Jump to content

Search the Community

Showing results for tags 'TuT'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Forum Related
  • No Jailbreak Section
  • VIP Section
  • Game Cheats & Hack Requests
  • Android Section
  • Tutorials, Tools, Support & Coding!
  • Everything Else
  • Dank Memes's Memes
  • Dank Memes's Funny
  • Football Club's News
  • Football Club's Goals
  • Football Club's Live Score
  • Steam Club's Steam Profiles
  • Steam Club's Steam News
  • Steam Club's General
  • Console & PC Gaming's Our specs and setups
  • Console & PC Gaming's Cheap parts and advice
  • Console & PC Gaming's Favourite game songs/themes
  • Console & PC Gaming's Console and PC Gaming
  • Anime's Anime Discussions
  • Anime's Manga Discussions
  • Anime's Recommendations
  • DomiNations Club's DomiNations Discussions
  • DomiNations Club's Friends & Alliances
  • BLEACH Brave Souls Club's Discussions
  • BLEACH Brave Souls Club's BBS Help & Support
  • DRAGON BALL Z DOKKAN BATTLE Club's Updated Links!
  • DRAGON BALL Z DOKKAN BATTLE Club's Global Discussions
  • DRAGON BALL Z DOKKAN BATTLE Club's Japan Discussions
  • One Piece Treasure Cruise (Global & Japan)'s OPTC Discussion
  • One Piece Treasure Cruise (Global & Japan)'s One Piece Treasure Cruise (Global)
  • One Piece Treasure Cruise (Global & Japan)'s One Piece Treasure Cruise (Japan)
  • One Piece Treasure Cruise (Global & Japan)'s Japan/Global Help & Support
  • One Piece Treasure Cruise (Global & Japan)'s Status Hack For One Piece Treasure Cruise (Global & Japan)
  • Clash of Clans Club's Topics
  • Summoners War Club's Summoners War Discussions
  • Summoners War Club's Help & Support
  • MARVEL Contest of Champions Club's Help & Support
  • MARVEL Contest of Champions Club's Discussions
  • Mobile Legends: Bang bang Club's Discussions
  • Mobile Legends: Bang bang Club's Help & Support
  • Photography's Topics
  • Overwatch Club's Overwatch Discussions
  • Overwatch Club's Play(s) of The Game & Highlights
  • Overwatch Club's Tips, Tricks & Tutorials
  • Overwatch Club's Funny Videos & Others
  • Monster Super League Club's Discussions
  • Injustice 2 Club's Discussions
  • Dungeon Hunter Club's DH5 Topics & Discussions
  • Dungeon Hunter Club's DH5 Help & Support
  • Dungeon Hunter Club's Topics
  • Dungeon Hunter Club's Profile Sharing
  • Last Day on Earth: Survival Club's LDOE Discussions
  • Last Day on Earth: Survival Club's LDOE Help & Support
  • Last Day on Earth: Survival Club's LDOE News
  • Last Day on Earth: Survival Club's LDOE Guides & Tutorials
  • Futurama: Worlds of Tomorrow Club's Discussions
  • MARVEL Avengers Academy Club's Discussions
  • Modern Combat 5 Club's Discussions
  • DC Legends Club's Discussions
  • Golf Clash Club's Golf Clash Discussions
  • Golf Clash Club's Golf Clash Help & Support
  • Yu-Gi-Oh! Duel Links Club's Duel Link News
  • Yu-Gi-Oh! Duel Links Club's Duel Link Farming Guides
  • Grand Theft Auto 5's General Talk
  • Grand Theft Auto 5's Glitches
  • Grand Theft Auto 5's Mods
  • Grand Theft Auto 5's Questions
  • King's Raid Club's Discussions
  • MARVEL Future Fight Club's Discussions
  • iOS Jailbreak Setups's Announcements
  • iOS Jailbreak Setups's Device Setups
  • iOS Jailbreak Setups's Tweak, Theming & General Questions
  • iOS Jailbreak Setups's Tweak & Theme Recommendations
  • iOS Jailbreak Setups's General
  • Movies & Series Club's Topics
  • Movies & Series Club's Movies trailers
  • Movies & Series Club's Movies release date
  • Movies & Series Club's Series trailers
  • Taichi Panda Club's Discussions
  • Destiny 2's General
  • Destiny 2's Help/Support
  • Destiny 2's Looking For Group
  • Destiny 2's News
  • Destiny 2's Glitches, Tricks, Tips & Strategies
  • Club Français iOSGods's Groupe de discussion en Français
  • Club Français iOSGods's Support en Français
  • Club Français iOSGods's Support iOS en Français
  • Club Français iOSGods's Support Android en Français
  • iOSGods Svenska Klubb's Diskussioner
  • iOSGods Svenska Klubb's iOS Hjälp
  • iOSGods Svenska Klubb's Android Hjälp
  • iOSGods Svenska Klubb's Generell Hjälp
  • Everything Mac's Discussions
  • Everything Mac's Other Stuff
  • Everything Mac's Questions
  • Everything Mac's Announcements
  • Everything Mac's Apps & Games
  • The Respawnables Club's Respawnables Tips and Tricks
  • The Respawnables Club's Ask your questions here
  • The Respawnables Club's General Discussion
  • Italiano iOSGods Club's Discussioni generali
  • Italiano iOSGods Club's Guide e traduzioni
  • España iOSGods Club's Topics
  • Cuphead Club's Boss Levels
  • Cuphead Club's Run and Guns
  • Ultimate Ninja Club's Events
  • Ultimate Ninja Club's Team
  • Ultimate Ninja Club's Tips
  • Ultimate Ninja Club's Clans
  • Brave Frontier Club's Brave Frontier Discussions
  • Brave Frontier Club's Brave Frontier Help & Support
  • iOSGods Turkish Club's Genel Bilgilendirme
  • Naruto x Boruto Ninja Voltage Club's Help & Support
  • Naruto x Boruto Ninja Voltage Club's Announcement
  • Naruto x Boruto Ninja Voltage Club's Clans
  • Naruto x Boruto Ninja Voltage Club's Layout
  • Call of duty WWII's Glitches
  • Call of duty WWII's Mods
  • Call of duty WWII's Boosting
  • Call of duty WWII's General Talk
  • South Park: Phone Destroyer Club's Topics
  • Toram online MMORPG's Topics
  • Rules Of Survival Club's News & Announcements
  • Rules Of Survival Club's Play together!
  • Rules Of Survival Club's Discussions
  • Rules Of Survival Club's Q&A
  • Rules Of Survival Club's YouTube
  • Forward Assault's Topics
  • Forward Assault's FA Help & Support
  • Star Wars: Galaxy of Heroes Club's Working Combos for Non-Jailbreak Mod
  • Star Wars: Galaxy of Heroes Club's Question Section
  • Star Wars: Galaxy of Heroes Club's Ban Warning ⚠️
  • Bullet Force's Glitches, Tricks, Mods & Hacks
  • Bullet Force's Announcements
  • Bullet Force's General
  • Bullet Force's Help & Support
  • Tekken Club's Topics
  • Tekken Club's Q&A
  • Tekken Club's Arcade Sticks & Pad
  • Tekken Club's Character Quick Notes
  • Tekken Club's Frame Data
  • Tekken Club's Tekken Tournaments
  • Tekken Club's Events
  • Marvel&DC Heroes's Topics
  • Marvel&DC Heroes's Movies
  • Marvel&DC Heroes's Series
  • Marvel&DC Heroes's Comics
  • Modern Combat Versus's Glitches, Tricks, Mods & Hacks
  • Modern Combat Versus's Help & Support
  • Modern Combat Versus's Announcements
  • Modern Combat Versus's General
  • GFX Club's GFX Tutorials
  • GFX Club's GFX - Graphic Studio
  • GFX Club's GFX Resources
  • GFX Club's Portfolios
  • GFX Club's GFX Requests
  • Fantasy War Tactics's Topics
  • Club Archives's H A R M O N Y
  • Club Archives's AdventureQuest Worlds Club
  • Club Archives's Call of Duty
  • Club Archives's Game Exploits
  • Club Archives's Counter Strike: Global Offensive
  • FC Barcelona Fans Club's LaLiga
  • FC Barcelona Fans Club's Copa del Rey
  • FC Barcelona Fans Club's UEFA Champions League
  • FC Barcelona Fans Club's News & Discussions
  • PC Game Hacking Club's Modded DLL Hacks
  • PC Game Hacking Club's Other PC Hacks
  • Fortnite's Gameplays
  • Fortnite's Glitches
  • Fortnite's Other stuff
  • Marvel Avenger’s Academy's Topics
  • Norsk iOSGods Club's Topics
  • PUBG MOBILE's PUBG Discussions
  • PUBG MOBILE's Find Friends
  • PUBG MOBILE's Help & Support
  • PUBG MOBILE's Japan / Korea
  • DragonProject's Topics
  • IDA/Hacking Club For Tips's Tips
  • ConsoleGods's Topics
  • ConsoleGods's Wii
  • ConsoleGods's PS3 Moddig
  • ConsoleGods's Xbox Modding
  • ConsoleGods's Nintendo Switch
  • ConsoleGods's PS4 Modding
  • iOS Development Club's Tutorials
  • iOS Development Club's Shares
  • iOS Development Club's Help
  • iOS Development Club's Requests
  • One Piece Thousand Storm OPTS Club's Topics
  • Marvel Strike Force's Topics
  • Marvel Strike Force's MSF Help & Support
  • Java & Android Development's Java & Android development Tutorials
  • Java & Android Development's Java development questions
  • Java & Android Development's Android development questions
  • Java & Android Development's Challenges!
  • Jurassic Survival Club's News
  • Jurassic Survival Club's Discussions
  • Jurassic Survival Club's Guides & Tuts
  • Jurassic Survival Club's Help & Support
  • Russian community iOSGODS's Приветствие
  • The Simpsons™: Tapped Out's Topics
  • DRAGON BALL LEGENDS Club's DBL Discussions
  • DRAGON BALL LEGENDS Club's DBL Help & Support
  • Grim Soul: Survival Club's General Topics
  • Grim Soul: Survival Club's Help & Support
  • Dungeon Hunter Champions's Discussions
  • Dungeon Hunter Champions's Help & Support
  • Dungeon Hunter Champions's News
  • Arena of Valor's Topics
  • Darkness Rises Club's Topics
  • Pokémon Quest's Topics
  • Durango: Wild Lands's Topics
  • Durango: Wild Lands's Durango Discussion
  • Dawn of Titans Club's General Forum
  • Dawn of Titans Club's Dawn of Titans News
  • Dawn of Titans Club's Alliances
  • The Walking Dead: Our World's Topics
  • 8 Ball Pool Tips and Tricks Club's Topics
  • 8 Ball Pool Tips and Tricks Club's New version of 8 ball pool 4.0
  • iOSGods Vietnam's Khu vực bàn chuyện chung
  • iOSGods Vietnam's Hỗ trợ kĩ thuật
  • Shadowgun Legends's Topics
  • النادي العربي's (قسم ببجي)
  • النادي العربي's قسم هاكات اخرى
  • النادي العربي's قسم ادوات السيديا
  • النادي العربي's قسم المواضيع
  • النادي العربي's قسم المساعده
  • AutoTouch Script Club's VIP AutoTouch Scripts
  • AutoTouch Script Club's FREE AutoTouch Scripts
  • AutoTouch Script Club's AutoTouch Script Requests
  • AutoTouch Script Club's AutoTouch Tutorials
  • AutoTouch Script Club's Off Topic
  • Arabic iOSGods Club's الأعضاء الجدد
  • Arabic iOSGods Club's هاك ببجي
  • Arabic iOSGods Club's الهاكات الاخرى
  • Arabic iOSGods Club's أدوات السيديا
  • Arabic iOSGods Club's المواضيع
  • Arabic iOSGods Club's المساعدة
  • Asphalt 9 In-game Club's Topics
  • Asphalt 9 In-game Club's Joint the club
  • Crossfire: Legends Club's Topics
  • Critical Ops Club's Topics & Discussions
  • iOSGods: Indian Club!'s Topics
  • Call of Duty®: Black Ops 4's Topics
  • IOSGODS Romania's Topics
  • IOSGODS Romania's Ce joc te joci?/ What game do you play?
  • Red Dead Redemption II's Topics
  • iOSGods Georgia's Topics
  • Minecraft's Topics
  • Flex Club's Topics
  • Flex Club's Blockheads
  • Flex Club's FlexSupport
  • Star Ocean: Anamnesis's Topics
  • IOSGOD’S IRAN's Topics
  • Enthusiastic Programmers | C#, .NET, Xamarin & more's C# & .NET, .NET Core
  • Enthusiastic Programmers | C#, .NET, Xamarin & more's Xamarin
  • Enthusiastic Programmers | C#, .NET, Xamarin & more's Mono
  • Enthusiastic Programmers | C#, .NET, Xamarin & more's Help
  • Enthusiastic Programmers | C#, .NET, Xamarin & more's Talk
  • Enthusiastic Programmers | PHP & Laravel's Talk
  • Enthusiastic Programmers | PHP & Laravel's Help Desk
  • Enthusiastic Programmers | PHP & Laravel's Laravel
  • Enthusiastic Programmers | PHP & Laravel's Artisan
  • Enthusiastic Programmers | JavaScript, React & more's Talk
  • Enthusiastic Programmers | JavaScript, React & more's Help
  • Enthusiastic Programmers | JavaScript, React & more's JavaScript
  • Enthusiastic Programmers | JavaScript, React & more's jQuery
  • Enthusiastic Programmers | JavaScript, React & more's React, React Native & JSX
  • Enthusiastic Programmers | JavaScript, React & more's Angular
  • Enthusiastic Programmers | JavaScript, React & more's Vue, Vue Native
  • Enthusiastic Programmers | JavaScript, React & more's NodeJs
  • iOSGods Philippines's Topics
  • Romanian iOSGods Club's Topics
  • Sword Art Online Integral Factor's Topics
  • Disney Tsum Tsum's Global
  • Disney Tsum Tsum's Japan
  • Disney Tsum Tsum's Events
  • Kurdistan Club's Topics
  • iOS Gods BRASIL's Topics
  • iOSGods Mexico's Topics
  • iOSGods Mexico's MEXICAN Survival Guides
  • iOSGods Mexico's MEXICAN Youtubers
  • iOSGods Mexico's Spanish Music
  • AFK ARENA's Topics
  • Another Eden's Topics
  • Save Wizard's Quick Codes
  • Save Wizard's Quick Codes
  • War robots's Topics
  • Modern Ops Hack's Topics
  • Area F2's Team Up!
  • Area F2's Help & Support
  • Area F2's News & Events
  • Area F2's Suggestions
  • Kings Of Pool's Upcoming Mods
  • Kings Of Pool's Clubs
  • The Club's General Discussion
  • The Club's Memes
  • The Club's Serious Responses Only

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start



  1. Requirements: - Filza File Manager/iFILE - Jailbreak *Please make a backup of your keychain-2.db before modifying it.* Instructions: Step 1: Delete the game. Step 2: Log out from game center. Step 3: OPEN Filza and OPEN /var/Keychains/keychain-2.db with SQlite3Editor (just tap on it). Step 4: Open the "genp" table and then type at the top: [Hidden Content] and hit Search then Done so that it gets SAVED. Step 5: Reboot your iDevice. Step 6: Download and install the game again. Step 7: Now you're able to create a new account. Step 8: Close the game but keep it in the background (don't kill it from multitasking). Step 9: Log back into game center. Step 10: In game you'll now be asked if you want to use your old ACCOUNT or keep the new one. Step 11: Use the same method for all gameloft games one at a time. IF YOU LIKED THE TUTORIAL GIVE A THANKS :D Special thanks to Sunsaya AND @@DiDA for the tutorial HELP! Tested and working on: - Dungeon Hunter 5 - Dungeon Hunter 4 - Gangstar Vegas - Asphalt 8 - World At Arms - Six Guns - delete this table also: 94B2LB857N.com.gameloft.Bullet - Thor:The Dark World - Modern Combat 5 - Gangstar Rio - Amazing Spider-Man 2 - My Little Pony: Friendship is Magic - N.O.V.A 3 - Age of Sparta - Disney Magic Kingdoms - More! Gameloft Resetting Tool: http://iosgods.com/topic/6235-gameloft-unban-cheat-tool/
  2. I've really been wanting to make this tutorial for a long time but have never gotten around to it. But it's 11:09 and my parents are in bed so I can make this now I'm going to be providing the site with more things, like tutorials and templates, but not so much hacks. Hacking has gotten so dull recently it's the same thing over and over and over again and I'm done with the stress. I will be using Blitz Brigade for this tutorial because it is a great game for beginners to start learning strings. I know this binary is not the current version, but the strings are the same and the functions look more or less the same. Requirements: - A good grip on arm assembly. Do NOT go into this knowing nothing and then expect me to help you. - IDA Pro - Blitz Brigade - A freaking brain and an IQ of at least 50 For this tutorial, we will be hacking ammo and invisible actions. [hide] To hack with strings you have to know how to open the strings subview in IDA. Go to View -> Open Subviews -> Strings. IDA will take a few seconds to get that loaded up, and after it loads, you'll want to sort them in alphabetical order. Then create a quick filter so that you can search. To create a quick filter, right click and then click "quick filter". I don't think you guys need a picture for that Now you'll search for ammo. Type "ammo" (without the quotes, always type everything without the quotes) and you should see a ton of results pop up. Don't be scared. It's normal for that many to pop up. When you first heard strings, did you think that we actually mod the string itself? No we don't. If it was that easy, everyone would be able to hack like this. Instead, the strings in a game are either useful or useless. Useful strings point to useful functions that actually handle what the string describes. Useless strings don't relate to anything and usually point to functions that I like to call "essential NPC's". Or they will point to completely different functions than what you wanted to hack. Anyway, an NPC is a character in a video game that NEEDS to be there or else the whole game breaks. Can you see where I am going from here? If you get a string that points to an essential NPC, and you mod that NPC, the game will crash. Let's try some of these results! In some cases, the most useless-looking strings are the useful ones, always remember that. Try every single string because you never can truly know if it will be useful or not. To select a string, double click on it. You will then be presented with a window that has a ton of strings listed. Thankfully for us, IDA will highlight the one that you just double clicked. After that, you want to right-click on the highlighted string and then click "jump to xref to operand". When you click that, you'll see a box with however many times the string occurs in the binary. It could be anywere from one to one thousand times the string occurs in the binary. The first string I tried was POPOUT_AMMO. POPOUT to me could mean the ammo label popping out from the background of the game into the foreground so that you can actually see how much ammo you have once the level loads. I right clicked and xref'ed to where the string was occuring and wow, this does not look useful at all. These strings have no useful functions near them, and not only that, they have NO functions near them. Plus, they are all the way out in the 0xAyyyyy (y being a variable) range. If you see any string that goes to a spot in the binary that looks like this, its useless. Let's try another string. This time we will be doing Ammopack. Ammopack could refer to an item that you can buy that gives ammo, the amount of an item that you have that gives ammo, or just simply your ammo. Double click on the string and bring up the xref dialouge box. Huh, looks like there are two occurences! "But wait shmoo, aren't there four? Are you blind?" Yes, you are right, there are four separate spots where it occurs. But in reality, there is only two. Why? Because, if the same string has two places where it shows up that are eight or ten bytes away from each other, you count that as one whole occurence of that particular string. As you can see in the picture above, each occurence of the string has an eight byte differences between the two. In hex, A=10 and 2=2. What is 10-2? 8. In the second occurence, what is 8-0? 8. You see what I am saying. Let's try the first occurence. Alright, stuff we can work with! Like I said in the beginning of the tutorial, hacking with strings means that you hack the functions near the string, not the string itself. You should know by now that functions always start with sub_, but they can also rarely start with loc_. Let's try the two that occur above the string, sub_2AB7B8. Double click on it so that IDA will bring you to it. Oh no. This doesn't look good. This function is far too small to actually do anything useful and it has 569 xrefs. That means that the game uses sub_2AB7B8 569 times for 569 different things. Looks like an essential NPC to me. To see how many xrefs a function has, you right click the function name (it is highlighted in the picture above) and then you click "jump to xref to operand". Let's try the function directly below it, sub_2AC254. Double click on it to bring it up. Let's check how many xrefs this function has. It has 127. That's a little high, but let's look at it some more. Oh no. This function calls strcmp two times to do something. Everytime you see a function that calls strcmp, srand, time, rand, etc, will be useless, at least in my experience. rand might be useful, but the only time it was useful for me was when I was hacking Modern Combat 3 and every useful function had it. So that function is a no. Go back to where the string was, and little bit below it, there is a function called sub_2ADCD0. Double click it to bring it up. Right off the bat we see that this function calls time. It's a useless function. Finally, before calling it quits with this string, try the one a little bit below sub_2ADCD0, sub_50070. Wow, holy crap that is an ugly function. As always, let's check the amount of xrefs before we do anything. There are 1104 xrefs to this function. This games uses this function 1104 times for 1104 different things. No way this is useful to us. The second occurence to Ammopack has only two functions near it: sub_2BEBA4, which looks exactily like sub_50070, and sub_2C00E8, which calls two of the functions that we previously determined useless. Ammopack is a useless string. Go back to the strings window. Let's try ammo_server. Double click the string and xref it. There is no way this could ever be useful. For starters, this function contains many other strings such as speed, ammo_client, cheat_type, map, etc. Then it calls not only the same function, sub_81788 over and over again, but it also branches to "that very long function in the blue text" over and over again. I call it "the very long function in the blue text" because I don't know what else to call it ammo_server is a useless string. Go back to the strings window. Let's try ammo_clipsize. Xref it. I want to first make something clear before we continue. Any function that starts with sub_7 is useless. Don't even think about modding it, because the game will crash. But look, in between all of the useless functions, there is a function called sub_3094A4. Huh, why would that be there? Let's check it out. As always, check how many xrefs there are. Only 27! A good sign. A useful function will generally have about 3-40 xrefs. And this function also looks very distinct from all the others that we have looked at, and the functions around it look similar and they all call the same function. Size looks great too! Guess what, this function is the ammo function, meaning that the string ammo_clipsize is a useful string! When you BX LR this function, and reload the level, you ammo will become infinite. Also, if you mod the function being called inside of it, you'll get the ultrahack. Congradulations, you have just modded Blitz Brigade ammo without the need for watchpoints or iGameGuardian! I'd like to point out that sometimes developers will leave messages in their games that they use to troubleshoot problems with. One example could be "CHelicopterPhysicsComponent::Update - playerId not found!!" or "GameMpManager::GetClassFromPlayerDetails player %d not found". Stuff like that. The functions that contain the strings are the ones you want to mod because that function would be printing that error message if you were a Gameloft employee making and debugging the game. Gameloft, with the genius that it is, left a string that allows you to be invisible on multiplayer. They left in a string called "MP_ClientSendPositionsMessage: m_playerPositions memory overflow". Why they left that in is beyond me but it allows invisibility. Xref to that string, and the function you will be in is sub_22C63C. To achieve invisible actions, you have to BX LR that function. Why? Read the string. "SendPositions". When you BX LR that function, your device won't be able to send you position to the multiplayer server that would normally allow other people to see you. You have just gotten an invisibility hack on Blitz Brigade! Blitz Brigade is by far the best game to practice with if you want to learn strings. No other Gameloft game is like this. If you've mastered this game, don't think that you can go hack MC5 or DH5 because while those do have strings, it's much more complex than this. This is as basic as it gets. ----------- Hacking with strings is an incredibly efficient way to hack once you get good at it. Practice some more with Blitz Brigade, and see how many features of the 16 that I got in my hack for 2.1.0 that you can get. I got all those features with strings. Good luck! And I hope you found this helpful. Expect more tutorials. [/hide]
  3. This tutorial covers floats in ARM64, so I expect you to have a basic understanding of IDA and how it works. I won't be going into depth on this subject, but I will show you how I hacked a game with floats in ARM64, so you can get a grip of it. Also, this tutorial will cover ground on ARM64, so I suggest you do a bit of reading up on this before continuing with the tutorial. This tutorial made by is a really good starting point for you to learn how to hack in ARM64. [Hidden Content] That was my brief tutorial on floats in ARM64. If you have any questions, please feel free to ask below!
  4. I could not think of a better title Since I will not be able to make hacks for awhile (I tried with my iPod, it was just way too laggy, theos wouln't install), I'm mostly going to be helping around the forum and making IDA tutorials. DiDA please don't put me in retired This tutorial is sort of noob-friendly, but not really in most ways. You should already have your offset that you got from GDB or LLDB. I am going to go right to the point. It will not be covering the basics. Alright, let's begin [hide] This is the example I will be using for this tutorial. Everything in between 0x101968 and 0x101980 is what we will be working with, everything else does not matter. Why? Because when hacking sub_x, you hardly ever pay attension or modify instructions with SP (stack pointer) in it. You are usually always hacking MOV's, STR's, LDR's, ADD's, SUB's, and sometimes CMP's and branches (BEQ, BL, etc.) In this case, R0 holds the value of our coins. But what is this function saying? This is the first step of figuring out how to make your sub_x hack work. This function (between 0x101968 and 0x101980 , of course) is saying to: 0x101968: Move the value of R0 into R6 0x10196C: Store the value of R1 into R11+var_s0 0x101970: Load R6+0x24 into R0 0x101974: Load R11+var_s0 into R1 0x101978: Add R0 and R1 together and store the value in R0 0x10197C: Store the value of R0 in R6+0x24 0x101980: Move the value of R6 into R0 Now we have figured out what the function is saying in English. I'm sure that you know that R7 holds the value of 668 - 803 million (I'm pretty sure, I know that it is a huge number). To make our coins infinite, we only need to modify instructions with R0 in there because, again, R0 holds the value of our coins. To make it infinite, all we have to do is change the STR (store) because we first want to store R7, or 803 million in R6+0x24 and the LDR (load) instruction because we know want to make it load R7, or 803 million into R0 instead of the regular value of coins. Those two instructions now have dashes and slashes because I don't think you can bold text that already has the code tag. Here is the function in plain English with the dashes: 0x101968: Move the value of R0 into R6 0x10196C: Store the value of R1 into R11+var_s0 0x101970: Load R6+0x24 into R0 ---/---/---/---/---/--- 0x101974: Load R11+var_s0 into R1 0x101978: Add R0 and R1 together and store the value in R0 0x10197C: Store the value of R0 in R6+0x24 ---/---/---/---/---/--- 0x101980: Move the value of R6 into R0 And here is the same function, but instead it is in assembly instructions with what we can change to what to make coins infinite: 0x101968: MOV R0, R6 0x10196C: STR R1, [R11, #var_s0] 0x101970: LDR R0, [R6, #0x24] //we can change this to LDR R0, [R7] so it loads 803 million into R0 instead of the regular amount of coins. 0x101974: LDR R1, [R11, #var_s0] 0x101978: ADD R0, R0, R1 0x10197C: STR R0, [R6, #0x24] //we can change this to STR R7, [R6, #0x24] so it stores 803 million into R6+0x24 instead of our regular coins value. 0x101980: MOV R6, R0 And here is the final changed function to make coins infinite (changes marked with dashes): 0x101968: MOV R0, R6 0x10196C: STR R1, [R11, #var_s0] 0x101970: LDR R0, [R7] ------------------------ 0x101974: LDR R1, [R11, #var_s0] 0x101978: ADD R0, R0, R1 0x10197C: STR R7, [R6, #0x24] ---------------------- 0x101980: MOV R6, R0 Now coins are infinite! I hope you understood this, and I hope you learned something new [/hide] I hope this tutorial helped you Don't be afraid to ask me questions! Thanks @RickHaks for catching a mistake I made
  5. I will show you how to install trybreakwifi v1.0.5 without error 256 1 You need to download the link below Hack Download Link: [Hidden Content] 2 After you downloaded it, go to cydia and find that deb file you just installed 3 click modify and upgrade 4 respring and you will get trybreakwifi v1.0.5 without any problem 5 enjoy hacking wifi
  6. I find it very annoying to have to go to my computer, load a binary, and wait forever for IDA to finish, so I found a little work around This does everything IDA Pro does, expect for the different views. (strings, etc.) You will have to have Theos and everything installed though, and make sure you have a good amount of space on your iDevice. [hide] 1. Crack the app and put the cracked binary in /var/mobile. 2. Open up MobileTerminal, and login as root. 3. In MobileTerminal, run this command: otool -tV /var/mobile/cracked binary >~/xxx.txt "cracked binary" is the name of the binary and "xxx" is the name of the text file you are going to have the disassembly in. If you did not change the directory, the text file with the app disassembly should be in /var/mobile. Basically, instead of printing the disassembly in Terminal, it will instead output the app disassembly in a text file to allow for searches. You can also open it up in iFile and search which is why I really like this method. Here is a picture for what it looks like (app is SAS 3, it is MSHook): [/hide] Hope you guys found this helpful, a way of hacking sub_x and MSHook while on the go
  7. This is a start pack/list with everything about iOS Hacking. We will try and keep this up to date as much as we can but you should also always use the search function on iOSGods to find new topics. If you have any questions or problems, make a Help & Support topic. We also have a Coding Center where people share their offsets and code for you to study and learn. Here is a list of some general tools for hacking iOS applications: How to Install Theos: Have you never hacked on iOS? Flex is a great way to start: How to hack iOS Apps & Games using Cheat Engines: How to Hack Games with IDA: How to Decrypt/Crack an Application:
  8. Hey everybody. This is my tutorial on how to fix the Cydown errors. It's really simple and everyone can do it. Things to fix: - subprocess post-removal script return error exit status 1 error - sub-process /usr/libexec/cydia/cydo returned an error code (1) error - Any other error that has to do with Cydown Instructions on how to fix these errors: [Hidden Content] .Deb Download Links [Hidden Content] If this tutorial has helped you, please click the heart button and the thanks button! I appreciate your support!
  9. Save File Editing is the easiest form of hacking an iOS Game. Just by accessing the saved data and rewriting some words and numbers, you've got yourself a hacked game! Now, here's how to do it: [Hidden Content] Thank you for reading! Part 2 coming soon!
  10. Popups are really annoying sometimes because they load up everytime you launch the app, go back from the app switcher or quickly check something in Control Center. The cheaters don't want that either but since they do their best to protect the cheats from leeching they have to go back on this uncomfortable way. Not anymore ! By using this method your UIAlertView (popup) will only appear once the specific app/game has launched. [Hidden Content]
  11. Well, hello everyone, that's my first post ever in a forum, and i'd like to start with this trick that i found trying around to hack in game purchases. After years of research to hack that F****ing SimCity Buildit, i found a way that worked for almost other 5 games like MegaPolis or Paradise Beach, I'm keeping trying with other games , plus, after you've read this tut you should be able to test it yourself at anytime with any game. What are we going to need? [Hidden Content] -----> | | | \/ Atm i'm working to hack simcity for arm32 or lower devices so that everyone can have his city hacked. Till now just money can be hacked using a gameguardian ios similar in arm32.
  12. Designing A Website By: Goggwell T H I S I S M Y T U T O R I A L I bet you're all here to find out how to design a website. Lucky guess Well, that's simple, if you know how to code (which I am assuming you don't). For starters, you have to learn the basics of HTML/CSS, with jQuery as an added bonus. (WHICH by the way you can learn for free on Codecademy) But, there are ways to design websites without coding. Luckily for you, I have found several options! 1. You can make a design on Photoshop and have someone else figure out all of the interface options By this I mean you can design your own interface on Photoshop. This could be easy or hard, depending on your knowledge of Graphic Designing. 2. Use Adobe Muse Adobe has created a program called Adobe Muse CC where you can create a new website without any coding whatsoever. If you're willing to spend a little cash, you'll be designing interfaces in no time! Here's a link to the official Adobe Muse Tutorial Site -=- https://helpx.adobe.com/muse/how-to/create-website.html -=- 3. Find website makers using Google There are tons of places to make websites for free using a website maker ONLINE. It's fast, easy-to-use, and best of all, CODING-FREE! Some are for free, but more advanced ones cost a few dollars. Some are drag-and-drop, and some are computed to your liking (or disliking, if you like drag-and-drop). But if you wish to code a website, here are a few pointers: - To get started, you need to learn how to code, obviously... So here are a few sites to learn how to code (for free, or not ) CODECADEMY (Free and intuitive) (here's my description of this website) Codecademy offers a wide range and selection of coding languages that can be learned step-by-step from courses created and perfected by coding intellects and gurus. It's sleek, intuitive design, followed by an easy-to-follow tutorial is best tailored and suited and directed for beginners. This website is also COMPLETELY FREE, meaning that you do not have to spend a dime on these amazing courses. Also, if you are stuck on a course, you can always ask for help or look for solutions in the Codecademy Forums. In conclusion, this site is A MUST if you want to learn the basics of coding. Here are a few other sites that I have yet to take part in, but could be interesting: - KHANACADEMY - (How I found out: From another forum) - CODEYEAR - (How I found out: My ICT Class) If you are already good with coding, then I recommend you start off here: THE CODING SECTION So far, I only know of 2 sites/programs that you use to create websites with code. Unless I am mistaken and you could create websites from scratch using NOTEPAD ++ Bootstrap: Bootstrap is an epic site maker that creates incredible designs that we all enjoy. From simple yet elegant pages to complex and interesting sites, Bootstrap is one tool to get. Here is a link to their official site: http://getbootstrap.com Bootstrap is the most popular HTML, CSS, and JS framework for developing responsive, mobile first projects on the web. It's free and fun to use, and there are also pre-made templates that you can use as well (free and premium templates available, just search ) With Bootstrap, you can make websites that look like this: (Sorry if the pictures are a little blurry. I took snapshots using the Snipping Tool) You can find pre-made templates in the Downloads below (just scroll down to the bottom of this thread to find downloads) If you find yourself stuck, here's a Get Started topic from the site itself: http://getbootstrap.com/getting-started/ There's also Wordpress, but I have no idea how to use it The Actual Code I have a code for a basic Bootstrap document built upon HTML/CSS (you need Bootstrap to load this code) Just write this code somewhere (like Notepad ++) and just rewrite the file to 'index.html' or something like that (without the quotation marks) to get it working. Here's the code: <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Bootstrap 101 Template</title> <!-- Bootstrap --> <link href="css/bootstrap.min.css" rel="stylesheet"> <!-- HTML5 Shim and Respond.js IE8 support of HTML5 elements and media queries --> <!-- WARNING: Respond.js doesn't work if you view the page via file:// --> <!--[if lt IE 9]> <script src="https://oss.maxcdn.com/html5shiv/3.7.2/html5shiv.min.js"></script> <script src="https://oss.maxcdn.com/respond/1.4.2/respond.min.js"></script> <![endif]--> </head> <body> <h1>Hello, world!</h1> <!-- jQuery (necessary for Bootstrap's JavaScript plugins) --> <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js"></script> <!-- Include all compiled plugins (below), or include individual files as needed --> <script src="js/bootstrap.min.js"></script> </body> </html> Of course, this is just the basic code. There's much more coding involved to make a fully functioning website. Make sure you have HTML/CSS and jQuery coding files ready/installed into your computer. The code will work that way So after having said all that, this stuff is what you need to get ready! Downloads: Free Bootstrap Templates: http://startbootstrap.com http://www.templatemag.com/free-bootstrap-templates/ Adobe Muse: https://creative.adobe.com/products/download/muse Hope you found this tutorial helpful! There will be much more information in the future. Because right now I am studying web design (THAT'S RIGHT) Good luck to everyone!
  13. ● Hi, I'm @C3FFF0E the ✯MS Maéstro✯ in this forum. I'm the one behind most of the xPloits hacks here. I handle making great stuffs with Tweak/Patcher/MS Codings. In the past few months, I understand and overwhelm the knowledge of MS Hacking which they prefer as the easy type of hacking method, therefore as I conclude, no hacking method is great or good, bad or worst... It is on the features. Now, as I master this method of hacking, i'm now ready to show you how this method done and what it's purpose on the jailbreak society.● ●Tweaks - this are the hacks that don't required any force or knowledge. No switches to turn on or otherwise. Therefore... "A unseen patch that converts every database into a unbreakable outcome". Seems legit right? Now, lets go own the subject matter. Hacking Requirements: ☞ Jailbroken iPhone/iPad/iPod. ☞ iFile / Filza / iFunBox / iTools / AnyTrans / iExplorer / DiskAid or any other file managers for iOS. ☞ Cydia Substrate (from Cydia). ☞ PreferenceLoader (from Cydia). ☞ MobileTerminal (from Cydia) ☞ Flex 2 (from Cydia) Tutorial: ● First of all, go to your Appstore and download the "Tiny Towers" (as it was our example game to hack). ● Now, open up the game. As you can see, I got some negative coins and cash (because I'd already hack it long time ago...) ● Now scroll over, and find your "Flex 2". ● Open it up and you'll see, full blank. Nothing inside or something... ● Open it up and you'll see, full blank. Nothing inside or something... ● To make a new patch, click the "+" sign on the top right of your screen. ● After pressing that, on the top part... Search for "Tiny Towers" and click on it. ● Now click the word, "Add Units...". ● Click on the "Tiny Tower" executable and process it. ● Now, this is the part where all the "MAGIC" happens. There are three (3) steps to get what you want: 1.) Think something appropriate with the subject you want to modify. 2.) Scroll for some... You know, that might help you easier to find. 3.) If step 1 and 2 don't work, directly type the subject you want to modify. In this case, we can obviously see that "coins" are hackable. ● Same on the cash = bux. ● After finding what you want, go back and you'll see now the 2 functions. ● Now, modify each function your desire amount. ● After modifying, switch on the patch by pressing the "check" icon within the app's name. ● This part is now what we called: "TESTING". This how it works. 1.) After making the patch, open the game/app you've modify with flex. 2.) If your selected functions are working fine and great (be sure that you modify it correctly = buy something) you're now ready to make the "TWEAK" so everyone can use your tweak, right? ● Now, open up your Mobile Terminal and type following. ● Now, press number "6" (or whichever number "iphone/tweak" is) and then press "Enter" on your keyboard. ● Input the following requirements. 1.) Be sure to leave blank the "Mobilesubstrate Bundle Filter" as we will go back on that later. 2.) Also be sure to leave blank the "List of application to terminate...". ● Now, open up your iFile or something. Go to /var/mobile/ <--- On "Mobile", find your project file. ● Now open your project folder then open the "Tweak.xm" file. ● NOTE: After opening the "Tweak.xm", be sure to clean all the text by erasing them. 1.) Head back to Flex 2 and copy the each function's "Target Class" and "Target Method" (Be sure to remember each and everyone). 2.) Go back to your Tweak.xm. 3.) Follow the method like in this picture. Be sure to save your tweak.xm. ● After modifying your Tweak.xm, now go to /var/mobile/application/ <--- Search for the game/app you are modifying (On this TuT, Tiny Towers). ● Open the game/app's folder. Inside of it, click and open the game/app's root folder (.app). ● Inside of that, find for "Info.plist". ● Now click the "Info.plist" and open it by "Property List Viewer". ● Inside of the "Info.plist", look for the "BundleIdentifier". ● Copy the "Bundle Identifier" (as you will need this). ● Go back to your project file. ● Now, click the ".plist" (On this tutorial - TinyTowerC3FFF0E.plist). PS: It will change DEPENDS on your hack's name . ● Click that .plist and open it up as "Property List Viewer". ● Just press and press until you see this. ● Edit that Bundle Identifier. Over there, replace the game/app's Bundle Identifier and save it. ● This now what it looks like. We're now ready to compile it to make it as a .deb file ● Open up your "Mobile Terminal" and put the following command codes (Except on the "tinytowerc3fff0e" <--- This is your project file name. Gets? So don't get mess with that). ● Hit "Enter" on your keyboard and type the next command codes. Again after typing the command codes, HIT THE ENTER ON YOU FREAKING KEYBOARD! ● Now, this what will happen. BUT HEY! DON'T PANIC! IT'LL NOT GONNA HARM YOUR iDEVICE! TRUST ME! (I know, I feel you... Just like a first timer back then... ) ● Now go head back to your project file. And now you'll successfully see you tweak compile to a .deb. ● Click the .deb file and choose "Installer". ● This what will happen now. ● WE'RE NOT FINISH MY STUDENT. BECAUSE THIS IS THE VERY BEST PART. 1.) Go to Flex 2. 2.) Disable your patch there. (Remember that you enable it right? So now unable it to test you tweak.) 3.) Open up your game/app that you hack. ● AND BOOOOOOM!!! YOU JUST SUCCESSFULLY MAKE YOUR VERY FIRST AND VERY EASY TWEAK HACK! CONGRATS IF YOU STILL READING THIS TUTORIAL UNTIL THIS PART IF I HELP YOU, CONSIDER GIVING THIS POST A REPUTATION AND A THANKS? THAT HELP ME ALOT TO MAKE MORE AWESOME TUTORIALS AND OVERWHELMING HACKS! ● This tutorial will not be possible without these following members (My Senpai): Credits: -Me (@C3FFF0E "THE ✯MS Maéstro✯) [email protected] Hey senpai, this is what are you waitin' for mind to pin this one? [email protected] My greatest ✯Teacher/Correct my tweaks✯ - My greatest ✯Maéstro✯
  14. Hi everyone, so today i'll be showing u guys how to install .IPA Files w/AppCake. OMG ! - What ? I JUST JAILBROKEN MY IPHONE ! - Nice ! Go download some free paid apps I wanted to, but I dont wanna connect my Iphone to the comp to install IPA... - If ur device is jailbroken , you dont have to How do I do that ? - Let me Explain First things first: Make sure you have installed AppCake ( From repo: http://cydia.iphonecake.com ) Make sure you have installed IFile ( Available from the stock sources ) Make sure your device is JAILBROKEN Requirements IFile Installed AppCake Installed Jailbroken IDevice Lets go ! Step 1: Open IFile Step 2: Go to var/mobile/documents ( place where downloaded IPA files should be ) Step 3: Now copy the file and go back to var/mobile Step 4: Open Media Step 5: Press AppCake Step 6: Open the document named: Importer Step 7: Paste the IPA file into it. Step 8: Now close IFile, and open AppCake Step 9: Press on the download button Step 10: Now go to Downloaded Step 11: You should see the ipa file icon, press on it ,and tick on Install NOTE : APPS LIKE iAPCRACKER,iAPFREE AND LOCALIAPSTORE ,CAN LET APPCAKE NOT WORK AS EXPECTED! There you go ! Your app is installed Need any help? Or have suggestions for tutorials? pm me
  15. I know a lot of people would love to use WiFiKill - an app for rooted Android devices that lets you cut WiFi connections, on iOS. So in this post I will inform you guys how to properly use it. [Hidden Content] That's it! Hope this helps you guys. Edit - A lot of people are asking if the cutting effect can be disabled, the answer is yes. On the bottom of the app it says in red "Tap to stop all arpspoof processes" You can identify the vendor using MAC Addresses, courtesy of /u/hamesetawa http://standards.ieee.org/develop/regauth/oui/public.html http://www.coffer.com/mac_find/ http://hwaddress.com/ Special Credit: _Decimation - without him, it wouldn't be possible. Also to Jailbroking Community (For letting me to share his post)
  16. Ok so let's get right into this. Many of you might have seen this hack posted on this website. [Hidden Content] Tada
  17. When developers make a game, sometimes they include memory checks to make things harder to hack. But what are memory checks? Memory checks are checks to make sure that a certain value, for example, money has been hacked. If it has been hacked, the memory check will kick in and set it back to its original, unhacked value. This is why when you test in iGameGuardian, GDB, LLDB, etc. your hack will not work. But we want our hacks to work, so here is how to disable them This is also only an example function [hide] General background info: R0 holds your previous value of money. R5 holds the cost. R10 holds the new value of money after you bought something. The IDA offset for money will be 0xA99F8: STR R10, [R6, #32]. Here is the example function that I came up with: 0xA99C0 CMP R0, R10 //compare R10 with R0 0xA99C4 BLE 0xA99E8 //branch to 0xA99E8 if it is less than or equal to 0xA99C8 LDR R0, [R6, #32] //load R6+32 into R0 0xA99CC SUB R5, R0, R10 //subtract R0 (previous money value) with R5 (cost) and put that value into R10 0xA99D0 MOV R0, R6 //move R6 into R0 0xA99D4 BL 0x30E7B0 //branch with link to 0x30E7B0 0xA99D8 ADD R1, R0, R5 //add R0 with R1 and put that value into R5 0xA99DC MOV R0, R6 //move R6 into R0 0xA99E0 BL 0x30E7C0 //branch with link to 0x30E7C0 0xA99E4 MOV R0, R6 //move R6 into R0 0xA99E8 BL 0x30E7D0 //branch with link to 0x30E7D0 0xA99EC ADD R1, R0, R5 //add R0 with R1 and put that value into R5 0xA99F0 MOV R0, R6 //move R6 into R0 0xA99F8 STR R10, [R6, #32] //IDA offset, store R10 (new money value) into R6+32 I'm sure you know that the equivalent of spending in a game is subtracting. Knowing that, logically you would change 0xA99CC to MOV R10, R7. And you are right for thinking that , but it won't work because of the memory check. Earlier you read that R0 holds the previous value of money, R5 holds cost, and R10 holds the new value after spending. So you want to look for a "CMP" (compare) instruction that compares the previous value of money with the new value of money that is followed by a branch to somewhere. If the branch is BGT (branch if greater than), BLT (branch if less than), BNE (branch if not equal), or BLE (branch if less than or equal to), you usually have found the memory check. And there is one, at the beginning of the function: 0xA99C0: CMP R0, R10 followed by 0xA99C4: BLE 0xA99F8, or our IDA offset. That is telling the game to compare R10 with R0 and branch to 0xA99C4, or our IDA offset, and store the unhacked money value into R6+32 if R10 is less than or equal to R0. To defeat the memory check, you can NOP the branch to 0xA99F8 (our IDA offset) or change CMP R0, R10 to CMP R0, R0 or CMP R10, R10 so that the memory check (the CMP R0, R10) occurs but has no effect because the branch is NOP'ed or it is comparing itself to itself. And now you can change the SUB R5, R0, R10 (0xA99CC) to MOV R10, R7, and it will work! Recap: - R0 holds our previous value of money, R5 holds cost, and R10 holds the new value of money. - Our IDA offset is 0xA99F8, STR R10, [R6, #32]. - Memory checks usually compare an old value of something with a new value of something, followed by a branch. They usually are BNE's (branch if not equal), BGT's (branch if greater than), BLT (branch if less than), or BLE's (branch if less than or equal to) - You can NOP the branch after the CMP to disable memory checks, or you can change CMP RX, RY to CMP RX, RX or CMP RY, RY to compare values to itself rather than comparing values to another value. Extra info: - Never NOP a CMP before a branch because a branch is literally a true or false type of instruction, and by doing that it the game will write both true and false, which will result in a crash. - Breakpoints really help with memory checks, if you set a breakpoint on what you think is a memory check, you will know if you got it if it hits or not. - If a breakpoint for what you think is a memory check hits, type "info r" for GDB or "reg re" in LLDB. That will let you see what registers hold what, and you can determine if you found the memory check or not. For example, if what you think you've found the memory check for a CMP R0, R3 followed by a BNE (branch if not equal), and the registers R0 and R3 are equal to each other, you have probably found the memory check. - This only applies to you if NOP'ing the branch does not work, or if you just decide to hack the CMP. Always check if the CMP is in ARM or thumb, and patch accordingly. If you patch a thumb instruction with an ARM instruction the game will crash. But how will you know if it is in thumb or in ARM? What you have to do it highlight the hex in IDA then go to "Hex View 1". If the hex is like this: 00 00 00 00 it is in ARM, but if the hex is like this: 00 00 it is in thumb. Think of it like this: an arm is longer than a thumb, so logically hex in ARM will be longer than hex in thumb. [/hide] I hope this helped! Also be sure to ask any questions if you have any
  18. Free phone calls using PopTox. Make online calls to mobile & landline phonesLINK [Hidden Content] PopTox lets you make free calls from your PC or Smartphone. You can use PopTox from any standard web browser. No need to download apps or plug-ins. Absolutely no payment is required. Simply enter the phone number and click on the “Call” button to start your first free call. Make entirely free calls to your loved ones today!WORKING!!!!!!!!!!!!!!!!
  19. DONT LEECH!!! Hit the ( Button) for REP. if you want to see more accounts for FREE . All I need is from you guys is to say thank you on my post ... ______ First of all i joined a buy and sell group on Facebook.. but when i posted products because they are cheap they kicked me out! so i made another Facebook account but when i did new one the new Facebook account wants a Phone number to verify the account.. so i searched all the results in Google and saw 1 worked method but you can only make 1 account not unlimited.. because they give you 1 phone number only.. i hated this method.. So i worked hard on this and made a method for me and i would love to share it on HF for the first time on internet! here's the method : Follow The Steps From 1 to 5 (Step By Step) [Hidden Content] Waiting your Feedbacks! if there's an error please post the error and i'll help you out just comment : ..
  20. Hey guys heres a quick lesson on what free iap tweaks do to do what you downloaded it for: "the hack in question uses a proxy, requires you to install a bogus certificate, and change DNS settings. That allows the transaction to be intercepted before it reaches iTunes, and that's what lets it cheat developers out of payment. It's also what could let the hacker collect all your information instead." -source ​If you read that and thought to yourself "f*** that i don't care" this isn't a topic for you, unless you wanna make your own flex patch and/or tweak for an app this is mainly for those that are cautious about handing their data over to the developers of these tweaks that would like free iap without downloading a free iap tweak Here it is: Requirements -Flex 2 -Knowledge on following steps Steps [Hidden Content] PROOF NOTICE This will not work on every app, so please don't complain that it doesn't work on an app, especially a server sided one. Thanks for reading! Hope it helped! Credits: Me http://www.imore.com/stealing-app-purchases-and-what-it-could-cost-you
  21. Hi. In this tutorial, I will be showing you how to use Cydown WITHOUT having to purchase a license. It's super simple and everyone can do it. What you will need: - iFile - Cydia - Your brain Instructions: [Hidden Content] IF THIS TUTORIAL HAS HELPED YOU, PLEASE CLICK THE HEART AND THANKS BUTTON! *Note: This is only for people who have upgraded to Cydown V. 6.0.7.
  22. I found this video on another forum awhile back, and it helped me hack my first sub_x game. This video was not made by me, but @@DiDA said I could post it iGameGuardian will work fine with this, also. You should also have some knowledge of IDA, don't go into this blindly
  23. I made this tutorial in April of 2015 for the cheaters here and after almost a year of it being private I decided to post it to the public. Gameloft always uses syscall on their games, and while this was written in April, MC5 still has removable syscall and you can use MC5 to practice Requirements: - IDA Pro - Modern Combat 5 - GNU Debugger from cydia.radare.org (repo) - OpenSSH - Clutch 1.4.7-2 - armv7 binary of MC5, crack it on a 32 bit device for it to be armv7. I won't post one here because of copyright issues. Below this line is the exact text I wrote on April 10, 2015. Enjoy ------ [hide] What is syscall? Syscall is anti-debugging protection. This is what causes the Segmentation Fault: 11 when trying to attach to an app. But as hackers we need to attach to an app, and thats why I made this tutorial Again, I'm using MC5. Let's get started 1. Open up the binary in IDA and wait like four to five minutes so that you can actually xref. 2. Once you have waited, click on the "Imports" tab and search for syscall. 3. Double click it and xref to syscall's location in the binary. Here is the function that you are looking for: It should have _getpid, _memset, and _sysctl there. 4. Highlight the BLX _syscall (or BLX.W _syscall sometimes), and click "Hex View 1". The hex should be highlighted. Now right click before the beginning of the highlighted hex and click "edit". 5. Now type "C046C046". This means NOP, or no instruction/operation. Basically it makes the app ignore the instruction. The edited hex should have turned orange. 6. Save your changes. Right click on the orange edited hex and click "Apply changes". 7. After that, go back to IDA View A and confirm that the BLX _syscall and the instruction below it is NOP'ed. 8. Apply your changes to the binary. Go to Edit --> Patch program --> Apply patches to input file. Create a backup if you want to. 9. Replace the original binary with the hacked binary and set the permissions to: Owner: mobile Group: mobile User: read, write, execute Group: read, write, execute World: read, write, execute Now you are done! Try to attach and it should work! [/hide] Proof: (me attaching to Modern Combat 5 in GDB)
  24. Hack iphone/itouch games the guide 1. Preparations. What do we need? a) first of all we need the main file (the executable file) of the game we want to hack. It has no extension and it is found inside the 'game.app' folder on your idevice. you can also get it from the .ipa package (open it with winrar) B ) ida pro v5.5+ c) a hex-editor (i use hex workshop) 2. Let's begin! This is an old tut that I found online on hacking iPhone games using IDA. It explains the full procedure on how to hack Plants vz. Zombies. [Hidden Content]
  25. This is a tutorial that is pretty advanced and because of that, I expect you to have a grip on regular IDA (normal instructions I mean, MOV, SUB, STR, etc). Of course it is not a requirement, you could just be viewing this tutorial out of curiosity. But it would really help to know some basic IDA before trying to hack vectors. But what the hell is a vector? A vector is an instruction prefixed with "V". For example: VSTR, VMOV, VSUB, VCVT (convert), VLDR, etc. It is the instruction that you get when you set a watchpoint on a memory address that holds a float value. You will know that it is a float when iGameGuardian displays the number like "500.000000". Most of the time you be hacking VSTR, VSUB, and VCVT, at least in my experience. [hide] Since there is no R7 type register for vectors, we have to find different ways to hack them. If IDA drops you off at a VSTR S0, [R0, #20]you cannot just change it to VSTR S7, [R0, #20]because in most cases, it would just make the game crash. So what the hell can we do? The best way to hack a VSTR is to NOP it (except for when hacking cooldown, but I will get to that). This is extremely effective when hacking your health because instead of storing your health value in a normal, unhacked game, the game won't be able to store your health at all which results in infinite health for you But sometimes both enemy health and your health are linked and you have to unlink them. I'll cover that at the end of this tutorial. If you are hacking cooldown for some sort of skill, you cannot just NOP the VSTR (instructions for cooldown are most always VSTR) because once the timer starts, it will never count down, resulting in an infinite timer for skills. To combat this, either you can: 1. Find a register that holds the value of zero and store that register into R0+20 or 2. Move zero into an already existing register and store that register into R0+20. If you are going with option one, you'll have to set a breakpoint on your offset and examine the registers to see what they hold (reg re for LLDB and info r for GDB). Just for the sake of this tutorial, we'll say that R3 holds the value of zero. Now that you know that, you can change VSTR S0, [R0, #20] to a regular STR R3, [R0, #20]. If you know basic IDA, you should understand why/how that works. If you are going with option two, it will be just a tiny bit more complicated. You'll have to hack the instruction above the VSTR with a MOV R0, #0. Then you'll have to store R0 into R0+20. If that is confusing, look at this: Here are the instructions before any modification: VCVT.F32.F64 S0, D2 VSTR S0, [R0, #20] And change that to: MOV R0, #0 STR R0, [R0, #20] What this does is instead of the game converting a 64 bit float value into a 32 bit float value then store that value into R0+20, the game will now move the value of zero into R0 then store R0 (zero) into R0+20, resulting in a timer of zero seconds, which means instant cooldown. This is what you might know as "no skill cooldown". VSTR's are really the only instructions that you hack differently than everything else. You hack VSUB's with NOP's, you can hack VMOV's the normal way you hack a MOV (but with common sense), etc. It is not really hard once you get the hang of it. About unlinking vectors: I'm not entirely sure about this, but to unlink vectors you could try this: 1. Set a breakpoint on your offset. 2. Let the enemy hit you, and your breakpoint should hit. Now type "bt", which means "backtrace". Copy the backtrace onto notepad or something convienent and label it "my health backtrace". 3. Now continue, but this time you hurt the enemy, and your breakpoint should hit. Do a backtrace again and copy it onto notepad and label it "enemy health backtrace". 4. See which frame first differs between the two backtraces (you'll know what I mean by frame when you backtrace) and NOP the branch that connects them. That's it! If you want to see some examples of me hacking vectors, check these links out: http://iosgods.com/topic/7615-offsetsdragon-slayer-v110/ http://iosgods.com/topic/7152-offsets-not-str-r7-for-everything-pindestructible-v301/ http://iosgods.com/topic/7501-offsetsblood-and-glory-immortals-v110/ [/hide] Please let me know if you have any questions.
  • Create New...

Important Information

We would like to place cookies on your device to help make this website better. The website cannot give you the best possible user experience without cookies. You can accept or decline our non-essential cookies. You may also adjust your cookie settings. Privacy Policy - Guidelines