User:Zeroman: Difference between revisions
No edit summary |
No edit summary |
||
(10 intermediate revisions by the same user not shown) | |||
Line 1:
Just a completely random stranger from California.
== What are the corruptions? ==
# [[Wild appeared!]] can corrupt 250 bytes from CEEF to CFE9.
# The [[Hooked Dragonite]] can corrupt 0x382 bytes from CCE9 to D06B.
== My method of arbitrary code execution ==
In Pokémon Red, Blue, and Yellow, I use 4F (0x59) for arbitrary code execution.
== Memory addresses (WRAM) ==
Line 31 ⟶ 38:
|
|}
== resources by me ==
* [[User:Zeroman/4F (0x59) memory write arbitrary code execution|4F (0x59) memory write ACE]]
* [[User:Zeroman/Write to WRAM using the item pack|Write to WRAM using the item pack]]
* [[User:Zeroman/Candidate items for ACE|Items you can use for ACE in Generation I]]
* [[User:Zeroman/Item 0x6B memory writer|Item 0x6B memory writer]]
== other projects ==
* [[User:Zeroman/GameBoy GBZ80 opcodes list|GameBoy GBZ80 opcodes list]]
* [[User:Zeroman/Glitch Pokémon summary|Glitch Pokémon summary]]
|
Latest revision as of 13:35, 2 May 2024
Just a completely random stranger from California.
What are the corruptions?
- Wild appeared! can corrupt 250 bytes from CEEF to CFE9.
- The Hooked Dragonite can corrupt 0x382 bytes from CCE9 to D06B.
My method of arbitrary code execution
In Pokémon Red, Blue, and Yellow, I use 4F (0x59) for arbitrary code execution.
Memory addresses (WRAM)
Disassembly label | Pokémon Red/Green/Blue/Yellow (JP) | Pokémon Red/Blue (US) | Pokémon Yellow (US) | Pokémon Red/Blue (EU) | Pokémon Yellow (EU) |
---|---|---|---|---|---|
wPlayerName | D11D-D122 | D158-D162 | D157-D161 | D15D-D168 | D15C-D167 |
wSimulatedJoypadStatesIndex | CD38 | CD38 | CD38 | CD38 | CD38 |