al3xs7x

+ compiling for arm64e was required.

Can you recommend some newer template maybe?

You mean Root.plist? Filza doesn't say anything about it being malformed, how can i know that?

Are you sure? I was thinking it’s arm64 this whole time, uname -p returns “arm64” 🤔 EDIT: recompiled with ARCHS = arm64e, it's still the same. I guess this is not the issue..

It's me again. So, i'm trying to use this template: and this is my patch, so far: // Code Injection example if(GetPrefBool(@"key1")) { vm_writeData(0xCB92A4, 0x1F2003D5); vm_writeData(0xCB92B0, 0x58010014); everything else is the same as generated from template. After compiling .deb and installing, when i go to settings and click on new tweak's submenu, it says There was an error loading the preference bundle for Amazing Spy GodMode Cheats. What's going on here?

I hope so 🙂

Tried to compile on both MacOS + IOS, it's the same.. Using 11.4 sdk because 11.2 (as Ted2 recommended) is not available on theos Github repo. Anyone here that used and have experience with Ted2's mod menu? I'm stuck whole day here trying to solve this

Alright, i've deleted my offsets, and compiled with some of Ted2's examples, like this: // Offset Switch with one patch [switches addOffsetSwitch:NSSENCRYPT("God Mode") description:NSSENCRYPT("You can't die") offsets: { ENCRYPTOFFSET("0x1002DB3C8") } bytes: { ENCRYPTHEX("0xC0035FD6") } ]; // Textfield Switch - used in hooking [switches addTextfieldSwitch:NSSENCRYPT("Custom Gold") description:NSSENCRYPT("Here you can enter your own gold amount") inputBorderColor:UIColorFromHex(0xBD0000) ]; // Slider Switch - used in hooking [switches addSliderSwitch:NSSENCRYPT("Custom Move Speed") description:NSSENCRYPT("Set your custom move speed") minimumValue:0 maximumValue:10 sliderColor:UIColorFromHex(0xBD0000) ]; It still crashes. EDIT: if i remove calls to ENCRYPTOFFSET and ENCRYPTHEX: // Offset Switch with one patch [switches addOffsetSwitch:NSSENCRYPT("God Mode") description:NSSENCRYPT("You can't die") offsets: { //ENCRYPTOFFSET("0x1002DB3C8") } bytes: { //ENCRYPTHEX("0xC0035FD6") } ]; and recompile, it works/shows the menu and doesn't crash!?? 🤔

If you mean this, yes: void setupMenu() { // If a game uses a framework as base executable, you can enter the name here. // For example: UnityFramework, in that case you have to replace NULL with "UnityFramework" (note the quotes) [menu setFrameworkName:"UnityFramework"]; ...

Hey, i have a problem with Ted2's mod menu. I made a simple patch with two offsets using switch, like this: //Offset switch with multiple patches [switches addOffsetSwitch:NSSENCRYPT("GodMode") description:NSSENCRYPT("Disables player's collision.") offsets: { ENCRYPTOFFSET("0xCB91B0"), ENCRYPTOFFSET("0xCB92A4"), } bytes: { ENCRYPTHEX("0x1F2003D5"), ENCRYPTHEX("0x58010014"), } ]; Successfully compiled .deb, installed, and after running the game, and showing purple "Thank you, understood" popup menu, when i dismiss the menu, it just crashes. So basically it crashes when calling setupMenu() if i have understood it correctly. If i comment out above code (and leave some of Ted2's examples uncommented), it works and shows the menu button normally, without crashing. I'm using Tweak.xm template that comes with mod menu, the only thing that's changed basically is the above code. What am i doing wrong here?

Unfortunately no

ldid -S did the trick! Thanks! Is the sign universal, eg. will it work on other devices? I am planning to release some patches/mods, is ipa the best way, i guess releasing only patched binary and requiring of users to replace original one in bundle is stupid..?

Yes, i have AppSync Unified installed. I have never used ldid, do i use it on phone or pc?

I know, but it doesn't work on libhooker (Taurine). So you think it's bfdecrypt's fault?

Hey, here's my typical app modding workflow: Decrypt .ipa using bfdecrypt (only decryption tool that works on Taurine 14.3, as far as i have found) Extract binary from new decrypted .ipa Thin it using lipo (only if it's multi arch binary) Fix permissions to 755/777 Throw it in GHIDRA and start analyzing Manually apply mods/patches to binary using hex editor, and directly replace original one in app's bundle Now, for some reason, this game https://apps.apple.com/us/app/id938586035 immediately closes after modding. Actually, even without modding, after only first two steps, if i replace original binary with decrypted one, it refuses to start. Does anyone have an idea what it could be, it's a random free game, and i don't think it has to do something with some form of anti-piracy..