Taylor Meyer

im so F******* mad none of them are in the same function there is a close on sysctl and getpid are pretty close together but not in the same function edit sysctl is sub_A347D0 and get pid is Sub_A34784

i will try and let you know back

i tryed a game called a game rolling sky but I don't know I can't apparently

yea I know hopefully soon

i looked closely and nope all of them are spread every where

i read this again i was like oh shit MEM checks look at this https://iosgods.com/topic/6995-ida-tutorialhow-to-disable-memory-checks/page-1 maybe im not for sure that its MEM checks i could be wrong

so i was deciding on which one i should do and i decide to press x and these came up https://imgur.com/a/haRRe im gonna use NOP but now that i found these im like *** D**** this is so stressful im not asking for the freaking answer im asking where you think it could be top or bottom

can you help can you help https://iosgods.com/topic/40175-more-anti-debug-crap/

so the tutorial will work

so im wasting my time with https://iosgods.com/topic/19378-how-to-defeatremove-aslr-on-ios-9-armv7-and-arm64-devices/

im gonna use GDB im trying to freaking find the ammo offsets in the game zombieville 2 but the game has anti debug and ASLR

apparently this is the only way it freaking sucks but whatever crack using Clutch from iphonecake repo because when you dump it says ASLR slide 0x000000 https://iosgods.com/topic/19378-how-to-defeatremove-aslr-on-ios-9-armv7-and-arm64-devices/

this is not a prevention but it removes the lock out permanently add this repo alakazard.yourepo.com/ and find a tweak called nosnaplock Edit the tweak has been removed from repo and I don't know why

i will be honest I don't have much experience but mov is move LDR - Load something and put it into a registerSTR - Store something put it into a register

i recommend using gameplayer find a dynamica address for the balls then do the rest

have you found anything

i just wish i was more like Shmoo as in Trial and error

oooooo nice buddy

i would say for the most part i do know what im doing i have a idea but i wanted to make sure

i followed this https://iosgods.com/topic/26721-breaking-securityhow-to-disable-syscall-anti-debugging-protection/ i found sysctl and get pid and memset but not syscall will it still work if i disable those

if im correct what i would like modified is BALLS and obstacles for the balls hehehehehe balls. find a dynamic address then do the rest in LLDB i want you to know i tried this but couldn't even find a single correct dynamic address EDIT: the game is not server sided how i know is i tried finding a dynamic i got it only once but stupid me i set it to high then game crashed when number went from 200 to 199

rolling sky

phones is the only thing vulnerable game is fully server sided

i would definitely like to have one

sorry