Jump to content
Community Announcements, Giveaways & More!

help me guide hack in IDA

vinhthai222006

By vinhthai222006
in Help & Support

 Share

4 posts in this topic

Recommended Posts

vinhthai222006 Newbie

vinhthai222006 6.2k
  •   iPhone 5s 
  •   10.3.3

    • Posted
    Posted

    I used your guide to find the diamond offset of my talking tom game. I already have the offset but I can not replace it in IDA. Give me specific instructions. thank you

    offset find in guide: 

    (lldb) c
Process 10366 resuming

Watchpoint 2 hit:
old value: 6
new value: 9997
Process 10366 stopped
* thread #1: tid = 0x1de45, 0x0000000100b9d49c mytalkingtom`_mh_execute_header + 11932828, queue = 'com.apple.main-thread', stop reason = watchpoint 2
    frame #0: 0x0000000100b9d49c mytalkingtom`_mh_execute_header + 11932828
mytalkingtom`_mh_execute_header:
->  0x100b9d49c <+11932828>: ldr    x8, [x20]
    0x100b9d4a0 <+11932832>: ldr    x8, [x8, #144]
    0x100b9d4a4 <+11932836>: ldp    x21, x22, [x8, #160]
    0x100b9d4a8 <+11932840>: cbnz   x21, 0x100b9d4b4          ; mytalkingtom.__TEXT.__text + 11911172

     

    vinhthai222006 Newbie

    vinhthai222006 6.2k
  •   iPhone 5s 
  •   10.3.3

    • Posted
    • Author
    Posted
    9 hours ago, AxCE said:

    If you found the offset and not the mem. adress, look at the whole function.

    0x100b9d49c <+11932828>: 11932828 What is here? I do not understand, you can guide me

    K_K Experienced

    K_K 166.8k
  •   iPhone 13 Pro Max 
  •   15.1

    • Posted
    Posted
    10 hours ago, vinhthai222006 said:

    I used your guide to find the diamond offset of my talking tom game. I already have the offset but I can not replace it in IDA. Give me specific instructions. thank you

    offset find in guide: 

    
(lldb) c
Process 10366 resuming

Watchpoint 2 hit:
old value: 6
new value: 9997
Process 10366 stopped
* thread #1: tid = 0x1de45, 0x0000000100b9d49c mytalkingtom`_mh_execute_header + 11932828, queue = 'com.apple.main-thread', stop reason = watchpoint 2
    frame #0: 0x0000000100b9d49c mytalkingtom`_mh_execute_header + 11932828
mytalkingtom`_mh_execute_header:
->  0x100b9d49c <+11932828>: ldr    x8, [x20]
    0x100b9d4a0 <+11932832>: ldr    x8, [x8, #144]
    0x100b9d4a4 <+11932836>: ldp    x21, x22, [x8, #160]
    0x100b9d4a8 <+11932840>: cbnz   x21, 0x100b9d4b4          ; mytalkingtom.__TEXT.__text + 11911172

     

    You need to find the register that holds value 

    Create an account or sign in to comment

    You need to be a member in order to leave a comment

    Create an account

    Sign up for a new account in our community. It's easy!

    Register a new account

    Sign in

    Already have an account? Sign in here.

    Sign In Now
     Share
    Go to topic listing
    ×
    ×
    • Create New...

    Important Information

    We would like to place cookies on your device to help make this website better. The website cannot give you the best user experience without cookies. You can accept or decline our cookies. You may also adjust your cookie settings. Privacy Policy - Guidelines