Jump to content
Community Announcements, Giveaways & More!

Bullet Force - Vulnerabilities & Exploits - Gold Hack

Liderluigi

By Liderluigi
Updated in Other Cheats

 Share

145 posts in this topic

Recommended Posts

Liderluigi Newbie

Liderluigi 2.9k
  •   iPad Air 2 
  •   8.4

    • Updated
    Updated (edited)

    Hi guys!

    This game: Bullet Force, recently appeared on App Store and has become somehow a little bit famous, so I decided to take a look at it in any form to get exploits or vulnerabilities. I always prefer hacking in my own way which is no memory search or debugging at all, but inspecting packets going through server-client. And I found some interesting stuff!

    First of all, when you register a new account, the app access the database DIRECTLY to store the new user and some data, which is a very BAD idea indeed. Here is some proof:

    bGZUd.png

    Therefore, ANYONE can access the database with just some newbie SQL-Injection, modify values, and even steal accounts!
    Heres an account email, but I won't show the password:

    DWN1b.png
    I successfully had access to this account! I could even PLAY with it too!

    Proof of randomly chosen account password:

    oyjFf.png

    Then, I stopped messing around with accounts, I wanted some currency! The same thing I did before, i did it now with MY account. I got some gold, some coins and cases too, BUT I could also add me unlocks, kills deaths, etc.

    Proof:

    5C7pc.png

    Proof on device:

    PIC 1: http://i.epvpimg.com/drqdd.png
    PIC 2: http://i.epvpimg.com/4U0fh.png

    However, Gold hacks gets you instantly banned.

    I also noticed "accounts" TABLE on SQL had a variable called "unbanned" (Type: BOOL), therefore, anyone that gets banned can get unbanned so easily by just inserting a "TRUE"! Proof:

    RywTg.png

    All in all... This game is still in beta, thats why its so simple and bad written. So guys, be careful if you rgister using the same password and email than your own. :)Finally found out how to get gold without ban (08/12/16)

    GOLD HACK :update:

    PIC 3 (Unlocks): http://i.epvpimg.com/a2add.png
    PIC 4 (Multiplayer):http://i.epvpimg.com/L4Fkb.jpg

    If you want a free account with tons of gold: https://iosgods.com/topic/41847-huge-giveaway-bullet-force-credits-cases-gold-and-lv80/#entry1359042
    If you want Credits and XP: https://iosgods.com/topic/41811-tool-bullet-force-ios-android-credits-and-xp-hack/

    Peace!

    Updated by Amuyea
    • Like 8
    • Winner 1
    • Thanks 1
    • Agree 1
    • Replies 144
    • Created
    • Last Reply

    Top Posters In This Topic

    Popular Days

    Top Posters In This Topic

    Popular Days

    Popular Posts

    Liderluigi
    Liderluigi

    Hi guys! This game: Bullet Force, recently appeared on App Store and has become somehow a little bit famous, so I decided to take a look at it in any form to get exploits or vulnerabilities. I alway

    QQRK
    QQRK

    I have no clue how to hack it.....

    tsuruhori3
    tsuruhori3

    wow

    Guest
    This topic is now closed to further replies.
     Share
    Go to topic listing
    ×
    ×
    • Create New...

    Important Information

    We would like to place cookies on your device to help make this website better. The website cannot give you the best user experience without cookies. You can accept or decline our cookies. You may also adjust your cookie settings. Privacy Policy - Guidelines