Starting the game.
We go into battle(connect server).
1.Cheat Engine open script "rust.CT"
2.Open process Rust.exe
3.Activate "Enable"
Control:
Gliding in flight = (1 - on 0 - off)
Flying in the sky = (1 - on 0 - off)
RunX
0 - off
1 - run(X cordinate = +100)
2 - run(X cordinate = -100)
RunZ
0 - off
1 - run(Z cordinate = +100)
2 - run(Z cordinate = -100)
Tested Rust No-Steam
Cheat Engine script:
TEXT Code:
[ENABLE]
aobscan(JumpAOB,89 48 04 8B ?? ?? ?? ?? ?? 89 ?? ?? 8D ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 05)
registersymbol(JumpAOB)
label(pJump)
registersymbol(pJump)
label(pJump1)
registersymbol(pJump1)
label(pRunX)
registersymbol(pRunX)
label(pRunZ)
registersymbol(pRunZ)
alloc(newmem,2048)
//label(CodeSpeedX)
//label(CodeSpeedZ)
label(LCodeSpeed1_x)
label(LCodeSpeed2_x)
label(LCodeSpeed_Get)
label(LCodeSpeed3_z)
label(LCodeSpeed4_z)
label(CodeJump1)
label(CodeJump2)
label(returnhere)
label(originalcode)
label(exit)
newmem: //this is allocated memory, you have read,write,execute access
cmp [pRunX],1
je LCodeSpeed1_x
cmp [pRunX],2
je LCodeSpeed2_x
jmp LCodeSpeed_Get
LCodeSpeed1_x:
mov [ebp-0000016C] , (float)100
jmp LCodeSpeed_Get
LCodeSpeed2_x:
mov [ebp-0000016C] , (float)-100
jmp LCodeSpeed_Get
LCodeSpeed_Get:
cmp [pRunZ],1
je LCodeSpeed3_z
cmp [pRunZ],2
je LCodeSpeed4_z
jmp CodeJump1
LCodeSpeed3_z:
mov [ebp-00000174] , (float)100
jmp CodeJump1
LCodeSpeed4_z:
mov [ebp-00000174] , (float)-100
jmp CodeJump1
CodeJump1:
cmp [pJump],0
je CodeJump2
mov [ebp-00000170] , (float)1.5
CodeJump2:
cmp [pJump1],0
je originalcode
mov [ebp-00000170] , (float)10
originalcode:
mov ecx,[ebp-00000174]
exit:
jmp returnhere
pJump:
dd 0
pJump1:
dd 0
pRunX:
dd 0
pRunZ:
dd 0
JumpAOB-E:
jmp newmem
nop
returnhere:
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
dealloc(newmem)
JumpAOB-E:
mov ecx,[ebp-00000174]
unregistersymbol(JumpAOB)
unregistersymbol(pJump)
unregistersymbol(pJump1)
unregistersymbol(pRunX)
unregistersymbol(pRunZ)
Find addres!
We go into battle(connect server).
TEXT Code:
//89 48 04 8B ?? ?? ?? ?? ?? 89 ?? ?? 8D ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 8B ?? ?? ?? ?? ?? 89 ?? ?? ?? ?? ?? 05
// 0E2224F2 - 8B 8D 90 FE FF FF - mov ecx,[ebp-00000170]//offset 170
// 0E2224F8 - 89 48 04 - mov [eax+04],ecx//Jump fly
// 0E2224FB - 8B 8D 94 FE FF FF - mov ecx,[ebp-0000016C]
// 0E222501 - 89 48 08 - mov [eax+08],ecx
// 0E222504 - 8D 47 2C - lea eax,[edi+2C]
// 0E222507 - 8B 8D 20 FC FF FF - mov ecx,[ebp-000003E0]
// 0E22250D - 89 8D 98 FE FF FF - mov [ebp-00000168],ecx
// 0E222513 - 8B 8D 24 FC FF FF - mov ecx,[ebp-000003DC]
// 0E222519 - 89 8D 9C FE FF FF - mov [ebp-00000164],ecx
// 0E22251F - 8B 8D 28 FC FF FF - mov ecx,[ebp-000003D8]
// 0E222525 - 89 8D A0 FE FF FF - mov [ebp-00000160],ecx
// 0E22252B - 05 34 00 00 00 - add eax,00000034
// 0E222530 - 8B 8D 98 FE FF FF - mov ecx,[ebp-00000168]
// 0E222536 - 89 08 - mov [eax],ecx
// 0E222538 - 8B 8D 9C FE FF FF - mov ecx,[ebp-00000164]
// 0E22253E - 89 48 04 - mov [eax+04],ecx
// 0E222541 - 8B 8D A0 FE FF FF - mov ecx,[ebp-00000160]
// 0E222547 - 89 48 08 - mov [eax+08],ecx
// 0E22254A - 0F B6 87 42 01 00 00 - movzx eax,byte ptr [edi+00000142]
// 0E222551 - 8D 8F 8C 01 00 00 - lea ecx,[edi+0000018C]
// 0E222557 - D9 41 04 - fld dword ptr [ecx+04]
// 0E22255A - D9 05 F8 E5 62 17 - fld dword ptr [1762E5F8] : [3C23D70A]
// 0E222560 - 33 C9 - xor ecx,ecx
TEXT Code:
// 0E2224F2 - 8B 8D 90 FE FF FF - mov ecx,[ebp-00000170]//[B][COLOR=red]offset 170[/COLOR][/B]
// 0E2224F8 - 89 48 04 - mov [eax+04],ecx//[B][COLOR=Red]Jump fly[/COLOR][/B]
// 0E2224F8 - 89 48 04 - mov [eax+04],ecx//([B][COLOR=Red]float SpeedRunY;[/COLOR][/B])
class CPlayer
{
public:
char _0x0000[364];
float SpeedRunX; //0x016C
float SpeedRunY; //0x0170 [B][COLOR=Red]Fly Hack[/COLOR][/B]
float SpeedRunZ; //0x0174
char _0x0178[52];
float MyPosX; //0x01AC
float MyPosY; //0x01B0
float MyPosZ; //0x01B4
char _0x01B8[1672];
};//Size=0x0840
Deutsch
