Scribd
Upload
441 views95 pages

DarkSoulsIII Cheat Table

The document contains several Auto Assembler Script cheat entries for the game Dark Souls III that allow for unlimited health, focus points, and stamina by modifying memory addresses during runtime. The scripts locate injection points in the game's code and inject short detours to bypass checks and restrictions on these values.

Uploaded by

Petter
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
441 views95 pages

DarkSoulsIII Cheat Table

The document contains several Auto Assembler Script cheat entries for the game Dark Souls III that allow for unlimited health, focus points, and stamina by modifying memory addresses during runtime. The scripts locate injection points in the game's code and inject short detours to bypass checks and restrictions on these values.

Uploaded by

Petter
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 95

<?xml version="1.0" encoding="utf-8"?

>
<CheatTable CheatEngineTableVersion="19">
<CheatEntries>
<CheatEntry>
<ID>7</ID>
<Description>"Player Scripts"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(player,DarkSoulsIII.exe,48 8B 48 18 E8 * * * * 89 46 04)
alloc(newmem,$1000,player)
globalalloc(player_ptr,8)
label(code)
label(return)
label(player_bkp)
newmem:
code:
mov rcx,[rax+18]
mov rax,player_ptr
mov [rax],rcx
player_bkp:
reassemble(player+4)
jmp return
player_ptr:
dq 0
player:
jmp code
nop
nop
nop
nop
return:
registersymbol(player)
registersymbol(player_bkp)
[DISABLE]
player:
db 48 8B 48 18
reassemble(player_bkp)
unregistersymbol(player)
unregistersymbol(player_bkp)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+BC684A
"DarkSoulsIII.exe"+BC681B:
4
"DarkSoulsIII.exe"+BC681D:
"DarkSoulsIII.exe"+BC6824:
"DarkSoulsIII.exe"+BC6828:
+469ADF8]
"DarkSoulsIII.exe"+BC682F:
"DarkSoulsIII.exe"+BC6833:

74 07

- je DarkSoulsIII.exe+BC682

48 8B 98 80 00 00 00
48 89 5D 80
48 8B 05 C9 45 AD 03

- mov rbx,[rax+00000080]
- mov [rbp-80],rbx
- mov rax,[DarkSoulsIII.exe

48 8B 78 10
48 85 FF

- mov rdi,[rax+10]
- test rdi,rdi

"DarkSoulsIII.exe"+BC6836: 0F 84 92 12 00 00
- je DarkSoulsIII.exe+BC7AC
E
"DarkSoulsIII.exe"+BC683C: C6 01 01
- mov byte ptr [rcx],01
"DarkSoulsIII.exe"+BC683F: C6 41 0C 01
- mov byte ptr [rcx+0C],01
"DarkSoulsIII.exe"+BC6843: 48 8B 83 70 1F 00 00
- mov rax,[rbx+00001F70]
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+BC684A: 48 8B 48 18
- mov rcx,[rax+18]
"DarkSoulsIII.exe"+BC684E: E8 0D AB 7E FF
- call DarkSoulsIII.exe+3B1
360
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+BC6853: 89 46 04
- mov [rsi+04],eax
"DarkSoulsIII.exe"+BC6856: 48 8B 83 70 1F 00 00
- mov rax,[rbx+00001F70]
"DarkSoulsIII.exe"+BC685D: 48 8B 48 18
- mov rcx,[rax+18]
"DarkSoulsIII.exe"+BC6861: E8 4A AC 7E FF
- call DarkSoulsIII.exe+3B1
4B0
"DarkSoulsIII.exe"+BC6866: 89 46 08
- mov [rsi+08],eax
"DarkSoulsIII.exe"+BC6869: C6 46 18 01
- mov byte ptr [rsi+18],01
"DarkSoulsIII.exe"+BC686D: 48 8B 83 70 1F 00 00
- mov rax,[rbx+00001F70]
"DarkSoulsIII.exe"+BC6874: 48 8B 48 18
- mov rcx,[rax+18]
"DarkSoulsIII.exe"+BC6878: E8 F3 E1 84 FF
- call DarkSoulsIII.exe+414
A70
"DarkSoulsIII.exe"+BC687D: 89 46 10
- mov [rsi+10],eax
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>62</ID>
<Description>"Unlimited Health"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(health,DarkSoulsIII.exe,8B 00 89 83 D8 00 00 00 85 C0 0F)
alloc(newmem,$1000,health)
label(code)
label(return)
newmem:
push rcx
mov rcx,player_ptr
cmp [rcx],rbx
pop rcx
jne code
mov eax,[rbx+DC]
mov [rbx+D8],eax
jmp return
code:
mov eax,[rax]
mov [rbx+000000D8],eax
jmp return
health:
jmp newmem
nop
nop
nop
return:
registersymbol(health)
[DISABLE]

health:
db 8B 00 89 83 D8 00 00 00
unregistersymbol(health)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+196DC57
"DarkSoulsIII.exe"+196DC1F: 45 0F B6 86 44 01 00 00 - movzx r8d,byte ptr [r14+
00000144]
"DarkSoulsIII.exe"+196DC27: E9 B2 FC 02 FF
- jmp DarkSoulsIII.exe+99D
8DE
"DarkSoulsIII.exe"+196DC2C: 66 89 85 48 01 00 00
- mov [rbp+00000148],ax
"DarkSoulsIII.exe"+196DC33: E9 CF D8 02 FF
- jmp DarkSoulsIII.exe+99B
507
"DarkSoulsIII.exe"+196DC38: 48 8B 44 24 F8
- mov rax,[rsp-08]
"DarkSoulsIII.exe"+196DC3D: 48 8D 64 24 08
- lea rsp,[rsp+08]
"DarkSoulsIII.exe"+196DC42: FF 64 24 F8
- jmp qword ptr [rsp-08]
"DarkSoulsIII.exe"+196DC46: E9 74 D3 2D FF
- jmp DarkSoulsIII.exe+C4A
FBF
"DarkSoulsIII.exe"+196DC4B: 48 8D 0D EE D7 EA 00
- lea rcx,[DarkSoulsIII.ex
e+281B440]
"DarkSoulsIII.exe"+196DC52: E9 A1 05 05 FF
- jmp DarkSoulsIII.exe+9BE
1F8
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+196DC57: 8B 00
- mov eax,[rax]
"DarkSoulsIII.exe"+196DC59: 89 83 D8 00 00 00
- mov [rbx+000000D8],eax
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+196DC5F: 85 C0
- test eax,eax
"DarkSoulsIII.exe"+196DC61: 0F 8F 10 0A 05 FF
- jg DarkSoulsIII.exe+9BE6
77
"DarkSoulsIII.exe"+196DC67: E9 F5 09 05 FF
- jmp DarkSoulsIII.exe+9BE
661
"DarkSoulsIII.exe"+196DC6C: 0F 55 15 2D F9 31 02
- andnps xmm2,[DarkSoulsII
I.exe+3C8D5A0]
"DarkSoulsIII.exe"+196DC73: E9 66 EF 02 FF
- jmp DarkSoulsIII.exe+99C
BDE
"DarkSoulsIII.exe"+196DC78: 48 8D 54 24 40
- lea rdx,[rsp+40]
"DarkSoulsIII.exe"+196DC7D: F3 0F 10 7B 58
- movss xmm7,[rbx+58]
"DarkSoulsIII.exe"+196DC82: F3 44 0F 10 43 50
- movss xmm8,[rbx+50]
"DarkSoulsIII.exe"+196DC88: F3 44 0F 10 48 08
- movss xmm9,[rax+08]
"DarkSoulsIII.exe"+196DC8E: E9 99 0F 03 FF
- jmp DarkSoulsIII.exe+99E
C2C
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>67</ID>
<Description>"Unlimited Focus Points"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(focus,DarkSoulsIII.exe,8B 00 B2 01 48 8B CF)
alloc(newmem,$1000,focus)
label(code)
label(return)
newmem:
push rcx

mov
cmp
pop
jne
lea
code:
mov
mov
mov
jmp

rcx,player_ptr
[rcx],rbx
rcx
code
rax,[rbx+E8]
eax,[rax]
dl,01
rcx,rdi
return

focus:
jmp newmem
nop
nop
return:
registersymbol(focus)
[DISABLE]
focus:
db 8B 00 B2 01 48 8B CF
unregistersymbol(focus)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+A03B0C
"DarkSoulsIII.exe"+A03AE5: 48 81 EC 08 00
"DarkSoulsIII.exe"+A03AEC: E9 47 0E 43 00
38
"DarkSoulsIII.exe"+A03AF1: E9 13 1F 07 01
A09
"DarkSoulsIII.exe"+A03AF6: CC
"DarkSoulsIII.exe"+A03AF7: 48 E9 13 4C 06
710
"DarkSoulsIII.exe"+A03AFD: E9 7E 03 60 FF
"DarkSoulsIII.exe"+A03B02: CC
"DarkSoulsIII.exe"+A03B03: FF 50 68
"DarkSoulsIII.exe"+A03B06: 90
"DarkSoulsIII.exe"+A03B07: E9 37 6A 08 01
543
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+A03B0C: 8B 00
"DarkSoulsIII.exe"+A03B0E: B2 01
"DarkSoulsIII.exe"+A03B10: 48 8B CF
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+A03B13: 89 83 E4 00 00
"DarkSoulsIII.exe"+A03B19: E9 D3 B3 FB FF
F1
"DarkSoulsIII.exe"+A03B1E: E9 3A C9 F6 00
45D
"DarkSoulsIII.exe"+A03B23: 4C 1D 87 99 90
"DarkSoulsIII.exe"+A03B29: FF 50 68
"DarkSoulsIII.exe"+A03B2C: 90
"DarkSoulsIII.exe"+A03B2D: E9 83 AA F6 00
5B5
"DarkSoulsIII.exe"+A03B32: 41 83 7E 74 00
"DarkSoulsIII.exe"+A03B37: E9 73 36 F9 FF
AF
"DarkSoulsIII.exe"+A03B3C: E9 D0 4D 08 01

00 00

- sub rsp,00000008
- jmp DarkSoulsIII.exe+E349
- jmp DarkSoulsIII.exe+1A75

01

- int 3
- jmp DarkSoulsIII.exe+1A68
-

jmp DarkSoulsIII.exe+3E80
int 3
call qword ptr [rax+68]
nop
jmp DarkSoulsIII.exe+1A8A

- mov eax,[rax]
- mov dl,01
- mov rcx,rdi
00

- mov [rbx+000000E4],eax
- jmp DarkSoulsIII.exe+9BEE
- jmp DarkSoulsIII.exe+1970

48

sbb rax,48909987
call qword ptr [rax+68]
nop
jmp DarkSoulsIII.exe+196E

- cmp dword ptr [r14+74],00


- jmp DarkSoulsIII.exe+9971
- jmp DarkSoulsIII.exe+1A88

911
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>10468</ID>
<Description>"Unlimited Stamina"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(stamina,DarkSoulsIII.exe,48 8D 4C 24 38 48 0F 4F)
alloc(newmem,$1000,stamina)
label(code)
label(return)
newmem:
mov rcx,player_ptr
cmp [rcx],rbx
jne code
mov rcx,rdx
jmp return
code:
lea rcx,[rsp+38]
jmp return
stamina:
jmp newmem
return:
registersymbol(stamina)
[DISABLE]
stamina:
db 48 8D 4C 24 38
unregistersymbol(stamina)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+9BF3FB
"DarkSoulsIII.exe"+9BF3D0: E8 1B 3E CA 00
- call DarkSoulsIII.exe+16631F
0
"DarkSoulsIII.exe"+9BF3D5: 48 8B 0D 8C D1 D1 03 - mov rcx,[DarkSoulsIII.exe+46
DC568]
"DarkSoulsIII.exe"+9BF3DC: BA 01 00 00 00
- mov edx,00000001
"DarkSoulsIII.exe"+9BF3E1: E8 DA 5E 40 00
- call DarkSoulsIII.exe+DC52C0
"DarkSoulsIII.exe"+9BF3E6: 48 8D 93 F4 00 00 00 - lea rdx,[rbx+000000F4]
"DarkSoulsIII.exe"+9BF3ED: 48 8B 48 60
- mov rcx,[rax+60]
"DarkSoulsIII.exe"+9BF3F1: 48 83 C1 4C
- add rcx,4C
"DarkSoulsIII.exe"+9BF3F5: 3B 39
- cmp edi,[rcx]
"DarkSoulsIII.exe"+9BF3F7: 7C 0B
- jl DarkSoulsIII.exe+9BF404
"DarkSoulsIII.exe"+9BF3F9: 3B 3A
- cmp edi,[rdx]
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+9BF3FB: 48 8D 4C 24 38
- lea rcx,[rsp+38]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+9BF400: 48 0F 4F CA
- cmovg rcx,rdx
"DarkSoulsIII.exe"+9BF404: 8B 01
- mov eax,[rcx]
"DarkSoulsIII.exe"+9BF406: 89 83 F0 00 00 00
- mov [rbx+000000F0],eax
"DarkSoulsIII.exe"+9BF40C: 48 8B 5C 24 30
- mov rbx,[rsp+30]
"DarkSoulsIII.exe"+9BF411: 48 83 C4 20
- add rsp,20

"DarkSoulsIII.exe"+9BF415: 5F
- pop rdi
"DarkSoulsIII.exe"+9BF416: C3
- ret
"DarkSoulsIII.exe"+9BF417: CC
- int 3
"DarkSoulsIII.exe"+9BF418: CC
- int 3
"DarkSoulsIII.exe"+9BF419: CC
- int 3
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>10469</ID>
<Description>"Player Pointers"</Description>
<Options moHideChildren="1"/>
<LastState Value="" RealAddress="00000000"/>
<GroupHeader>1</GroupHeader>
<CheatEntries>
<CheatEntry>
<ID>10470</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>player_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>10471</ID>
<Description>"Current Health"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+d8</Address>
</CheatEntry>
<CheatEntry>
<ID>10472</ID>
<Description>"Maximum Health"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+dc</Address>
</CheatEntry>
<CheatEntry>
<ID>10473</ID>
<Description>"Current Focus Points"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+e4</Address>
</CheatEntry>
<CheatEntry>
<ID>10474</ID>
<Description>"Maximum Focus Points"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+e8</Address>
</CheatEntry>
<CheatEntry>
<ID>10475</ID>
<Description>"Current Stamina"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+f0</Address>
</CheatEntry>
<CheatEntry>
<ID>8</ID>

<Description>"Maximum Stamina"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+f4</Address>
</CheatEntry>
<CheatEntry>
<ID>10451</ID>
<Description>"Current Bleed"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+1e8</Address>
</CheatEntry>
<CheatEntry>
<ID>10452</ID>
<Description>"Maximum Bleed"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+1fc</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72834</ID>
<Description>"iFrames Script"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(iframe,DarkSoulsIII.exe,48 8B 59 58 49 8B CE)
alloc(newmem,$1000,iframe)
label(code)
label(return)
label(iframe_ptr)
newmem:
code:
mov
mov
mov
lea
mov
jmp

rbx,iframe_ptr
[rbx],rcx
rbx,[rcx+58]
rbx,[rbx]
rcx,r14
return

iframe_ptr:
dq 0
iframe:
jmp newmem
nop
nop
return:
registersymbol(iframe)
registersymbol(iframe_ptr)
aobscanmodule(iframe_write,DarkSoulsIII.exe,48 89 41 58 48 8D 59 60)
alloc(newmem2,$1000,iframe_write)

label(code2)
label(return2)
label(iframe_value)
label(iframe_other)
newmem2:
mov rbp,iframe_ptr
cmp [rbp],rcx
jne @f
mov rbp,iframe_value
mov rax,[rbp]
jmp code2
@@:
mov rbp,iframe_other
mov rax,[rbp]
code2:
mov [rcx+58],rax
lea rbx,[rcx+60]
jmp return2
iframe_value:
dq 0
iframe_other:
dq 0
iframe_write:
jmp newmem2
nop
nop
nop
return2:
registersymbol(iframe_write)
registersymbol(iframe_value)
registersymbol(iframe_other)
[DISABLE]
iframe:
db 48 8B 59 58 49 8B CE
unregistersymbol(iframe)
unregistersymbol(iframe_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+5D49A7
"DarkSoulsIII.exe"+5D4977: 33 D2
- xor edx,edx
"DarkSoulsIII.exe"+5D4979: 49 8B C8
- mov rcx,r8
"DarkSoulsIII.exe"+5D497C: E8 5F B9 E8 FF
- call DarkSoulsIII.e
xe+4602E0
"DarkSoulsIII.exe"+5D4981: 4C 8B F0
- mov r14,rax
"DarkSoulsIII.exe"+5D4984: 48 8B 8F D8 02 00 00
- mov rcx,[rdi+000002
D8]
"DarkSoulsIII.exe"+5D498B: 48 8B 71 50
- mov rsi,[rcx+50]
"DarkSoulsIII.exe"+5D498F: C7 87 34 04 00 00 00 00 00 00 - mov [rdi+00000434],
00000000
"DarkSoulsIII.exe"+5D4999: 48 8B 4E 08
- mov rcx,[rsi+08]
"DarkSoulsIII.exe"+5D499D: 48 8B 91 70 1F 00 00
- mov rdx,[rcx+00001F
70]
"DarkSoulsIII.exe"+5D49A4: 48 8B 0A
- mov rcx,[rdx]
// ---------- INJECTING HERE ----------

"DarkSoulsIII.exe"+5D49A7: 48
"DarkSoulsIII.exe"+5D49AB: 49
// ---------- DONE INJECTING
"DarkSoulsIII.exe"+5D49AE: 48
"DarkSoulsIII.exe"+5D49B2: E8
xe+7E4F80
"DarkSoulsIII.exe"+5D49B7: 49
"DarkSoulsIII.exe"+5D49BA: F3
lsIII.exe+3CF1550]
"DarkSoulsIII.exe"+5D49C2: 0F
"DarkSoulsIII.exe"+5D49C5: 0F
"DarkSoulsIII.exe"+5D49C8: E8
xe+7E5000
"DarkSoulsIII.exe"+5D49CD: F3
ulsIII.exe+3CF0078]
"DarkSoulsIII.exe"+5D49D6: 45
"DarkSoulsIII.exe"+5D49DA: 0F
}

8B 59 58
8B CE
---------C1 EB 29
C9 05 21 00

- mov rbx,[rcx+58]
- mov rcx,r14

8B CE
0F 10 3D 8E CB 71 03

- mov rcx,r14
- movss xmm7,[DarkSou

28 F0
57 F7
33 06 21 00

- movaps xmm6,xmm0
- xorps xmm6,xmm7
- call DarkSoulsIII.e

44 0F 10 15 A2 B6 71 03

- movss xmm10,[DarkSo

0F 57 C0
57 C7

- xorps xmm8,xmm8
- xorps xmm0,xmm7

- shr rbx,29
- call DarkSoulsIII.e

iframe_write:
db 48 89 41 58 48 8D 59 60
unregistersymbol(iframe_write)
unregistersymbol(iframe_value)
unregistersymbol(iframe_other)
dealloc(newmem2)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+96AE9C
"DarkSoulsIII.exe"+96AE77: 4C 8B E9
"DarkSoulsIII.exe"+96AE7A: 8B 41 14
"DarkSoulsIII.exe"+96AE7D: 89 41 18
"DarkSoulsIII.exe"+96AE80: 80 A1 B4 09 00
09B4],-02
"DarkSoulsIII.exe"+96AE87: 8B 41 58
"DarkSoulsIII.exe"+96AE8A: 48 C1 E8 0B
"DarkSoulsIII.exe"+96AE8E: 24 01
"DarkSoulsIII.exe"+96AE90: 08 81 B4 09 00
"DarkSoulsIII.exe"+96AE96: 33 C0
"DarkSoulsIII.exe"+96AE98: 48 89 41 10
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+96AE9C: 48 89 41 58
"DarkSoulsIII.exe"+96AEA0: 48 8D 59 60
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+96AEA4: 48 8B EB
"DarkSoulsIII.exe"+96AEA7: 48 F7 DD
"DarkSoulsIII.exe"+96AEAA: 83 E5 03
"DarkSoulsIII.exe"+96AEAD: 48 8B 83 88 00
"DarkSoulsIII.exe"+96AEB4: 4C 8D 34 C3
"DarkSoulsIII.exe"+96AEB8: 4C 03 F5
"DarkSoulsIII.exe"+96AEBB: 4C 8D 3C 2B
"DarkSoulsIII.exe"+96AEBF: 4D 3B F7
"DarkSoulsIII.exe"+96AEC2: 73 1D
6AEE1
"DarkSoulsIII.exe"+96AEC4: 4C 8D 05 CD FC
xe+3CBAB98]
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>

00 FE

00

mov
mov
mov
and

r13,rcx
eax,[rcx+14]
[rcx+18],eax
byte ptr [rcx+0000

mov eax,[rcx+58]
shr rax,0B
and al,01
or [rcx+000009B4],al
xor eax,eax
mov [rcx+10],rax

- mov [rcx+58],rax
- lea rbx,[rcx+60]

00 00

34 03

mov
neg
and
mov
lea
add
lea
cmp
jae

rbp,rbx
rbp
ebp,03
rax,[rbx+00000088]
r14,[rbx+rax*8]
r14,rbp
r15,[rbx+rbp]
r14,r15
DarkSoulsIII.exe+9

- lea r8,[DarkSoulsIII.e

<ID>72919</ID>
<Description>"Invulnerability"</Description>
<VariableType>Binary</VariableType>
<BitStart>0</BitStart>
<BitLength>1</BitLength>
<ShowAsBinary>0</ShowAsBinary>
<Address>iframe_value</Address>
</CheatEntry>
<CheatEntry>
<ID>72925</ID>
<Description>"No Stagger"</Description>
<VariableType>Binary</VariableType>
<BitStart>5</BitStart>
<BitLength>1</BitLength>
<ShowAsBinary>0</ShowAsBinary>
<Address>iframe_value+4</Address>
</CheatEntry>
<CheatEntry>
<ID>72928</ID>
<Description>"Always Block"</Description>
<VariableType>Binary</VariableType>
<BitStart>2</BitStart>
<BitLength>1</BitLength>
<ShowAsBinary>0</ShowAsBinary>
<Address>iframe_value</Address>
</CheatEntry>
<CheatEntry>
<ID>72926</ID>
<Description>"Freeze NPCs"</Description>
<VariableType>Binary</VariableType>
<BitStart>2</BitStart>
<BitLength>1</BitLength>
<ShowAsBinary>0</ShowAsBinary>
<Address>iframe_other+2</Address>
</CheatEntry>
<CheatEntry>
<ID>73064</ID>
<Description>"Random Parry"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(random_parry,DarkSoulsIII.exe,48 8B 41 58 48 C1 E8 2A)
alloc(newmem,$1000,random_parry)
label(code)
label(return)
newmem:
mov rax,iframe_ptr
cmp [rax],rcx
jne code
mov al,1
mov byte ptr [rdi+E8],0
jmp return
code:
mov rax,[rcx+58]
shr rax,2A
jmp return
random_parry:

jmp newmem
nop
nop
nop
return:
registersymbol(random_parry)
[DISABLE]
random_parry:
db 48 8B 41 58 48 C1 E8 2A
unregistersymbol(random_parry)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+86667F
"DarkSoulsIII.exe"+866645: 48 83 3D 7B E5 E5 03 00 - cmp qword ptr [DarkSoulsI
II.exe+46C4BC8],00
"DarkSoulsIII.exe"+86664D: 75 1F
- jne DarkSoulsIII.exe+8666
6E
"DarkSoulsIII.exe"+86664F: 4C 8D 0D 7A 1C E6 01
- lea r9,[DarkSoulsIII.exe+
26C82D0]
"DarkSoulsIII.exe"+866656: 4C 8D 05 33 E5 47 03
- lea r8,[DarkSoulsIII.exe+
3CE4B90]
"DarkSoulsIII.exe"+86665D: 48 8D 0D 7C FC E5 01
- lea rcx,[DarkSoulsIII.exe
+26C62E0]
"DarkSoulsIII.exe"+866664: BA B1 00 00 00
- mov edx,000000B1
"DarkSoulsIII.exe"+866669: E8 A2 CB DF 00
- call DarkSoulsIII.exe+166
3210
"DarkSoulsIII.exe"+86666E: 49 8B 86 70 1F 00 00
- mov rax,[r14+00001F70]
"DarkSoulsIII.exe"+866675: 0F B6 1D 2C E5 E5 03
- movzx ebx,byte ptr [DarkS
oulsIII.exe+46C4BA8]
"DarkSoulsIII.exe"+86667C: 48 8B 08
- mov rcx,[rax]
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+86667F: 48 8B 41 58
- mov rax,[rcx+58]
"DarkSoulsIII.exe"+866683: 48 C1 E8 2A
- shr rax,2A
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+866687: A8 01
- test al,01
"DarkSoulsIII.exe"+866689: 74 09
- je DarkSoulsIII.exe+86669
4
"DarkSoulsIII.exe"+86668B: F6 87 E8 00 00 00 04
- test byte ptr [rdi+000000
E8],04
"DarkSoulsIII.exe"+866692: 74 08
- je DarkSoulsIII.exe+86669
C
"DarkSoulsIII.exe"+866694: 84 DB
- test bl,bl
"DarkSoulsIII.exe"+866696: 0F 84 2E 01 00 00
- je DarkSoulsIII.exe+8667C
A
"DarkSoulsIII.exe"+86669C: 48 8B 06
- mov rax,[rsi]
"DarkSoulsIII.exe"+86669F: 48 8B CE
- mov rcx,rsi
"DarkSoulsIII.exe"+8666A2: 0F 29 B4 24 50 03 00 00 - movaps [rsp+00000350],xmm
6
"DarkSoulsIII.exe"+8666AA: FF 90 78 02 00 00
- call qword ptr [rax+00000
278]
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>73043</ID>
<Description>"Manual"</Description>
<ShowAsHex>1</ShowAsHex>

<VariableType>8 Bytes</VariableType>
<Address>iframe_value</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72483</ID>
<Description>"Ignore Status Effects"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(effects,DarkSoulsIII.exe,45 2B C8 45 85 C9)
effects:
db 90 90 90
registersymbol(effects)
[DISABLE]
effects:
db 45 2B C8
unregistersymbol(effects)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+9C1DCB
"DarkSoulsIII.exe"+9C1DB9: CC
- int 3
"DarkSoulsIII.exe"+9C1DBA: CC
- int 3
"DarkSoulsIII.exe"+9C1DBB: CC
- int 3
"DarkSoulsIII.exe"+9C1DBC: CC
- int 3
"DarkSoulsIII.exe"+9C1DBD: CC
- int 3
"DarkSoulsIII.exe"+9C1DBE: CC
- int 3
"DarkSoulsIII.exe"+9C1DBF: CC
- int 3
"DarkSoulsIII.exe"+9C1DC0: 4C 63 DA
- movsxd r11,edx
"DarkSoulsIII.exe"+9C1DC3: 4C 8B D1
- mov r10,rcx
"DarkSoulsIII.exe"+9C1DC6: 46 8B 4C 99 10
- mov r9d,[rcx+r11*4+10]
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+9C1DCB: 45 2B C8
- sub r9d,r8d
"DarkSoulsIII.exe"+9C1DCE: 45 85 C9
- test r9d,r9d
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+9C1DD1: 7E 2C
- jle DarkSoulsIII.exe+9
C1DFF
"DarkSoulsIII.exe"+9C1DD3: 49 8D 4B 09
- lea rcx,[r11+09]
"DarkSoulsIII.exe"+9C1DD7: 48 8D 54 24 10
- lea rdx,[rsp+10]
"DarkSoulsIII.exe"+9C1DDC: 44 89 4C 24 10
- mov [rsp+10],r9d
"DarkSoulsIII.exe"+9C1DE1: 45 3B 0C 8A
- cmp r9d,[r10+rcx*4]
"DarkSoulsIII.exe"+9C1DE5: 49 8D 0C 8A
- lea rcx,[r10+rcx*4]
"DarkSoulsIII.exe"+9C1DE9: C7 44 24 18 00 00 00 00
- mov [rsp+18],00000000
"DarkSoulsIII.exe"+9C1DF1: 48 0F 4F D1
- cmovg rdx,rcx
"DarkSoulsIII.exe"+9C1DF5: B0 01
- mov al,01
"DarkSoulsIII.exe"+9C1DF7: 8B 0A
- mov ecx,[rdx]
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>73040</ID>
<Description>"Unlimited Buff Duration"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(buffs,DarkSoulsIII.exe,F3 0F 5C CF 0F 2F C1)
buffs:

db 90 90 90 90
registersymbol(buffs)
[DISABLE]
buffs:
db F3 0F 5C CF
unregistersymbol(buffs)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+9E2A1D
"DarkSoulsIII.exe"+9E29F7: 74 40
- je DarkSoulsIII.exe+9E2A3
9
"DarkSoulsIII.exe"+9E29F9: F3 0F 10 43 08
- movss xmm0,[rbx+08]
"DarkSoulsIII.exe"+9E29FE: 0F 2F C6
- comiss xmm0,xmm6
"DarkSoulsIII.exe"+9E2A01: 76 09
- jna DarkSoulsIII.exe+9E2A
0C
"DarkSoulsIII.exe"+9E2A03: F3 0F 5C C7
- subss xmm0,xmm7
"DarkSoulsIII.exe"+9E2A07: F3 0F 11 43 08
- movss [rbx+08],xmm0
"DarkSoulsIII.exe"+9E2A0C: F3 0F 10 0B
- movss xmm1,[rbx]
"DarkSoulsIII.exe"+9E2A10: 0F 2F CE
- comiss xmm1,xmm6
"DarkSoulsIII.exe"+9E2A13: 76 1B
- jna DarkSoulsIII.exe+9E2A
30
"DarkSoulsIII.exe"+9E2A15: F3 0F 10 05 8F 83 E3 01 - movss xmm0,[DarkSoulsIII.
exe+281ADAC]
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+9E2A1D: F3 0F 5C CF
- subss xmm1,xmm7
"DarkSoulsIII.exe"+9E2A21: 0F 2F C1
- comiss xmm0,xmm1
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+9E2A24: F3 0F 11 0B
- movss [rbx],xmm1
"DarkSoulsIII.exe"+9E2A28: 76 06
- jna DarkSoulsIII.exe+9E2A
30
"DarkSoulsIII.exe"+9E2A2A: C7 03 00 00 00 B4
- mov [rbx],B4000000
"DarkSoulsIII.exe"+9E2A30: 48 8D 4B 30
- lea rcx,[rbx+30]
"DarkSoulsIII.exe"+9E2A34: E8 17 7C F8 FF
- call DarkSoulsIII.exe+96A
650
"DarkSoulsIII.exe"+9E2A39: 8B 43 1C
- mov eax,[rbx+1C]
"DarkSoulsIII.exe"+9E2A3C: C6 43 2E 00
- mov byte ptr [rbx+2E],00
"DarkSoulsIII.exe"+9E2A40: A9 03 00 0C 80
- test eax,800C0003
"DarkSoulsIII.exe"+9E2A45: 75 16
- jne DarkSoulsIII.exe+9E2A
5D
"DarkSoulsIII.exe"+9E2A47: A8 04
- test al,04
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>10459</ID>
<Description>"Unlimited Items"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(items,DarkSoulsIII.exe,8B F0 48 8B CB E8 ?? ?? ?? ?? 8D)
alloc(newmem,$1000,items)
label(code)
label(return)
newmem:
test ebp,ebp
jns code

xor
code:
mov
mov
jmp

rbp,rbp
esi,eax
rcx,rbx
return

items:
jmp newmem
return:
registersymbol(items)
[DISABLE]
items:
db 8B F0 48 8B CB
unregistersymbol(items)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+580807
"DarkSoulsIII.exe"+5807DF: 48 8B D0
"DarkSoulsIII.exe"+5807E2: 48 8D 4C 24 28
"DarkSoulsIII.exe"+5807E7: E8 44 76 48 00
A07E30
"DarkSoulsIII.exe"+5807EC: 90
"DarkSoulsIII.exe"+5807ED: 48 8D 4C 24 28
"DarkSoulsIII.exe"+5807F2: 80 BF 8C 00 00 00 00
008C],00
"DarkSoulsIII.exe"+5807F9: 74 07
0802
"DarkSoulsIII.exe"+5807FB: E8 B0 7B 48 00
A083B0
"DarkSoulsIII.exe"+580800: EB 05
80807
"DarkSoulsIII.exe"+580802: E8 89 79 48 00
A08190
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+580807: 8B F0
"DarkSoulsIII.exe"+580809: 48 8B CB
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+58080C: E8 1F C4 48 00
A0CC30
"DarkSoulsIII.exe"+580811: 8D 3C 28
"DarkSoulsIII.exe"+580814: 3B FE
"DarkSoulsIII.exe"+580816: 76 09
80821
"DarkSoulsIII.exe"+580818: 8B FE
"DarkSoulsIII.exe"+58081A: 41 C7 06 01 00 00 00
"DarkSoulsIII.exe"+580821: 8B D7
"DarkSoulsIII.exe"+580823: 48 8B CB
"DarkSoulsIII.exe"+580826: E8 55 C5 48 00
A0CD80
"DarkSoulsIII.exe"+58082B: 90
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>10465</ID>
<Description>"No Reload"</Description>
<LastState/>

- mov rdx,rax
- lea rcx,[rsp+28]
- call DarkSoulsIII.exe+
- nop
- lea rcx,[rsp+28]
- cmp byte ptr [rdi+0000
- je DarkSoulsIII.exe+58
- call DarkSoulsIII.exe+
- jmp DarkSoulsIII.exe+5
- call DarkSoulsIII.exe+
- mov esi,eax
- mov rcx,rbx
- call DarkSoulsIII.exe+
- lea edi,[rax+rbp]
- cmp edi,esi
- jna DarkSoulsIII.exe+5
-

mov edi,esi
mov [r14],00000001
mov edx,edi
mov rcx,rbx
call DarkSoulsIII.exe+

- nop

<VariableType>Auto Assembler Script</VariableType>


<AssemblerScript>[ENABLE]
aobscanmodule(hasvalue,DarkSoulsIII.exe,80 BC 1A DC 00 00 00 00)
alloc(newmem,$1000,hasvalue)
label(code)
label(return)
newmem:
code:
mov byte ptr [rdx+rbx+000000DC],01
cmp byte ptr [rdx+rbx+000000DC],00
jmp return
hasvalue:
jmp code
nop
nop
nop
return:
registersymbol(hasvalue)
[DISABLE]
hasvalue:
db 80 BC 1A DC 00 00 00 00
unregistersymbol(hasvalue)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+84D8E1
"DarkSoulsIII.exe"+84D8CB: CC
"DarkSoulsIII.exe"+84D8CC: CC
"DarkSoulsIII.exe"+84D8CD: CC
"DarkSoulsIII.exe"+84D8CE: CC
"DarkSoulsIII.exe"+84D8CF: CC
"DarkSoulsIII.exe"+84D8D0: 40 53
"DarkSoulsIII.exe"+84D8D2: 48 83 EC 20
"DarkSoulsIII.exe"+84D8D6: 48 8B D9
"DarkSoulsIII.exe"+84D8D9: E8 82 F6 FF FF
84CF60
"DarkSoulsIII.exe"+84D8DE: 48 63 D0
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+84D8E1: 80 BC 1A DC 00 00 00 00
000000DC],00
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+84D8E9: 0F 95 C0
"DarkSoulsIII.exe"+84D8EC: 48 83 C4 20
"DarkSoulsIII.exe"+84D8F0: 5B
"DarkSoulsIII.exe"+84D8F1: C3
"DarkSoulsIII.exe"+84D8F2: CC
"DarkSoulsIII.exe"+84D8F3: CC
"DarkSoulsIII.exe"+84D8F4: CC
"DarkSoulsIII.exe"+84D8F5: CC
"DarkSoulsIII.exe"+84D8F6: CC
"DarkSoulsIII.exe"+84D8F7: CC
}
</AssemblerScript>
</CheatEntry>

int 3
int 3
int 3
int 3
int 3
push rbx
sub rsp,20
mov rbx,rcx
call DarkSoulsIII.exe+

- movsxd rdx,eax
- cmp byte ptr [rdx+rbx+
-

setne al
add rsp,20
pop rbx
ret
int 3
int 3
int 3
int 3
int 3
int 3

<CheatEntry>
<ID>165</ID>
<Description>"Unlimited Weapon Durability"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(WeaponDurability,DarkSoulsIII.exe,14 C3 CC CC CC CC CC CC CC CC CC
CC CC CC 89 51 10 C3 CC CC CC CC CC CC CC CC CC CC CC CC 48 89 5C)
alloc(newmem,$1000,WeaponDurability)
label(code)
label(return)
newmem:
cmp [rcx+10],edx
jl code
ret
code:
mov [rcx+10],edx
ret
int 3
jmp return
WeaponDurability+0E:
jmp newmem
return:
registersymbol(WeaponDurability)
[DISABLE]
WeaponDurability+0E:
db 89 51 10 C3 CC
unregistersymbol(WeaponDurability)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+A0C220
"DarkSoulsIII.exe"+A0C216: CC
"DarkSoulsIII.exe"+A0C217: CC
"DarkSoulsIII.exe"+A0C218: CC
"DarkSoulsIII.exe"+A0C219: CC
"DarkSoulsIII.exe"+A0C21A: CC
"DarkSoulsIII.exe"+A0C21B: CC
"DarkSoulsIII.exe"+A0C21C: CC
"DarkSoulsIII.exe"+A0C21D: CC
"DarkSoulsIII.exe"+A0C21E: CC
"DarkSoulsIII.exe"+A0C21F: CC
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+A0C220: 89 51 10
"DarkSoulsIII.exe"+A0C223: C3
"DarkSoulsIII.exe"+A0C224: CC
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+A0C225: CC
"DarkSoulsIII.exe"+A0C226: CC
"DarkSoulsIII.exe"+A0C227: CC
"DarkSoulsIII.exe"+A0C228: CC
"DarkSoulsIII.exe"+A0C229: CC
"DarkSoulsIII.exe"+A0C22A: CC
"DarkSoulsIII.exe"+A0C22B: CC
"DarkSoulsIII.exe"+A0C22C: CC

int
int
int
int
int
int
int
int
int
int

3
3
3
3
3
3
3
3
3
3

- mov [rcx+10],edx
- ret
- int 3
-

int
int
int
int
int
int
int
int

3
3
3
3
3
3
3
3

"DarkSoulsIII.exe"+A0C22D: CC
- int 3
"DarkSoulsIII.exe"+A0C22E: CC
- int 3
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72388</ID>
<Description>"Unlimited Armor Durability"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(armor_dur,DarkSoulsIII.exe,14 C3 CC CC CC CC CC CC CC CC CC CC CC
CC 89 51 10 C3 CC CC CC CC CC CC CC CC CC CC CC CC 48 89 4C)
alloc(newmem,$1000,armor_dur)
label(code)
label(return)
newmem:
cmp [rcx+10],edx
jl code
ret
code:
mov [rcx+10],edx
ret
int 3
jmp return
armor_dur+0E:
jmp newmem
return:
registersymbol(armor_dur)
[DISABLE]
armor_dur+0E:
db 89 51 10 C3 CC
unregistersymbol(armor_dur)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+A0BF30
"DarkSoulsIII.exe"+A0BF26: CC
"DarkSoulsIII.exe"+A0BF27: CC
"DarkSoulsIII.exe"+A0BF28: CC
"DarkSoulsIII.exe"+A0BF29: CC
"DarkSoulsIII.exe"+A0BF2A: CC
"DarkSoulsIII.exe"+A0BF2B: CC
"DarkSoulsIII.exe"+A0BF2C: CC
"DarkSoulsIII.exe"+A0BF2D: CC
"DarkSoulsIII.exe"+A0BF2E: CC
"DarkSoulsIII.exe"+A0BF2F: CC
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+A0BF30: 89 51 10
"DarkSoulsIII.exe"+A0BF33: C3
"DarkSoulsIII.exe"+A0BF34: CC
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+A0BF35: CC
"DarkSoulsIII.exe"+A0BF36: CC
"DarkSoulsIII.exe"+A0BF37: CC

int
int
int
int
int
int
int
int
int
int

3
3
3
3
3
3
3
3
3
3

- mov [rcx+10],edx
- ret
- int 3
- int 3
- int 3
- int 3

"DarkSoulsIII.exe"+A0BF38: CC
- int
"DarkSoulsIII.exe"+A0BF39: CC
- int
"DarkSoulsIII.exe"+A0BF3A: CC
- int
"DarkSoulsIII.exe"+A0BF3B: CC
- int
"DarkSoulsIII.exe"+A0BF3C: CC
- int
"DarkSoulsIII.exe"+A0BF3D: CC
- int
"DarkSoulsIII.exe"+A0BF3E: CC
- int
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72832</ID>
<Description>"Movement Multiplier"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(constants,DarkSoulsIII.exe,48 8B 44 CE 08 48 89
alloc(newmem,$1000,constants)

3
3
3
3
3
3
3

47)

label(code)
label(return)
label(movement)
newmem:
cmp rcx,52
jne code
db 48 B8
movement:
dd (float)2
dd 0
jmp return
code:
mov rax,[rsi+rcx*8+08]
jmp return
constants:
jmp newmem
return:
registersymbol(constants)
registersymbol(movement)
[DISABLE]
constants:
db 48 8B 44 CE 08
unregistersymbol(constants)
unregistersymbol(movement)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+26A8191
"DarkSoulsIII.exe"+26A8168:
"DarkSoulsIII.exe"+26A816E:
9E68
"DarkSoulsIII.exe"+26A8173:
"DarkSoulsIII.exe"+26A8176:
9E68
"DarkSoulsIII.exe"+26A817B:
"DarkSoulsIII.exe"+26A817D:

44 0F 29 4C 24 70
E9 F5 1C 00 00

- movaps [rsp+70],xmm9
- jmp DarkSoulsIII.exe+26A

44 89 17
E9 ED 1C 00 00

- mov [rdi],r10d
- jmp DarkSoulsIII.exe+26A

8B CB
48 C1 E9 08

- mov ecx,ebx
- shr rcx,08

"DarkSoulsIII.exe"+26A8181: 81 E1 FF FF 01 00
- and ecx,0001FFFF
"DarkSoulsIII.exe"+26A8187: 48 03 C9
- add rcx,rcx
"DarkSoulsIII.exe"+26A818A: 48 8B 04 CE
- mov rax,[rsi+rcx*8]
"DarkSoulsIII.exe"+26A818E: 48 89 07
- mov [rdi],rax
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+26A8191: 48 8B 44 CE 08
- mov rax,[rsi+rcx*8+08]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+26A8196: 48 89 47 08
- mov [rdi+08],rax
"DarkSoulsIII.exe"+26A819A: E9 47 DC FF FF
- jmp DarkSoulsIII.exe+26A
5DE6
"DarkSoulsIII.exe"+26A819F: 8B C3
- mov eax,ebx
"DarkSoulsIII.exe"+26A81A1: C1 E8 11
- shr eax,11
"DarkSoulsIII.exe"+26A81A4: 25 FF 01 00 00
- and eax,000001FF
"DarkSoulsIII.exe"+26A81A9: 3D 00 01 00 00
- cmp eax,00000100
"DarkSoulsIII.exe"+26A81AE: 7C 0D
- jl DarkSoulsIII.exe+26A8
1BD
"DarkSoulsIII.exe"+26A81B0: 44 0F B6 C0
- movzx r8d,al
"DarkSoulsIII.exe"+26A81B4: 49 C1 E0 04
- shl r8,04
"DarkSoulsIII.exe"+26A81B8: 4C 03 C6
- add r8,rsi
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72833</ID>
<Description>"Movement"</Description>
<VariableType>Float</VariableType>
<Address>movement</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>2126</ID>
<Description>"Access All Bonfires"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(BonFireAOB,DarkSoulsIII.exe,8B 13 48 83 C4 20 5B E9 D9 E8)
alloc(newmem,$1000,BonFireAOB)
label(code)
label(return)
newmem:
code:
mov edx,#14000000
add rsp,20
jmp return
BonFireAOB:
jmp code
nop
return:
registersymbol(BonFireAOB)
[DISABLE]
BonFireAOB:
db 8B 13 48 83 C4 20
unregistersymbol(BonFireAOB)
dealloc(newmem)

</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>48</ID>
<Description>"Character Window Pointers"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(attributes,DarkSoulsIII.exe,48 8B 48 10 48 8B B1 * * * * 48 8B CD)
alloc(newmem,$1000,attributes)
label(code)
label(return)
label(attributes_ptr)
label(attributes_bkp)
newmem:
code:
mov rcx,[rax+10]
mov rsi,attributes_ptr
mov [rsi],rcx
attributes_bkp:
readmem(attributes+4,7)
jmp return
attributes_ptr:
dq 0
attributes:
jmp code
nop
nop
nop
nop
nop
nop
return:
registersymbol(attributes)
registersymbol(attributes_ptr)
registersymbol(attributes_bkp)
[DISABLE]
attributes:
db 48 8B 48 10
readmem(attributes_bkp,7)
unregistersymbol(attributes)
unregistersymbol(attributes_ptr)
unregistersymbol(attributes_bkp)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+BC3E63
"DarkSoulsIII.exe"+BC3E3B:
"DarkSoulsIII.exe"+BC3E3D:
"DarkSoulsIII.exe"+BC3E3F:
"DarkSoulsIII.exe"+BC3E42:
"DarkSoulsIII.exe"+BC3E48:

EB
B0
40
0F
40

02
01
84 FF
84 68 01 00 00
84 F6

jmp DarkSoulsIII.exe+BC3E3F
mov al,01
test dil,dil
je DarkSoulsIII.exe+BC3FB0
test sil,sil

"DarkSoulsIII.exe"+BC3E4B: 0F 84 5F 01 00 00
- je DarkSoulsIII.exe+BC3FB0
"DarkSoulsIII.exe"+BC3E51: 40 32 FF
- xor dil,dil
"DarkSoulsIII.exe"+BC3E54: 84 C0
- test al,al
"DarkSoulsIII.exe"+BC3E56: 0F 84 03 01 00 00
- je DarkSoulsIII.exe+BC3F5F
"DarkSoulsIII.exe"+BC3E5C: 48 8B 05 95 6F AD 03 - mov rax,[DarkSoulsIII.exe+46
9ADF8]
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+BC3E63: 48 8B 48 10
- mov rcx,[rax+10]
"DarkSoulsIII.exe"+BC3E67: 48 8B B1 70 04 00 00 - mov rsi,[rcx+00000470]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+BC3E6E: 48 8B CD
- mov rcx,rbp
"DarkSoulsIII.exe"+BC3E71: E8 EA 24 E7 FF
- call DarkSoulsIII.exe+A36360
"DarkSoulsIII.exe"+BC3E76: 84 C0
- test al,al
"DarkSoulsIII.exe"+BC3E78: 74 20
- je DarkSoulsIII.exe+BC3E9A
"DarkSoulsIII.exe"+BC3E7A: 48 85 F6
- test rsi,rsi
"DarkSoulsIII.exe"+BC3E7D: 74 14
- je DarkSoulsIII.exe+BC3E93
"DarkSoulsIII.exe"+BC3E7F: 48 8B CE
- mov rcx,rsi
"DarkSoulsIII.exe"+BC3E82: E8 89 14 9C FF
- call DarkSoulsIII.exe+585310
"DarkSoulsIII.exe"+BC3E87: 84 C0
- test al,al
"DarkSoulsIII.exe"+BC3E89: 74 08
- je DarkSoulsIII.exe+BC3E93
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>49</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>attributes_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>50</ID>
<Description>"Vigor"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+44</Address>
</CheatEntry>
<CheatEntry>
<ID>51</ID>
<Description>"Attunement"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+48</Address>
</CheatEntry>
<CheatEntry>
<ID>52</ID>
<Description>"Endurance"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+4c</Address>
</CheatEntry>
<CheatEntry>
<ID>58</ID>
<Description>"Vitality"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+6c</Address>
</CheatEntry>

<CheatEntry>
<ID>53</ID>
<Description>"Strength"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+50</Address>
</CheatEntry>
<CheatEntry>
<ID>54</ID>
<Description>"Dexterity"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+54</Address>
</CheatEntry>
<CheatEntry>
<ID>55</ID>
<Description>"Intelligence"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+58</Address>
</CheatEntry>
<CheatEntry>
<ID>56</ID>
<Description>"Faith"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+5c</Address>
</CheatEntry>
<CheatEntry>
<ID>57</ID>
<Description>"Luck"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+60</Address>
</CheatEntry>
<CheatEntry>
<ID>60</ID>
<Description>"Level"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+70</Address>
</CheatEntry>
<CheatEntry>
<ID>61</ID>
<Description>"Current Souls"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+74</Address>
</CheatEntry>
<CheatEntry>
<ID>63</ID>
<Description>"Souls Earned"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+74</Address>
</CheatEntry>
<CheatEntry>
<ID>73068</ID>
<Description>"Player Name"</Description>
<VariableType>String</VariableType>
<Length>16</Length>
<Unicode>1</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>+88</Address>
</CheatEntry>
<CheatEntry>
<ID>73069</ID>
<Description>"Player Gender"</Description>

<VariableType>Byte</VariableType>
<Address>+aa</Address>
</CheatEntry>
<CheatEntry>
<ID>10450</ID>
<Description>"???"</Description>
<VariableType>Float</VariableType>
<Address>+854</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>73073</ID>
<Description>"Last Highlighted Scripts"</Description>
<Options moHideChildren="1"/>
<LastState Value="" RealAddress="00000000"/>
<GroupHeader>1</GroupHeader>
<CheatEntries>
<CheatEntry>
<ID>72379</ID>
<Description>"Last Pickup Item Highlighted"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(pickup,DarkSoulsIII.exe,8B 4B 20 41 89 0E)
alloc(newmem,$1000,pickup)
label(code)
label(return)
label(pickup_ptr)
newmem:
code:
mov
mov
mov
mov
jmp

rcx,pickup_ptr
[rcx],rbx
ecx,[rbx+20]
[r14],ecx
return

pickup_ptr:
dq 0
pickup:
jmp code
nop
return:
registersymbol(pickup)
registersymbol(pickup_ptr)
[DISABLE]
pickup:
db 8B 4B 20 41 89 0E
unregistersymbol(pickup)
unregistersymbol(pickup_ptr)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+7A9C08
"DarkSoulsIII.exe"+7A9BE5: F3 0F 11 44 24 20
"DarkSoulsIII.exe"+7A9BEB: 45 8B CC
"DarkSoulsIII.exe"+7A9BEE: 4C 8D 45 00
"DarkSoulsIII.exe"+7A9BF2: 48 8D 55 C0
"DarkSoulsIII.exe"+7A9BF6: E8 05 89 4B 00
C62500
"DarkSoulsIII.exe"+7A9BFB: 90
"DarkSoulsIII.exe"+7A9BFC: 48 89 75 C0
"DarkSoulsIII.exe"+7A9C00: 48 89 75 00
"DarkSoulsIII.exe"+7A9C04: 84 C0
"DarkSoulsIII.exe"+7A9C06: 74 06
9C0E
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+7A9C08: 8B 4B 20
"DarkSoulsIII.exe"+7A9C0B: 41 89 0E
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+7A9C0E: 48 8B 1B
"DarkSoulsIII.exe"+7A9C11: 48 85 DB
"DarkSoulsIII.exe"+7A9C14: 0F 85 A6 FE FF FF
A9AC0
"DarkSoulsIII.exe"+7A9C1A: E9 DA 01 00 00
A9DF9
"DarkSoulsIII.exe"+7A9C1F: 48 8B 46 18
"DarkSoulsIII.exe"+7A9C23: 48 89 44 24 50
"DarkSoulsIII.exe"+7A9C28: 48 8B 46 28
"DarkSoulsIII.exe"+7A9C2C: 48 89 44 24 58
"DarkSoulsIII.exe"+7A9C31: 48 8B 46 38
"DarkSoulsIII.exe"+7A9C35: 48 89 44 24 60
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72380</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>pickup_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>72368</ID>
<Description>"Item ID"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+58</Address>
</CheatEntry>
<CheatEntry>
<ID>72375</ID>
<Description>"Quantity"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+5c</Address>
</CheatEntry>

movss [rsp+20],xmm0
mov r9d,r12d
lea r8,[rbp+00]
lea rdx,[rbp-40]
call DarkSoulsIII.exe+
nop
mov [rbp-40],rsi
mov [rbp+00],rsi
test al,al
je DarkSoulsIII.exe+7A
mov ecx,[rbx+20]
mov [r14],ecx
mov rbx,[rbx]
test rbx,rbx
jne DarkSoulsIII.exe+7
jmp DarkSoulsIII.exe+7
mov
mov
mov
mov
mov
mov

rax,[rsi+18]
[rsp+50],rax
rax,[rsi+28]
[rsp+58],rax
rax,[rsi+38]
[rsp+60],rax

<CheatEntry>
<ID>72381</ID>
<Description>"Durability"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+60</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72</ID>
<Description>"Last Stackable Item Highlighted"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(last_item,DarkSoulsIII.exe,99 ?? ?? ?? ?? 48 8B CB E8 ?? ?? ?? ??
85 C0 78 ?? 8B D0 48 8B CB)
alloc(newmem,$1000,last_item)
label(code)
label(return)
label(last_item_ptr)
newmem:
mov rdx,last_item_ptr
mov [rdx],rcx
code:
mov edx,eax
mov rcx,rbx
jmp return
last_item_ptr:
dq 0
last_item+11:
jmp newmem
return:
registersymbol(last_item)
registersymbol(last_item_ptr)
[DISABLE]
last_item+11:
db 8B D0 48 8B CB
unregistersymbol(last_item)
unregistersymbol(last_item_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+5786F9
"DarkSoulsIII.exe"+5786DD:
"DarkSoulsIII.exe"+5786DE:
"DarkSoulsIII.exe"+5786DF:
"DarkSoulsIII.exe"+5786E0:
"DarkSoulsIII.exe"+5786E2:
"DarkSoulsIII.exe"+5786E6:
"DarkSoulsIII.exe"+5786ED:
"DarkSoulsIII.exe"+5786F0:

CC
CC
CC
40
48
48
48
E8

53
83 EC 20
8D 99 A8 01 00 00 8B CB
AB 89 00 00
-

int 3
int 3
int 3
push rbx
sub rsp,20
lea rbx,[rcx+000001A8]
mov rcx,rbx
call DarkSoulsIII.exe+5810A0

"DarkSoulsIII.exe"+5786F5: 85 C0
- test eax,eax
"DarkSoulsIII.exe"+5786F7: 78 0F
- js DarkSoulsIII.exe+578708
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+5786F9: 8B D0
- mov edx,eax
"DarkSoulsIII.exe"+5786FB: 48 8B CB
- mov rcx,rbx
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+5786FE: 48 83 C4 20
- add rsp,20
"DarkSoulsIII.exe"+578702: 5B
- pop rbx
"DarkSoulsIII.exe"+578703: E9 38 8C 00 00
- jmp DarkSoulsIII.exe+581340
"DarkSoulsIII.exe"+578708: 33 C0
- xor eax,eax
"DarkSoulsIII.exe"+57870A: 48 83 C4 20
- add rsp,20
"DarkSoulsIII.exe"+57870E: 5B
- pop rbx
"DarkSoulsIII.exe"+57870F: C3
- ret
"DarkSoulsIII.exe"+578710: 0F 57 C0
- xorps xmm0,xmm0
"DarkSoulsIII.exe"+578713: C3
- ret
"DarkSoulsIII.exe"+578714: CC
- int 3
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>73</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>last_item_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>74</ID>
<Description>"Quantity"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+8</Address>
</CheatEntry>
<CheatEntry>
<ID>81</ID>
<Description>"Item ID"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+4</Address>
</CheatEntry>
<CheatEntry>
<ID>72401</ID>
<Description>"Item ID"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+4</Address>
</CheatEntry>
<CheatEntry>
<ID>80</ID>
<Description>"???"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+0</Address>
</CheatEntry>
<CheatEntry>
<ID>82</ID>

<Description>"???"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+c</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>10426</ID>
<Description>"Last Weapon Highlighted"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(weapon,DarkSoulsIII.exe,0F B7 80 BE 00 00 00 48 8B 5C 24 60 48 83
C4 50 5F C3 8B)
alloc(newmem,$1000,weapon)
label(code)
label(return)
label(weapon_ptr)
newmem:
code:
mov rbx,weapon_ptr
mov [rbx],rax
movzx eax,word ptr [rax+000000BE]
jmp return
weapon_ptr:
dq 0
weapon:
jmp code
nop
nop
return:
registersymbol(weapon)
registersymbol(weapon_ptr)
[DISABLE]
weapon:
db 0F B7 80 BE 00 00 00
unregistersymbol(weapon)
unregistersymbol(weapon_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+6ADC18
"DarkSoulsIII.exe"+6ADBEC:
"DarkSoulsIII.exe"+6ADBF4:
"DarkSoulsIII.exe"+6ADBF9:
550
"DarkSoulsIII.exe"+6ADBFE:
"DarkSoulsIII.exe"+6ADC03:
"DarkSoulsIII.exe"+6ADC05:

C7 44 24 38 FF FF FF FF - mov [rsp+38],FFFFFFFF
48 89 7C 24 40
- mov [rsp+40],rdi
E8 52 89 73 00
- call DarkSoulsIII.exe+DE6
48 8D 4C 24 20
8B D3
89 7C 24 48

- lea rcx,[rsp+20]
- mov edx,ebx
- mov [rsp+48],edi

"DarkSoulsIII.exe"+6ADC09: E8 82 61 73 00
- call DarkSoulsIII.exe+DE3
D90
"DarkSoulsIII.exe"+6ADC0E: 48 8B 44 24 28
- mov rax,[rsp+28]
"DarkSoulsIII.exe"+6ADC13: 48 85 C0
- test rax,rax
"DarkSoulsIII.exe"+6ADC16: 74 12
- je DarkSoulsIII.exe+6ADC2
A
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+6ADC18: 0F B7 80 BE 00 00 00
- movzx eax,word ptr [rax+0
00000BE]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+6ADC1F: 48 8B 5C 24 60
- mov rbx,[rsp+60]
"DarkSoulsIII.exe"+6ADC24: 48 83 C4 50
- add rsp,50
"DarkSoulsIII.exe"+6ADC28: 5F
- pop rdi
"DarkSoulsIII.exe"+6ADC29: C3
- ret
"DarkSoulsIII.exe"+6ADC2A: 8B C7
- mov eax,edi
"DarkSoulsIII.exe"+6ADC2C: 48 8B 5C 24 60
- mov rbx,[rsp+60]
"DarkSoulsIII.exe"+6ADC31: 48 83 C4 50
- add rsp,50
"DarkSoulsIII.exe"+6ADC35: 5F
- pop rdi
"DarkSoulsIII.exe"+6ADC36: C3
- ret
"DarkSoulsIII.exe"+6ADC37: CC
- int 3
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>10427</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>weapon_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>10429</ID>
<Description>"Weight"</Description>
<VariableType>Float</VariableType>
<Address>+c</Address>
</CheatEntry>
<CheatEntry>
<ID>10433</ID>
<Description>"Strength Bonus"</Description>
<VariableType>Float</VariableType>
<Address>+20</Address>
</CheatEntry>
<CheatEntry>
<ID>10447</ID>
<Description>"Dexterity Bonus"</Description>
<VariableType>Float</VariableType>
<Address>+24</Address>
</CheatEntry>
<CheatEntry>
<ID>10448</ID>
<Description>"Intelligence Bonus"</Description>
<VariableType>Float</VariableType>
<Address>+28</Address>
</CheatEntry>

<CheatEntry>
<ID>10449</ID>
<Description>"Faith Bonus"</Description>
<VariableType>Float</VariableType>
<Address>+2c</Address>
</CheatEntry>
<CheatEntry>
<ID>10434</ID>
<Description>"Physical Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+30</Address>
</CheatEntry>
<CheatEntry>
<ID>10430</ID>
<Description>"Magic Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+34</Address>
</CheatEntry>
<CheatEntry>
<ID>10431</ID>
<Description>"Fire Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+38</Address>
</CheatEntry>
<CheatEntry>
<ID>10432</ID>
<Description>"Lightning Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+3c</Address>
</CheatEntry>
<CheatEntry>
<ID>10428</ID>
<Description>"Maximum Durability"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+be</Address>
</CheatEntry>
<CheatEntry>
<ID>10436</ID>
<Description>"Stability"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+d4</Address>
</CheatEntry>
<CheatEntry>
<ID>10438</ID>
<Description>"Physical Power"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c4</Address>
</CheatEntry>
<CheatEntry>
<ID>10441</ID>
<Description>"Magic Power"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c6</Address>
</CheatEntry>
<CheatEntry>
<ID>10442</ID>
<Description>"Fire Power"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c8</Address>
</CheatEntry>

<CheatEntry>
<ID>10443</ID>
<Description>"Lightning Power"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+ca</Address>
</CheatEntry>
<CheatEntry>
<ID>10440</ID>
<Description>"Strength Requirement"</Description>
<VariableType>Byte</VariableType>
<Address>+ee</Address>
</CheatEntry>
<CheatEntry>
<ID>10444</ID>
<Description>"Dexterity Requirement"</Description>
<VariableType>Byte</VariableType>
<Address>+ef</Address>
</CheatEntry>
<CheatEntry>
<ID>10439</ID>
<Description>"Intelligence Requirement"</Description>
<VariableType>Byte</VariableType>
<Address>+f0</Address>
</CheatEntry>
<CheatEntry>
<ID>10445</ID>
<Description>"Faith Requirement"</Description>
<VariableType>Byte</VariableType>
<Address>+f1</Address>
</CheatEntry>
<CheatEntry>
<ID>10435</ID>
<Description>"???"</Description>
<VariableType>Float</VariableType>
<Address>+9c</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72835</ID>
<Description>"Last Armor Highlighted"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(armor,DarkSoulsIII.exe,F3 0F 10 70 20 EB ?? 8B)
alloc(newmem,$1000,armor)
label(code)
label(return)
label(armor_ptr)
newmem:
code:
mov r11,armor_ptr
mov [r11],rax
movss xmm6,[rax+20]

jmp return
armor_ptr:
dq 0
armor:
jmp code
return:
registersymbol(armor)
registersymbol(armor_ptr)
[DISABLE]
armor:
db F3 0F 10 70 20
unregistersymbol(armor)
unregistersymbol(armor_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+6AE131
"DarkSoulsIII.exe"+6AE10A: C7 45 D8 FF FF FF FF - mov [rbp-28],FFFFFFFF
"DarkSoulsIII.exe"+6AE111: 48 89 7D E0
- mov [rbp-20],rdi
"DarkSoulsIII.exe"+6AE115: E8 A6 17 73 00
- call DarkSoulsIII.exe+DDF8C0
"DarkSoulsIII.exe"+6AE11A: 48 8D 4D C0
- lea rcx,[rbp-40]
"DarkSoulsIII.exe"+6AE11E: 8B D3
- mov edx,ebx
"DarkSoulsIII.exe"+6AE120: 89 7D E8
- mov [rbp-18],edi
"DarkSoulsIII.exe"+6AE123: E8 F8 F3 72 00
- call DarkSoulsIII.exe+DDD520
"DarkSoulsIII.exe"+6AE128: 48 8B 45 C8
- mov rax,[rbp-38]
"DarkSoulsIII.exe"+6AE12C: 48 85 C0
- test rax,rax
"DarkSoulsIII.exe"+6AE12F: 74 51
- je DarkSoulsIII.exe+6AE182
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+6AE131: F3 0F 10 70 20
- movss xmm6,[rax+20]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+6AE136: EB 4A
- jmp DarkSoulsIII.exe+6AE182
"DarkSoulsIII.exe"+6AE138: 8B 59 0C
- mov ebx,[rcx+0C]
"DarkSoulsIII.exe"+6AE13B: 33 FF
- xor edi,edi
"DarkSoulsIII.exe"+6AE13D: 48 8D 4D D8
- lea rcx,[rbp-28]
"DarkSoulsIII.exe"+6AE141: 83 CA FF
- or edx,-01
"DarkSoulsIII.exe"+6AE144: C7 45 C0 FF FF FF FF - mov [rbp-40],FFFFFFFF
"DarkSoulsIII.exe"+6AE14B: 48 89 7D C8
- mov [rbp-38],rdi
"DarkSoulsIII.exe"+6AE14F: C7 45 D0 FF FF FF FF - mov [rbp-30],FFFFFFFF
"DarkSoulsIII.exe"+6AE156: C7 45 D8 FF FF FF FF - mov [rbp-28],FFFFFFFF
"DarkSoulsIII.exe"+6AE15D: 48 89 7D E0
- mov [rbp-20],rdi
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72836</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>armor_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>

<CheatEntry>
<ID>72837</ID>
<Description>"Weight"</Description>
<VariableType>Float</VariableType>
<Address>+20</Address>
</CheatEntry>
<CheatEntry>
<ID>10491</ID>
<Description>"Maximum Durability"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+ac</Address>
</CheatEntry>
<CheatEntry>
<ID>10476</ID>
<Description>"???"</Description>
<VariableType>Float</VariableType>
<Address>+34</Address>
</CheatEntry>
<CheatEntry>
<ID>10487</ID>
<Description>"Bleed Resistance"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c4</Address>
</CheatEntry>
<CheatEntry>
<ID>10485</ID>
<Description>"Poison Resistance"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c0</Address>
</CheatEntry>
<CheatEntry>
<ID>10490</ID>
<Description>"Frost Resistance"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+12c</Address>
</CheatEntry>
<CheatEntry>
<ID>10488</ID>
<Description>"Curse Resistance"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c6</Address>
</CheatEntry>
<CheatEntry>
<ID>10489</ID>
<Description>"Bonus Resistance"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c8</Address>
</CheatEntry>
<CheatEntry>
<ID>10486</ID>
<Description>"??? Resistance"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c2</Address>
</CheatEntry>
<CheatEntry>
<ID>10477</ID>
<Description>"Physical Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+e0</Address>
</CheatEntry>

<CheatEntry>
<ID>10479</ID>
<Description>"Strike Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+e8</Address>
</CheatEntry>
<CheatEntry>
<ID>10478</ID>
<Description>"Slash Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+e4</Address>
</CheatEntry>
<CheatEntry>
<ID>10480</ID>
<Description>"Thrust Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+ec</Address>
</CheatEntry>
<CheatEntry>
<ID>10481</ID>
<Description>"Magic Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+f0</Address>
</CheatEntry>
<CheatEntry>
<ID>10482</ID>
<Description>"Fire Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+f4</Address>
</CheatEntry>
<CheatEntry>
<ID>10483</ID>
<Description>"Lightning Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+f8</Address>
</CheatEntry>
<CheatEntry>
<ID>10484</ID>
<Description>"Dark Absorption"</Description>
<VariableType>Float</VariableType>
<Address>+118</Address>
</CheatEntry>
<CheatEntry>
<ID>72400</ID>
<Description>"Poise"</Description>
<VariableType>Float</VariableType>
<Address>+110</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>73116</ID>
<Description>"Last Ring Highlighted"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(last_ring,DarkSoulsIII.exe,F3 0F 10 70 08 E9 * * * * 8B)

alloc(newmem,$1000,last_ring)
label(code)
label(return)
label(last_ring_ptr)
newmem:
code:
mov r11,last_ring_ptr
mov [r11],rax
movss xmm6,[rax+08]
jmp return
last_ring_ptr:
dq 0
last_ring:
jmp code
return:
registersymbol(last_ring)
registersymbol(last_ring_ptr)
[DISABLE]
last_ring:
db F3 0F 10 70 08
unregistersymbol(last_ring)
unregistersymbol(last_ring_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+6AE717
"DarkSoulsIII.exe"+6AE6EE: 8B 51 0C
- mov edx,[rcx+0C]
"DarkSoulsIII.exe"+6AE6F1: 33 FF
- xor edi,edi
"DarkSoulsIII.exe"+6AE6F3: 48 8D 4D B0
- lea rcx,[rbp-50]
"DarkSoulsIII.exe"+6AE6F7: C7 45 B0 FF FF FF FF - mov [rbp-50],FFFFFFFF
"DarkSoulsIII.exe"+6AE6FE: 89 7D B4
- mov [rbp-4C],edi
"DarkSoulsIII.exe"+6AE701: 48 89 7D B8
- mov [rbp-48],rdi
"DarkSoulsIII.exe"+6AE705: E8 16 4E 72 00
- call DarkSoulsIII.exe+DD3520
"DarkSoulsIII.exe"+6AE70A: 48 8B 45 B8
- mov rax,[rbp-48]
"DarkSoulsIII.exe"+6AE70E: 48 85 C0
- test rax,rax
"DarkSoulsIII.exe"+6AE711: 0F 84 BB 00 00 00
- je DarkSoulsIII.exe+6AE7D2
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+6AE717: F3 0F 10 70 08
- movss xmm6,[rax+08]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+6AE71C: E9 B1 00 00 00
- jmp DarkSoulsIII.exe+6AE7D2
"DarkSoulsIII.exe"+6AE721: 8B 51 0C
- mov edx,[rcx+0C]
"DarkSoulsIII.exe"+6AE724: 33 FF
- xor edi,edi
"DarkSoulsIII.exe"+6AE726: 48 8D 4D B0
- lea rcx,[rbp-50]
"DarkSoulsIII.exe"+6AE72A: C7 45 B0 FF FF FF FF - mov [rbp-50],FFFFFFFF
"DarkSoulsIII.exe"+6AE731: 48 89 7D B8
- mov [rbp-48],rdi
"DarkSoulsIII.exe"+6AE735: E8 66 97 71 00
- call DarkSoulsIII.exe+DC7EA0
"DarkSoulsIII.exe"+6AE73A: EB CE
- jmp DarkSoulsIII.exe+6AE70A
"DarkSoulsIII.exe"+6AE73C: 8B 59 0C
- mov ebx,[rcx+0C]
"DarkSoulsIII.exe"+6AE73F: 33 FF
- xor edi,edi
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>

<ID>73117</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>last_ring_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>73118</ID>
<Description>"Weight"</Description>
<VariableType>Float</VariableType>
<Address>+8</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72868</ID>
<Description>"Last Spell Highlighted"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(last_spell,DarkSoulsIII.exe,44 0F B6 78 1D)
alloc(newmem,$1000,last_spell)
label(code)
label(return)
label(last_spell_ptr)
newmem:
code:
mov r15,last_spell_ptr
mov [r15],rax
movzx r15d,byte ptr [rax+1D]
jmp return
last_spell_ptr:
dq 0
last_spell:
jmp code
return:
registersymbol(last_spell)
registersymbol(last_spell_ptr)
[DISABLE]
last_spell:
db 44 0F B6 78 1D
unregistersymbol(last_spell)
unregistersymbol(last_spell_ptr)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+BD58B8
"DarkSoulsIII.exe"+BD5893: 75 0F
- jne DarkSoulsIII.exe+BD58
A4
"DarkSoulsIII.exe"+BD5895: 8B D6
- mov edx,esi
"DarkSoulsIII.exe"+BD5897: 48 8B CF
- mov rcx,rdi
"DarkSoulsIII.exe"+BD589A: E8 41 0A 00 00
- call DarkSoulsIII.exe+BD6
2E0
"DarkSoulsIII.exe"+BD589F: E9 13 01 00 00
- jmp DarkSoulsIII.exe+BD59
B7
"DarkSoulsIII.exe"+BD58A4: 81 FE F6 01 00 00
- cmp esi,000001F6
"DarkSoulsIII.exe"+BD58AA: 75 27
- jne DarkSoulsIII.exe+BD58
D3
"DarkSoulsIII.exe"+BD58AC: 48 8B 85 A8 02 00 00
- mov rax,[rbp+000002A8]
"DarkSoulsIII.exe"+BD58B3: 48 85 C0
- test rax,rax
"DarkSoulsIII.exe"+BD58B6: 74 05
- je DarkSoulsIII.exe+BD58B
D
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+BD58B8: 44 0F B6 78 1D
- movzx r15d,byte ptr [rax+
1D]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+BD58BD: 45 0F B6 C7
- movzx r8d,r15l
"DarkSoulsIII.exe"+BD58C1: BA F6 01 00 00
- mov edx,000001F6
"DarkSoulsIII.exe"+BD58C6: 48 8B CF
- mov rcx,rdi
"DarkSoulsIII.exe"+BD58C9: E8 22 6A 00 00
- call DarkSoulsIII.exe+BDC
2F0
"DarkSoulsIII.exe"+BD58CE: E9 E4 00 00 00
- jmp DarkSoulsIII.exe+BD59
B7
"DarkSoulsIII.exe"+BD58D3: 81 FE F7 01 00 00
- cmp esi,000001F7
"DarkSoulsIII.exe"+BD58D9: 75 3C
- jne DarkSoulsIII.exe+BD59
17
"DarkSoulsIII.exe"+BD58DB: 48 8B 85 A8 02 00 00
- mov rax,[rbp+000002A8]
"DarkSoulsIII.exe"+BD58E2: 48 85 C0
- test rax,rax
"DarkSoulsIII.exe"+BD58E5: 74 1B
- je DarkSoulsIII.exe+BD590
2
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72846</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>last_spell_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>72847</ID>
<Description>"Focus Point Cost"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c</Address>
</CheatEntry>
<CheatEntry>
<ID>72848</ID>

<Description>"Stamina Cost"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+e</Address>
</CheatEntry>
<CheatEntry>
<ID>72853</ID>
<Description>"Intelligence Requirement"</Description>
<VariableType>Byte</VariableType>
<Address>+1e</Address>
</CheatEntry>
<CheatEntry>
<ID>72854</ID>
<Description>"Faith Requirement"</Description>
<VariableType>Byte</VariableType>
<Address>+1f</Address>
</CheatEntry>
<CheatEntry>
<ID>72855</ID>
<Description>"Casting Animation (29/30 are fast)"</Description
>
<VariableType>Byte</VariableType>
<Address>+25</Address>
</CheatEntry>
<CheatEntry>
<ID>72849</ID>
<Description>"Spell Category?"</Description>
<VariableType>Byte</VariableType>
<Address>+23</Address>
</CheatEntry>
<CheatEntry>
<ID>72850</ID>
<Description>"Projectile Effect ID"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+64</Address>
</CheatEntry>
<CheatEntry>
<ID>72862</ID>
<Description>"Precast Self Effect ID"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+30</Address>
</CheatEntry>
<CheatEntry>
<ID>72863</ID>
<Description>"Postcast Self Effect ID"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+34</Address>
</CheatEntry>
<CheatEntry>
<ID>72864</ID>
<Description>"End of Spell Data"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+6c</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>10456</ID>
<Description>"Last Projectile Highlighted"</Description>

<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(projectile,DarkSoulsIII.exe,59 FF FF FF 0F B6 81 31 02 00 00)
alloc(newmem,$1000,projectile)
label(code)
label(return)
label(projectile_ptr)
newmem:
code:
mov rax,projectile_ptr
mov [rax],rcx
movzx eax,byte ptr [rcx+00000231]
jmp return
projectile_ptr:
dq 0
projectile+04:
jmp code
nop
nop
return:
registersymbol(projectile)
registersymbol(projectile_ptr)
[DISABLE]
projectile+04:
db 0F B6 81 31 02 00 00
unregistersymbol(projectile)
unregistersymbol(projectile_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+630648
"DarkSoulsIII.exe"+63061E: 89 5D F8
"DarkSoulsIII.exe"+630621: E8 6A 37 7B 00
"DarkSoulsIII.exe"+630626: 48 8B 4D D8
"DarkSoulsIII.exe"+63062A: 48 85 C9
"DarkSoulsIII.exe"+63062D: 0F 84 6E FF FF
"DarkSoulsIII.exe"+630633: 0F B6 91 E2 00
00E2]
"DarkSoulsIII.exe"+63063A: 80 FA 0D
"DarkSoulsIII.exe"+63063D: 74 09
"DarkSoulsIII.exe"+63063F: 80 FA 0E
"DarkSoulsIII.exe"+630642: 0F 85 59 FF FF
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+630648: 0F B6 81 31 02
0231]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+63064F: 48 8B 5C 24 70
"DarkSoulsIII.exe"+630654: 48 8B 7C 24 78
"DarkSoulsIII.exe"+630659: 48 83 C4 60
"DarkSoulsIII.exe"+63065D: 5D
"DarkSoulsIII.exe"+63065E: C3

FF
00 00 -

FF

mov [rbp-08],ebx
call DarkSoulsIII.exe+DE3D90
mov rcx,[rbp-28]
test rcx,rcx
je DarkSoulsIII.exe+6305A1
movzx edx,byte ptr [rcx+0000
cmp dl,0D
je DarkSoulsIII.exe+630648
cmp dl,0E
jne DarkSoulsIII.exe+6305A1

00 00 - movzx eax,byte ptr [rcx+0000


-

mov
mov
add
pop
ret

rbx,[rsp+70]
rdi,[rsp+78]
rsp,60
rbp

"DarkSoulsIII.exe"+63065F: CC
- int 3
"DarkSoulsIII.exe"+630660: 48 89 5C 24 08
- mov [rsp+08],rbx
"DarkSoulsIII.exe"+630665: 48 89 7C 24 10
- mov [rsp+10],rdi
"DarkSoulsIII.exe"+63066A: 55
- push rbp
"DarkSoulsIII.exe"+63066B: 48 8D 6C 24 A9
- lea rbp,[rsp-57]
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>10457</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>projectile_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>10458</ID>
<Description>"Stack Size"</Description>
<VariableType>Byte</VariableType>
<Address>+231</Address>
</CheatEntry>
<CheatEntry>
<ID>10460</ID>
<Description>"Physical Power"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+c4</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72455</ID>
<Description>"Selected Equipment Models"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(models,DarkSoulsIII.exe,48 8D 8E B0 02 00 00 BA)
alloc(newmem,$1000,models)
label(code)
label(return)
label(models_ptr)
newmem:
code:
lea
mov
mov
jmp

rcx,[rsi+000002B0]
rdx,models_ptr
[rdx],rcx
return

models_ptr:
dq 0
models:
jmp code
nop
nop
return:
registersymbol(models)
registersymbol(models_ptr)
[DISABLE]
models:
db 48 8D 8E B0 02 00 00
unregistersymbol(models)
unregistersymbol(models_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+BC56BD
"DarkSoulsIII.exe"+BC568A: 0F 8E B5 01 00 00
45
"DarkSoulsIII.exe"+BC5690: 48 8D 4D E7
"DarkSoulsIII.exe"+BC5694: 8B D7
"DarkSoulsIII.exe"+BC5696: 4C 89 A4 24 C0 00 00 00
"DarkSoulsIII.exe"+BC569E: 4C 89 AC 24 C8 00 00 00
"DarkSoulsIII.exe"+BC56A6: 45 32 F6
"DarkSoulsIII.exe"+BC56A9: C7 45 E7 FF FF FF FF
"DarkSoulsIII.exe"+BC56B0: 44 89 7D EB
"DarkSoulsIII.exe"+BC56B4: 4C 89 7D EF
"DarkSoulsIII.exe"+BC56B8: E8 B3 0F 21 00
670
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+BC56BD: 48 8D 8E B0 02 00 00
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+BC56C4: BA FE FF FF FF
"DarkSoulsIII.exe"+BC56C9: E8 22 80 C8 FF
6F0
"DarkSoulsIII.exe"+BC56CE: 48 8D 4D 1F
"DarkSoulsIII.exe"+BC56D2: 83 CA FF
"DarkSoulsIII.exe"+BC56D5: C7 45 07 FF FF FF FF
"DarkSoulsIII.exe"+BC56DC: 4C 89 7D 0F
"DarkSoulsIII.exe"+BC56E0: C7 45 17 FF FF FF FF
"DarkSoulsIII.exe"+BC56E7: 44 8B E0
"DarkSoulsIII.exe"+BC56EA: C7 45 1F FF FF FF FF
"DarkSoulsIII.exe"+BC56F1: 4C 89 7D 27
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72456</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>models_ptr</Address>

- jng DarkSoulsIII.exe+BC58
-

lea rcx,[rbp-19]
mov edx,edi
mov [rsp+000000C0],r12
mov [rsp+000000C8],r13
xor r14l,r14l
mov [rbp-19],FFFFFFFF
mov [rbp-15],r15d
mov [rbp-11],r15
call DarkSoulsIII.exe+DD6

- lea rcx,[rsi+000002B0]
- mov edx,FFFFFFFE
- call DarkSoulsIII.exe+84D
-

lea rcx,[rbp+1F]
or edx,-01
mov [rbp+07],FFFFFFFF
mov [rbp+0F],r15
mov [rbp+17],FFFFFFFF
mov r12d,eax
mov [rbp+1F],FFFFFFFF
mov [rbp+27],r15

<Offsets>
<Offset>7C</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>72897</ID>
<Description>"Covenant"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>-4</Address>
</CheatEntry>
<CheatEntry>
<ID>72458</ID>
<Description>"Right Hand 1"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+4</Address>
</CheatEntry>
<CheatEntry>
<ID>72460</ID>
<Description>"Right Hand 2"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+c</Address>
</CheatEntry>
<CheatEntry>
<ID>72462</ID>
<Description>"Right Hand 3"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+14</Address>
</CheatEntry>
<CheatEntry>
<ID>72457</ID>
<Description>"Left Hand 1"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+0</Address>
</CheatEntry>
<CheatEntry>
<ID>72459</ID>
<Description>"Left Hand 2"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+8</Address>
</CheatEntry>
<CheatEntry>
<ID>72461</ID>
<Description>"Left Hand 3"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+10</Address>
</CheatEntry>
<CheatEntry>
<ID>72463</ID>
<Description>"Arrows 1"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+18</Address>
</CheatEntry>

<CheatEntry>
<ID>72465</ID>
<Description>"Arrows 2"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+20</Address>
</CheatEntry>
<CheatEntry>
<ID>72464</ID>
<Description>"Bolts 1"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+1c</Address>
</CheatEntry>
<CheatEntry>
<ID>72466</ID>
<Description>"Bolts 2"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+24</Address>
</CheatEntry>
<CheatEntry>
<ID>72467</ID>
<Description>"?"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+28</Address>
</CheatEntry>
<CheatEntry>
<ID>72468</ID>
<Description>"?"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+2c</Address>
</CheatEntry>
<CheatEntry>
<ID>72469</ID>
<Description>"Head"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+30</Address>
</CheatEntry>
<CheatEntry>
<ID>72470</ID>
<Description>"Chest"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+34</Address>
</CheatEntry>
<CheatEntry>
<ID>72471</ID>
<Description>"Hands"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+38</Address>
</CheatEntry>
<CheatEntry>
<ID>72472</ID>
<Description>"Legs"</Description>
<ShowAsHex>1</ShowAsHex>

<VariableType>4 Bytes</VariableType>
<Address>+3c</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>73110</ID>
<Description>"Freeze Camera"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(camera,DarkSoulsIII.exe,41 0F 29 56 30 45)
alloc(newmem,$1000,camera)
label(code)
label(return)
label(camera_val)
label(camera_on)
newmem:
mov rax,camera_on
cmp byte ptr [rax],1
je code
mov byte ptr [rax],1
mov rax,camera_val
movups [rax],xmm2
code:
mov rax,camera_val
movups xmm2,[rax]
movaps [r14+30],xmm2
jmp return
camera_on:
db 0
camera_val:
dq 0
dq 0
camera:
jmp newmem
return:
registersymbol(camera)
registersymbol(camera_val)
[DISABLE]
camera:
db 41 0F 29 56 30
unregistersymbol(camera)
unregistersymbol(camera_val)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+50FB56
"DarkSoulsIII.exe"+50FB27: 0F 28 95 20 15 00 00
]

- movaps xmm2,[rbp+00001520

"DarkSoulsIII.exe"+50FB2E: 0F 5C CA
"DarkSoulsIII.exe"+50FB31: 0F 29 8D 80 07 00
1
"DarkSoulsIII.exe"+50FB38: F3 0F 10 86 A8 01
"DarkSoulsIII.exe"+50FB40: 0F C6 C0 00
"DarkSoulsIII.exe"+50FB44: 0F 59 C8
"DarkSoulsIII.exe"+50FB47: F3 41 0F 10 C6
"DarkSoulsIII.exe"+50FB4C: 0F C6 C0 00
"DarkSoulsIII.exe"+50FB50: 0F 59 C1
"DarkSoulsIII.exe"+50FB53: 0F 58 D0
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+50FB56: 41 0F 29 56 30
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+50FB5B: 45 0F 57 ED
"DarkSoulsIII.exe"+50FB5F: 44 0F 29 AD 60 02
13
"DarkSoulsIII.exe"+50FB67: 66 41 0F 6F 0E
"DarkSoulsIII.exe"+50FB6C: 66 0F 6F C1
"DarkSoulsIII.exe"+50FB70: 0F 28 2D D9 EB 77
.exe+3C8E750]
"DarkSoulsIII.exe"+50FB77: 66 0F DB C5
"DarkSoulsIII.exe"+50FB7B: 66 0F 76 C5
"DarkSoulsIII.exe"+50FB7F: 66 0F 6F 25 E9 EB
.exe+3C8E770]
"DarkSoulsIII.exe"+50FB87: 66 0F DB CC
"DarkSoulsIII.exe"+50FB8B: 66 0F 6F 1D AD EB
.exe+3C8E740]
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>73111</ID>
<Description>"X"</Description>
<VariableType>Float</VariableType>
<Address>camera_val</Address>
</CheatEntry>
<CheatEntry>
<ID>73112</ID>
<Description>"Z"</Description>
<VariableType>Float</VariableType>
<Address>camera_val+4</Address>
</CheatEntry>
<CheatEntry>
<ID>73113</ID>
<Description>"Y"</Description>
<VariableType>Float</VariableType>
<Address>camera_val+8</Address>
</CheatEntry>
<CheatEntry>
<ID>73114</ID>
<Description>"?"</Description>
<VariableType>Float</VariableType>
<Address>camera_val+c</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>10437</ID>
<Description>"No Weight"</Description>
<LastState/>

00

- subps xmm1,xmm2
- movaps [rbp+00000780],xmm

00 00 -

movss xmm0,[rsi+000001A8]
shufps xmm0,xmm0,00
mulps xmm1,xmm0
movss xmm0,xmm14
shufps xmm0,xmm0,00
mulps xmm0,xmm1
addps xmm2,xmm0

- movaps [r14+30],xmm2
- xorps xmm13,xmm13
00 00 - movaps [rbp+00000260],xmm

03

- movdqa xmm1,[r14]
- movdqa xmm0,xmm1
- movaps xmm5,[DarkSoulsIII

- pand xmm0,xmm5
- pcmpeqd xmm0,xmm5
77 03 - movdqa xmm4,[DarkSoulsIII
- pand xmm1,xmm4
77 03 - movdqa xmm3,[DarkSoulsIII

<VariableType>Auto Assembler Script</VariableType>


<AssemblerScript>[ENABLE]
aobscanmodule(weight,DarkSoulsIII.exe,F3 0F 58 F0 48 FF C7)
weight:
db 0F 57 F6 90
registersymbol(weight)
[DISABLE]
weight:
db F3 0F 58 F0
unregistersymbol(weight)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+57854D
"DarkSoulsIII.exe"+57852A: 75 03
e+57852F
"DarkSoulsIII.exe"+57852C: 83 CA FF
"DarkSoulsIII.exe"+57852F: 48 8D 4D C0
"DarkSoulsIII.exe"+578533: E8 58 B8 86 00
xe+DE3D90
"DarkSoulsIII.exe"+578538: 48 8B 45 C8
"DarkSoulsIII.exe"+57853C: 48 85 C0
"DarkSoulsIII.exe"+57853F: 74 10
+578551
"DarkSoulsIII.exe"+578541: 66 0F 6E C3
"DarkSoulsIII.exe"+578545: 0F 5B C0
"DarkSoulsIII.exe"+578548: F3 0F 59 40 0C
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+57854D: F3 0F 58 F0
"DarkSoulsIII.exe"+578551: 48 FF C7
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+578554: 49 83 C6 04
"DarkSoulsIII.exe"+578558: 48 83 FF 16
"DarkSoulsIII.exe"+57855C: 0F 8C 44 FE FF FF
+5783A6
"DarkSoulsIII.exe"+578562: 45 84 E4
"DarkSoulsIII.exe"+578565: 4C 8B A4 24 B8 00 00 00
B8]
"DarkSoulsIII.exe"+57856D: 0F 84 C0 00 00 00
+578633
"DarkSoulsIII.exe"+578573: 41 8B DD
"DarkSoulsIII.exe"+578576: 66 66 0F 1F 84 00 00 00 00 00
00]
"DarkSoulsIII.exe"+578580: 49 8D 8F 50 02 00 00
50]
"DarkSoulsIII.exe"+578587: 8B D3
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72904</ID>
<Description>"NG+ Pointer"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
{$lua}
autoAssemble([[
aobscanmodule(newgame,DarkSoulsIII.exe,48 8B 05 ?? ?? ??

- jne DarkSoulsIII.ex
- or edx,-01
- lea rcx,[rbp-40]
- call DarkSoulsIII.e
- mov rax,[rbp-38]
- test rax,rax
- je DarkSoulsIII.exe
- movd xmm0,ebx
- cvtdq2ps xmm0,xmm0
- mulss xmm0,[rax+0C]
- addss xmm6,xmm0
- inc rdi
- add r14,04
- cmp rdi,16
- jl DarkSoulsIII.exe
- test r12l,r12l
- mov r12,[rsp+000000
- je DarkSoulsIII.exe
- mov ebx,r13d
- nop [rax+rax+000000
- lea rcx,[r15+000002
- mov edx,ebx

?? 8B 40 ?? 48 83)

registersymbol(newgame)
]])
local addr = getAddress("newgame")
local offset = readBytes(addr + 9, 1)
addr = addr + readInteger(addr + 3) + 7
unregisterSymbol("newgame")
registerSymbol("newgame", addr)
unregisterSymbol("newgame_offset")
registerSymbol("newgame_offset", offset)
{$asm}
[DISABLE]
unregistersymbol(newgame)
unregistersymbol(newgame_offset)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+58AD76
"DarkSoulsIII.exe"+58AD5C: CC
"DarkSoulsIII.exe"+58AD5D: CC
"DarkSoulsIII.exe"+58AD5E: CC
"DarkSoulsIII.exe"+58AD5F: CC
"DarkSoulsIII.exe"+58AD60: 48 83 EC 28
"DarkSoulsIII.exe"+58AD64: E8 57 F1 08 00
619EC0
"DarkSoulsIII.exe"+58AD69: 84 C0
"DarkSoulsIII.exe"+58AD6B: 74 09
AD76
"DarkSoulsIII.exe"+58AD6D: 48 83 C4 28
"DarkSoulsIII.exe"+58AD71: E9 FA E8 08 00
19670
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+58AD76: 48 8B 05 7B 10 11 04
exe+469BDF8]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+58AD7D: 8B 40 70
"DarkSoulsIII.exe"+58AD80: 48 83 C4 28
"DarkSoulsIII.exe"+58AD84: C3
"DarkSoulsIII.exe"+58AD85: CC
"DarkSoulsIII.exe"+58AD86: CC
"DarkSoulsIII.exe"+58AD87: CC
"DarkSoulsIII.exe"+58AD88: CC
"DarkSoulsIII.exe"+58AD89: CC
"DarkSoulsIII.exe"+58AD8A: CC
"DarkSoulsIII.exe"+58AD8B: CC
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72905</ID>
<Description>"NG+"</Description>
<VariableType>4 Bytes</VariableType>
<Address>[newgame]+newgame_offset</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72959</ID>
<Description>"Last Bullet Shot"</Description>
<Options moHideChildren="1"/>
<LastState/>

int 3
int 3
int 3
int 3
sub rsp,28
call DarkSoulsIII.exe+

- test al,al
- je DarkSoulsIII.exe+58
- add rsp,28
- jmp DarkSoulsIII.exe+6
- mov rax,[DarkSoulsIII.
-

mov
add
ret
int
int
int
int
int
int
int

eax,[rax+70]
rsp,28
3
3
3
3
3
3
3

<VariableType>Auto Assembler Script</VariableType>


<AssemblerScript>[ENABLE]
aobscanmodule(last_bullet,DarkSoulsIII.exe,8B 38 48 8B CE E8 04)
alloc(newmem,$1000,last_bullet)
label(code)
label(return)
label(last_bullet_ptr)
newmem:
code:
mov
mov
mov
mov
jmp

rdi,last_bullet_ptr
[rdi],rax
edi,[rax]
rcx,rsi
return

last_bullet_ptr:
dq 0
last_bullet:
jmp code
return:
registersymbol(last_bullet)
registersymbol(last_bullet_ptr)
[DISABLE]
last_bullet:
db 8B 38 48 8B CE
unregistersymbol(last_bullet)
unregistersymbol(last_bullet_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+965BD2
"DarkSoulsIII.exe"+965BB5: E8 56 01 00 00
"DarkSoulsIII.exe"+965BBA: 48 8B 43 08
"DarkSoulsIII.exe"+965BBE: 0F 28 F0
"DarkSoulsIII.exe"+965BC1: 48 85 C0
"DarkSoulsIII.exe"+965BC4: 74 05
"DarkSoulsIII.exe"+965BC6: 8B 58 04
"DarkSoulsIII.exe"+965BC9: EB 02
"DarkSoulsIII.exe"+965BCB: 8B DF
"DarkSoulsIII.exe"+965BCD: 48 85 C0
"DarkSoulsIII.exe"+965BD0: 74 02
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+965BD2: 8B 38
"DarkSoulsIII.exe"+965BD4: 48 8B CE
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+965BD7: E8 04 2E FF FF
"DarkSoulsIII.exe"+965BDC: 84 C0
"DarkSoulsIII.exe"+965BDE: 75 16
"DarkSoulsIII.exe"+965BE0: 4C 8D 44 24 30
"DarkSoulsIII.exe"+965BE5: 0F 28 DE
"DarkSoulsIII.exe"+965BE8: 8B D7
"DarkSoulsIII.exe"+965BEA: 48 8B CE
"DarkSoulsIII.exe"+965BED: 88 44 24 20
"DarkSoulsIII.exe"+965BF1: E8 9A 11 FF FF

call DarkSoulsIII.exe+965D10
mov rax,[rbx+08]
movaps xmm6,xmm0
test rax,rax
je DarkSoulsIII.exe+965BCB
mov ebx,[rax+04]
jmp DarkSoulsIII.exe+965BCD
mov ebx,edi
test rax,rax
je DarkSoulsIII.exe+965BD4

- mov edi,[rax]
- mov rcx,rsi
-

call DarkSoulsIII.exe+9589E0
test al,al
jne DarkSoulsIII.exe+965BF6
lea r8,[rsp+30]
movaps xmm3,xmm6
mov edx,edi
mov rcx,rsi
mov [rsp+20],al
call DarkSoulsIII.exe+956D90

"DarkSoulsIII.exe"+965BF6: 8B D3
- mov edx,ebx
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72960</ID>
<Description>"Base Address"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>last_bullet_ptr</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>20400</ID>
<Description>"Spell ID "</Description>
<VariableType>4 Bytes</VariableType>
<Address>+0</Address>
</CheatEntry>
<CheatEntry>
<ID>20401</ID>
<Description>"Visual Effect (1, 2, 15, 32, 63, 111)"</Description>
<Color>000000</Color>
<VariableType>4 Bytes</VariableType>
<Address>+4</Address>
</CheatEntry>
<CheatEntry>
<ID>20402</ID>
<Description>"Visual Effect on hit"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+8</Address>
</CheatEntry>
<CheatEntry>
<ID>20403</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+C</Address>
</CheatEntry>
<CheatEntry>
<ID>20404</ID>
<Description>"Longevity (-1 = inf)"</Description>
<VariableType>Float</VariableType>
<Address>+10</Address>
</CheatEntry>
<CheatEntry>
<ID>20405</ID>
<Description>"Something with tangencial"</Description>
<ShowAsSigned>0</ShowAsSigned>
<Color>000000</Color>
<VariableType>Float</VariableType>
<Address>+14</Address>
</CheatEntry>
<CheatEntry>
<ID>20406</ID>
<Description>"Unknown Pointer"</Description>
<ShowAsHex>1</ShowAsHex>

<VariableType>4 Bytes</VariableType>
<Address>+18</Address>
</CheatEntry>
<CheatEntry>
<ID>20407</ID>
<Description>"Vertical Tangencial speed"</Description>
<VariableType>Float</VariableType>
<Address>+20</Address>
</CheatEntry>
<CheatEntry>
<ID>72958</ID>
<Description>"Unknown"</Description>
<VariableType>Float</VariableType>
<Address>+24</Address>
</CheatEntry>
<CheatEntry>
<ID>20408</ID>
<Description>"Start Speed"</Description>
<VariableType>Float</VariableType>
<Address>+28</Address>
</CheatEntry>
<CheatEntry>
<ID>20409</ID>
<Description>"Acceleration"</Description>
<VariableType>Float</VariableType>
<Address>+2C</Address>
</CheatEntry>
<CheatEntry>
<ID>20410</ID>
<Description>"Unknown"</Description>
<VariableType>Float</VariableType>
<Address>+30</Address>
</CheatEntry>
<CheatEntry>
<ID>20411</ID>
<Description>"Max Speed"</Description>
<VariableType>Float</VariableType>
<Address>+34</Address>
</CheatEntry>
<CheatEntry>
<ID>20412</ID>
<Description>"Something with Speed/Accel"</Description>
<VariableType>Float</VariableType>
<Address>+38</Address>
</CheatEntry>
<CheatEntry>
<ID>20413</ID>
<Description>"Unknown"</Description>
<VariableType>Float</VariableType>
<Address>+3C</Address>
</CheatEntry>
<CheatEntry>
<ID>20414</ID>
<Description>"Something with tangencial"</Description>
<VariableType>Float</VariableType>
<Address>+40</Address>
</CheatEntry>
<CheatEntry>
<ID>20415</ID>
<Description>"Hitbox Size"</Description>

<VariableType>Float</VariableType>
<Address>+44</Address>
</CheatEntry>
<CheatEntry>
<ID>20417</ID>
<Description>"Unknown"</Description>
<VariableType>Float</VariableType>
<Address>+48</Address>
</CheatEntry>
<CheatEntry>
<ID>20418</ID>
<Description>"Unknown"</Description>
<VariableType>Float</VariableType>
<Address>+4C</Address>
</CheatEntry>
<CheatEntry>
<ID>20419</ID>
<Description>"Unknown"</Description>
<VariableType>Float</VariableType>
<Address>+50</Address>
</CheatEntry>
<CheatEntry>
<ID>20420</ID>
<Description>"Unknown"</Description>
<VariableType>Float</VariableType>
<Address>+54</Address>
</CheatEntry>
<CheatEntry>
<ID>20421</ID>
<Description>"Unknown"</Description>
<VariableType>Float</VariableType>
<Address>+58</Address>
</CheatEntry>
<CheatEntry>
<ID>72983</ID>
<Description>"Horizontal spread? (Negative value)"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+5C</Address>
</CheatEntry>
<CheatEntry>
<ID>72984</ID>
<Description>"Something with cast effect (15, 25, 33)"</Descriptio
n>
<Color>000000</Color>
<VariableType>Byte</VariableType>
<Address>+60</Address>
</CheatEntry>
<CheatEntry>
<ID>72985</ID>
<Description>"Cant cast?"</Description>
<Color>000000</Color>
<VariableType>Byte</VariableType>
<Address>+61</Address>
</CheatEntry>
<CheatEntry>
<ID>72986</ID>
<Description>"Cant cast?"</Description>
<Color>000000</Color>
<VariableType>Byte</VariableType>
<Address>+62</Address>

</CheatEntry>
<CheatEntry>
<ID>72987</ID>
<Description>"Cant cast?"</Description>
<Color>000000</Color>
<VariableType>Byte</VariableType>
<Address>+63</Address>
</CheatEntry>
<CheatEntry>
<ID>72988</ID>
<Description>"Bullet Multiplier?"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+64</Address>
</CheatEntry>
<CheatEntry>
<ID>72989</ID>
<Description>"Child Bullet on timeout and death"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+68</Address>
</CheatEntry>
<CheatEntry>
<ID>72990</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+6C</Address>
</CheatEntry>
<CheatEntry>
<ID>72991</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+70</Address>
</CheatEntry>
<CheatEntry>
<ID>72992</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+74</Address>
</CheatEntry>
<CheatEntry>
<ID>72993</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+78</Address>
</CheatEntry>
<CheatEntry>
<ID>72994</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+7C</Address>
</CheatEntry>
<CheatEntry>
<ID>72995</ID>
<Description>"Amount of bullets"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+80</Address>
</CheatEntry>
<CheatEntry>
<ID>72996</ID>
<Description>"Tangencial speed"</Description>
<VariableType>2 Bytes</VariableType>

<Address>+82</Address>
</CheatEntry>
<CheatEntry>
<ID>72997</ID>
<Description>"Horizontal Spread"</Description>
<VariableType>Float</VariableType>
<Address>+84</Address>
</CheatEntry>
<CheatEntry>
<ID>72998</ID>
<Description>"Vertical Spread"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+88</Address>
</CheatEntry>
<CheatEntry>
<ID>72999</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+8C</Address>
</CheatEntry>
<CheatEntry>
<ID>73000</ID>
<Description>"Start Vertical Angle and tang ( 1000, 2000, 3000...)
"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+90</Address>
</CheatEntry>
<CheatEntry>
<ID>73001</ID>
<Description>"Unknown"</Description>
<VariableType>2 Bytes</VariableType>
<Address>+92</Address>
</CheatEntry>
<CheatEntry>
<ID>73002</ID>
<Description>"Unknown"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+94</Address>
</CheatEntry>
<CheatEntry>
<ID>73003</ID>
<Description>"Unknown"</Description>
<VariableType>Byte</VariableType>
<Address>+98</Address>
</CheatEntry>
<CheatEntry>
<ID>73004</ID>
<Description>"Spawn child bullet on death (0 = enable)"</Descripti
on>
<VariableType>Byte</VariableType>
<Address>+99</Address>
</CheatEntry>
<CheatEntry>
<ID>73005</ID>
<Description>"0 = non attach to body 1 = attach spell to body 2
= attach without rotate 3 = slide and freeze"</Description>
<VariableType>Byte</VariableType>
<Address>+9A</Address>
</CheatEntry>

<CheatEntry>
<ID>73006</ID>
<Description>"(1-3 = passes throug walls)"</Description>
<VariableType>Byte</VariableType>
<Address>+9B</Address>
</CheatEntry>
<CheatEntry>
<ID>73007</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+9C</Address>
</CheatEntry>
<CheatEntry>
<ID>73008</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+A0</Address>
</CheatEntry>
<CheatEntry>
<ID>73009</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+A4</Address>
</CheatEntry>
<CheatEntry>
<ID>73010</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+A8</Address>
</CheatEntry>
<CheatEntry>
<ID>73011</ID>
<Description>"Child Bullet for parent is live"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+AC</Address>
</CheatEntry>
<CheatEntry>
<ID>73012</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+B0</Address>
</CheatEntry>
<CheatEntry>
<ID>73013</ID>
<Description>"Unknown flag"</Description>
<VariableType>Byte</VariableType>
<Address>+B4</Address>
</CheatEntry>
<CheatEntry>
<ID>73014</ID>
<Description>"Unknown flag"</Description>
<VariableType>Byte</VariableType>
<Address>+B5</Address>
</CheatEntry>
<CheatEntry>
<ID>73015</ID>
<Description>"Unknown flag"</Description>
<VariableType>Byte</VariableType>
<Address>+B6</Address>
</CheatEntry>

<CheatEntry>
<ID>73016</ID>
<Description>"Spawn when parent is live"</Description>
<VariableType>Byte</VariableType>
<Address>+B7</Address>
</CheatEntry>
<CheatEntry>
<ID>73017</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+B8</Address>
</CheatEntry>
<CheatEntry>
<ID>73018</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+BC</Address>
</CheatEntry>
<CheatEntry>
<ID>73019</ID>
<Description>"Something with tangencial (1 = tangencial effect to
camera rotation)"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+C0</Address>
</CheatEntry>
<CheatEntry>
<ID>73020</ID>
<Description>"Something with tangencial (1 = tangencial effect to
camera rotation)"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>2 Bytes</VariableType>
<Address>+C0</Address>
</CheatEntry>
<CheatEntry>
<ID>73021</ID>
<Description>"Something with tangencial (1 = tangencial effect to
camera rotation)"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>2 Bytes</VariableType>
<Address>+C2</Address>
</CheatEntry>
<CheatEntry>
<ID>73022</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+C8</Address>
</CheatEntry>
<CheatEntry>
<ID>73023</ID>
<Description>"Death Effect Time"</Description>
<VariableType>Float</VariableType>
<Address>+CC</Address>
</CheatEntry>
<CheatEntry>
<ID>73024</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+D0</Address>
</CheatEntry>

<CheatEntry>
<ID>73025</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+D4</Address>
</CheatEntry>
<CheatEntry>
<ID>73026</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+D8</Address>
</CheatEntry>
<CheatEntry>
<ID>73027</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+DC</Address>
</CheatEntry>
<CheatEntry>
<ID>73028</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+E0</Address>
</CheatEntry>
<CheatEntry>
<ID>73029</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+E4</Address>
</CheatEntry>
<CheatEntry>
<ID>73030</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+E8</Address>
</CheatEntry>
<CheatEntry>
<ID>73031</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+EC</Address>
</CheatEntry>
<CheatEntry>
<ID>73032</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+F0</Address>
</CheatEntry>
<CheatEntry>
<ID>73033</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+F4</Address>
</CheatEntry>
<CheatEntry>
<ID>73034</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+F8</Address>
</CheatEntry>

<CheatEntry>
<ID>73035</ID>
<Description>"Unknown"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+FC</Address>
</CheatEntry>
<CheatEntry>
<ID>73036</ID>
<Description>"Next Spell ID"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+100</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>10467</ID>
<Description>"100% Drop Rate"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(AlwaysDropAOB,DarkSoulsIII.exe,45 0F B7 41 40 41)
alloc(newmem,$1000,AlwaysDropAOB)
label(code)
label(return)
newmem:
code:
movzx r8d,word ptr [r9+40]
mov r8,1
jmp return
AlwaysDropAOB:
jmp code
return:
registersymbol(AlwaysDropAOB)
[DISABLE]
AlwaysDropAOB:
db 45 0F B7 41 40
unregistersymbol(AlwaysDropAOB)
dealloc(newmem)
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>94</ID>
<Description>"Item Discovery (untested)"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(discovery,DarkSoulsIII.exe,F3 0F 59 05 ?? ?? ?? ?? E8 ?? ?? ?? ??
F3 0F 2C)
alloc(newmem,$1000,discovery)
label(code)
label(return)
label(value)

label(discovery_bkp)
newmem:
discovery_bkp:
readmem(discovery,8)
code:
push rax
mov rax,value
movss xmm0,[rax]
pop rax
jmp return
value:
dd (float)3000
discovery:
jmp code
nop
nop
nop
return:
registersymbol(discovery)
registersymbol(discovery_bkp)
[DISABLE]
discovery:
readmem(discovery_bkp,8)
unregistersymbol(discovery)
unregistersymbol(discovery_bkp)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+626269
"DarkSoulsIII.exe"+626258: CC
- int 3
"DarkSoulsIII.exe"+626259: CC
- int 3
"DarkSoulsIII.exe"+62625A: CC
- int 3
"DarkSoulsIII.exe"+62625B: CC
- int 3
"DarkSoulsIII.exe"+62625C: CC
- int 3
"DarkSoulsIII.exe"+62625D: CC
- int 3
"DarkSoulsIII.exe"+62625E: CC
- int 3
"DarkSoulsIII.exe"+62625F: CC
- int 3
"DarkSoulsIII.exe"+626260: 48 83 EC 28
- sub rsp,28
"DarkSoulsIII.exe"+626264: E8 17 00 00 00
- call DarkSoulsIII.exe+626
280
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+626269: F3 0F 59 05 EF 9E 6C 03 - mulss xmm0,[DarkSoulsIII.
exe+3CF0160]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+626271: E8 FA 82 89 01
- call DarkSoulsIII.exe+1EB
E570
"DarkSoulsIII.exe"+626276: F3 0F 2C C0
- cvttss2si eax,xmm0
"DarkSoulsIII.exe"+62627A: 48 83 C4 28
- add rsp,28
"DarkSoulsIII.exe"+62627E: C3
- ret
"DarkSoulsIII.exe"+62627F: CC
- int 3
"DarkSoulsIII.exe"+626280: 48 89 5C 24 08
- mov [rsp+08],rbx
"DarkSoulsIII.exe"+626285: 57
- push rdi
"DarkSoulsIII.exe"+626286: 48 83 EC 50
- sub rsp,50
"DarkSoulsIII.exe"+62628A: 0F 29 74 24 40
- movaps [rsp+40],xmm6
"DarkSoulsIII.exe"+62628F: F3 0F 10 35 09 9D 6C 03 - movss xmm6,[DarkSoulsIII.

exe+3CEFFA0]
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>83</ID>
<Description>"Disable Anti-Cheat (untested)"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(anticheat1,DarkSoulsIII.exe,89 02 E9 ?? ?? ?? ?? 48 89 43)
anticheat1:
db 90 90
registersymbol(anticheat1)
aobscanmodule(anticheat2,DarkSoulsIII.exe,89 02 8B 45 ?? 83 C0 ?? E9 ?? ?? ?? ??
8B 81)
anticheat2:
db 90 90
registersymbol(anticheat2)
[DISABLE]
anticheat1:
db 89 02
unregistersymbol(anticheat1)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+65419DB
"DarkSoulsIII.exe"+65419B3: 48 8D 64 24 08
"DarkSoulsIII.exe"+65419B8: 48 8D 64 24 08
"DarkSoulsIII.exe"+65419BD: E9 7C 06 33 FF
xe+587203E
"DarkSoulsIII.exe"+65419C2: 8B 0C 24
"DarkSoulsIII.exe"+65419C5: 48 8B 14 24
"DarkSoulsIII.exe"+65419C9: 48 8D 64 24 08
"DarkSoulsIII.exe"+65419CE: D3 E0
"DarkSoulsIII.exe"+65419D0: E9 E1 F9 7F FF
xe+5D413B6
"DarkSoulsIII.exe"+65419D5: 48 8B 55 10
"DarkSoulsIII.exe"+65419D9: 8B 00
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+65419DB: 89 02
"DarkSoulsIII.exe"+65419DD: E9 05 B0 53 FF
xe+5A7C9E7
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+65419E2: 48 89 43 08
"DarkSoulsIII.exe"+65419E6: E9 EF 9B 53 FB
xe+1A7B5DA
"DarkSoulsIII.exe"+65419EB: 59
"DarkSoulsIII.exe"+65419EC: 48 89 6C 24 F8
"DarkSoulsIII.exe"+65419F1: 48 8D 64 24 F8
"DarkSoulsIII.exe"+65419F6: E9 0F 50 DF FF
xe+6336A0A
"DarkSoulsIII.exe"+65419FB: 3B D0
"DarkSoulsIII.exe"+65419FD: 48 89 6C 24 F8
"DarkSoulsIII.exe"+6541A02: 48 8D 64 24 F8
"DarkSoulsIII.exe"+6541A07: 48 BD F1 14 85 45 01 00 00 00
II.exe+58514F1
}

- lea rsp,[rsp+08]
- lea rsp,[rsp+08]
- jmp DarkSoulsIII.e
-

mov
mov
lea
shl
jmp

ecx,[rsp]
rdx,[rsp]
rsp,[rsp+08]
eax,cl
DarkSoulsIII.e

- mov rdx,[rbp+10]
- mov eax,[rax]
- mov [rdx],eax
- jmp DarkSoulsIII.e
- mov [rbx+08],rax
- jmp DarkSoulsIII.e
-

pop
mov
lea
jmp

rcx
[rsp-08],rbp
rsp,[rsp-08]
DarkSoulsIII.e

cmp
mov
lea
mov

edx,eax
[rsp-08],rbp
rsp,[rsp-08]
rbp,DarkSoulsI

anticheat2:
db 89 02 8B 45 20
unregistersymbol(anticheat2)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+522D5B4
"DarkSoulsIII.exe"+522D582: 48 8D 64 24 08
- lea rsp,[rsp+08]
"DarkSoulsIII.exe"+522D587: FF 64 24 F8
- jmp qword ptr [rsp
-08]
"DarkSoulsIII.exe"+522D58B: E9 C5 EB 0F 00
- jmp DarkSoulsIII.e
xe+532C155
"DarkSoulsIII.exe"+522D590: 48 8B 05 53 4E 84 FC
- mov rax,[DarkSouls
III.exe+1A723EA]
"DarkSoulsIII.exe"+522D597: 8B 15 65 41 06 00
- mov edx,[DarkSouls
III.exe+5291702]
"DarkSoulsIII.exe"+522D59D: E9 E5 AD 5E 00
- jmp DarkSoulsIII.e
xe+5818387
"DarkSoulsIII.exe"+522D5A2: 48 0F 44 CA
- cmove rcx,rdx
"DarkSoulsIII.exe"+522D5A6: 48 89 4C 24 10
- mov [rsp+10],rcx
"DarkSoulsIII.exe"+522D5AB: 48 8B 14 24
- mov rdx,[rsp]
"DarkSoulsIII.exe"+522D5AF: E9 B9 FD 89 00
- jmp DarkSoulsIII.e
xe+5ACD36D
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+522D5B4: 89 02
- mov [rdx],eax
"DarkSoulsIII.exe"+522D5B6: 8B 45 20
- mov eax,[rbp+20]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+522D5B9: 83 C0 FC
- add eax,-04
"DarkSoulsIII.exe"+522D5BC: E9 94 8F EC FF
- jmp DarkSoulsIII.e
xe+50F6555
"DarkSoulsIII.exe"+522D5C1: 8B 81 D8 00 38 DB
- mov eax,[rcx-24C7F
F28]
"DarkSoulsIII.exe"+522D5C7: A4
- movsb
"DarkSoulsIII.exe"+522D5C8: F9
- stc
"DarkSoulsIII.exe"+522D5C9: 73 02
- jae DarkSoulsIII.e
xe+522D5CD
"DarkSoulsIII.exe"+522D5CB: E0 55
- loopne DarkSoulsII
I.exe+522D622
"DarkSoulsIII.exe"+522D5CD: D4 E6
- aam -1A
"DarkSoulsIII.exe"+522D5CF: BE B0 C8 21 BF
- mov esi,BF21C8B0
"DarkSoulsIII.exe"+522D5D4: D3 39
- sar [rcx],cl
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>10401</ID>
<Description>"Disable Auto Follow Cam"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
//code from here to '[DISABLE]' will be used to enable the cheat
aobscanmodule(camHRotateCorrectionAOB,DarkSoulsIII.exe,66 0F 7F A6 40 01 00 00 8
0)
registersymbol(camHRotateCorrectionAOB)
camHRotateCorrectionAOB: //"DarkSoulsIII.exe"+5107F4:
db 90 90 90 90 90 90 90 90

[DISABLE]
//code from here till the end of the code will be used to disable the cheat
camHRotateCorrectionAOB: //"DarkSoulsIII.exe"+5107F4:
db 66 0F 7F A6 40 01 00 00
//Alt: movdqa [rsi+00000140],xmm4
unregistersymbol(camHRotateCorrectionAOB)
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72382</ID>
<Description>"Player Coordinates"</Description>
<Options moHideChildren="1"/>
<LastState Value="" RealAddress="00000000"/>
<GroupHeader>1</GroupHeader>
<CheatEntries>
<CheatEntry>
<ID>273</ID>
<Description>"AOB Teleport"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>Array of byte</VariableType>
<ByteLength>12</ByteLength>
<Address>"DarkSoulsIII.exe"+046C3AA8</Address>
<Offsets>
<Offset>80</Offset>
<Offset>28</Offset>
<Offset>18</Offset>
<Offset>18</Offset>
<Offset>5A8</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>72358</ID>
<Description>"X"</Description>
<VariableType>Float</VariableType>
<Address>"DarkSoulsIII.exe"+046C3AA8</Address>
<Offsets>
<Offset>80</Offset>
<Offset>28</Offset>
<Offset>18</Offset>
<Offset>18</Offset>
<Offset>5A8</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72359</ID>
<Description>"Z"</Description>
<VariableType>Float</VariableType>
<Address>"DarkSoulsIII.exe"+046C3AA8</Address>
<Offsets>
<Offset>84</Offset>
<Offset>28</Offset>
<Offset>18</Offset>
<Offset>18</Offset>
<Offset>5A8</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72360</ID>

<Description>"Y"</Description>
<VariableType>Float</VariableType>
<Address>"DarkSoulsIII.exe"+046C3AA8</Address>
<Offsets>
<Offset>88</Offset>
<Offset>28</Offset>
<Offset>18</Offset>
<Offset>18</Offset>
<Offset>5A8</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72361</ID>
<Description>"Angle"</Description>
<VariableType>Float</VariableType>
<Address>"DarkSoulsIII.exe"+046C3AA8</Address>
<Offsets>
<Offset>74</Offset>
<Offset>28</Offset>
<Offset>18</Offset>
<Offset>18</Offset>
<Offset>5A8</Offset>
</Offsets>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72405</ID>
<Description>"Find Item with ID"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(itemid,DarkSoulsIII.exe,C3 CC CC CC CC CC 8B 41 0C 89 02)
alloc(newmem,$1000,itemid)
label(code)
label(return)
label(itemid_value)
label(itemid_found)
newmem:
mov rax,itemid_value
mov eax,[rax]
cmp [rcx+0C],eax
jne code
mov rax,itemid_found
mov [rax],rcx
code:
mov eax,[rcx+0C]
mov [rdx],eax
jmp return
itemid_value:
dd 0
itemid_found:
dq 0

itemid+06:
jmp newmem
return:
registersymbol(itemid)
registersymbol(itemid_value)
registersymbol(itemid_found)
[DISABLE]
itemid+06:
db 8B 41 0C 89 02
unregistersymbol(itemid)
unregistersymbol(itemid_value)
unregistersymbol(itemid_found)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+5837D0
"DarkSoulsIII.exe"+5837BE: 8B C3
- mov eax,ebx
"DarkSoulsIII.exe"+5837C0: 48 8B 5C 24 30
- mov rbx,[rsp+30]
"DarkSoulsIII.exe"+5837C5: 48 83 C4 20
- add rsp,20
"DarkSoulsIII.exe"+5837C9: 5F
- pop rdi
"DarkSoulsIII.exe"+5837CA: C3
- ret
"DarkSoulsIII.exe"+5837CB: CC
- int 3
"DarkSoulsIII.exe"+5837CC: CC
- int 3
"DarkSoulsIII.exe"+5837CD: CC
- int 3
"DarkSoulsIII.exe"+5837CE: CC
- int 3
"DarkSoulsIII.exe"+5837CF: CC
- int 3
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+5837D0: 8B 41 0C
- mov eax,[rcx+0C]
"DarkSoulsIII.exe"+5837D3: 89 02
- mov [rdx],eax
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+5837D5: 48 8B C2
- mov rax,rdx
"DarkSoulsIII.exe"+5837D8: C3
- ret
"DarkSoulsIII.exe"+5837D9: CC
- int 3
"DarkSoulsIII.exe"+5837DA: CC
- int 3
"DarkSoulsIII.exe"+5837DB: CC
- int 3
"DarkSoulsIII.exe"+5837DC: CC
- int 3
"DarkSoulsIII.exe"+5837DD: CC
- int 3
"DarkSoulsIII.exe"+5837DE: CC
- int 3
"DarkSoulsIII.exe"+5837DF: CC
- int 3
"DarkSoulsIII.exe"+5837E0: 48 89 5C 24 08
- mov [rsp+08],rbx
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72407</ID>
<Description>"Enter the ID to Find (hex)"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>itemid_value</Address>
</CheatEntry>
<CheatEntry>
<ID>72408</ID>
<Description>"Enter the ID to Find (decimal)"</Description>
<VariableType>4 Bytes</VariableType>
<Address>itemid_value</Address>
</CheatEntry>
<CheatEntry>

<ID>72409</ID>
<Description>"Found Item ID (hex)"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>itemid_found</Address>
<Offsets>
<Offset>C</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72410</ID>
<Description>"Found Item ID (decimal)"</Description>
<VariableType>4 Bytes</VariableType>
<Address>itemid_found</Address>
<Offsets>
<Offset>C</Offset>
</Offsets>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>59</ID>
<Description>"Ignore This"</Description>
<Options moHideChildren="1"/>
<LastState Value="" RealAddress="00000000"/>
<GroupHeader>1</GroupHeader>
<CheatEntries>
<CheatEntry>
<ID>45</ID>
<Description>"Vigor"</Description>
<VariableType>4 Bytes</VariableType>
<Address>DarkSoulsIII.exe+469ADF8</Address>
<Offsets>
<Offset>44</Offset>
<Offset>10</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>10422</ID>
<Description>"Vigor"</Description>
<VariableType>4 Bytes</VariableType>
<Address>DarkSoulsIII.exe+469ADF8</Address>
<Offsets>
<Offset>228</Offset>
<Offset>10</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>10423</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+1a8</Address>
<CheatEntries>
<CheatEntry>
<ID>10424</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+88</Address>
</CheatEntry>
</CheatEntries>

</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>42</ID>
<Description>"Player Health"</Description>
<VariableType>4 Bytes</VariableType>
<Address>DarkSoulsIII.exe+46C3AA8</Address>
<Offsets>
<Offset>D8</Offset>
<Offset>18</Offset>
<Offset>1F70</Offset>
<Offset>80</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>10409</ID>
<Description>"Item Durability"</Description>
<VariableType>4 Bytes</VariableType>
<Address>DarkSoulsIII.exe+46D0968</Address>
<Offsets>
<Offset>10</Offset>
<Offset>DC8</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72402</ID>
<Description>"Item ID"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>DarkSoulsIII.exe+46D0968</Address>
<Offsets>
<Offset>C</Offset>
<Offset>E30</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72389</ID>
<Description>"Item Base"</Description>
<LastState RealAddress="00000000"/>
<VariableType>String</VariableType>
<Length>0</Length>
<Unicode>0</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>DarkSoulsIII.exe+46D0968</Address>
<Offsets>
<Offset>0</Offset>
<Offset>DC8</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>72393</ID>
<Description>"Item ID"</Description>
<ShowAsHex>1</ShowAsHex>
<VariableType>4 Bytes</VariableType>
<Address>+c</Address>
</CheatEntry>
<CheatEntry>
<ID>72398</ID>
<Description>"Item ID"</Description>

<VariableType>4 Bytes</VariableType>
<Address>+c</Address>
</CheatEntry>
<CheatEntry>
<ID>72395</ID>
<Description>"Durability"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+10</Address>
</CheatEntry>
<CheatEntry>
<ID>72390</ID>
<Description>"???"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+0</Address>
</CheatEntry>
<CheatEntry>
<ID>72391</ID>
<Description>"???"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+4</Address>
</CheatEntry>
<CheatEntry>
<ID>72392</ID>
<Description>"???"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+8</Address>
</CheatEntry>
<CheatEntry>
<ID>72394</ID>
<Description>"???"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+14</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>70</ID>
<Description>"item select"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(items,DarkSoulsIII.exe,04 89 02 48 8B C2 C3 CC CC CC CC CC CC CC 8
B 41 08 C3 CC)
alloc(newmem,$1000,items)
label(code)
label(return)
newmem:
mov rax,00007FF5A07BB310
cmp rcx,rax
jne code
nop
code:
mov eax,[rcx+08]
ret
int 3
jmp return
items+0E:

jmp newmem
return:
registersymbol(items)
[DISABLE]
items+0E:
db 8B 41 08 C3 CC
unregistersymbol(items)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+A0CC30
"DarkSoulsIII.exe"+A0CC23: 89 02
- mov [rdx],eax
"DarkSoulsIII.exe"+A0CC25: 48 8B C2
- mov rax,rdx
"DarkSoulsIII.exe"+A0CC28: C3
- ret
"DarkSoulsIII.exe"+A0CC29: CC
- int 3
"DarkSoulsIII.exe"+A0CC2A: CC
- int 3
"DarkSoulsIII.exe"+A0CC2B: CC
- int 3
"DarkSoulsIII.exe"+A0CC2C: CC
- int 3
"DarkSoulsIII.exe"+A0CC2D: CC
- int 3
"DarkSoulsIII.exe"+A0CC2E: CC
- int 3
"DarkSoulsIII.exe"+A0CC2F: CC
- int 3
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+A0CC30: 8B 41 08
- mov eax,[rcx+08]
"DarkSoulsIII.exe"+A0CC33: C3
- ret
"DarkSoulsIII.exe"+A0CC34: CC
- int 3
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+A0CC35: CC
- int 3
"DarkSoulsIII.exe"+A0CC36: CC
- int 3
"DarkSoulsIII.exe"+A0CC37: CC
- int 3
"DarkSoulsIII.exe"+A0CC38: CC
- int 3
"DarkSoulsIII.exe"+A0CC39: CC
- int 3
"DarkSoulsIII.exe"+A0CC3A: CC
- int 3
"DarkSoulsIII.exe"+A0CC3B: CC
- int 3
"DarkSoulsIII.exe"+A0CC3C: CC
- int 3
"DarkSoulsIII.exe"+A0CC3D: CC
- int 3
"DarkSoulsIII.exe"+A0CC3E: CC
- int 3
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>93</ID>
<Description>"Multipliers"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(multipliers,DarkSoulsIII.exe,F3 0F 10 00 0F 28 74 24 60)
alloc(newmem,$1000,multipliers)
label(code)
label(return)
newmem:
code:
mov [rax],(float)99999
movss xmm0,[rax]
movaps xmm6,[rsp+60]
jmp return

multipliers:
jmp code
nop
nop
nop
nop
return:
registersymbol(multipliers)
[DISABLE]
multipliers:
db F3 0F 10 00 0F 28 74 24 60
unregistersymbol(multipliers)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+6341FE
"DarkSoulsIII.exe"+6341CD: 0F 2F D1
- comiss xmm2,xmm1
"DarkSoulsIII.exe"+6341D0: 0F 28 7C 24 50
- movaps xmm7,[rsp+50]
"DarkSoulsIII.exe"+6341D5: F3 0F 11 84 24 98 00 00 00 - movss [rsp+00000098],x
mm0
"DarkSoulsIII.exe"+6341DE: 76 0A
- jna DarkSoulsIII.exe+6
341EA
"DarkSoulsIII.exe"+6341E0: 48 8D 84 24 90 00 00 00
- lea rax,[rsp+00000090]
"DarkSoulsIII.exe"+6341E8: EB 14
- jmp DarkSoulsIII.exe+6
341FE
"DarkSoulsIII.exe"+6341EA: 0F 2F C8
- comiss xmm1,xmm0
"DarkSoulsIII.exe"+6341ED: 48 8D 84 24 98 00 00 00
- lea rax,[rsp+00000098]
"DarkSoulsIII.exe"+6341F5: 48 8D 4C 24 20
- lea rcx,[rsp+20]
"DarkSoulsIII.exe"+6341FA: 48 0F 46 C1
- cmovbe rax,rcx
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+6341FE: F3 0F 10 00
- movss xmm0,[rax]
"DarkSoulsIII.exe"+634202: 0F 28 74 24 60
- movaps xmm6,[rsp+60]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+634207: 4C 8D 5C 24 70
- lea r11,[rsp+70]
"DarkSoulsIII.exe"+63420C: 49 8B 5B 10
- mov rbx,[r11+10]
"DarkSoulsIII.exe"+634210: 49 8B 73 18
- mov rsi,[r11+18]
"DarkSoulsIII.exe"+634214: 49 8B E3
- mov rsp,r11
"DarkSoulsIII.exe"+634217: 5F
- pop rdi
"DarkSoulsIII.exe"+634218: C3
- ret
"DarkSoulsIII.exe"+634219: CC
- int 3
"DarkSoulsIII.exe"+63421A: CC
- int 3
"DarkSoulsIII.exe"+63421B: CC
- int 3
"DarkSoulsIII.exe"+63421C: CC
- int 3
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>95</ID>
<Description>"Freeze"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(freeze1,DarkSoulsIII.exe,C3 0F 28 02 66 0F 7F 81 80 00 00 00)
aobscanmodule(freeze2,DarkSoulsIII.exe,66 0F 7F B3 80 00 00 00 0F)
[DISABLE]
</AssemblerScript>
</CheatEntry>

<CheatEntry>
<ID>10408</ID>
<Description>"Inventory"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(inventory,DarkSoulsIII.exe,48 8B 5C CD 40)
alloc(newmem,$1000,inventory)
label(code)
label(return)
newmem:
code:
mov rbx,[rbp+rcx*8+40]
jmp return
inventory:
jmp code
return:
registersymbol(inventory)
[DISABLE]
inventory:
db 48 8B 5C CD 40
unregistersymbol(inventory)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+A06E4B
"DarkSoulsIII.exe"+A06E30: E8 1B 1D 00 00
"DarkSoulsIII.exe"+A06E35: 85 C0
"DarkSoulsIII.exe"+A06E37: 74 32
"DarkSoulsIII.exe"+A06E39: 85 DB
"DarkSoulsIII.exe"+A06E3B: 74 2E
"DarkSoulsIII.exe"+A06E3D: 8B CE
"DarkSoulsIII.exe"+A06E3F: E8 EC 1C 00 00
"DarkSoulsIII.exe"+A06E44: 85 C0
"DarkSoulsIII.exe"+A06E46: 78 23
"DarkSoulsIII.exe"+A06E48: 48 63 C8
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+A06E4B: 48 8B 5C CD 40
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+A06E50: 48 85 DB
"DarkSoulsIII.exe"+A06E53: 74 16
"DarkSoulsIII.exe"+A06E55: 48 8D 54 24 48
"DarkSoulsIII.exe"+A06E5A: 48 8B CB
"DarkSoulsIII.exe"+A06E5D: E8 AE F7 FF FF
"DarkSoulsIII.exe"+A06E62: 41 8B 0E
"DarkSoulsIII.exe"+A06E65: 39 08
"DarkSoulsIII.exe"+A06E67: 48 0F 44 FB
"DarkSoulsIII.exe"+A06E6B: 48 8B 5C 24 40
"DarkSoulsIII.exe"+A06E70: 48 8B 6C 24 50
}
</AssemblerScript>
</CheatEntry>

call DarkSoulsIII.exe+A08B50
test eax,eax
je DarkSoulsIII.exe+A06E6B
test ebx,ebx
je DarkSoulsIII.exe+A06E6B
mov ecx,esi
call DarkSoulsIII.exe+A08B30
test eax,eax
js DarkSoulsIII.exe+A06E6B
movsxd rcx,eax

- mov rbx,[rbp+rcx*8+40]
-

test rbx,rbx
je DarkSoulsIII.exe+A06E6B
lea rdx,[rsp+48]
mov rcx,rbx
call DarkSoulsIII.exe+A06610
mov ecx,[r14]
cmp [rax],ecx
cmove rdi,rbx
mov rbx,[rsp+40]
mov rbp,[rsp+50]

<CheatEntry>
<ID>10466</ID>
<Description>"No description"</Description>
<VariableType>String</VariableType>
<Length>16</Length>
<Unicode>1</Unicode>
<ZeroTerminate>1</ZeroTerminate>
<Address>DarkSoulsIII.exe+28FDA38</Address>
</CheatEntry>
<CheatEntry>
<ID>72906</ID>
<Description>"Armor Weight"</Description>
<VariableType>Float</VariableType>
<Address>DarkSoulsIII.exe+46DD068</Address>
<Offsets>
<Offset>68</Offset>
<Offset>68</Offset>
<Offset>B8</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72399</ID>
<Description>"Stop Falling"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(fall_distance,DarkSoulsIII.exe,F3 0F 11 81 B0 01 00 00)
alloc(newmem,$1000,fall_distance)
label(code)
label(return)
newmem:
push rax
mov rax,player_ptr
cmp [rax],rcx
pop rax
jne code
xorps xmm0,xmm0
code:
movss [rcx+000001B0],xmm0
jmp return
fall_distance:
jmp newmem
nop
nop
nop
return:
registersymbol(fall_distance)
aobscanmodule(stop_falling,DarkSoulsIII.exe,66 0F 7F B3 80 00 00 00 0F)
alloc(newmem2,$1000,stop_falling)
label(code2)
label(return2)
newmem2:
mov rcx,player_ptr
cmp [rcx],rbx

jne code2
movdqa [rbx+80],xmm6
code2:
movdqa [rbx+00000080],xmm6
jmp return2
stop_falling:
jmp newmem2
nop
nop
nop
return2:
registersymbol(stop_falling)
[DISABLE]
fall_distance:
db F3 0F 11 81 B0 01 00 00
unregistersymbol(fall_distance)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+9B6A2A
"DarkSoulsIII.exe"+9B69F5: 0F C6 C0 55
"DarkSoulsIII.exe"+9B69F9: F3 0F 58 C8
"DarkSoulsIII.exe"+9B69FD: 0F 2F CE
"DarkSoulsIII.exe"+9B6A00: 77 0F
+9B6A11
"DarkSoulsIII.exe"+9B6A02: 0F 28 81 80 00
000080]
"DarkSoulsIII.exe"+9B6A09: 66 0F 7F 81 70
0],xmm0
"DarkSoulsIII.exe"+9B6A11: C7 81 B0 01 00
00000000
"DarkSoulsIII.exe"+9B6A1B: EB 15
e+9B6A32
"DarkSoulsIII.exe"+9B6A1D: F3 0F 10 42 08
"DarkSoulsIII.exe"+9B6A22: F3 0F 58 81 B0
001B0]
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+9B6A2A: F3 0F 11 81 B0
],xmm0
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+9B6A32: 48 83 3D 8E D1
SoulsIII.exe+46C3BC8],00
"DarkSoulsIII.exe"+9B6A3A: 75 1F
e+9B6A5B
"DarkSoulsIII.exe"+9B6A3C: 4C 8D 0D 7D 18
I.exe+26C82C0]
"DarkSoulsIII.exe"+9B6A43: 4C 8D 05 46 DF
I.exe+3CE4990]
"DarkSoulsIII.exe"+9B6A4A: 48 8D 0D 8F F8
II.exe+26C62E0]
"DarkSoulsIII.exe"+9B6A51: BA B1 00 00 00
"DarkSoulsIII.exe"+9B6A56: E8 95 C7 CA 00
xe+16631F0
"DarkSoulsIII.exe"+9B6A5B: 80 3D 36 D1 D0
oulsIII.exe+46C3B98],00
"DarkSoulsIII.exe"+9B6A62: 74 0A
+9B6A6E

shufps xmm0,xmm0,55
addss xmm1,xmm0
comiss xmm1,xmm6
ja DarkSoulsIII.exe

00 00

- movaps xmm0,[rcx+00

01 00 00

- movdqa [rcx+0000017

00 00 00 00 00 - mov [rcx+000001B0],
- jmp DarkSoulsIII.ex
01 00 00

- movss xmm0,[rdx+08]
- addss xmm0,[rcx+000

01 00 00

- movss [rcx+000001B0

D0 03 00

- cmp qword ptr [Dark


- jne DarkSoulsIII.ex

D1 01

- lea r9,[DarkSoulsII

32 03

- lea r8,[DarkSoulsII

D0 01

- lea rcx,[DarkSoulsI
- mov edx,000000B1
- call DarkSoulsIII.e

03 00

- cmp byte ptr [DarkS


- je DarkSoulsIII.exe

"DarkSoulsIII.exe"+9B6A64: C7 83 B0 01 00 00 00 00 00 00 - mov [rbx+000001B0],


00000000
}
stop_falling:
db 66 0F 7F B3 80 00 00 00
unregistersymbol(stop_falling)
dealloc(newmem2)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+9B7570
"DarkSoulsIII.exe"+9B7539: 0F 58 35 90 6C 10 02
- addps xmm6,[DarkSou
lsIII.exe+2ABE1D0]
"DarkSoulsIII.exe"+9B7540: 0F 5C F1
- subps xmm6,xmm1
"DarkSoulsIII.exe"+9B7543: 0F 59 F0
- mulps xmm6,xmm0
"DarkSoulsIII.exe"+9B7546: 0F 58 F1
- addps xmm6,xmm1
"DarkSoulsIII.exe"+9B7549: E8 92 A1 E1 FF
- call DarkSoulsIII.e
xe+7D16E0
"DarkSoulsIII.exe"+9B754E: 80 BB E1 01 00 00 00
- cmp byte ptr [rbx+0
00001E1],00
"DarkSoulsIII.exe"+9B7555: 0F 28 83 80 00 00 00
- movaps xmm0,[rbx+00
000080]
"DarkSoulsIII.exe"+9B755C: C7 83 C0 01 00 00 00 00 80 3F - mov [rbx+000001C0],
3F800000
"DarkSoulsIII.exe"+9B7566: 66 0F 7F 83 90 00 00 00
- movdqa [rbx+0000009
0],xmm0
"DarkSoulsIII.exe"+9B756E: 75 08
- jne DarkSoulsIII.ex
e+9B7578
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+9B7570: 66 0F 7F B3 80 00 00 00
- movdqa [rbx+0000008
0],xmm6
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+9B7578: 0F 57 C0
- xorps xmm0,xmm0
"DarkSoulsIII.exe"+9B757B: C6 83 E1 01 00 00 00
- mov byte ptr [rbx+0
00001E1],00
"DarkSoulsIII.exe"+9B7582: 66 0F 7F 83 80 01 00 00
- movdqa [rbx+0000018
0],xmm0
"DarkSoulsIII.exe"+9B758A: 66 0F 7F 83 90 01 00 00
- movdqa [rbx+0000019
0],xmm0
"DarkSoulsIII.exe"+9B7592: 48 8B 4C 24 30
- mov rcx,[rsp+30]
"DarkSoulsIII.exe"+9B7597: 48 33 CC
- xor rcx,rsp
"DarkSoulsIII.exe"+9B759A: E8 F1 5F 50 01
- call DarkSoulsIII.e
xe+1EBD590
"DarkSoulsIII.exe"+9B759F: 0F 28 74 24 40
- movaps xmm6,[rsp+40
]
"DarkSoulsIII.exe"+9B75A4: 48 83 C4 50
- add rsp,50
"DarkSoulsIII.exe"+9B75A8: 5B
- pop rbx
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72430</ID>
<Description>"Equipped Models"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(equipped,DarkSoulsIII.exe,8B 04 1E 48 8D 14 3E)
alloc(newmem,$1000,equipped)

label(code)
label(return)
label(equipped_ptr)
newmem:
cmp rbp,16
jg code
lea rax,[rsi+rbx]
mov rdx,equipped_ptr
mov [rdx+rbp*8],rax
code:
mov eax,[rsi+rbx]
lea rdx,[rsi+rdi]
jmp return
equipped_ptr:
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
dq 0
equipped:
jmp newmem
nop
nop
return:
registersymbol(equipped)
registersymbol(equipped_ptr)
[DISABLE]
equipped:
db 8B 04 1E 48 8D 14 3E
unregistersymbol(equipped)
unregistersymbol(equipped_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+84E1A0
"DarkSoulsIII.exe"+84E17E: 89 41 14

- mov [rcx+14],eax

"DarkSoulsIII.exe"+84E181: 8B 42 18
"DarkSoulsIII.exe"+84E184: 48 2B F1
"DarkSoulsIII.exe"+84E187: 89 41 18
"DarkSoulsIII.exe"+84E18A: 8B 42 1C
"DarkSoulsIII.exe"+84E18D: BD 16 00 00 00
"DarkSoulsIII.exe"+84E192: 89 41 1C
"DarkSoulsIII.exe"+84E195: 8B 42 20
"DarkSoulsIII.exe"+84E198: 89 41 20
"DarkSoulsIII.exe"+84E19B: 0F 1F 44 00 00
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+84E1A0: 8B 04 1E
"DarkSoulsIII.exe"+84E1A3: 48 8D 14 3E
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+84E1A7: 48 8B CF
"DarkSoulsIII.exe"+84E1AA: 89 03
"DarkSoulsIII.exe"+84E1AC: E8 7F B8 1B 00
A09A30
"DarkSoulsIII.exe"+84E1B1: 48 83 C7 04
"DarkSoulsIII.exe"+84E1B5: 48 8D 5B 04
"DarkSoulsIII.exe"+84E1B9: 48 FF CD
"DarkSoulsIII.exe"+84E1BC: 75 E2
4E1A0
"DarkSoulsIII.exe"+84E1BE: 33 D2
"DarkSoulsIII.exe"+84E1C0: 49 8D 86 DC 00 00 00
"DarkSoulsIII.exe"+84E1C7: 66 0F 1F 84 00 00 00 00 00 }
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72431</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+8</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72432</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+10</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72433</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+18</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72434</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+20</Address>

mov
sub
mov
mov
mov
mov
mov
mov
nop

eax,[rdx+18]
rsi,rcx
[rcx+18],eax
eax,[rdx+1C]
ebp,00000016
[rcx+1C],eax
eax,[rdx+20]
[rcx+20],eax
[rax+rax+00]

mov eax,[rsi+rbx]
lea rdx,[rsi+rdi]
mov rcx,rdi
mov [rbx],eax
call DarkSoulsIII.exe+
add
lea
dec
jne

rdi,04
rbx,[rbx+04]
rbp
DarkSoulsIII.exe+8

xor edx,edx
lea rax,[r14+000000DC]
nop [rax+rax+00000000]

<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72435</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+28</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72436</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+30</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72437</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+38</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72438</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+40</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72439</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+48</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72440</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+50</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72441</ID>

<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+58</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72442</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+60</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72443</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+68</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72444</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+70</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72445</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+78</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72446</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+80</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72447</ID>
<Description>"Right Hand Weapon 3"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+88</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>

</CheatEntry>
<CheatEntry>
<ID>72448</ID>
<Description>"Left Hand Weapon 3"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+90</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72449</ID>
<Description>"Right Hand Weapon 2"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+98</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72450</ID>
<Description>"Left Hand Weapon 2"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+a0</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72451</ID>
<Description>"Right Hand Weapon 1"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+a8</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72452</ID>
<Description>"Left Hand Weapon 1"</Description>
<VariableType>4 Bytes</VariableType>
<Address>equipped_ptr+b0</Address>
<Offsets>
<Offset>0</Offset>
</Offsets>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72480</ID>
<Description>"Resolution"</Description>
<VariableType>4 Bytes</VariableType>
<Address>DarkSoulsIII.exe+48a5c80</Address>
<Offsets>
<Offset>198</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72481</ID>
<Description>"Equipped Slot"</Description>

<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(equipped_slot,DarkSoulsIII.exe,8B 44 99 04 48 8B 5C 24 30)
alloc(newmem,$1000,equipped_slot)
label(code)
label(return)
newmem:
code:
mov eax,[rcx+rbx*4+04]
mov rbx,[rsp+30]
jmp return
equipped_slot:
jmp code
nop
nop
nop
nop
return:
registersymbol(equipped_slot)
[DISABLE]
equipped_slot:
db 8B 44 99 04 48 8B 5C 24 30
unregistersymbol(equipped_slot)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+9D0A4F
"DarkSoulsIII.exe"+9D0A25: 4C 8D 05 24 E2 E4 01 - lea r8,[DarkSoulsIII.exe+281
EC50]
"DarkSoulsIII.exe"+9D0A2C: 48 8D 0D 35 E2 E4 01 - lea rcx,[DarkSoulsIII.exe+28
1EC68]
"DarkSoulsIII.exe"+9D0A33: 44 8B CB
- mov r9d,ebx
"DarkSoulsIII.exe"+9D0A36: BA 76 00 00 00
- mov edx,00000076
"DarkSoulsIII.exe"+9D0A3B: E8 B0 27 C9 00
- call DarkSoulsIII.exe+16631F
0
"DarkSoulsIII.exe"+9D0A40: 8B 44 9F 04
- mov eax,[rdi+rbx*4+04]
"DarkSoulsIII.exe"+9D0A44: 48 8B 5C 24 30
- mov rbx,[rsp+30]
"DarkSoulsIII.exe"+9D0A49: 48 83 C4 20
- add rsp,20
"DarkSoulsIII.exe"+9D0A4D: 5F
- pop rdi
"DarkSoulsIII.exe"+9D0A4E: C3
- ret
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+9D0A4F: 8B 44 99 04
- mov eax,[rcx+rbx*4+04]
"DarkSoulsIII.exe"+9D0A53: 48 8B 5C 24 30
- mov rbx,[rsp+30]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+9D0A58: 48 83 C4 20
- add rsp,20
"DarkSoulsIII.exe"+9D0A5C: 5F
- pop rdi
"DarkSoulsIII.exe"+9D0A5D: C3
- ret
"DarkSoulsIII.exe"+9D0A5E: CC
- int 3
"DarkSoulsIII.exe"+9D0A5F: CC
- int 3
"DarkSoulsIII.exe"+9D0A60: 44 0F B7 41 18
- movzx r8d,word ptr [rcx+18]
"DarkSoulsIII.exe"+9D0A65: 0F B7 41 14
- movzx eax,word ptr [rcx+14]

"DarkSoulsIII.exe"+9D0A69: 48 8B D1
- mov rdx,rcx
"DarkSoulsIII.exe"+9D0A6C: 66 83 E0 03
- and ax,03
"DarkSoulsIII.exe"+9D0A70: 66 41 C1 E0 02
- shl r8w,02
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72504</ID>
<Description>"Movement Multipliers"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(move_multiplier,DarkSoulsIII.exe,F3 0F 11 43 10 E9)
alloc(newmem,$1000,move_multiplier)
label(code)
label(return)
newmem:
code:
mov [rbx+10],(float)3
jmp return
move_multiplier:
jmp code
return:
registersymbol(move_multiplier)
[DISABLE]
move_multiplier:
db F3 0F 11 43 10
unregistersymbol(move_multiplier)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+974B80
"DarkSoulsIII.exe"+974B4F: 4D 85 E4
"DarkSoulsIII.exe"+974B52: 0F 84 0D 08 00
5
"DarkSoulsIII.exe"+974B58: 49 8B 45 00
"DarkSoulsIII.exe"+974B5C: 48 8B 88 70 1F
"DarkSoulsIII.exe"+974B63: 48 8B 99 B8 00
"DarkSoulsIII.exe"+974B6A: 48 85 DB
"DarkSoulsIII.exe"+974B6D: 0F 84 F2 07 00
5
"DarkSoulsIII.exe"+974B73: BA 02 00 00 00
"DarkSoulsIII.exe"+974B78: 49 8B CC
"DarkSoulsIII.exe"+974B7B: E8 90 9E 3D 00
A10
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+974B80: F3 0F 11 43 10
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+974B85: E9 DB 07 00 00
65
"DarkSoulsIII.exe"+974B8A: 4D 85 E4
"DarkSoulsIII.exe"+974B8D: 0F 84 D2 07 00
5
"DarkSoulsIII.exe"+974B93: F3 0F 10 35 05

00
00 00
00 00
00

- test r12,r12
- je DarkSoulsIII.exe+97536
-

mov rax,[r13+00]
mov rcx,[rax+00001F70]
mov rbx,[rcx+000000B8]
test rbx,rbx
je DarkSoulsIII.exe+97536

- mov edx,00000002
- mov rcx,r12
- call DarkSoulsIII.exe+D4E
- movss [rbx+10],xmm0
- jmp DarkSoulsIII.exe+9753
00

- test r12,r12
- je DarkSoulsIII.exe+97536

B4 37 03 - movss xmm6,[DarkSoulsIII.

exe+3CEFFA0]
"DarkSoulsIII.exe"+974B9B: C7 44 24 50 00 00 80 3F - mov [rsp+50],3F800000
"DarkSoulsIII.exe"+974BA3: C7 44 24 54 00 00 80 3F - mov [rsp+54],3F800000
"DarkSoulsIII.exe"+974BAB: C7 44 24 58 00 00 80 3F - mov [rsp+58],3F800000
"DarkSoulsIII.exe"+974BB3: C7 44 24 5C 00 00 80 3F - mov [rsp+5C],3F800000
"DarkSoulsIII.exe"+974BBB: 0F 28 44 24 50
- movaps xmm0,[rsp+50]
"DarkSoulsIII.exe"+974BC0: 66 0F 7F 45 90
- movdqa [rbp-70],xmm0
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72498</ID>
<Description>"Movement Multiplier"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(run,DarkSoulsIII.exe,F3 0F 59 88 D0 02 00 00)
alloc(newmem,$1000,run)
label(code)
label(return)
newmem:
code:
mov [rax+2D0],(float)3
mulss xmm1,[rax+000002D0]
jmp return
run:
jmp code
nop
nop
nop
return:
registersymbol(run)
[DISABLE]
run:
db F3 0F 59 88 D0 02 00 00
unregistersymbol(run)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+5D85A4
"DarkSoulsIII.exe"+5D857D: 48 8B 83 18 03 00 00
"DarkSoulsIII.exe"+5D8584: 48 8B C8
"DarkSoulsIII.exe"+5D8587: 48 85 C0
"DarkSoulsIII.exe"+5D858A: 75 07
D8593
"DarkSoulsIII.exe"+5D858C: 48 8B 8B 10 01 00 00
"DarkSoulsIII.exe"+5D8593: 48 85 C9
"DarkSoulsIII.exe"+5D8596: 74 14
85AC
"DarkSoulsIII.exe"+5D8598: 48 85 C0
"DarkSoulsIII.exe"+5D859B: 75 07
D85A4
"DarkSoulsIII.exe"+5D859D: 48 8B 83 10 01 00 00
// ---------- INJECTING HERE ----------

mov rax,[rbx+00000318]
mov rcx,rax
test rax,rax
jne DarkSoulsIII.exe+5

- mov rcx,[rbx+00000110]
- test rcx,rcx
- je DarkSoulsIII.exe+5D
- test rax,rax
- jne DarkSoulsIII.exe+5
- mov rax,[rbx+00000110]

"DarkSoulsIII.exe"+5D85A4: F3 0F 59 88 D0 02 00 00
- mulss xmm1,[rax+000002
D0]
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+5D85AC: F3 0F 10 C1
- movss xmm0,xmm1
"DarkSoulsIII.exe"+5D85B0: 48 8D 54 24 30
- lea rdx,[rsp+30]
"DarkSoulsIII.exe"+5D85B5: 4C 8B C7
- mov r8,rdi
"DarkSoulsIII.exe"+5D85B8: 48 8B CF
- mov rcx,rdi
"DarkSoulsIII.exe"+5D85BB: 0F C6 C0 00
- shufps xmm0,xmm0,00
"DarkSoulsIII.exe"+5D85BF: 0F 59 07
- mulps xmm0,[rdi]
"DarkSoulsIII.exe"+5D85C2: 0F 29 07
- movaps [rdi],xmm0
"DarkSoulsIII.exe"+5D85C5: F3 0F 11 8B 84 03 00 00
- movss [rbx+00000384],x
mm1
"DarkSoulsIII.exe"+5D85CD: E8 7E F0 C7 00
- call DarkSoulsIII.exe+
1257650
"DarkSoulsIII.exe"+5D85D2: 48 8B 4C 24 50
- mov rcx,[rsp+50]
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72501</ID>
<Description>"Run Multiplier"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(run_multiplier,DarkSoulsIII.exe,C7 41 10 00 00 80 3F 48 C7 81)
registersymbol(run_multiplier)
[DISABLE]
run_multiplier+3:
db 00 00 80 3F
unregistersymbol(run_multiplier)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+97A011
"DarkSoulsIII.exe"+979FEF: CC
"DarkSoulsIII.exe"+979FF0: 48 89 5C 24 08
"DarkSoulsIII.exe"+979FF5: 48 89 6C 24 10
"DarkSoulsIII.exe"+979FFA: 48 89 74 24 18
"DarkSoulsIII.exe"+979FFF: 48 89 7C 24 20
"DarkSoulsIII.exe"+97A004: 41 54
"DarkSoulsIII.exe"+97A006: 41 56
"DarkSoulsIII.exe"+97A008: 41 57
"DarkSoulsIII.exe"+97A00A: 48 83 EC 60
"DarkSoulsIII.exe"+97A00E: 48 8B E9
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+97A011: C7 41 10 00 00
00000
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+97A018: 48 C7 81 B0 02
0],00000000
"DarkSoulsIII.exe"+97A023: C6 41 14 00
x+14],00
"DarkSoulsIII.exe"+97A027: 66 C7 81 68 01
x+00000168],0000
"DarkSoulsIII.exe"+97A030: C7 81 6C 01 00
C],BF800000
"DarkSoulsIII.exe"+97A03A: C7 81 B8 02 00
8],3F800000

80 3F

int 3
mov [rsp+08],rbx
mov [rsp+10],rbp
mov [rsp+18],rsi
mov [rsp+20],rdi
push r12
push r14
push r15
sub rsp,60
mov rbp,rcx

- mov [rcx+10],3F8

00 00 00 00 00 00 - mov [rcx+000002B
- mov byte ptr [rc
00 00 00 00

- mov word ptr [rc

00 00 00 80 BF

- mov [rcx+0000016

00 00 00 80 3F

- mov [rcx+000002B

"DarkSoulsIII.exe"+97A044: 33 FF
"DarkSoulsIII.exe"+97A046: 48 8D 99 B0 01 00 00
001B0]
"DarkSoulsIII.exe"+97A04D: 0F 1F 00
"DarkSoulsIII.exe"+97A050: 48 8D 4C 24 30
"DarkSoulsIII.exe"+97A055: C6 44 24 20 00
p+20],00
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72502</ID>
<Description>"Multiplier"</Description>
<VariableType>Float</VariableType>
<Address>run_multiplier+3</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72528</ID>
<Description>"iframes most likely"</Description>
<VariableType>8 Bytes</VariableType>
<Address>"DarkSoulsIII.exe"+046C4AA8</Address>
<Offsets>
<Offset>654</Offset>
<Offset>618</Offset>
<Offset>58</Offset>
<Offset>80</Offset>
</Offsets>
<CheatEntries>
<CheatEntry>
<ID>73078</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>-2c</Address>
<CheatEntries>
<CheatEntry>
<ID>73079</ID>
<Description>"No description"</Description>
<VariableType>4 Bytes</VariableType>
<Address>+1a4</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72536</ID>
<Description>"Poise???"</Description>
<VariableType>Float</VariableType>
<Address>"DarkSoulsIII.exe"+046C4AA8</Address>
<Offsets>
<Offset>814</Offset>
<Offset>618</Offset>
<Offset>58</Offset>
<Offset>80</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>72845</ID>

xor edi,edi
lea rbx,[rcx+000
nop [rax]
lea rcx,[rsp+30]
mov byte ptr [rs

<Description>"Current Spell Pointer"</Description>


<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(last_spell,DarkSoulsIII.exe,48 8B 4B 08 8B 7C 24 28)
alloc(newmem,$1000,last_spell)
label(code)
label(return)
newmem:
code:
mov
mov
mov
mov
jmp

rcx,last_spell_ptr
[rcx],r9
rcx,[rbx+08]
edi,[rsp+28]
return

last_spell_ptr:
dq 0
last_spell:
jmp code
nop
nop
nop
return:
registersymbol(last_spell)
registersymbol(last_spell_ptr)
[DISABLE]
last_spell:
db 48 8B 4B 08 8B 7C 24 28
unregistersymbol(last_spell)
unregistersymbol(last_spell_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+62467F
"DarkSoulsIII.exe"+62465E: CC
"DarkSoulsIII.exe"+62465F: CC
"DarkSoulsIII.exe"+624660: 48 89 5C 24 08
"DarkSoulsIII.exe"+624665: 48 89 74 24 10
"DarkSoulsIII.exe"+62466A: 57
"DarkSoulsIII.exe"+62466B: 48 83 EC 30
"DarkSoulsIII.exe"+62466F: 48 8B F2
"DarkSoulsIII.exe"+624672: 48 8D 54 24 20
"DarkSoulsIII.exe"+624677: 48 8B D9
"DarkSoulsIII.exe"+62467A: E8 C1 1A 7B 00
140
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+62467F: 48 8B 4B 08
"DarkSoulsIII.exe"+624683: 8B 7C 24 28
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+624687: 48 85 C9
"DarkSoulsIII.exe"+62468A: 0F 84 A0 00 00 00
0

int 3
int 3
mov [rsp+08],rbx
mov [rsp+10],rsi
push rdi
sub rsp,30
mov rsi,rdx
lea rdx,[rsp+20]
mov rbx,rcx
call DarkSoulsIII.exe+DD6

- mov rcx,[rbx+08]
- mov edi,[rsp+28]
- test rcx,rcx
- je DarkSoulsIII.exe+62473

"DarkSoulsIII.exe"+624690: 80 79 22 00
- cmp byte ptr [rcx+22],00
"DarkSoulsIII.exe"+624694: 75 2C
- jne DarkSoulsIII.exe+6246
C2
"DarkSoulsIII.exe"+624696: 48 8B CE
- mov rcx,rsi
"DarkSoulsIII.exe"+624699: E8 22 5F 3B 00
- call DarkSoulsIII.exe+9DA
5C0
"DarkSoulsIII.exe"+62469E: 66 0F 6E CF
- movd xmm1,edi
"DarkSoulsIII.exe"+6246A2: 0F 5B C9
- cvtdq2ps xmm1,xmm1
"DarkSoulsIII.exe"+6246A5: F3 0F 59 C1
- mulss xmm0,xmm1
"DarkSoulsIII.exe"+6246A9: E8 22 EE 03 01
- call DarkSoulsIII.exe+166
34D0
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72883</ID>
<Description>"Covenant Pointer"</Description>
<Options moHideChildren="1"/>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(covenant,DarkSoulsIII.exe,0F B6 40 46 C3 83)
alloc(newmem,$1000,covenant)
label(code)
label(return)
label(covenant_ptr)
newmem:
code:
push rcx
mov rcx,covenant_ptr
mov [rcx],rax
pop rcx
movzx eax,byte ptr [rax+46]
ret
jmp return
covenant_ptr:
dq 0
covenant:
jmp code
return:
registersymbol(covenant)
registersymbol(covenant_ptr)
[DISABLE]
covenant:
db 0F B6 40 46 C3
unregistersymbol(covenant)
unregistersymbol(covenant_ptr)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+DC7879
"DarkSoulsIII.exe"+DC7869: CC
"DarkSoulsIII.exe"+DC786A: CC

- int 3
- int 3

"DarkSoulsIII.exe"+DC786B: CC
- int 3
"DarkSoulsIII.exe"+DC786C: CC
- int 3
"DarkSoulsIII.exe"+DC786D: CC
- int 3
"DarkSoulsIII.exe"+DC786E: CC
- int 3
"DarkSoulsIII.exe"+DC786F: CC
- int 3
"DarkSoulsIII.exe"+DC7870: 48 8B 41 08
- mov rax,[rcx+08]
"DarkSoulsIII.exe"+DC7874: 48 85 C0
- test rax,rax
"DarkSoulsIII.exe"+DC7877: 74 05
- je DarkSoulsIII.exe+DC
787E
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+DC7879: 0F B6 40 46
- movzx eax,byte ptr [ra
x+46]
"DarkSoulsIII.exe"+DC787D: C3
- ret
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+DC787E: 83 C8 FF
- or eax,-01
"DarkSoulsIII.exe"+DC7881: C3
- ret
"DarkSoulsIII.exe"+DC7882: CC
- int 3
"DarkSoulsIII.exe"+DC7883: CC
- int 3
"DarkSoulsIII.exe"+DC7884: CC
- int 3
"DarkSoulsIII.exe"+DC7885: CC
- int 3
"DarkSoulsIII.exe"+DC7886: CC
- int 3
"DarkSoulsIII.exe"+DC7887: CC
- int 3
"DarkSoulsIII.exe"+DC7888: CC
- int 3
"DarkSoulsIII.exe"+DC7889: CC
- int 3
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>72884</ID>
<Description>"Covenant ID"</Description>
<DropDownList DisplayValueAsItem="1">0:None
1:Blade of the
2:Warrior of Sunlight
3:Mound-makers
5:Rosaria's Fingers
6:Watchdogs of Farron
7:Aldrich Faithful
8:Way of Blue
9:Blue Sentinels
</DropDownList>
<VariableType>Byte</VariableType>
<Address>covenant_ptr</Address>
<Offsets>
<Offset>46</Offset>
</Offsets>
</CheatEntry>
</CheatEntries>
</CheatEntry>
<CheatEntry>
<ID>72898</ID>
<Description>"Change Covenant"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(covenant,DarkSoulsIII.exe,8B D0 48 89 6C 24 28 E8)
alloc(newmem,$1000,covenant)
label(code)
label(return)

newmem:
code:
// change eax to covenant identifer
mov edx,eax
mov [rsp+28],rbp
jmp return
covenant:
jmp code
nop
nop
return:
registersymbol(covenant)
[DISABLE]
covenant:
db 8B D0 48 89 6C 24 28
unregistersymbol(covenant)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+8A3428
"DarkSoulsIII.exe"+8A33F5: 79 02
A33F9
"DarkSoulsIII.exe"+8A33F7: 8B DD
"DarkSoulsIII.exe"+8A33F9: 88 9F 07 09 00
"DarkSoulsIII.exe"+8A33FF: E8 5C 3B D8 FF
626F60
"DarkSoulsIII.exe"+8A3404: 48 8D 8F 28 02
"DarkSoulsIII.exe"+8A340B: BA 04 00 00 00
"DarkSoulsIII.exe"+8A3410: 89 87 48 08 00
"DarkSoulsIII.exe"+8A3416: E8 E5 4D CD FF
578200
"DarkSoulsIII.exe"+8A341B: 48 8D 4C 24 20
"DarkSoulsIII.exe"+8A3420: C7 44 24 20 FF
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+8A3428: 8B D0
"DarkSoulsIII.exe"+8A342A: 48 89 6C 24 28
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+8A342F: E8 5C 44 52 00
DC7890
"DarkSoulsIII.exe"+8A3434: 48 39 6C 24 28
"DarkSoulsIII.exe"+8A3439: 74 12
344D
"DarkSoulsIII.exe"+8A343B: 48 8D 4C 24 20
"DarkSoulsIII.exe"+8A3440: E8 2B 44 52 00
DC7870
"DarkSoulsIII.exe"+8A3445: 88 87 F7 00 00
"DarkSoulsIII.exe"+8A344B: EB 07
A3454
"DarkSoulsIII.exe"+8A344D: 40 88 AF F7 00
"DarkSoulsIII.exe"+8A3454: 48 8B CE
"DarkSoulsIII.exe"+8A3457: E8 D4 32 00 00
8A6730
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>

- jns DarkSoulsIII.exe+8
00
00 00

- mov ebx,ebp
- mov [rdi+00000907],bl
- call DarkSoulsIII.exe+

00

lea rcx,[rdi+00000228]
mov edx,00000004
mov [rdi+00000848],eax
call DarkSoulsIII.exe+

FF FF FF

- lea rcx,[rsp+20]
- mov [rsp+20],FFFFFFFF
- mov edx,eax
- mov [rsp+28],rbp
- call DarkSoulsIII.exe+
- cmp [rsp+28],rbp
- je DarkSoulsIII.exe+8A
- lea rcx,[rsp+20]
- call DarkSoulsIII.exe+

00

- mov [rdi+000000F7],al
- jmp DarkSoulsIII.exe+8

00 00

- mov [rdi+000000F7],bpl
- mov rcx,rsi
- call DarkSoulsIII.exe+

<ID>72907</ID>
<Description>"Game Values"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(game_values,DarkSoulsIII.exe,48 8D 14 80 44 89 44 D1 1C)
//"DarkSoulsIII.exe"+DC0EFB
registersymbol(game_values)
[DISABLE]
unregistersymbol(game_values)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+DC0EFB
"DarkSoulsIII.exe"+DC0EE9: 5D
- pop rbp
"DarkSoulsIII.exe"+DC0EEA: 5B
- pop rbx
"DarkSoulsIII.exe"+DC0EEB: C3
- ret
"DarkSoulsIII.exe"+DC0EEC: CC
- int 3
"DarkSoulsIII.exe"+DC0EED: CC
- int 3
"DarkSoulsIII.exe"+DC0EEE: CC
- int 3
"DarkSoulsIII.exe"+DC0EEF: CC
- int 3
"DarkSoulsIII.exe"+DC0EF0: 81 FA FC 01 00 00
- cmp edx,000001FC
"DarkSoulsIII.exe"+DC0EF6: 77 0C
- ja DarkSoulsIII.exe+DC
0F04
"DarkSoulsIII.exe"+DC0EF8: 48 63 C2
- movsxd rax,edx
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+DC0EFB: 48 8D 14 80
- lea rdx,[rax+rax*4]
"DarkSoulsIII.exe"+DC0EFF: 44 89 44 D1 1C
- mov [rcx+rdx*8+1C],r8d
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+DC0F04: F3 C3
- repe ret
"DarkSoulsIII.exe"+DC0F06: CC
- int 3
"DarkSoulsIII.exe"+DC0F07: CC
- int 3
"DarkSoulsIII.exe"+DC0F08: CC
- int 3
"DarkSoulsIII.exe"+DC0F09: CC
- int 3
"DarkSoulsIII.exe"+DC0F0A: CC
- int 3
"DarkSoulsIII.exe"+DC0F0B: CC
- int 3
"DarkSoulsIII.exe"+DC0F0C: CC
- int 3
"DarkSoulsIII.exe"+DC0F0D: CC
- int 3
"DarkSoulsIII.exe"+DC0F0E: CC
- int 3
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72909</ID>
<Description>"Respecs (display only)"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(respec,DarkSoulsIII.exe,8B 77 1C BB 0A 00 00 00)
alloc(newmem,$1000,respec)
label(code)
label(return)
newmem:
code:
mov esi,[rdi+1C]
mov esi,6

mov ebx,0000000A
jmp return
respec:
jmp code
nop
nop
nop
return:
registersymbol(respec)
[DISABLE]
respec:
db 8B 77 1C BB 0A 00 00 00
unregistersymbol(respec)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+DC210F
"DarkSoulsIII.exe"+DC20E1: 66 44 89 64 24 30
"DarkSoulsIII.exe"+DC20E7: C6 44 24 58 01
01
"DarkSoulsIII.exe"+DC20EC: F6 47 24 01
,01
"DarkSoulsIII.exe"+DC20F0: 74 1D
210F
"DarkSoulsIII.exe"+DC20F2: 45 33 C0
"DarkSoulsIII.exe"+DC20F5: 48 8D 15 B4 CF EC 02
exe+3C8F0B0]
"DarkSoulsIII.exe"+DC20FC: 48 8D 4C 24 30
"DarkSoulsIII.exe"+DC2101: E8 9A 02 24 FF
23A0
"DarkSoulsIII.exe"+DC2106: 80 67 24 FE
-02
"DarkSoulsIII.exe"+DC210A: E9 1A 01 00 00
C2229
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+DC210F: 8B 77 1C
"DarkSoulsIII.exe"+DC2112: BB 0A 00 00 00
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+DC2117: 66 44 89 64 24 60
"DarkSoulsIII.exe"+DC211D: 33 D2
"DarkSoulsIII.exe"+DC211F: 44 8D 43 74
"DarkSoulsIII.exe"+DC2123: 48 8D 4C 24 62
"DarkSoulsIII.exe"+DC2128: E8 03 AB 0F 01
1EBCC30
"DarkSoulsIII.exe"+DC212D: 33 D2
"DarkSoulsIII.exe"+DC212F: 44 8D 43 74
"DarkSoulsIII.exe"+DC2133: 48 8D 4D E2
"DarkSoulsIII.exe"+DC2137: E8 F4 AA 0F 01
1EBCC30
"DarkSoulsIII.exe"+DC213C: B8 30 00 00 00
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>72921</ID>

- mov [rsp+30],r12w
- mov byte ptr [rsp+58],
- test byte ptr [rdi+24]
- je DarkSoulsIII.exe+DC
- xor r8d,r8d
- lea rdx,[DarkSoulsIII.
- lea rcx,[rsp+30]
- call DarkSoulsIII.exe+
- and byte ptr [rdi+24],
- jmp DarkSoulsIII.exe+D
- mov esi,[rdi+1C]
- mov ebx,0000000A
-

mov [rsp+60],r12w
xor edx,edx
lea r8d,[rbx+74]
lea rcx,[rsp+62]
call DarkSoulsIII.exe+

xor edx,edx
lea r8d,[rbx+74]
lea rcx,[rbp-1E]
call DarkSoulsIII.exe+

- mov eax,00000030

<Description>"NPC Flags"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(npc_flags,DarkSoulsIII.exe,F6 81 09 1A 00 00 04 0F 85 C9)
alloc(newmem,$1000,npc_flags)
label(code)
label(return)
newmem:
code:
test byte ptr [rcx+00001A09],04
jmp return
npc_flags:
jmp code
nop
nop
return:
registersymbol(npc_flags)
[DISABLE]
npc_flags:
db F6 81 09 1A 00 00 04
unregistersymbol(npc_flags)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+5B1BC4
"DarkSoulsIII.exe"+5B1B8F: 4C 89 74 24 60
"DarkSoulsIII.exe"+5B1B94: 48 8B 42 08
"DarkSoulsIII.exe"+5B1B98: 45 0F B6 F0
"DarkSoulsIII.exe"+5B1B9C: 48 8B 88 70 1F
"DarkSoulsIII.exe"+5B1BA3: 48 8B 81 80 00
"DarkSoulsIII.exe"+5B1BAA: 8B 88 14 01 00
"DarkSoulsIII.exe"+5B1BB0: 81 F9 26 0C 00
"DarkSoulsIII.exe"+5B1BB6: 89 8F 04 06 00
"DarkSoulsIII.exe"+5B1BBC: 48 8B 4A 08
"DarkSoulsIII.exe"+5B1BC0: 45 0F 44 F7
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+5B1BC4: F6 81 09 1A 00
,04
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+5B1BCB: 0F 85 C9 00 00
"DarkSoulsIII.exe"+5B1BD1: E8 DA F8 2B 00
"DarkSoulsIII.exe"+5B1BD6: 84 C0
"DarkSoulsIII.exe"+5B1BD8: 0F 85 BC 00 00
"DarkSoulsIII.exe"+5B1BDE: 44 84 BF C4 02
"DarkSoulsIII.exe"+5B1BE5: 0F 85 AF 00 00
"DarkSoulsIII.exe"+5B1BEB: 8B 87 C4 02 00
"DarkSoulsIII.exe"+5B1BF1: D1 E8
"DarkSoulsIII.exe"+5B1BF3: 41 84 C7
"DarkSoulsIII.exe"+5B1BF6: 0F 85 9E 00 00
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>

00 00 00 00 00
00
00
-

mov [rsp+60],r14
mov rax,[rdx+08]
movzx r14d,r8l
mov rcx,[rax+00001F70]
mov rax,[rcx+00000080]
mov ecx,[rax+00000114]
cmp ecx,00000C26
mov [rdi+00000604],ecx
mov rcx,[rdx+08]
cmove r14d,r15d

00 04 - test byte ptr [rcx+00001A09]


00

00
00 00 00
00
00
-

jne DarkSoulsIII.exe+5B1C9A
call DarkSoulsIII.exe+8714B0
test al,al
jne DarkSoulsIII.exe+5B1C9A
test [rdi+000002C4],r15l
jne DarkSoulsIII.exe+5B1C9A
mov eax,[rdi+000002C4]
shr eax,1
test r15l,al
jne DarkSoulsIII.exe+5B1C9A

<ID>73045</ID>
<Description>"self parry"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(parry1,DarkSoulsIII.exe,48 C1 E8 2A A8 01)
parry1:
db B0 01 90 90
registersymbol(parry1)
[DISABLE]
parry1:
db 48 C1 E8 2A
unregistersymbol(parry1)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+866683
"DarkSoulsIII.exe"+86664D: 75 1F
6E
"DarkSoulsIII.exe"+86664F: 4C 8D 0D 7A 1C E6 01
26C82D0]
"DarkSoulsIII.exe"+866656: 4C 8D 05 33 E5 47 03
3CE4B90]
"DarkSoulsIII.exe"+86665D: 48 8D 0D 7C FC E5 01
+26C62E0]
"DarkSoulsIII.exe"+866664: BA B1 00 00 00
"DarkSoulsIII.exe"+866669: E8 A2 CB DF 00
3210
"DarkSoulsIII.exe"+86666E: 49 8B 86 70 1F 00 00
"DarkSoulsIII.exe"+866675: 0F B6 1D 2C E5 E5 03
oulsIII.exe+46C4BA8]
"DarkSoulsIII.exe"+86667C: 48 8B 08
"DarkSoulsIII.exe"+86667F: 48 8B 41 58
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+866683: 48 C1 E8 2A
"DarkSoulsIII.exe"+866687: A8 01
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+866689: 74 09
4
"DarkSoulsIII.exe"+86668B: F6 87 E8 00 00 00 04
E8],04
"DarkSoulsIII.exe"+866692: 74 08
C
"DarkSoulsIII.exe"+866694: 84 DB
"DarkSoulsIII.exe"+866696: 0F 84 2E 01 00 00
A
"DarkSoulsIII.exe"+86669C: 48 8B 06
"DarkSoulsIII.exe"+86669F: 48 8B CE
"DarkSoulsIII.exe"+8666A2: 0F 29 B4 24 50 03 00 00
6
"DarkSoulsIII.exe"+8666AA: FF 90 78 02 00 00
278]
"DarkSoulsIII.exe"+8666B0: 48 8D 8C 24 50 02 00 00
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>73096</ID>
<Description>"Fall Death"</Description>

- jne DarkSoulsIII.exe+8666
- lea r9,[DarkSoulsIII.exe+
- lea r8,[DarkSoulsIII.exe+
- lea rcx,[DarkSoulsIII.exe
- mov edx,000000B1
- call DarkSoulsIII.exe+166
- mov rax,[r14+00001F70]
- movzx ebx,byte ptr [DarkS
- mov rcx,[rax]
- mov rax,[rcx+58]
- shr rax,2A
- test al,01
- je DarkSoulsIII.exe+86669
- test byte ptr [rdi+000000
- je DarkSoulsIII.exe+86669
- test bl,bl
- je DarkSoulsIII.exe+8667C
- mov rax,[rsi]
- mov rcx,rsi
- movaps [rsp+00000350],xmm
- call qword ptr [rax+00000
- lea rcx,[rsp+00000250]

<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(fall_death,DarkSoulsIII.exe,0F 97 C3 E9 EC 18 00 00)
fall_death:
db B3 00 90
registersymbol(fall_death)
[DISABLE]
fall_death:
db 0F 97 C3
unregistersymbol(fall_death)
{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+97724F
"DarkSoulsIII.exe"+977220: 48 8B 07
- mov rax,[rdi]
"DarkSoulsIII.exe"+977223: 48 8B 88 70 1F 00 00
- mov rcx,[rax+00001F70]
"DarkSoulsIII.exe"+97722A: 48 8B 41 68
- mov rax,[rcx+68]
"DarkSoulsIII.exe"+97722E: 48 85 C0
- test rax,rax
"DarkSoulsIII.exe"+977231: 0F 84 0C 19 00 00
- je DarkSoulsIII.exe+978B4
3
"DarkSoulsIII.exe"+977237: F3 0F 10 B0 B0 01 00 00 - movss xmm6,[rax+000001B0]
"DarkSoulsIII.exe"+97723F: BA 02 00 00 00
- mov edx,00000002
"DarkSoulsIII.exe"+977244: 49 8B CE
- mov rcx,r14
"DarkSoulsIII.exe"+977247: E8 E4 77 3D 00
- call DarkSoulsIII.exe+D4E
A30
"DarkSoulsIII.exe"+97724C: 0F 2F F0
- comiss xmm6,xmm0
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+97724F: 0F 97 C3
- seta bl
"DarkSoulsIII.exe"+977252: E9 EC 18 00 00
- jmp DarkSoulsIII.exe+978B
43
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+977257: 49 8B CD
- mov rcx,r13
"DarkSoulsIII.exe"+97725A: E8 F1 8A C3 FF
- call DarkSoulsIII.exe+5AF
D50
"DarkSoulsIII.exe"+97725F: 0F B6 D8
- movzx ebx,al
"DarkSoulsIII.exe"+977262: E9 DC 18 00 00
- jmp DarkSoulsIII.exe+978B
43
"DarkSoulsIII.exe"+977267: 48 8B 07
- mov rax,[rdi]
"DarkSoulsIII.exe"+97726A: 0F B6 98 30 1A 00 00
- movzx ebx,byte ptr [rax+0
0001A30]
"DarkSoulsIII.exe"+977271: E9 CD 18 00 00
- jmp DarkSoulsIII.exe+978B
43
"DarkSoulsIII.exe"+977276: 48 8B 07
- mov rax,[rdi]
"DarkSoulsIII.exe"+977279: 48 8B 48 50
- mov rcx,[rax+50]
"DarkSoulsIII.exe"+97727D: 48 8B 41 48
- mov rax,[rcx+48]
}
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>73097</ID>
<Description>"Last Trigger"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
aobscanmodule(trigger,DarkSoulsIII.exe,39 91 A0 01 00 00 75 0E 0F B6 81 90 01 00
00 C1 E8 02 83 E0 01 C3 32 C0 C3 CC CC CC CC CC CC CC 83 B9 A0 01 00 00 00)
registersymbol(trigger)

[DISABLE]
unregistersymbol(trigger)
</AssemblerScript>
</CheatEntry>
<CheatEntry>
<ID>73101</ID>
<Description>"Player Stats"</Description>
<VariableType>4 Bytes</VariableType>
<Address>DarkSoulsIII.exe+46c5dc8</Address>
<Offsets>
<Offset>0</Offset>
<Offset>18</Offset>
<Offset>1F70</Offset>
<Offset>80</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>73098</ID>
<Description>"Player Attributes"</Description>
<VariableType>4 Bytes</VariableType>
<Address>DarkSoulsIII.exe+469d118</Address>
<Offsets>
<Offset>0</Offset>
<Offset>10</Offset>
</Offsets>
</CheatEntry>
<CheatEntry>
<ID>73106</ID>
<Description>"Player Scripts"</Description>
<LastState/>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>[ENABLE]
globalalloc(player_ptr,8)
aobscanmodule(player,DarkSoulsIII.exe,49 8B 87 70 1F 00 00 80)
alloc(newmem,$1000,player)
label(code)
label(return)
newmem:
code:
mov
mov
mov
mov
jmp

rax,[r15+00001F70]
rdx,[rax+18]
rcx,player_ptr
[rcx],rdx
return

player:
jmp code
nop
nop
return:
registersymbol(player)
[DISABLE]
player:
db 49 8B 87 70 1F 00 00
unregistersymbol(player)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: "DarkSoulsIII.exe"+8AEB21
"DarkSoulsIII.exe"+8AEAE9: 84 C0
"DarkSoulsIII.exe"+8AEAEB: 0F 84 04 09 00 00
5
"DarkSoulsIII.exe"+8AEAF1: C6 86 11 01 00 00
1],01
"DarkSoulsIII.exe"+8AEAF8: 48 83 3D E8 73 E1
II.exe+46C5EE8],00
"DarkSoulsIII.exe"+8AEB00: 75 1F
21
"DarkSoulsIII.exe"+8AEB02: 4C 8D 0D B7 A7 E1
26C92C0]
"DarkSoulsIII.exe"+8AEB09: 4C 8D 05 58 71 43
3CE5C68]
"DarkSoulsIII.exe"+8AEB10: BA B1 00 00 00
"DarkSoulsIII.exe"+8AEB15: 48 8D 0D C4 87 E1
+26C72E0]
"DarkSoulsIII.exe"+8AEB1C: E8 CF 4D DB 00
38F0
// ---------- INJECTING HERE ---------"DarkSoulsIII.exe"+8AEB21: 49 8B 87 70 1F 00
// ---------- DONE INJECTING ---------"DarkSoulsIII.exe"+8AEB28: 80 3D 7F D0 C3 03
I.exe+44EBBAE],00
"DarkSoulsIII.exe"+8AEB2F: 74 1B
C
"DarkSoulsIII.exe"+8AEB31: 48 83 7E 10 00
"DarkSoulsIII.exe"+8AEB36: 41 0F 94 C0
"DarkSoulsIII.exe"+8AEB3A: 48 8D 96 08 50 00
"DarkSoulsIII.exe"+8AEB41: 48 8B 48 30
"DarkSoulsIII.exe"+8AEB45: E8 16 7A 0D 00
560
"DarkSoulsIII.exe"+8AEB4A: EB 2F
7B
"DarkSoulsIII.exe"+8AEB4C: 48 8B 48 28
"DarkSoulsIII.exe"+8AEB50: 80 B9 01 0A 00 00
1],00
}
</AssemblerScript>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
<UserdefinedSymbols>
<SymbolEntry>
<Name>anticheat</Name>
<Address>1463B27B4</Address>
</SymbolEntry>
<SymbolEntry>
<Name>loot</Name>
<Address>14522A463</Address>
</SymbolEntry>
<SymbolEntry>
<Name>camHRotateCorrectionAOB</Name>
<Address>1405107F4</Address>
</SymbolEntry>
<SymbolEntry>

- test al,al
- je DarkSoulsIII.exe+8AF3F
01

- mov byte ptr [rsi+0000011

03 00 - cmp qword ptr [DarkSoulsI


- jne DarkSoulsIII.exe+8AEB
01

- lea r9,[DarkSoulsIII.exe+

03

- lea r8,[DarkSoulsIII.exe+

01

- mov edx,000000B1
- lea rcx,[DarkSoulsIII.exe
- call DarkSoulsIII.exe+166

00

- mov rax,[r15+00001F70]

00

- cmp byte ptr [DarkSoulsII


- je DarkSoulsIII.exe+8AEB4

00

cmp qword ptr [rsi+10],00


sete r8l
lea rdx,[rsi+00005008]
mov rcx,[rax+30]
call DarkSoulsIII.exe+986

- jmp DarkSoulsIII.exe+8AEB
00

- mov rcx,[rax+28]
- cmp byte ptr [rcx+00000A0

<Name>hack2_ptr</Name>
<Address>74C085480410FBE1</Address>
</SymbolEntry>
<SymbolEntry>
<Name>hack_aob</Name>
<Address>14058B210</Address>
</SymbolEntry>
<SymbolEntry>
<Name>equipped</Name>
<Address>14084E1A0</Address>
</SymbolEntry>
<SymbolEntry>
<Name>equipped_ptr</Name>
<Address>13FFF0031</Address>
</SymbolEntry>
<SymbolEntry>
<Name>itemid</Name>
<Address>1405837CA</Address>
</SymbolEntry>
<SymbolEntry>
<Name>itemid_value</Name>
<Address>13FFE0035</Address>
</SymbolEntry>
<SymbolEntry>
<Name>itemid_found</Name>
<Address>13FFE0039</Address>
</SymbolEntry>
<SymbolEntry>
<Name>models</Name>
<Address>140BC56BD</Address>
</SymbolEntry>
<SymbolEntry>
<Name>models_ptr</Name>
<Address>13FFF0022</Address>
</SymbolEntry>
<SymbolEntry>
<Name>respec</Name>
<Address>140DC210F</Address>
</SymbolEntry>
<SymbolEntry>
<Name>pickup</Name>
<Address>1407A9C08</Address>
</SymbolEntry>
<SymbolEntry>
<Name>pickup_ptr</Name>
<Address>13FFF0021</Address>
</SymbolEntry>
<SymbolEntry>
<Name>newgame</Name>
<Address>14469BDF8</Address>
</SymbolEntry>
<SymbolEntry>
<Name>newgame_offset</Name>
<Address>70</Address>
</SymbolEntry>
<SymbolEntry>
<Name>buffs</Name>
<Address>1409E2A1D</Address>
</SymbolEntry>
<SymbolEntry>

<Name>last_spell</Name>
<Address>140BD58B8</Address>
</SymbolEntry>
<SymbolEntry>
<Name>last_spell_ptr</Name>
<Address>13FFB0020</Address>
</SymbolEntry>
<SymbolEntry>
<Name>last_skillset</Name>
<Address>14196C4C2</Address>
</SymbolEntry>
<SymbolEntry>
<Name>armor_dur</Name>
<Address>140A0BF22</Address>
</SymbolEntry>
<SymbolEntry>
<Name>WeaponDurability</Name>
<Address>140A0C212</Address>
</SymbolEntry>
<SymbolEntry>
<Name>stagger20</Name>
<Address>141A75E23</Address>
</SymbolEntry>
<SymbolEntry>
<Name>random_parry</Name>
<Address>14086667F</Address>
</SymbolEntry>
<SymbolEntry>
<Name>player_ptr</Name>
<Address>34BD0010</Address>
</SymbolEntry>
<SymbolEntry>
<Name>player</Name>
<Address>1408AEB21</Address>
</SymbolEntry>
<SymbolEntry>
<Name>health</Name>
<Address>1406C703E</Address>
</SymbolEntry>
<SymbolEntry>
<Name>focus</Name>
<Address>14196B7F5</Address>
</SymbolEntry>
<SymbolEntry>
<Name>stamina</Name>
<Address>1409BF2FB</Address>
</SymbolEntry>
<SymbolEntry>
<Name>effects</Name>
<Address>1409C1CCB</Address>
</SymbolEntry>
<SymbolEntry>
<Name>camera</Name>
<Address>14050FB56</Address>
</SymbolEntry>
<SymbolEntry>
<Name>camera_val</Name>
<Address>13FFF0044</Address>
</SymbolEntry>
<SymbolEntry>

<Name>last_item</Name>
<Address>140578728</Address>
</SymbolEntry>
<SymbolEntry>
<Name>last_item_ptr</Name>
<Address>13FFF0020</Address>
</SymbolEntry>
<SymbolEntry>
<Name>last_ring</Name>
<Address>1406AE717</Address>
</SymbolEntry>
<SymbolEntry>
<Name>last_ring_ptr</Name>
<Address>13FFF0020</Address>
</SymbolEntry>
</UserdefinedSymbols>
</CheatTable>

You might also like