Difference between revisions of "Template:Asm:AddressesWithoutPointers"
Jump to navigation
Jump to search
(Created page with 'Category:Scripting ===Get Addresses Without Pointers=== ''cant find pointers?'', ''pointer scanner takes so long?''. ''use this and change the requirements'', ''dont forget …') |
|||
| (One intermediate revision by the same user not shown) | |||
| Line 39: | Line 39: | ||
jmp exit | jmp exit | ||
| + | |||
| + | |||
| + | |||
| + | '''address''': | ||
| + | |||
| + | dd 00 | ||
Latest revision as of 02:43, 3 February 2018
Get Addresses Without Pointers[edit]
cant find pointers?, pointer scanner takes so long?. use this and change the requirements, dont forget to add ADDRESS as an address to your address-list and change diplay type to HEXADECIMAL.
[enable]
aobscan(symbol,01 23 45 67 89 AB CD EF)
alloc(newmem,$1000)
registersymbol(symbol)
registersymbol(address)
label(address)
label(originalcode)
label(exit)
newmem:
lea eax,[edx+110]
mov [address],eax
originalcode:
mov eax,[edx+110]
jmp exit
address:
dd 00
symbol:
jmp newmem
nop
exit:
[disable]
unregistersymbol(address)
dealloc(newmem)
symbol:
mov eax,[edx+110]
unregistersymbol(symbol)
