- writing some simple games
- hacking other games to see how they were written
I’m going back to the good old days when we could ‘break’ the ZX Spectrum game and view the source, or disassemble the games on the Atari ST and hook/hack them through debuggers and monitors.
Learn How to Hack Games
I encourage you to watch Philip’s talk.
After watching Philip at work I realised:
- I haven’t been using the find functionality in the source part of the browser dev tools
- I had an over-reliance on adding breakpoints and don’t need to
- I had not been using
setIntervalfrom the console
After watching I went off and tried the cookie clicker game that Philip demonstrates.
But I test things, why should I care?
- imagine that instead of having to use an automated tool to put the application into a certain state, or having to manually click around a do a lot of work.
- imagine that you could just write a few lines of code into the browser console and automate there.
- imagine that you could write a single line of code that would execute every second and ‘do stuff’ like click on a link, or close a dialog, or
I describe an example, later in this post, of a one line automated ‘bot’ that could play a game better than a human (me).
Back to Cookie Clicker
And I did quite well.
I used a slightly different approach than Philip used and found that
for loops worked better for me than
setInterval when manipulating as I explored, in this game.
Go beyond the for loop
I went off to find games where
setInterval was a better fit for me.
- First The World’s Biggest Pac-man where
setIntervalwas a great way to provide infinite lives, restoring a new life each time one was lost.
I had a few false starts with other games that looked promising but which either:
- had such obfuscated code I could make no headway
- contained game crashing bugs
I tried some typing games but encountered the “how do I trigger keyboard events” stumbling block.
Automating ZType from the console
I suspect I might end up playing z-type quite a lot https://t.co/Un6YG2SrKx just to improve my typing you understand.
— Alan Richardson (@eviltester) July 21, 2016
- I periodically still play “Typing of the Dead” on the Dreamcast. Yup. I have a Dreamcast with a keyboard.
- I periodically still play “R-type” - primarily from “R-Types” on the Playstation One (Yup, I still have a PS1)
Given both of the above. I really like ZType even though I’m not very good at it.
If you can’t trigger keyboard events, how could you play ZType?
Yes, I know what you’re thinking.
“But if I encountered the ‘how do I trigger keyboard events’ stumbling block, how do I automate zty.pe, which is all about keyboard events.”
Well, zty.pe is pretty well designed. It’s almost as though it was built to be tested and automated.
- rather than add the ‘shoot’ functionality in the keyboard event hook, so that the only way to trigger it, is by issuing a keyboard event.
- the keyboard event calls a method, so the method can be called outside the keyboard event
If this was an app you were testing and automating, it means that you can automate most of the app by calling the ‘shoot’ method. And leave the risk of ‘do keyboard events fire on this platform’ to a much reduced test scope with a different test approach.
Human vs Bot
I only managed to reach level 15, but my automated ‘bot’ reached level 93. You can see the results of my automating here on youtube.
I’m not going to explain exactly what I did since that would ruin the fun. And the video doesn’t show you how either.
Unfortunately, and you can see this in the video. The bot is highly inefficient. The bzzzz noise from the bot is when it is firing, but missing. And it misses a lot, given its 1% efficiency rating. So I’ll investigate how to make it more efficient as a training exercise for myself later.
But I’ll give some additional tips, some you might see in action in Philip’s video:
- pretty print the source
- use ‘find’ to search for classes and variable you find in the source
- if you type something into the console and it comes back with ‘function’ then you need to find where the class is instantiated in the code
- use ‘find’ to search for ’new’ instantiations of the classes
- you can do a lot of exploration and manipulation with ‘for’ loops
- for bots you’ll need to use
- I assign the result of
setIntervalto a bot e.g.
ztypebot = setInterval(...)so that I can shut the bot down later with a
- find some ‘quick hacks’ that you can use early in your investigation to give you more room to find a better hack e.g. when automating ztype I started with a bot that had infinite emps and triggered an emp every 2 seconds, and when that was working it gave me time to experiment with the objects and source to figure out how to make a bot that could shoot properly
- keep notes as you go about what you tried, and how you found the objects
- sometimes I start by working through the code and look for hints as Philip demonstrates
- sometimes I start by looking to see what code is triggered by the Event Listeners in the browser dev tools
- sometimes I breakpoint code that I think is interesting
- they key (and Philip demonstrates this well) is to find the big ’namespace’ type objects as early as possible
And do make sure that you don’t submit any high scores after ‘cheating’ or ‘hacking’ in this way, it is most annoying to other people. A proxy tool can help avoid you accidentally sending a high score by blocking any high score submissions e.g. Fiddler’s auto-responder works well for this.
- learn how to use the browser dev tools
- interacting with a running application
- exploring the internal object state of an application
- putting a running application into a specific state for testing automatically
- writing very small amounts of code to automate an application state
If you find any good games to play with then let me know.
- You can play Z-Type at http://zty.pe
- You can download/buy the music over at “The Phoboslab Works” bandcamp page