User:Zeroman: Difference between revisions
Jump to navigation
Jump to search
Content added Content deleted
No edit summary |
No edit summary |
||
Line 48: | Line 48: | ||
* [[User:Zeroman/GameBoy GBZ80 opcodes list|GameBoy GBZ80 opcodes list]] |
* [[User:Zeroman/GameBoy GBZ80 opcodes list|GameBoy GBZ80 opcodes list]] |
||
* [[User:Disto1/Glitch Pokémon summary|Glitch Pokémon summary]] |
Revision as of 13:34, 2 May 2024
Just a completely random stranger from California.
What are the corruptions?
- Wild appeared! can corrupt 250 bytes from CEEF to CFE9.
- The Hooked Dragonite can corrupt 0x382 bytes from CCE9 to D06B.
My method of arbitrary code execution
In Pokémon Red, Blue, and Yellow, I use 4F (0x59) for arbitrary code execution.
Memory addresses (WRAM)
Disassembly label | Pokémon Red/Green/Blue/Yellow (JP) | Pokémon Red/Blue (US) | Pokémon Yellow (US) | Pokémon Red/Blue (EU) | Pokémon Yellow (EU) |
---|---|---|---|---|---|
wPlayerName | D11D-D122 | D158-D162 | D157-D161 | D15D-D168 | D15C-D167 |
wSimulatedJoypadStatesIndex | CD38 | CD38 | CD38 | CD38 | CD38 |
resources by me
- 4F (0x59) memory write ACE
- Write to WRAM using the item pack
- Items you can use for ACE in Generation I
- Item 0x6B memory writer