-
Posts
809 -
Joined
-
Last visited
Everything posted by i0s_tweak3r
-
Started using cycript. It's very easy to learn, and can be quite powerful. Learned how to remotely change password on people's facetime, imessage, icloud etc, assuming you have their IP address. It's actually scary how easy it is. Also jokingly made a UIAlert pop up remotely on SpringBoard saying "You're phone has been hacked. Thanks for keeping your credit cards saved on device". Didn't actually steal any data but thought it could be a fun prank on a friend. ?
(Note to self: stop logging in to iosgods without using multiple VPN's/ tor first lol.)
Also used it to dump classes, like class dump, get all methods inside each class, get values for instances of objects during runtime, and hex addresses. Just curious if they will work in IDA or with Armconverter tools, or if the offsets are device specific, and/or change like iGameguardian hex addresses.
I guess I could figure out if they change by exiting cycript then re-processing and printing headers/methods etc. Still don't know if they will work for a patcher tho. I just cracked the app first didn't calculate ASLR's affect. Guess I can change hex values accounting for ASLR then make a patcher to see if it works. (Unless someone so kindly points out ahead of time that it won't.)
-
Trying to connect iOS 10 device to debugserver and lldb is a b!tch! First have to USB tunnel just to SSH into device, then after attaching to PID it doesn't give time for lldb to connect it crashes game instantly and then gives an error about not finding remote gdb server.
-
I probably should have tried using it on my iOS 9.3.3 device first. Think I'm going to try that, make sure I'm doing everything right without the USB tunnel; just really wanted to use it on an iOS 10 only game.
I've seen so many ppl having hard time with it already b4 that's why I originally installed gdb, only to find out it doesn't work on my iOS versions.
-
Getting really tired of problems trying to get Gdb working with an arm64 device on iOS 9.3.3.... My head hurts from reading so many tutorials and support topics where ppl have had same issues. Every cracked binary I get from Clutch seems to be already thinned, as Lipo gives error messages about them not being fat. Removing ASLR isn't an option, other then calculating difference in offsets due to it not being removed. But offsets never enter picture because attaching to a process from SSH/putty using gdb just winds up spewing a million errors, and eventually crashing SpringBoard.
Brain hurting... Time to start fresh another day.
-
That's very helpful to know. Thank you so much. @xiaov Going to try again tonight. I know the game is sub_x, and should be very easy to find offsets if I can just get gdb working right.