Hey Touched! Long time no talk!
With FBI's help, I'm reasonably sure that I've found some undocumented offsets for the BPEE idb that are equivalent to some Firered ones, but I'm not experienced enough to know for sure (or to know how to debug what they're actually doing). I was wondering if you could take a look and/or give me some pointers on how to debug what I'm trying to do when we're both online?
Basically, I think I've found the corresponding Emerald locations for the things mentioned in this post. The byte changes for the security key are at 08076C02 and for the DMA negation (I overwrote those 2 bytes with 00 21 instead of what his post said, because it's using different registers there than in Firered) at 08076BEE in Emerald I think. But I don't know how to verify that the data is now static.
Additionally, I think that 08076BEC in Emerald is 0804C062 in Firered, and changing that 0x7C to an 0x00 should disable the Pokemon substructure mutations, but, again, I don't know how I would verify that. Damn these gaps in my knowledge! :P
Could you spare some tips?