ThePianoGuy

Kingroot doesn't work on 2.6.xx because they removed pre-root and patched exploits. The only one way to root is modify root.fs

Since version 0.9.0, Bluestacks added su binary which allow you to grant access silently but silent root access doesn't work for some apps.
 
PLEASE READ!!! DO NOT TRY TO ROOT BLUESTACKS WITH SUPERSU APP. YOU WILL LOSE ROOT PERMISSIONS, INCLUDING LOSS OF SEMI-ROOT EXPLOIT.
 
Download Bluestacks 2 at: http://www.bluestacks.com/
 
Don't like Bluestacks 2? Download classic Bluestacks instead: http://forum.xda-developers.com/wiki/BlueStacks_App_Player
 
LET'S ROOT THE BLUESTACKS!
 

You can watch the videos or read the topic below

1. Launch Bluestacks
 

 
2. Download Kingroot app for Android from here: http://www.kingroot.net/?myLocale=en_US
(NOTE: Some browsers blocks Kingroot from downloading. Add it to the whitelist, to prevent any issues)
 
3. Double-click on the APK file to install the app into the Bluestacks
 

 

 
4. You'll see the Kingroot app in the app drawer, open it.
 

 
5. Tap on "Root status failed" to begin the rooting process
 

 
6. Rooting will take 5-10 SECONDS! After rooting, you will see a message like this:
 

 
7. That's it. Bluestacks is now rooted.
 
IMPORTANT. Do not open any app which asks you to restart the device. Pressing restart will UNROOT Bluestacks and the good hidden semi-root exploit will be GONE FOREVER until you reinstall Bluestacks.
 
8. Test root access on any apps to see if it works.
 

 
9. Close the Bluestacks, and reboot your computer to take effect.
 
Now enjoy your 100% full root access on Bluestacks. You can finally use GameGuardian on Bluestacks to hack any offline games without the use Cheat Engine or similar external softwares!

Credits:
AndnixSH

Why unsigned APK, and why is it recommended for most games? With an unsigned APK, you can install the APK over the original. You can login with your Google+ account without signature error, and login with your Facebook account without uninstalling Facebook app. No more login not working complains!

What are the difference between unsigned APK and signed APK?
Unsigned APK is an APK that was been modded but the modders kept the original signature by developer to make Google login working. SIgned APK is an APK which was been re-signed by modders with APKtool's signature, dated 29-02-2008. Google or other social medias may not work due to signature that was been changed.




You can only install an unsigned APK on your rooted device because it require the signature to be disabled using Lucky Patcher. If your phone is not rooted, please saerch on Google about how to root your phone.

Note from Xtreme Myst:
By using the method described, consider to NOT add new files or remove existing files on the APK. For example, along with your mod you need to add a file into the APK, let say in "assets/myfile.dat". It won't work and lead to failure during APK installation. Another example, let say you've successfully remove XC protection and been thinking it's okay to pull the "lib/armeabi/libxigncode.so" out of the APK. Again, it causing installation failure.

This is because all file structures in the APK was mapped and their info was stored in "META-INF/CERT. SF" file. The solution is you need to put all your mods along with expected APK file structures in the compiled APK, sign it (with any desired key), then pull the "META-INF/CERT.SF" from this newly signed APK to be used as replacement for the old one at your working APK.

Let's start modding.

First, we need to change another apps. 7zip or Winrar

1. Right click on the APK file -> Open With -Z Choose Another App



2. Click on "More apps" and tick "Always use this app to open .APK files"



3. Click "Look for another app on this PC"



4. To go program files and select any program to open with APK. I'd recommended 7zip or Winrar



5. The program will open



6. Drag and replace the modded file in the .APK file



That's it. You are done


Smali and XML modding

If you were modding Smali or XML and you have recompiled it and signed it, you can do it

1. Compile the APK (Resigning an APK is optional)

2. Drag and replace a modded file from a signed APK to an original APK, and the APK will become an unsigned APK.



3. Simply close the program, and you are done!

Replace signatures in META-INF (Second method)

You can delete the modified signatures and add the original signatures in META-INF folder but it may not work for some apps

1. Open signed APK

2. Open META-INF folder



3. Delete all signatures and add original signatures by game developer in META-INF folder. This will make APK into unsigned APK



Credit:

AndnixSH

GameGuardian is the best

Can't login with your Google+ on modded games? Really need to uninstall Facebook? NO PROBLEM. i will show you how to patch signature and make your device thinking that the signature is always true, so you can install any UNSIGNED modded apk on

What can you do after patching?

- Install Unsigned APK

- Install Unsigned APK over the original APK

- Login with your Facebook account without uninstalling Facebook app

- Login with your Google+ on modded games

1. Make sure your device is rooted, and have latest SuperSU and Busybox binaries.

2. Download Lucky Patcher from http://lucky-patcher.netbew.com/and install it

DO NOT DOWNLOAD LUCKY PATCHER FROM PLAYSTORE

3. Open Lucky Patcher from the app drawer and let it refresh

4. Click "Toolbox"

5. Click "Patch to android"

6. Check "Signature Verification status always true" and "Disable .apk Signature Verfication" and click Apply

IMPORTANT! If Lucky Patcher does not allow you to check "only patch dalvik-cache, which means, your device does not support patching dalvik-cache. When you patch signature verifications without patching dalvik-cache, the dalvik-cache will be cleared and it will take 5-10 to boot once. "only patch dalvik-cache" is the quickest way to patch the signature verifications. JUST PATCH IT ANYWAY IF DALVIK-CACHE PATCH IS NOT SUPPORTED AND STOP ASKING QUESTIONS!

Most devices running Android Lollipop will reboot when patching

7. You will get a message saying that the patches are applied (ONLY if patched in dalvik-cache)

8. Reboot your device

9. Install the unsigned modded apk over the playstore version. (Do NOT uninstall the playstore version!)

10. Open the game, login to Google Play, and enjoy!

Credits:

AndnixSH (for creating this tutorial)

ChelpuS (for creating Lucky Patcher )

Raxx (for grammar fix)

if you need help with Droid4X, i can contact with Droid4X店小六 in QQ chat for help. she is only one who speak english and translated Droid4X to english i think.

I always remove bloatwares from all of my devices.

I know you can download US apps on apkpure but i rather downloading apps from Play Store i just wanna share my tricks

If the VPN method to acces US Play Store is not working for you, and you wanted to access US Play Store? You can do it without VPN and without create a new account. Let's get started

Note: This guide is for peoples who can't get access to US Play Store when using VPN or Proxy. Account changes might take a week to apply changes.

1. On your computer, go to your personal info an login with your Google account https://myaccount.google.com/privacy#personalinfo

2. Remove your phone number. Make sure the location sharing is not enabled.

3. Go to Language https://myaccount.google.com/language

4. Add language "English (United states)" and delete other languages

5. Go to https://wallet.google.com

6. Click on the gear icon in top-right corner

7. Edit your customer details. Change your country to US and put fake US Address, click save

here is my example:

yeah i know i misspelled Los Angeles but it doesn't matter how you spell

8. Disable Wi-Fi and Mobile data

9. On your device, open Settings - Apps

10. Clear data of Google Play Settings and Play Store

Android 4.2.x and up: On Google Play Services, Click on Manage space and clear all data

11. Reboot your device

12. Enable Wi-Fi or Mobile data

That's all. Now you have to wait few days until your changes apply and the Play Store will automatically change the region to US without any notice. If you waited 1 week and the region still not changed, try repeat the step 7 to 9 again.

Credit:

AndnixSH

So what is MOV R0, R7 in x86 ??

there is no limitation of value in x86 so you don't have to think about MOV R0, R7 thing

99,999,999 value is

mov eax, 0x5f5e0ff = b8 ff e0 f5 05

max value is 0xffffffff = 4,294,967,295 , but it if max value is 2,147,384,687 for some games, the value will go negative or the game will crash

mov eax, 0xffffffff = b8 ff ff ff ff

i'm unsure if it works

Modded Game Name: The Sandbox Evolution
Google Play Store Link: https://play.google.com/store/apps/details?id=com.pixowl.tsb2&hl=en
Rooted Device: Not Required.

Mod Features:
- All elements unlocked


Hack Download Link:

su

root@[member='YourName'] #

dumpsys meminfo

dumpsys meminfo | grep com.*

dumpsys meminfo | grep th.*

118740 kB: com.nhnent.SKQUEST (pid 383 / activities)

gdb -pid xxxxx

(gdb)

chmod 777 /system/bin/gdb && chmod 777 /system/bin/gdbserver

gcore /sdcard/anynames

Saved corefile /sdcard/xxxxxxxx

Assembly-CSharp.dll

Assembly-CSharp-firstpass.dll

Assembly-UnityScript.dll

Assembly-UnityScript-firstpass.dll

Assembly-CSharp.dll = 000034.dll

Assembly-CSharp-firstpass.dll = 000030.dll

Assembly-UnityScript.dll = 000028.dll

Assembly-UnityScript-firstpass.dll = 000013.dll

AndnixSH

Hello dear community,

Today, i will teach you how to mod x86 libs. x86 is not that hard to understand because the instruction are almost the same as ARM. In this tutorial, i mod the game called The Sandbox 2.

You don't really need to mod x86 at all since I never heard any problem with ARM translating to x86, and it's too hard to change instruction without code caving. Just wanna make tutorial lol

Now let's start modding.

In this tutorial, I'll show you how to mod The Sandbox Evolution very easy in x86.

First of all, you need IDA PRO and Hex Workshop installed on your computer. If you already have them installed, go to next step

Open the APK file with WinRar and extract the lib folder (In case you want to mod both x86 and ARM)
Open the x86 .so file in IDA. You will see the dialog box similar to the following:

In x86, you don't need to change anything. MetaPC is fine. Click OK to disassemble the lib file, and let it fully load. After that, press CTRL + F,  search "isElementUnlocked" and double click on the function to open it

Remember the offset (9869E0) of first instruction. we need to use it later.

Note: The offset will change each update.

Open Hex Workshop or other hex editing program, and search the offset. I'm using Hex Workshop

Here is the offset of isElementUnlocked

The function isElementUnlocked is a boolean function, which means it can return true or false. If you want unlock everything, replace it with b8 01 00 00 00 c3, which will return true.

True is:

b8 01 00 00 00 (mov eax, 1)

False is:

b8 00 00 00 00 (mov eax, 0)

And return is:

c3 (retn)

When you open the modded .so file in IDA, your modded instruction will look like:

Isn't that easy?

You can also do the same on hasBoughtPromoPack to unlock premium

If you want to hack mana like 9999999, search getManaBalance and giveMana, and replace it with any values you want

b8 7f 96 98 00 (mov eax, 9999999)
c3 (ret)

You can use online x86 Assembly to get raw hex
https://defuse.ca/online-x86-assembler.htm#disassembly

Open the APK with WinRAR and replace the modded .so file. Re-sign the APK, install it and run the game.

[/IMG]

Credits:
AndnixSH#

Tutorial updated (May 2018)

On 8/12/2016 at 3:24 PM, DiDA said:

Is this better than Advanced APK Tool?

 

Nice work though! Liking the design!

Thanks! I don't know if it is better because i never tried it before, but GUI tool is much faster and quicker than the CMD version. I don't include wipe folder functions in my tool for security reason but i can include it if many users request it  

On 8/12/2016 at 3:31 PM, ZahirSher said:

 

 

is this better than Advanced ApkTool?

I wrote a post without reading what u wrote lol, we had the same thought

you can try. it should be better and faster. if you have any ideas, feel free to request features here

Requirements:

• Windows 7 or newer (This tool will not work for Windows XP)
• .NET Framework 4.5.2 or newer
• Java SE/JDK is required for decompile, compile, and sign APK. If you don't have Java installed, you can only use Zipalign or Install APK. Download and install Java SE/JDK now

Features:

• 7z Compression-level 0-9
• APK infomation with icon by aapt dump badging
• Background workers to get rid of lags
• Remember window position (SHIFT + Q to reset window position)
• Advanced log viewer, with .txt file selection
• Extract APK / Zip APK
• Switch between apksigner.jar by Google and signapk.jar by bootstraponline
• Quick help
• Full environment path support
• Adb process kill
• Apktool.jar version selections
• Decompile APK
• Compile APK
• Sign APK after compile
• Sign seletected APK (It will clone the selected APK, and sign it)
• Sign compiled APK (If you forgot to sign your compiled APK, you can sign it)
• SignAPK (signapk.jar v1.0)
• Remember path when closed (config will reset if EXE file was moved to somewere else)
• Framework installer (uses apktool.jar's commands)
• Logs tab
• Drag and drop file support
• Full options of decompile and compile
• Cancel button in waiting dialog box
• Clear logs when exit
• Allow path changes in textbox
• Java heap option. Default 512m
• ZipAlign
• Options to rename the apk file
• Options to select apktool version.
• Tooltips
• Enable/Disable check for updates
• Enable/Disable tips and ToolTips
• and more...

How to use:

1. Download .msi or zip file,
2. If you download .msi, open it and simply install it. If you download portable version .zip, extract to the portable drive you like to.
3. Launch APK Easy Tool, directory are automatically set
4. Select the APK file you want to work with or drop the APK to perform an action
5. Do some work and good luck

You do not need to select APK and set the directory if you do drag and drop actions.

Framework are for ROM developers and System App modder only

It works the same way as the command line version

Download links:
Dropbox link

Mediafire link

Android File Host link

Baidu link (For peoples who live in china that can't access any other websites above)

Credits:

Changelogs:

1.41 (2017-12-01)
- Added News tab. It requires an internet connection
- Added options to change path of signing keys .pem and .pk8
- Added donation button
- Added Full APK Infomation.
- Added options to select your own .pk8 and .pem file for signing
- Improved apktool version check.
- Fixed wrong directory when the program auto create them
- Removed changelogs from the tool. You can see them in news and online
- Removed WS_EX_COMPOSITED to get rid of some UI glitches. Weird UI drawing may occur but looks cool for me :).
- Changed transparent BackColor to write to improve UI performance a bit
- .NET framework target is 4.6
- Some UI changes
- Some fixes

Full changelogs

Screenshots:

didn't iOSGods made a deb file that blocks iOSleecher first? just asking

Hi,

At our school, we have found an iPad 4 that was not been used for almost 2 years. it was been updated to 9.3.1, because i requested to update all iPads in one via MDM (Mobile Device Management). They all forgot who was the owner and who logged in with their iCloud account.

How do we do now?

The warrant was expired. a teacher told me to try hack/jailbreak into it, but it's not possible on iOS 9.3.1 and without NAND exploit (NAND exploit that i can install CFW).

how can i watch Youtube Red shows for free?

i was waiting for this tutorial!

@dida how about code injection and preferences design generator?

is there a way to decrypt HTTPS traffics? i can't hack it when it says unknown with a green up arrow icons

wow

cool

cool

nice

cool!