Enoch

I love it. But I think you should disable anyone else but the Admin group from using Red as it could confuse people and possibly cause issues. Especially for those that are new and don't pay attention to the user group but instead the color.

This might be unpopular but perhaps you shouldn't allow us to change colors but allows us to add bold, italics, underline, etc. But we're forced to keep the same colors as our usergroup instead. It allows each usergroup to have their respective usergroup color without being able to (what's the word I'm looking for?) imitate them.

Done:

Updated Hack: 

Modded/Hacked App: Tower Breaker

Bundle ID:  com.percent.towerbreaker

iTunes Store Link: https://apps.apple.com/us/app/tower-breaker-hack-slash/id1457283231?uo=4&at=1010lce4

Mod Requirements:
- Jailbroken iPhone/iPad/iPod Touch.
- iFile / Filza / iFunBox / iTools or any other file managers for iOS.
- Cydia Substrate or Substitute.
- PreferenceLoader (from Cydia or Sileo).

Hack Features:
- Devil Power 24,000%
- Unlimited Gold Skulls
- Weapon Power 288.0 (Some will show negative numbers. Just double tap on the weapon and it will turn positive.)
- Unlimited Skulls (Go into World, select a level, and back out)

- Unlimited Souls (Go into World, select a level and back out)

- Unlimited Keys 

- No Ads

Non-Jailbroken & No Jailbreak required hack(s): https://iosgods.com/forum/79-no-jailbreak-section/
Modded Android APK(s): https://iosgods.com/forum/68-android-section/
For more fun, check out the Club(s): https://iosgods.com/clubs/

How to open the mod menu:

A small white circle will appear on your screen, sometimes it will pop up after pressing "TAP TO START".  Double tap that small white circle.

iOS Hack Download Link:

Installation Instructions:
STEP 1: Download the .deb Cydia hack file from the link above.
STEP 2: Copy the file over to your iDevice using any of the file managers mentioned above or skip this step if you're downloading from your iDevice.
STEP 3: Using iFile or Filza, browse to where you saved the downloaded .deb file and tap on it.
STEP 4: Once you tap on the file, you will then need to press on 'Installer' or 'Install' from the options on your screen.
STEP 5: Let iFile / Filza finish the cheat installation. Make sure it successfully installs, otherwise see the note below.
STEP 6: Now open your iDevice settings and scroll down until you see the settings for this cheat and tap on it. If the hack is a Mod Menu, the cheat features can be toggled in-game.
STEP 7: Turn on the features you want and play the game. You may need to follow further instructions inside the hack's popup in-game.

NOTE: If you have any questions or problems, read our Troubleshooting topic & Frequently Asked Questions topic. If you still haven't found a solution, post your issue down below and we'll do our best to help! If the hack does work for you, post your feedback below and help out other fellow members that are encountering issues.

Credits:
- ZoZo03XX
- @Noctisx

Big thanks to @DADi and @Snipsnip for all the help. Couldn't have done it without them. 

Thanks to @Alan218 for testing the menu for me.

Cheat Video/Screenshots:

I really needed this. Thank you.

38 minutes ago, DADi said:

I suggest you use Live Offset Patcher: https://iosgods.com/topic/102594-release-custom-live-offset-patcher-v21-custom-offsets-injection-in-igmenu/?do=findComment&comment=3534705

0090261EC0035FD6 worked. The offset above you gave was knocking it down to 0% so I used to offset that you used in the video.

I'm trying to work on this game right now. I'll post again once it's finished.

Preview:

https://prnt.sc/q4nw4b

2 minutes ago, DADi said:

The tutorial you're looking at is for ARMv7, which is similar, but the instruction set is different for ARM64.

You can try chhanging it to 00E0BF12C0035FD6.

Thank you, I will try that. But how did you get that value? I’m trying to figure it out so I can dwindle down on asking.

Alright so I started using il2cpp (thanks to DADi) and I'm able to find the RVA's of what I want to change. But after watching many youtube videos (all for android, to see if there's much of a difference), many tutorials on here, I have gotten no where.

Well, I've gotten some places but I'm stuck.

When looking at these tutorials they don't explain how to change the function or why they are changing the function to their selected value.

Example:

https://prnt.sc/q4ms08

https://prnt.sc/q4mtbe

So what I'm trying to do is change the hit damage of the weapon. So I found it:

https://prnt.sc/q4mtnh

I go to ARM converter and convert -

STP             D9, D8, [SP,#-0x30]

and the HEX I get is "E9233D6D". So I go into HxD and look it up and look up the RVA to make sure it matches, it does.

Now I'm stuck, how do I know what to change it to? The tutorials don't explain why or how they got or decided on what to change it to.

@Ted2 Good tut but I'm kinda lost.

https://prnt.sc/q4eq93

So I decide to right click > code

https://prnt.sc/q4eqk6

I'm pretty lost here. Do I create a function? 

I’ve had this happen before. I had to download Unc0ver from similar apps to Appcake.

Gonna put this in my pocket for later, thanks for this.

edit: UI looks great.

Your best bet would to check out the VIP Android hacks section or the regular android hacks section.

Alright so looks like I'm probably the number one poster in help and support. So using ArchAngel's advice, I'm using the lldb method on my phone and it's going a lot better than using PuTTY. But with advancements comes set backs. So I'm currently at a setback. What am I doing wrong?

The short is:

I only get two values and no hits.

   w s e -- 0x28300E780
	w s e -- 0x283010070
	c
	(Spend in game)
	(-No updated hits in lldb-)
	Process interrupt
	* thread #1: tid = 0x1beb4, 0x000001a14080f4 libsystem_kernel.dylib'mach_msg_trap + 8, queue=com.apple.main-thread', stop reason = signal SIGSTOP
	frame #0 0x0000001a14080f4 libsystem_kernel.dylib'mach_msg_trap:
	-> 0x1a14080f4 <+8>: ret
	libsystem_kernel.dylib'mach_msg_overwrite_trap:
	0x1a14080f8 <+0>: movn   x16,  #0x1f
	0x01a14080fc <+4>: svc     #0x80
	0x1a1408100 <+8>: ret
	(lldb)

Fixed. I was loading it in as a binary instead of Mach 0.

10 hours ago, Cewong2 said:

Thanks for this. I honesty didn’t recall the option, I am planning to renew I just wanted to have more control as to when and how, and I will be more vigilant in looking at the option to auto renew.

 

If there ends up being a Black Friday deal I’ll probably do that. Lol

In the future here are some tips and how to turn off auto renewal:

https://prnt.sc/q2s4pq

https://prnt.sc/q2s516

https://prnt.sc/q2s5ij

So I decrypted the IPA using bfdecrypt. I open it as little endian. I don't select a RAM start address and I don't select a ROM start address, I just leave everything as is. I then disassemble it as a 64 bit code. There's no functions in the function window.

I’m not sure if it’s the decrypter that sucks or if there’s something else wrong.

This what what I get from there:

https://prnt.sc/q2jadv

Gonna see if my app will crash, testing for someone. Thank you.

13 minutes ago, AideNx said:

Is it still not working? Have you figured it out?

If not, i have other Tweaks you can use with the same exact purpose and function. DM me.

It still hasn't worked. I'll PM you.

9 hours ago, windbrand said:

Tried DLGMemor Injected but it doesn't have the ability to freeze values, which makes it pretty much useless in most situations. Is iGameGuardian the only working memory editor on iOS12 right now?

As far as I know, DLG is the only alternative for the time being. I would suggest just paying for iGameGuardian, it's what I'm probably gonna have to do.

Edit: You can try this with GameGem. This work around works for me:

1.) Launch GameGem and the app you would like to modify.

2.) Open up your preferred terminal app.

3.) type "su" then hit enter. Follow it with your password next.

4. Type "killall GameGemNative && GameGemNative" and then run it

5.) Go back to GameGem then preform any search, then go back to the terminal app.

6.) Close terminal app.

12 hours ago, DADi said:

That's normal.

You unfreeze the app by pressing c (continue) or CTRL+C. Can't remember what the lldb command was to resume the game.

Whenever I unfreeze the app PuTTY gets this error and then it goes inactive: https://prnt.sc/q28zmn

I can set watch lists but I can't ever get the new value because of this. I did set keepalives but it's not keeping it alive whenever I continue so I can't get frame #0 or the IDA address. 

2 hours ago, DanYal said:

Yeah you need to atatch binaryname not the appname

I forgot that I renamed the binary name on my desktop to RoKDecrypted to keep an eye on it and not lose it. So I forgot it was a different name. 

7 hours ago, DADi said:

That's normal.

You unfreeze the app by pressing c (continue) or CTRL+C. Can't remember what the lldb command was to resume the game.

It was c and then pressing enter, thank you.

So I run attach 'PID' and I run image list, it freezes the app. If I close out of PuTTY while in the game (while it's frozen) it unfreezes. Even after the attach is done, it stays frozen. I close out of PuTTY? It resumes. 

I've also tried having it in the background while I'm running attach 'PID' and image list. Whenever I go into the app, it's frozen. I can't set watchpoints because it's frozen.

Is it just taking a while to rebase the debugger and I should leave it and see what happens?

16 minutes ago, ZoZo03XX said:

Thanks to a user on Reddit you can get the PID using:

ps ax | grep 'app name'

And the app and binary name was "ios".