Sami1982

By the way you didn't answer me on this question from the previous page: When I run your script and get the health value, shouldn't I theoretically be able to go to the nearest pointer, which is 4 bytes above your health value and click "go to pointer" and find that block that you used for your group search? I mean since they are static they should appear on my device too just like they did on your 2 devices, right? Well I went up and down the list and I didn't find that block of numbers.

Okay, I am starting to get it lol. Let me squeeze my brain again today and see what I come up with. I really appreciate al your help my friend.

gg.setRanges(gg.REGION_ANONYMOUS | gg.REGION_C_BSS | gg.REGION_C_ALLOC) gg.searchNumber("17A;1,075,642,368A;1,900,544A;1,310,728A;589,828A;1,703,957A;1,703,969A;1,376,289A;1,920A;469,762,048A::185", gg.TYPE_DWORD) gg.refineNumber("1,900,544", gg.TYPE_DWORD) print("Group search: ", gg.getResultsCount()) local grp = gg.getResults(gg.getResultsCount()) for i, v in ipairs(grp) do v.address = v.address - 0x4 v.flags = gg.TYPE_DWORD end gg.loadResults(grp) gg.searchPointer(0) print("First Pointer search: ", gg.getResultsCount()) gg.searchPointer(0) print("Second Pointer search: ", gg.getResultsCount()) local t = gg.getResults(gg.getResultsCount()) local sensitivity = {} for i, v in ipairs(t) do sensitivity[i] = {address = v.address + 0x4, flags = gg.TYPE_FLOAT} end sensitivity = gg.getValues(sensitivity) local healthPointer = {} for i = 1, #sensitivity do if sensitivity[i].value == 1.0 then healthPointer[i] = {address = t[i].address, flags = gg.TYPE_DWORD} end end gg.loadResults(healthPointer) print("Results healthPointer: ", gg.getResultsCount()) gg.searchPointer(0) print("Third Pointer search: ", gg.getResultsCount()) local t = gg.getResults(gg.getResultsCount()) local health = {[1] = {address = res[1].address - 0xc, flags = gg.TYPE_FLOAT, name = "Health"}} gg.addListItems(health) gg.loadResults(health)

Wait maybe I misunderstood about the pointer.....when I click on the health value and click GOTO, this is the line that I long pressed on and clicked GOTO pointer. So from 5C to 68 is 12 bytes right? Okay when I changed all the 0xC to 0X4 the first and second pointer searches are successful but i get 0 results for the third pointer search gg.setRanges(gg.REGION_ANONYMOUS | gg.REGION_C_BSS | gg.REGION_C_ALLOC) gg.searchNumber("17A;1,075,642,368A;1,900,544A;1,310,728A;589,828A;1,703,957A;1,703,969A;1,376,289A;1,920A;469,762,048A::185", gg.TYPE_DWORD) gg.refineNumber("1,900,544", gg.TYPE_DWORD) print("Group search: ", gg.getResultsCount()) local grp = gg.getResults(gg.getResultsCount()) for i, v in ipairs(grp) do v.address = v.address - 0x4 v.flags = gg.TYPE_DWORD end gg.loadResults(grp) gg.searchPointer(0) print("First Pointer search: ", gg.getResultsCount()) gg.searchPointer(0) print("Second Pointer search: ", gg.getResultsCount()) local t = gg.getResults(gg.getResultsCount()) local sensitivity = {} for i, v in ipairs(t) do sensitivity[i] = {address = v.address + 0x4, flags = gg.TYPE_FLOAT} end sensitivity = gg.getValues(sensitivity) local healthPointer = {} for i = 1, #sensitivity do if sensitivity[i].value == 1.0 then healthPointer[i] = {address = t[i].address, flags = gg.TYPE_DWORD} end end gg.loadResults(healthPointer) print("Results healthPointer: ", gg.getResultsCount()) gg.searchPointer(0) print("Third Pointer search: ", gg.getResultsCount()) local t = gg.getResults(gg.getResultsCount()) local health = {[1] = {address = res[1].address - 0xc, flags = gg.TYPE_FLOAT, name = "Health"}} gg.addListItems(health) gg.loadResults(health)

Thank you so much for all the info and instructions. You're too generous as always Okay, I tried to break up the script to go only as far as the first pointer search (to not overwhelm myself) but I am still getting no results and I don't know what I'm doing wrong: gg.setRanges(gg.REGION_ANONYMOUS | gg.REGION_C_BSS | gg.REGION_C_ALLOC) gg.searchNumber("17A;1,075,642,368A;1,900,544A;1,310,728A;589,828A;1,703,957A;1,703,969A;1,376,289A;1,920A;469,762,048A::185", gg.TYPE_DWORD) gg.refineNumber("1,900,544", gg.TYPE_DWORD) print("Group search: ", gg.getResultsCount()) local grp = gg.getResults(gg.getResultsCount()) for i, v in ipairs(grp) do v.address = v.address - 0xC v.flags = gg.TYPE_DWORD end gg.loadResults(grp) gg.searchPointer(0) print("First Pointer search: ", gg.getResultsCount())

Okay. I apologize if I am being a pain but I'm still trying to grasp this thing and pull all the pieces together to make sense of it. Now when I run your script and get the health value, shouldn't I theoretically be able to go to the nearest pointer, which is 4 bytes above your health value and click "go to pointer" and find that block that you used for your group search? I mean since they are static they should appear on my device too just like they did on your 2 devices, right? Well I went up and down the list and I didn't find that block of numbers. But regardless, going off of your health value, I found the same distance pointer (nearest one that has the same static block of numbers on 2 devices) and I got the group search and it works fine, then I refine this number: 1,900,544 and get 55 results. This is all fine. But when I run the script (used yours as a template for my values) I find no pointers. If you're curious why I am refining to this number (1,900,544) please check the attached video Here's he script (based it on yours but with my numbers): gg.setRanges(gg.REGION_ANONYMOUS | gg.REGION_C_BSS | gg.REGION_C_ALLOC) gg.searchNumber("17A;1,075,642,368A;1,900,544A;1,310,728A;589,828A;1,703,957A;1,703,969A;1,376,289A;1,920A;469,762,048A::185", gg.TYPE_DWORD) gg.refineNumber("1,900,544", gg.TYPE_DWORD) print("Group search: ", gg.getResultsCount()) local grp = gg.getResults(1) gg.loadResults({{address = grp[1].address - 0xc, flags = gg.TYPE_DWORD}}) gg.searchPointer(0) print("First Pointer search: ", gg.getResultsCount()) gg.searchPointer(0) print("Second Pointer search: ", gg.getResultsCount()) local t = gg.getResults(gg.getResultsCount()) local sensitivity = {} for i, v in ipairs(t) do sensitivity[i] = {address = v.address + 0xc, flags = gg.TYPE_FLOAT} end sensitivity = gg.getValues(sensitivity) local healthPointer = {} for i = 1, #sensitivity do if sensitivity[i].value == "1.0" then healthPointer[i] = {address = t[i].address, flags = gg.TYPE_DWORD} end end gg.loadResults(healthPointer) print("Results healthPointer: ", gg.getResultsCount()) gg.searchPointer(0) print("Third Pointer search: ", gg.getResultsCount()) local res = gg.getResults(1) local health = {[1] = {address = res[1].address - 0xc, flags = gg.TYPE_FLOAT, name = "Health"}} gg.addListItems(health) gg.loadResults(health) Any ideas? EDIT: I first accidentally pasted the script with 0x12 for the 12 bytes, but I definitely tried it with 0xc (hex) and it still gave me no pointers GG video.mp4

Sorry I have another question. When you added 4 bytes, then subtracted 4 bytes then added 4 bytes again, is all of this because the health value was 4 bytes below the closest/final pointer? So if my health value is 12 bytes above the closest/final pointer then essentially I should reverse what you did? So in other words I should subtract 12 bytes then add 12 bytes then subtract 12 bytes? When I did this it didn't work.

I'll do that. Much obliged

Yeah that makes sense

Understood my friend. One question regarding the emulator, what emulator are you using? Is i Bluestacks? I am using 2 phones but I'd like to try an android emulator on PC. When I installed the modded apk using Bluestacks and tried to launch it, i got a message saying "Download failed because the user is not signed in". I figured maybe Bluestacks doesn't support modded apks? How did you get it installed on the emulator?

Aside from upvoting and hearting your answers and marking the answer containing the script as "best answer", is there anything else I can do to express my sincere gratitude?

Wow that's incredible. It's sure going to take a lot of time for me to digest all of this lol. Thanks again for all the explanations and screenshots. I truly appreciate your time.

Got excited too soon Lol. I did it wrong. Still trying to get the hang of it. By the way, why did you refine "0" in your group search? If it had any value or purpose shouldn't I be able to "go to pointer" or "pointer search" it? I get nowhere with it.

I got it first try! Got a group search that gives me 5 pointer results every time and one of them always works. But I'm a bit hazy on the "gg.searchPointer(0)" part. What exactly do I need to do? I am looking at your script and you executed 3 pointer searches. But where does the script show what it's doing to grab that single health value? Like what is the syntax or command that is performing this function? Is it this? address = v.address - 0x4, flags = gg.TYPE_FLOAT

Thanks again for all your help and precious efforts. This information is extremely valuable. I will try my best to apply this knowledge. You are awesome dude

You are a genius man. It worked! But the sad part is that I have no idea how you did it and I would've loved to be able to learn how to do it myself. Looking at your script nothing makes sense to me as to how you came up with that group search or even how the pointer search is working FYI I've reached my maximum posts for today. So if you reply to me and I can't reply until tomorrow you know why lol

Okay I did, and it fails with this error (attached):

Sorry this may have been an oversight on my part.....I just now re-confirmed this, and with all regions enabled, the 327,684D;22D;28D;0D;33,554,931D::65 search yields the following restuls: But again none of the negative values around those results are the correct ones

Okay, whether I search with or without the pause menu visible doesn't seem to have any bearing on whether or not I find results. The only thing that seems to determine whether or not I get results is what group size I use. If I use ::13 I get nothing (again with or without the pause menu visible) for both the 256 and 257. Whereas if I use ::65536 I get thousands of results for the 257 and 5 to 7 results for the 256. I did a "goto" on all 7 results and randomly messed with the nearby negative values but unfortunately none were the correct health value. The funny thing is that having the "autopause game" setting in GG on "no" VS "yes" seems to make no difference at all. While actively in a mission, if you tap on GG's icon, you can perform your search without the pause menu visible regardless of what the setting says. If you want to perform the search WITH the pause menu visible all you have to do is tap on the X of GG's upper right corner and you'll immediately be brought to the pause menu and then you can tap on GG's icon again to perform your search with the pause menu visible. Way ahead of you Lol. Had already done it on my own but forgot to mention it EDIT: Sorry this may have been an oversight on my part.....I just now re-confirmed this, and with all regions enabled, the 327,684D;22D;28D;0D;33,554,931D::65 search yields the following restuls: But again none of the negative values around those results are the correct ones

Okay the search of 257;1.0F::13 in the video worked but refining to 256;1.0F::13 produced no results for me. But this search didn't produce any results at all. And on top of that also try this group search, its in region A, Ca or Cb...ranges changes at restart... could also be ranges Other actually: 327,684D;22D;28D;0D;33,554,931D::65 Do I need to be in the same mission as you?

Thanks for replying. I just tried this but did not succeed, unfortunately

Okay those screenshots look like a foreign language to me LOL. Is this DNS spy or something?

Wow, that's really awesome to hear! Being offline, the modded APK has the possibility to hack the gold so that I can instantly unlock any weapon without risking a ban. With the latest version, it takes a long time to collect gold to unlock weapons. I've already gradually unlocked all these weapons over the years legitimately using my good account and I don't want to risk a ban if I use GG.

Gladly! I've attached them. I was confused because you said "xor" but your screenshot was offset (or at least I felt that it was lol), so I took a screenshot of both just to be safe.

No, you don't need to increase your health with a medkit. You can decrease your health too if you want and it works as long as you don't die before you reach 10 or less values. But obviously if you're about to die and you still have a ton of results then you would naturally need to increase your health to be able to continue filtering for the correct value. By the way when taking damage, the value sometimes increases even though it should logically decrease and the opposite is true. As such I only execute a "changed" scan. Sometimes it gets glitchy and the only way I can find it is with an unknown search as you did. You don't need to use -9,999,999.0. You can simply freeze it. No, I don't always get a high health when editing to -9,999,999.0. Sometimes it randomly changes to 1 for me too as it did with you, in which case I simply just change it to -0.5 and that gives a high health. And yes the pointers are at the same distance from the health value for me too. Yeah unfortunately I had a feeling this would be the case. After my original post, the more I explored and the deeper I dug, the more evident it became to me that this wasn't going to be easily done through GG, if even at all possible. I truly do appreciate your efforts and the time you have put into this to try to help me. Thanks a lot.