Ted2

Yes I used lldb

No sub_x

Ikr ????

Trigger Fist By Lake Effect Applications v1.11 com.LakeEffectApplications.TriggerFist Requires: iOS 4.3 or later. Price: Free Updated: 2012-12-18T06:18:06Z iTunes URL: https://itunes.apple.com/us/app/trigger-fist/id531184261?mt=8&uo=4&at=1010lce4 Hack Features - Inf ammo - Inf Grenades May come more soon Download Link [Hidden Content] Proof Video: Credits - @Ted2 - @xiaovfor helping me always

Your code seems alright to me, can you pm me your project? I wanna see if I can compile it

Sure! Making dinner right now, so after

Hey, sdks installed too?

Yes I got GDB! So the main function i need to hack is the one with Vectors? Wow thanks dude!

Hi, So I found the right function for hacking health, I also hacked it & it worked. Sadly it works for my enemy too This is the part I hacked loc_16955C LDR R0, [R5,#0x40] LDR R1, [R11,#var_s0] SUB R0, R0, R1 STR R0, [R5,#0x40] CMP R0, #0 BGE loc_16957C I changed SUB R0, R0, R1 to a ADD & it worked. So I was thinking that linked function had to do something with branches, I did NOP the BGE loc_169557C Whcih resulted in both, me & enemy has normal health. The loc_169557c function looks like this (if that helps lol): loc_16957C VLDR S0, [R5,#0x4C] VCVT.F64.F32 D2, S0 VNEG.F64 D2, D2 VCVT.F32.F64 S0, D2 VSTR S0, [R5,#0x48] LDR R0, =(unk_C8103C - 0x1695A4) B loc_16959C Anyone could help me out? Thankyou in advance

See tutorials in section how to properly install theos

Do you have headers installed? and do you have a sdk installed?

if not work, pm me i give u mine

These should work fine too: https://github.com/theos/sdks/tree/master/iPhoneOS9.3.sdk

Do 8.1 or 7.1

Var/containers/bundle my bad u can use this too for app package name: http://armconverter.com/appinfo/

Var/containers/bundle my bad

Var/mobile/containers/bundle

Download 'MTerminal' not 'MobileTerminal'

Thanks mate

iPhone 6 or 6s ios 9.3.3 is beast.. I got a 6s, working sick

Ah, like that. Don't know About that man

Those offsets you find with iGG are always diffrent. You'll need to use lldb to get the ida offset & make a modmenu or patcher out of it so you can controll it

can't you just reinstall the .ipa (without removing ofcourse)

Hi, so I set a breakpoint on gdb, when I shoot ammo it stopped but it doesn't show me any registers etc.. I did tv with @xiaov last time & then it did.. Has it got any other commands for that, cause when I type 'info break' it tells me it has been hit 2 times already thankyou

Hi, I was trying to see if I could hack a game with ammo in it, since I've never played games like this lol So I used lldb to set watchpoints from iGG adress, got a ida offset & removed aslr from it. Then I loaded it in IDA, got the same instructions as lldb gave me, but for me it doesn't seem usefull at all. 1. It is a loc_..... 2. The sub_x function is long as hell & only used once The loc_ function is this: loc_1526D0 ; CODE XREF: sub_150320+26F8�j __text:001526D0 LDR R0, [R10,#0x88] __text:001526D4 MOV R1, R0 __text:001526D8 VLDR S0, [R1,#0x9C] __text:001526DC VCVT.F64.F32 D2, S0 __text:001526E0 LDR R1, [R10,#0x1CC] __text:001526E4 VMOV S0, R1 __text:001526E8 VCVT.F32.S32 S0, S0 __text:001526EC VCVT.F64.F32 D3, S0 __text:001526F0 LDR R1, [R10,#0x88] __text:001526F4 VLDR S0, [R1,#0xA4] __text:001526F8 VCVT.F64.F32 D4, S0 __text:001526FC VMUL.F64 D3, D3, D4 __text:00152700 VADD.F64 D2, D2, D3 __text:00152704 VCVT.F32.F64 S0, D2 __text:00152708 VSTR S0, [R0,#0xA8] __text:0015270C LDR R0, [R10,#0x88] __text:00152710 VLDR S0, [R0,#0xA8] __text:00152714 VCVT.F64.F32 D3, S0 <------------> lldb drops me here __text:00152718 LDR R0, [R10,#0x88] __text:0015271C VLDR S0, [R0,#0xA0] __text:00152720 VCVT.F64.F32 D2, S0 __text:00152724 VCMP.F64 D2, D3 __text:00152728 VMRS APSR_nzcv, FPSCR __text:0015272C BVS loc_15274C __text:00152730 BGE loc_15274C __text:00152734 LDR R0, [R10,#0x88] __text:00152738 MOV R1, R0 __text:0015273C VLDR S0, [R1,#0xA0] __text:00152740 VCVT.F64.F32 D2, S0 __text:00152744 VCVT.F32.F64 S0, D2 __text:00152748 VSTR S0, [R0,#0xA8] I suppose for hacking ammo I need a LDR, STR or a SUB right? The function just looks strange to me, but maybe it is good one.. Anyone knows if this can be a usefull function at all?