First look for backpack traversal
1. We start to find by the number of items
2. First, CE searches for the current drug quantity
3. Then consume a bottle of blood medicine
4. CE continues to search 10, you will find that there are 1423 results left
5. After several times of screening, we finally found several results
6. After getting the address, we use XDBG to attach the game and check the address
7. Then we write a breakpoint above and below this address, and the breakpoint can be triggered by consuming blood medicine
8. We found that rbp+68] stores the quantity, then rbp is a structure, which returns through several layers
9. Found a structure array traversal. This structure array has an offset of +40 from the backpack component object. At the same time, we found that the structure size is 0x28
9. We enter this structure array and take a look, we can see that the size of each 0x28 structure is a backpack item information
Item quality analysis
1. Obviously we can see the approximate information of each structure,
+0 is ID
+10 is object 1
+18 object 2
2. It is not clear what information is allocated and stored, so let's manually enter these two objects to have a look.
3. First enter object 1, and find that the position at +68 is the offset of the quantity we searched with CE above. Although it may not be the same item object, the structure is the same
4. When looking for quality, we need to be clear about some unspoken rules of UE4!
5. Most UE4 UE5 game quality types stipulate that 1 is white, 2 is green, 3 is blue, 4 is purple, 5 yellow, 6 orange, and 7 red. These numbers are not all considered as white equipment. 6. Through observation, we found that our backpacks are basically all white
equipment , then the quality type should be 1 to be
7. Continue to observe the data information of the above object 1, and found a lot of 1, then we try to change it to 2, and then return to the game to observe, it turns out that there is no quality attribute 8 under object 1. OK
, Then we continue to observe, it is best to compare the information of object 1 of the two items.
9. We found that there is no object 1 at present, but we carefully observed that there are 2 objects at +80+88, and we don’t know what they are yet. , that is, we see that there are similar 1, we can try to modify
10. Sure enough, I found it at +26 a byte
11. Change it several times to see
12. In this way, we can find the quality type of our items by observing and comparing and adding some unspoken rules!
Thank you for your attention to Di University College: 285530835