INTERMEDIATE • Pointer Scanning

Finding Base Addresses

This lesson covers finding base addresses in the context of Pointer Scanning. Topics include: Wireshark filter / packet capture, Pointer scan / Pointer map, VirtualAllocEx / WriteProcessMemory. Educational use only.

Code Example

// Code cave patch
// Original: mov eax, [rbx+0x10]
// Patch: mov eax, 999  ; infinite value
// NOP remaining bytes

Commands & References

Wireshark filter / packet capture
Pointer scan / Pointer map
VirtualAllocEx / WriteProcessMemory

Lab Steps

Set up your environment: Wireshark filter / packet capture
Locate the target process or game and attach your tool.
Apply the technique and verify the result.
Document your findings and any variations.
Consider detection risks and mitigation.

Exercises

Try the same technique on a different value type or game.
Explore what happens when the game updates.
Consider how anti-cheat might detect this.
Design a minimal, undetectable implementation.

Previous Lesson Next Lesson