PS4 Trainer Utility: Community Edition (TUCE) v0.9 by ZeroFox

Hi everyone, I have created a tool for this "modding" community, expanding on what's been done in this space.

I took out the horizon trainer file because it was actually nothing, just for demo purposes.

To start, not many people will recognize who I am because I am using a different alias. However, back in the Xbox 360 scene, I was the one who fixed up XPowerPlay by the2000 and the first person to release trainers for the 360.

Since then a lot of people approached me and I helped where I could, some of those people I encountered are even here now I believe (@DeathRGH, @vampirexx ?). That scene then took off and other people started making trainers.

That brings me to now, I've been watching the PS4 scene and what's been happening as far as memory and "trainer" tools go, and I'm happy to see some progress has been made. So I've decided to make my own contribution and help out the community as I did with the 360.

Now I've been working on this tool for awhile now in my spare time (even before PS4Cheater), but my spare time has been sparse which is why it has taken me so long to get this tool out there. Although it may seem similar to other tools out there there is added value to this specific tool.

Let me introduce you to the PS4 Trainer Utility: Community Edition (TUCE). Works on both 4.05 and 4.55.

Main Features Include:

• Extensive searching capabilities: search for many different kinds of values (integers, floats, strings, etc.), while using different equality comparisons (bigger than, smaller than, value between, changed, unchanged, opposites such as NOT bigger than, etc).

• Built-in dynamic trainer editor and loader: Simple and intuitive, create trainers with ease AND run them all within the same tool. Using trainers is super easy that even non-experienced people can use (they're all buttons!, just click and go!)

• Other memory tools at your disposal: Poke memory, view memory, dump memory. Save address tables, add newly found addresses during to scan to a trainer with ease.

F.A.Q:

Q: Why is this slower scanning memory than PS4Cheater?

A: While I can't speak for how PS4Cheater works, I noticed that when I did the EXACT same scan side-by-side using TUCE and PS4Cheater, I got significantly more results with TUCE than PS4Cheater. With TUCE I got over 16k results while PS4 Cheater only gave me 4k on the same scan. I'm not sure why this is but I can attest that my method will give you EVERY single result based on your search.

Q: I'm running a trainer but x,y,z value is not changing, why?!

A: A lot of values are dynamically allocated and as such the address the value is stored in changes on every console reboot. In order to trace the value back to where it gets assigned we need a debugger, which is currently not available.

Special thanks to @g991 (aka Golden) for creating jkpatch, which this tool utilizes.

Screenshots:

Download:

• PS4 Trainer Utility v0.9.4.rar (0.17 MB - Changes)

This is an ALPHA release due so many variables that I could simply not test every single scenario. If you do come across any bugs or issues, or even any feature requests, please let me know and I will do my best to provide support.

Thanks,
-ZF

Game Trainers:

• Final Fantasy XVI (CUSA01615) v1.00 by imedox

 

[Kratopotato13]

@Pretinaverse
I finally figured out how to get my pc and ps4 internet sharing working. The search is extremely fast now. Will report back if I have any success or if I run into any problem. Thanks!

 

[Ljovvka]

Hey guys,
Does anyone else have an issue with the error, when PS4 restarts itself? I hacked such games as KH3D,The Surge and Persona 5 with no problems. Now I am trying to hack Tales of Berseria and every time game launches PS4 just makes restart.

I read somewhere that the problem can be in Jkpatch, but i used different ones, including the last ones on github and problem still remains. The FW is 4,55. If someone had the same problem and could fix it, please let me know. Thanks in advance.

 

[vampirexx]

Also Nioh seems to have the same problem @g991 please can you have a look? Thanx

 

[Pretinaverse]

@ZeroFox
It seems the first scan is more fast than next scans?
I tried looking for some float values in HZD. I selected just a few sections, so the first search took less than 30 seconds. I had like 50 results, so then i make a "next scan" and the scan took almost 4 minutes.

By the way, just now i tried a full scan of horizon zero dawn. Unchecked the SceGnmDriver like with Star Ocean, but the application crashed at the end of the search. Ps4Cheater had the same problem with full scans, but with the 1.3.1 version, it's solved. I tried with it a full scan of HZD without unchecking anything and didn't have any problem (although i didn't find what i was looking for )

 

[nikeymikey]

@ZeroFox @g991 I have the system restart issue too, i finally got the program to send the payload successfully, but when i launch a game (Everybody's Golf) the PS4 restarts itself before the game load fully and the program can connect.

 

[Pretinaverse]

@ZeroFox, you need to add a search option for "unknown initial value" "changed value" "unchanged value" etc.... In games like Horizon Zero Dawn there are values you can only find like this, like health for example. Health in HZD is supposed to be a floating value. But most of the time I can't find it as such no matter how hard I look (sometimes i can find it, and that is weird). In the end, the only way I have to find health, is to do a"4 bytes" search, with "unknown initial value" and then do a "next scan" with "changed or unchanged value".

 

[kapildevn15]

@ZeroFox

Thank u for the tool. It connects well to my ps4. I am looking for codes in dark souls 3 and select all the boxes to search a value. As it goes to 100% search the tool give me error and i have to close the tool. Any idea why? I am on 4.55 fw
Thks

 

[PJoey]

The custom range function is kinda broken since it accepts an INT32 as a parameter. So scanning for ranges outside of that, say, 0x208600000 through 0x210900000 throws an exception.

 

[ZeroFox]

Update 0.9.2

• Memory scans will now skip over any blocks of memory that can't be read. This will prevent the tool from crashing/hanging mid-way or at the end. For example, there is an issue reading the memory block: SceGnmDriver. The tool will detect an issue reading that block and will skip over it. IF there are any errors with the scan, at the end you will receive a pop-up (screenshot) with how many errors there were and you can then go to the "Error Log" tab (new)(screenshot) to read more about it.
• Updated the dedicated range descriptions to now include size, range and their prot flag as per a request.

Download:

PS4 Trainer Utility v0.9.2.rar

@PSXHAX you can make this the only link and remove the older ones. Thank you.

I am reading everyone's comments. Thanks again for the wonderful feedback. I have alot of plans for this tool and it's only going to get better .

@Pretinaverse The tool already has the equality comparisons: unchanged, changed value, increased, increased by and more. But it is missing "unknown initial value", I will add that in the next update.

 

[PJoey]

@ZeroFox Awesome timing!

I would also like to request a feature. In PS4Cheater the big memory regions are separated by chunks. Makes scanning just a specific area for a value you know is there much faster, however in your tool the region is just all one block. Definitely slows down consecutive scans.

Also, my previous post about the Custom Range being limited to only INT32. Would mostly fix the issue I have with the big memory blocks