------

3. Open tai-folder in (ur0) and write in config.txt under [*ALL]

*ALL
ur0lugins/GoHANmem.suprx


4.Now go VitaSettings/henkaku/refresh tai

5.Restart you vita

6. with L+start you can open Gohanmem in game


This is my config txt just to see how it looks like
-------------------------------------------------------
# For users plugins, you must refresh taiHEN from HENkaku Settings for
# changes to take place.
# For kernel plugins, you must reboot for changes to take place.
*KERNEL
ur0:tai/storagemgr.skprx
ur0:tai/0syscall6.skprx
ur0:tai/repatch.skprx
ur0:tai/fd_fix.skprx
ur0:tai/nonpdrm_un.skprx
ur0:tai/vitacheat.skprx
ur0:tai/kuio.skprx
# henkaku.skprx is hard-coded to load and is not listed here
*main
ur0:tai/notrophymsg.suprx
# main is a special titleid for SceShell
ur0:tai/henkaku.suprx
*NPXS10015
# this is for modifying the version string
ur0:tai/henkaku.suprx
*NPXS10016
# this is for modifying the version string in settings widget
ur0:tai/henkaku.suprx
*ALL
ur0:/tai/InfiniteNet.suprx
ur0lugins/GoHANmem.suprx

Congrats that you have GoHANmem now. Cheers! You can put the .suprx anywhere as long as the directory is correct in config.txt and the data is in position.

@Zernix

How does your "GoHANmem/cfg/key.txt." looks like (settings)

Spoiler: Here [below

is mine!]
-----------------------------------------
CB


//!< Select button.SCE_CTRL_SELECT (A) 0x41
//!< Start button.SCE_CTRL_START (B) 0x42
//!< Up D-Pad button.SCE_CTRL_UP (C) 0x43
//!< Right D-Pad button.SCE_CTRL_RIGHT (D) 0x44
//!< Down D-Pad button.SCE_CTRL_DOWN (E) 0x45
//!< Left D-Pad button.SCE_CTRL_LEFT (F) 0x46
//!< Left trigger.SCE_CTRL_LTRIGGER (G) 0x47
//!< Right trigger.SCE_CTRL_RTRIGGER (H) 0x48
//!< Triangle button.SCE_CTRL_TRIANGLE (I) 0x49
//!< Circle button.SCE_CTRL_CIRCLE (J) 0x4A
//!< Cross button.SCE_CTRL_CROSS (K) 0x4B
//!< Square button.SCE_CTRL_SQUARE (L) 0x4C

-------------------------------------------

I think here I have to enter the button-cobination to open Gohanmem..
But dont know how...

Change the green and choose button combos you want with letters like red

@Zernix

My new progress: to make B200 codes

Spoiler: Your instruction

The speed hack address 82xDE720 is already out of range from this module which is:
seg1 812806A0 - 812CD110 (for example)

Spoiler: Your instruction

you can't make a B2 code with it. To solve this problem, find the starting memory block. I used GoHANmem with "Scan Block" function. With that, I found the starting range block which is 81F00000. Search this hex with vitacheat to find the pointer. I found 4 adresses, 2 of them are the same and it's within the memory module. I picked 8128BDD8 which +B738 offset from seg1. The address 8128BDD8 is a direct pointer to 81F00000.

_V0 Speed Hack
$B200 00000001 00000000
$3201 0000B738 006DE720 <____ How did you find that value ?????
$3300 00000000 00000000

This is compatible for all different regions and dumps but not for the patched ones. Only best for static address.

To find the pointer within the module with vitacheat, Use Fuzzy Search with your address that you found (speed hack for example), set the search type into "less than or equal" (<=) and limit the range from 81000000 to the end of seg1 (it will include seg0). After the result list down the the address and its value, pick the value which is closer to your address that you found. then resart, repeat and:

_V0 Speed Hack
$B200 00000001 00000000
$3201 0003E990 00003AE0
$3300 00000000 00000000

_V0 Mira
$B200 00000001 00000000
$3201 0003E990 000A5038
$3300 00000000 00000064

This will work in all version, regions, dumps, and to whatever patch you put in rePatch. Unless rePatch omits the address that you want to modify (not sure)

I have reconstructed your instructions almost to the end.

Only the last point, probably the easiest part, I don't understand.

Please check the spoiler so you know where I'm hanging

Green Text: I understand this part

Red Text: no plan how to do that

Blue Text: Not started yet

That's the offset to speed hack; The difference between pointer's value (81F00000) and speed hack current address (825DE720). The second part is also a way to search pointers with vitacheat without TempAR vita.

I take back what I said that B2 code will solve region difference. The pointer's offsets are not the same between regions. I have to investigate further.

 

[frtyyui]

she too. wrote a similar message (to brag?)

ps
she, like everyone else, is not above anyone

 

[tomberyx]

PCSG00488 - Eiyuu Densetsu: Sora no Kiseki FC (without Patch)

TEST code


_V0 Instant all items [945pcs]
$B200 00000001 00000000
$7201 0000B738 0077EC7C
$7701 00000000 004D0000
$03B1 00000004 00000001