[ENABLE]
aobscanmodule(INJECT_test,Tutorial-i386.exe,29 83 B0 04 00 00) // should be unique
alloc(newmem,$1000)

label(code)
label(return)

newmem:
{$CCODE base=EBX}
   int* myHealth=base+0x4B0;
   *myHealth = 999;
{$asm}

code:
  //sub [ebx+000004B0],eax
  jmp return

INJECT_test:
  jmp newmem
  nop
return:
registersymbol(INJECT_test)

[DISABLE]
//code from here till the end of the code will be used to disable the cheat
INJECT_test:
  db 29 83 B0 04 00 00

unregistersymbol(INJECT_test)
dealloc(newmem)

{
// ORIGINAL CODE - INJECTION POINT: Tutorial-i386.exe+25A6F

Tutorial-i386.exe+25A49: 8D 55 DC           - lea edx,[ebp-24]
Tutorial-i386.exe+25A4C: 8D 4D F4           - lea ecx,[ebp-0C]
Tutorial-i386.exe+25A4F: E8 8C 7D FE FF     - call Tutorial-i386.exe+D7E0
Tutorial-i386.exe+25A54: E8 37 E4 FD FF     - call Tutorial-i386.exe+3E90
Tutorial-i386.exe+25A59: 50                 - push eax
Tutorial-i386.exe+25A5A: 85 C0              - test eax,eax
Tutorial-i386.exe+25A5C: 0F 85 CE 00 00 00  - jne Tutorial-i386.exe+25B30
Tutorial-i386.exe+25A62: B8 05 00 00 00     - mov eax,00000005
Tutorial-i386.exe+25A67: E8 C4 93 FE FF     - call Tutorial-i386.exe+EE30
Tutorial-i386.exe+25A6C: 83 C0 01           - add eax,01
// ---------- INJECTING HERE ----------
Tutorial-i386.exe+25A6F: 29 83 B0 04 00 00  - sub [ebx+000004B0],eax
// ---------- DONE INJECTING  ----------
Tutorial-i386.exe+25A75: 8D 45 D4           - lea eax,[ebp-2C]
Tutorial-i386.exe+25A78: E8 53 DF FD FF     - call Tutorial-i386.exe+39D0
Tutorial-i386.exe+25A7D: 8B 83 B0 04 00 00  - mov eax,[ebx+000004B0]
Tutorial-i386.exe+25A83: 68 FF 00 00 00     - push 000000FF
Tutorial-i386.exe+25A88: 8D 8D D4 FE FF FF  - lea ecx,[ebp-0000012C]
Tutorial-i386.exe+25A8E: BA FF FF FF FF     - mov edx,FFFFFFFF
Tutorial-i386.exe+25A93: E8 68 F2 FD FF     - call Tutorial-i386.exe+4D00
Tutorial-i386.exe+25A98: 8D 4D D4           - lea ecx,[ebp-2C]
Tutorial-i386.exe+25A9B: 66 31 D2           - xor dx,dx
Tutorial-i386.exe+25A9E: 8D 85 D4 FE FF FF  - lea eax,[ebp-0000012C]
}

Additions and changes:
  Added dark mode support (restart CE when you channge the setting)
  All saved results are now shown in the foundlist (can be turned off)
  Groupscan now supports pointer wildcards. (only valid if the field is a proper pointer)
  Hotkeys can be repeated by releasing the key and repressing if the repeat timer hasn't finished yet
  Structure dissect add to addresslist uses the addressstring instead of number, so symbols will be preserved
  Structure dissect now has a option to save the previous state of a column and show changes easier
  Middle-mouse clicking now copies the value of a structure element to your clipboard
  Added {$LUACODE} blocks for inline Lua coding
  Added a c-compiler to CE
  Added {$C} blocks to the auto assembler. all {$C} blocks get combined into one script before execution
  Added {$CCODE} blocks for inline C coding (Check the forum, wiki, CE patreon discord or CE's youtube)
  Added a C# compiler (compilecs)
  Added routines to do .NET(and mono) method detouring.  .NET info has a new contextmenu where you can create a detour template for the autoassembler
  Added invoke method to the .NET Info window as well
  [Disable] sections can now reference labels, defines, AOBScan results, and allocs created in the [ENABLE] section
  Userdefined symbollist has a secondary list for CCode symbols
  The change address window now also supports relative offsets
  DBVM speed improvements
  DBVM has an extra security level, and added dbvm_setKeys to easily change the access codes
  DBVM has now some basic support for nested VM's (only so you can run them, not yet modify)
  New debugger interface: DBVM-level debugger
  Improved performance of "Find what access/writes this address"
  Dissect code now lets you specify custom ranges
  Addresslist value sort now sorts values by alphabet if the record is a string type
  The dropdown list of multiple entries can now be changed at the same time
  Standalone register window now shows flags values as well

Fixes:
  fixed some games freezing CE when symbols where accesses
  Lua debug now shows for loop variables
  several windows now save their position, and won't get corrupted if you don't show them the first time running CE
  fixed createthreadandwait when using a timeout
  fixed disassembling vcvtsi2ss
  fixed compare to first scan if it's a large block, and made it more efficient
  ceshare: logout fixed
  fixed assembling movsq
  fixed ultimap ret filter
  fixed luapipe never calling OnError
  fixed vehdebug in 64-bit CE zeroing out the FPU registers in 32-bit targets
  fixed DBVM find what access/writes sometimes skipping entries on AMD
  fixed undo not working on memory records when using the single line editor
  fixed hide children group option when loading a table
  fixed some font issues in the break and trace window
  fixed pasting the other types in hexadecimal view
  fixed the symbolloader fully crashing on unknown pdb symboldata

lua:
  changes:
    saveTable won't ask to sign the table anymore
    messageDialog will work if you omit the buttonlist. (Defaults to mbOK then)
    added more customizabe button
    registerSymbol no longer errors out the whole script on failure.  It now overwrites existing symbols

  New functions:
     form.saveToStream 
     compile()
     compilecs()
     signExtend
     signTable
     symbollist.getModuleList
     symbollist.getSymbolList
     memscan.getSavedResultHandler
     memscan.getSavedResultList

     SavedResultHandler class

How to use:
There's a tutorial program included with Cheat Engine,
it teaches how to use the basics of Cheat Engine, also the helpfile may be of use.

For comments or suggestions and such, contact me at:
e-mail(msn) = dark_byte@hotmail.com

For more information about Cheat Engine or tables for it 
and other things, go to this url:
http://www.cheatengine.org/