cinderace

Well that was a quick update. Thanks X204!

Thanks, it's really impressive work. My only issue is that I am stuck on an infinite loop of "your device is rooted", "your device is banned" and "account banned for cheating" (because rooted device detected = insta ban, standoff does not play around). I tried using Liberty, KernBypass and A-Bypass to no avail. Any tips? Thanks!

Hey, really nice tutorial, it gave me a nice motivation to start hacking on iOS devices too! I've been trying to reverse engineer Head Soccer as my first proper project but I really did not understand how ASLR works on ARM64. (lldb) image list "headsoccer" [ 0] 177C24B9-537F-3B7A-ACDF-74DDC1B4D35B 0x00000001022d8000 /private/var/containers/Bundle/Application/028CC5F9-515B-4E52-8380-ED4D992353B8/headsoccer.app/headsoccer (lldb) According to the guide I need to take the last 5 hex digits of the address 0x1022d8000, aka d8000 but I wonder if this is always the case or if the ASLR slide could include more or less digits (like 0x4000 or 0x100000). Many thanks for publishing this guide!