Search results for query: *

On Pickup in the Battle Pyramid (Emerald) Let's make this (rather) quick: german emerald, again. Using three Pickup-Slaves (one being an evolved clone of another). In order not to die, the first pokemon's values were set to 999 each. Thanks to Äona for posting the right addresses (near...

...than the current compare value to get the current row's item. Example: You should find 16001E00170028 in the image - which is to be read as * if the rndMod10 is lower than 1E (00->1D), give item 0016 (Super Potion) * if >=1E but < 28, give item 0017 (Full Heal) * if >=28, continue table...

On Pickup in Emerald Sorry for double-posting. I think analysing another game is worth a second post. Today, I tried the same stuff for Pokemon Emerald or - to be certain - on a german "Smaragd"-version. I don't think that the english or japanese version is very different although the offsets...

That thread starts with "reasearch for RNG abuse" and I don't think you can abuse the PRNG for pickup (the blob about mad cycling during battle). Still "research" seems more fitting than the general help. I copied it there (should I delete the original here?) and added something on the "about n...

...other items are "shifted in from the right when upgrading pickup level tiers". Of course, this is merely cosmetical. Epilogue: Regarding the "*about* x percent": Random is a number between 0 and 65535 so modulo 100 is mapped to * 0-35: 656 times each * 36-99: 655 times each resulting in...

On Pickup in Diamond (possibly all Gen4) Hello, I just did some research and learn some stuff. Although this may not be very useful, I thought, I'd share it with you. I wanted to know how the pickup-stuff works in-detail. Originally, I planned to change the function so it would give me...

Sorry to contradict you there, but not all Juniors were able to participate. Someone said that about 230 Juniors tried to and I have a picture of the remaining people in line after registration had closed and 192 were full (sad faces, of course) You could "feel" the result of the 192-extension...

Damnit! I didn't expect to find a collision so soon. I just took some random combination - to surprise a friend - and I got two Seeds for it: Init: ee1058f0 gives dd9073ca Init: 650a7a57 gives dd9073ca Considering that Seed->SIDTID is an operator from 32bit to 32bit, this already should be...

brute-force on startup seed. Looking at Mersenne again, I start to note that from one value only the first bit is taken. Recalculating 32Bit from 1Bit seems a bit tedius to me and if I could do that, I'd have a compression/decrompression method everyone would buy. So I went for bruteforce...

...I know I'm on second roll and I know the algorithm behind the initialisation t[0] = Initial SEED t[n] = (( upper 2bits of t [n-1] ) xor t [n-1]) * 0x6c078965 + n where n = 1 - 623 (taken from page 21). I need to check into Mersenne, again - but if I recall correctly, only two or three...

...offsetting it to FF would mean a waittime of 4640 minutes. I gotta admit, I did this on emulator so timing might be wrong but if offset is "seconds*60", this still means about 18.2 minutes per digit. So my main question to the math geniuses is: Can I rollback the second Mersenne roll to the...

...need the secret IDs from as many trainers as possible (taken from the eggs) and some program matching the XORed PID to the trainers list. Successful more than 150 times. So I'd be *very* surprised if PID suddenly turned out to change after trading or any time after the egg has been created. TCC

...pair <uint32_t,uint32_t> myEntry; myEntry.first=tableIndex; myEntry.second=((lastPos->second / (1<<30)) xor lastPos->second) *0x6C078965 + tableIndex; myTable.insert(lastPos,myEntry); lastPos++; // advance iterator } //t[n] = (( upper 2bits of t [n-1] ) xor t [n-1]) *...

...ID+SecretID would be very useful to know. But I'd imagine that it's created very similar to PIDs and therefore comes from the seed at bootup (month*day+minutes+seconds)_(hour)... Did anyone yet try to start a game as quickly as possible and then try with legit.exe whether trainer+secret ID...

Hello, first of all I'd like to report some success regarding "does it work on D/P, too?". * Caught the Seed after reset. * watched the IRNG (or what seems like it) while egg was created, * noted down the number it returned -> IRNG_return * took the egg and saved. Then peeked at the PID of the...

I wouldn't want to skip this, you're adressing some very important philosophical and ethical questions in it. First of all, doing this exploit (do we have some catchy name for it, yet?) is not too easy. While Chaining takes a lot of patience and luck and many repels, this one needs you to find...

I found out the point in which the seed is set from outside the PRNG. Fun thing is: onEnterBattle: * 0201B9D4 read out current seed * 0201B9E0 write another seed. (...) battle after battle: * 0201B9E0 write seed - and it's the same that was read out previously. So battle seeds the PRNG anew and...

pure luck and a lot of patience? TCC

..."reality check" on the code before I go to sleep. And I found the flaw rather quickly: uint32_t prng(uint32_t alterwert){ return (0x41C64E6D * alterwert+ 0x6073) % 0xFFFFFFFF; } /* * "alterwert" is german for "old value". * I'm a bad programmer and often switch languages in my source...

...PRNG on PC, he could seed it with E914EC7D and let it roll 1790425565 times and tell whether the numbers start repeating, then. function PRNG(){ * load seed from a given (constant) point in memory * load multiply value, * do multiplication * load add value * do addition * store new seed to...