Jump to content
Community Announcements, Giveaways & More!

Bypass crc check in smali (cyclic redundancy check)

Ted2

By Ted2
Updated in Android Tutorials

 Share

3 posts in this topic

Recommended Posts

Ted2 Supporter

Ted2 38.9k
  • Donor
  •  

    • Updated
    Updated (edited)

    Hey there,

     

    A few days ago, I figured out how a game I've been hacking for years added protection to their game.

    Their protection compared stored values with the original values in classes.dex (smali files)

     

    What does crc do?

    The crc protection will detect if the game files has been modified. For example you change a simple coin value from 0x9 to 0xfff, the game will notice the original code is changed and it will probably crash the game. crc protection has it's own value/key which is stored somewhere in resources as a string. 

    Example: 0x7f050017

     

    How do we bypass it?

    I've never seen this kind of protection in any game before, but that might be because I don't really hack that much anymore. Anyways, I've read somewhere that this kind of protection gets more popular, so that's why I'll teach you how we bypass it.

     

    As I said, this protection compares using .classes.dex

     

    Open up a text editor which can read .smali files, go to 'find in files' and locate your decompiled apk.

    Search for: classes.dex. I'm not sure how much hits you get, I got 2 hits.

     

    1: 

    .method private static a(Ljava/util/zip/ZipFile;Ljava/util/zip/ZipEntry;Ljava/io/File;Ljava/lang/String;)V
    .locals 6

    .prologue
    .line 308
    invoke-virtual {p0, p1}, Ljava/util/zip/ZipFile;->getInputStream(Ljava/util/zip/ZipEntry;)Ljava/io/InputStream;

    move-result-object v1

    .line 310
    const-string v0, ".zip"

    invoke-virtual {p2}, Ljava/io/File;->getParentFile()Ljava/io/File;

    move-result-object v2

    invoke-static {p3, v0, v2}, Ljava/io/File;->createTempFile(Ljava/lang/String;Ljava/lang/String;Ljava/io/File;)Ljava/io/File;

    move-result-object v2

    .line 312
    const-string v0, "MultiDex"

    new-instance v3, Ljava/lang/StringBuilder;

    invoke-direct {v3}, Ljava/lang/StringBuilder;-><init>()V

    const-string v4, "Extracting "

    invoke-virtual {v3, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;

    move-result-object v3

    invoke-virtual {v2}, Ljava/io/File;->getPath()Ljava/lang/String;

    move-result-object v4

    invoke-virtual {v3, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;

    move-result-object v3

    invoke-virtual {v3}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String;

    move-result-object v3

    invoke-static {v0, v3}, Landroid/util/Log;->i(Ljava/lang/String;Ljava/lang/String;)I

    .line 314
    :try_start_0
    new-instance v3, Ljava/util/zip/ZipOutputStream;

    new-instance v0, Ljava/io/BufferedOutputStream;

    new-instance v4, Ljava/io/FileOutputStream;

    invoke-direct {v4, v2}, Ljava/io/FileOutputStream;-><init>(Ljava/io/File;)V

    invoke-direct {v0, v4}, Ljava/io/BufferedOutputStream;-><init>(Ljava/io/OutputStream;)V

    invoke-direct {v3, v0}, Ljava/util/zip/ZipOutputStream;-><init>(Ljava/io/OutputStream;)V
    :try_end_0
    .catchall {:try_start_0 .. :try_end_0} :catchall_0

    .line 316
    :try_start_1
    new-instance v0, Ljava/util/zip/ZipEntry;

    const-string v4, "classes.dex" <----->

    invoke-direct {v0, v4}, Ljava/util/zip/ZipEntry;-><init>(Ljava/lang/String;)V

    .line 318
    invoke-virtual {p1}, Ljava/util/zip/ZipEntry;->getTime()J

    move-result-wide v4

    invoke-virtual {v0, v4, v5}, Ljava/util/zip/ZipEntry;->setTime(J)V

    .line 319
    invoke-virtual {v3, v0}, Ljava/util/zip/ZipOutputStream;->putNextEntry(Ljava/util/zip/ZipEntry;)V

    .line 321
    const/16 v0, 0x4000

    new-array v4, v0, [B

    .line 322
    invoke-virtual {v1, v4}, Ljava/io/InputStream;->read([B)I

    move-result v0

    .line 323
    :goto_0
    const/4 v5, -0x1

    if-eq v0, v5, :cond_0

    .line 324
    const/4 v5, 0x0

    invoke-virtual {v3, v4, v5, v0}, Ljava/util/zip/ZipOutputStream;->write([BII)V

    .line 325
    invoke-virtual {v1, v4}, Ljava/io/InputStream;->read([B)I

    move-result v0

    goto :goto_0

    .line 327
    :cond_0
    invoke-virtual {v3}, Ljava/util/zip/ZipOutputStream;->closeEntry()V
    :try_end_1
    .catchall {:try_start_1 .. :try_end_1} :catchall_1

    .line 329
    :try_start_2
    invoke-virtual {v3}, Ljava/util/zip/ZipOutputStream;->close()V

    .line 331
    const-string v0, "MultiDex"

    new-instance v3, Ljava/lang/StringBuilder;

    invoke-direct {v3}, Ljava/lang/StringBuilder;-><init>()V

    const-string v4, "Renaming to "

    invoke-virtual {v3, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;

    move-result-object v3

    invoke-virtual {p2}, Ljava/io/File;->getPath()Ljava/lang/String;

    move-result-object v4

    invoke-virtual {v3, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;

    move-result-object v3

    invoke-virtual {v3}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String;

    move-result-object v3

    invoke-static {v0, v3}, Landroid/util/Log;->i(Ljava/lang/String;Ljava/lang/String;)I

    .line 332
    invoke-virtual {v2, p2}, Ljava/io/File;->renameTo(Ljava/io/File;)Z

    move-result v0

    if-nez v0, :cond_1

    .line 333
    new-instance v0, Ljava/io/IOException;

    new-instance v3, Ljava/lang/StringBuilder;

    invoke-direct {v3}, Ljava/lang/StringBuilder;-><init>()V

    const-string v4, "Failed to rename \""

    invoke-virtual {v3, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;

    move-result-object v3

    invoke-virtual {v2}, Ljava/io/File;->getAbsolutePath()Ljava/lang/String;

    move-result-object v4

    invoke-virtual {v3, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;

    move-result-object v3

    const-string v4, "\" to \""

    invoke-virtual {v3, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;

    move-result-object v3

    invoke-virtual {p2}, Ljava/io/File;->getAbsolutePath()Ljava/lang/String;

    move-result-object v4

    invoke-virtual {v3, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;

    move-result-object v3

    const-string v4, "\""

    invoke-virtual {v3, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;

    move-result-object v3

    invoke-virtual {v3}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String;

    move-result-object v3

    invoke-direct {v0, v3}, Ljava/io/IOException;-><init>(Ljava/lang/String;)V

    throw v0
    :try_end_2
    .catchall {:try_start_2 .. :try_end_2} :catchall_0

    .line 337
    :catchall_0
    move-exception v0

    invoke-static {v1}, Landroid/support/c/b;->a(Ljava/io/Closeable;)V

    .line 338
    invoke-virtual {v2}, Ljava/io/File;->delete()Z

    throw v0

    .line 329
    :catchall_1
    move-exception v0

    :try_start_3
    invoke-virtual {v3}, Ljava/util/zip/ZipOutputStream;->close()V

    throw v0
    :try_end_3
    .catchall {:try_start_3 .. :try_end_3} :catchall_0

    .line 337
    :cond_1
    invoke-static {v1}, Landroid/support/c/b;->a(Ljava/io/Closeable;)V

    .line 338
    invoke-virtual {v2}, Ljava/io/File;->delete()Z

    .line 340
    return-void
.end method

    this method is long as hell, doesn't seem to have any value or key like 0x7f050017 etc. Also, it didn't seem any intresting to me cause it didn't got any intresting .smali places like com/gamecreators/gamename, just android/support.

    Let's look at hit 2 first. 

    .method public a()Z
    .locals 6

    .prologue
    const/4 v1, 0x0

    .line 34
    new-instance v0, Ljava/util/zip/ZipFile;

    iget-object v2, p0, Lcom/companyname/test/e;->a:Landroid/content/Context;

    invoke-virtual {v2}, Landroid/content/Context;->getPackageCodePath()Ljava/lang/String;

    move-result-object v2

    invoke-direct {v0, v2}, Ljava/util/zip/ZipFile;-><init>(Ljava/lang/String;)V

    .line 35
    const-string v2, "classes.dex" <----->

    invoke-virtual {v0, v2}, Ljava/util/zip/ZipFile;->getEntry(Ljava/lang/String;)Ljava/util/zip/ZipEntry;

    move-result-object v2

    .line 36
    const-string v3, "classes2.dex" <------>

    invoke-virtual {v0, v3}, Ljava/util/zip/ZipFile;->getEntry(Ljava/lang/String;)Ljava/util/zip/ZipEntry;

    move-result-object v3

    .line 38
    invoke-virtual {v0, v2}, Ljava/util/zip/ZipFile;->getInputStream(Ljava/util/zip/ZipEntry;)Ljava/io/InputStream;

    move-result-object v2

    .line 39
    invoke-virtual {v0, v3}, Ljava/util/zip/ZipFile;->getInputStream(Ljava/util/zip/ZipEntry;)Ljava/io/InputStream;

    move-result-object v0

    .line 41
    invoke-direct {p0, v2}, Lcom/companyname/test/e;->a(Ljava/io/InputStream;)Ljava/lang/String;

    move-result-object v3

    .line 42
    invoke-direct {p0, v0}, Lcom/companyname/test/e;->a(Ljava/io/InputStream;)Ljava/lang/String;

    move-result-object v0

    .line 47
    :try_start_0
    invoke-direct {p0}, Lcom/companyname/test/e;->b()Ljava/security/PublicKey;

    move-result-object v2

    .line 48
    const v4, 0x7f050017   ###

    invoke-direct {p0, v4}, Lcom/companyname/test/e;->a(I)[B

    move-result-object v4

    .line 49
    const v5, 0x7f050016   ###

    invoke-direct {p0, v5, v4, v2}, Lcom/companyname/test/e;->a(I[BLjava/security/PublicKey;)Z
    :try_end_0
    .catch Ljava/lang/Exception; {:try_start_0 .. :try_end_0} :catch_0

    move-result v2

    .line 51
    if-eqz v2, :cond_1

    .line 52
    const v4, 0x7f050016   ###

    :try_start_1
    invoke-direct {p0, v4, v3, v0}, Lcom/companyname/test/e;->a(ILjava/lang/String;Ljava/lang/String;)Z
    :try_end_1
    .catch Ljava/lang/Exception; {:try_start_1 .. :try_end_1} :catch_1

    move-result v0

    .line 58
    :goto_0
    if-eqz v2, :cond_0

    if-eqz v0, :cond_0

    const/4 v1, 0x1

    :cond_0
    return v1

    .line 55
    :catch_0
    move-exception v0

    move v0, v1

    :goto_1
    move v2, v0

    move v0, v1

    goto :goto_0

    :catch_1
    move-exception v0

    move v0, v2

    goto :goto_1

    :cond_1
    move v0, v1

    goto :goto_0
.end method

    This one gets intresting. Values are in this function marked with ### + the location (which I did rename) are intresting. com/companyname/test/e.

     

    Okay, I believe there are like 5 ways to bypass the check.

    I'm gonna tell you the most simple one.

     

    The function name, what does it say? (the beginning of code I added) 

    .method public a()Z

    Z = BOOLEAN in smali.

     

    Let's look under the function name: 

    .method public a()Z
    .locals 6

    .prologue
    const/4 v1, 0x0

    0x0 = false

    0x1 = true

     

    Since we're pretty sure the method is the crc protection, change 0x0 to 0x1.

    Recompile - sign & test.

     

    Why? 

    .Method public a()Z

    translated should me something like: isOrignalClasses.Dex or hasNotBeenModified etc

    it automaticly returns to false, but we want it to true.

     

    Hope I explained it a bit well, it's complicated so hard to explain.

     

    Credit: @Ted2

     

    Updated by Ted2
    • Like 1

    Create an account or sign in to comment

    You need to be a member in order to leave a comment

    Create an account

    Sign up for a new account in our community. It's easy!

    Register a new account

    Sign in

    Already have an account? Sign in here.

    Sign In Now
     Share
    Go to topic listing

    • Our picks

      • Zombie Drift Survival Racing v1.3.1 [+6 Jailed Cheats]

        Zombie Drift Survival Racing v1.3.1 [+6 Jailed Cheats]

        Cashlaz posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Zombie Drift Survival Racing By NOSURRENDER YAZILIM VE TICARET ANONIM SIRKETI
        Bundle ID: com.nosurrenderstudio.rougelikesurvival
        App Store Link: https://apps.apple.com/us/app/zombie-drift-survival-racing/id6702024869?uo=4



        🤩 Hack Features

        - Never Die
        - One Hit Kill
        - Debug Menu
        • 0 replies
        Cashlaz

        Picked By

        Cashlaz,
      • Zombie Drift Survival Racing v1.3.1 [+6 Cheats]

        Zombie Drift Survival Racing v1.3.1 [+6 Cheats]

        Cashlaz posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Zombie Drift Survival Racing By NOSURRENDER YAZILIM VE TICARET ANONIM SIRKETI
        Bundle ID: com.nosurrenderstudio.rougelikesurvival
        App Store Link: https://apps.apple.com/us/app/zombie-drift-survival-racing/id6702024869?uo=4

         

        🤩 Hack Features

        - Never Die
        - One Hit Kill
        - Debug Menu
         
        • 0 replies
        Cashlaz

        Picked By

        Cashlaz,
      • Omega Royale - Tower Defense v1.4.0 [+2 Jailed Cheats]

        Omega Royale - Tower Defense v1.4.0 [+2 Jailed Cheats]

        Cashlaz posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Omega Royale - Tower Defense By Tower Pop Oy
        Bundle ID: com.towerpop.omegaroyale
        iTunes Store Link: https://apps.apple.com/us/app/omega-royale-tower-defense/id6447241072?uo=4

         

        🚀 Hack Features

        - Omega ViP Active
        - Always Can Cast Skill (Even when it's on cooldown)


        🍏 Jailbreak iOS hacks: https://iosgods.com/forum/5-game-cheats-hack-requests/
        🤖 Modded Android APKs: https://iosgods.com/forum/68-android-section/
        • 31 replies
        Cashlaz

        Picked By

        Cashlaz,
      • Omega Royale - Tower Defense v1.4.0 [+2 Cheats]

        Omega Royale - Tower Defense v1.4.0 [+2 Cheats]

        Cashlaz posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Omega Royale - Tower Defense By Tower Pop Oy
        Bundle ID: com.towerpop.omegaroyale
        iTunes Store Link: https://apps.apple.com/us/app/omega-royale-tower-defense/id6447241072?uo=4


         

        🚀 Hack Features

        - Omega ViP Active
        - Always Can Cast Skill (Even when it's on cooldown)


        🍏 For Non-Jailbroken & No Jailbreak required hacks: https://iosgods.com/forum/79-no-jailbreak-section/
        🤖 Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        • 32 replies
        Cashlaz

        Picked By

        Cashlaz,
      • Three Kingdoms All-Star : Idle v1.4 +3 Cheat

        Three Kingdoms All-Star : Idle v1.4 +3 Cheat

        Puddin posted a topic in ViP Cheats,

        Modded/Hacked App: Three Kingdoms All-Star : Idle By Highbrow
        Bundle ID: com.highbrow.games.tki
        iTunes Store Link: https://apps.apple.com/us/app/three-kingdoms-all-star-idle/id6737404289?uo=4

         


        🤩 Hack Features

        - No Skill Cooldown
        • 19 replies
        Laxus

        Picked By

        Laxus ,
      • Matchington Mansion Cheats v1.179.0 +5

        Matchington Mansion Cheats v1.179.0 +5

        Laxus posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Matchington Mansion By Magic Tavern, Inc.
        Bundle ID: com.matchington.mansion
        iTunes Store Link: https://apps.apple.com/us/app/matchington-mansion/id1216575026?uo=4

         

        📌 Mod Requirements

        - Jailbroken iPhone or iPad.
        - iGameGod / Filza / iMazing.
        - Cydia Substrate, ElleKit, Substitute or libhooker depending on your jailbreak (from Sileo, Cydia or Zebra).

         

        🤩 Hack Features

        - Infinite Moves
        - Infinite Lives
        - Infinite Booster
        - Infinite Coin (Spend some/ Get some)
        - Infinite Stars (Complete task without needing Stars)

         

        Non-Jailbroken Hack: https://iosgods.com/topic/75130-matchington-mansion-v11750-jailed-cheats-3/

         

        ⬇️ iOS Hack Download Link: https://iosgods.com/topic/75127-matchington-mansion-cheats-v11770-5/
        • 795 replies
        Laxus

        Picked By

        Laxus ,
      • The Sims FreePlay Cheats v5.92.0 +5

        The Sims FreePlay Cheats v5.92.0 +5

        Laxus posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: The Sims™ FreePlay By Electronic Arts
        Bundle ID: com.ea.sims3deluxe.ipad.inc
        iTunes Store Link: https://itunes.apple.com/us/app/the-sims-freeplay/id466965151?mt=8&uo=4&at=1010lce4


        Hack Features:
        - Infinite Simcash
        - Infinite SP
        - Infinite LSP
        - Max ViP Point
        - Unlock Everything


        Hack Download Link: https://iosgods.com/topic/72103-arm64-the-sims-freeplay-cheats-v5414-4-iosgods-exclusive/
          • Agree
          • Thanks
          • Like
        • 3,289 replies
        Laxus

        Picked By

        Laxus ,
      • HomeScapes v7.9.5 Jailed Cheats +3

        HomeScapes v7.9.5 Jailed Cheats +3

        Laxus posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Homescapes By PLR Worldwide Sales Limited
        Bundle ID: com.playrix.gardenscapes-sweethome
        iTunes Store Link: https://apps.apple.com/us/app/homescapes/id1195621598?uo=4

         

        📌 Mod Requirements

        - Non-Jailbroken/Jailed or Jailbroken iPhone or iPad.
        - Sideloadly or alternatives.
        - Computer running Windows/macOS/Linux with iTunes installed.

         

        🤩 Hack Features

        - Infinite Moves
        - Infinite Boosters
        - Infinite Coins (Spend some)
        - Infinite Lives (Won't substract when you failed level)
        - Complete tasks without needing stars - Game Breaking for sure
        - Unlock Season Pass (by @NoFearGG) -- Go click the purchase button. It'll look like nothing happened. Leave season pass area. And go back. It'll show unlocked. And be saved that way


        🍏 Jailbreak iOS hacks: https://iosgods.com/topic/75434-homescapes-cheats-v776-5/

         

        ⬇️ iOS Hack Download IPA Link: https://iosgods.com/topic/71443-homescapes-v776-jailed-cheats-3/
          • Like
        • 2,422 replies
        Laxus

        Picked By

        Laxus ,
      • AXIS BLADE v1.1.1 +3 cheats [ Dmg x Def ]

        AXIS BLADE v1.1.1 +3 cheats [ Dmg x Def ]

        KyosukeNanbu posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: AXIS BLADE By AWESOMEPIECE<br style="background-color:#1e1f25;color:rgba(255,255,255,0.81);font-size:14px;">
        Bundle ID: com.awesomepiece.axisblade<br style="background-color:#1e1f25;color:rgba(255,255,255,0.81);font-size:14px;">
        iTunes Store Link: https://apps.apple.com/us/app/axis-blade/id6736382225

         

         

         

        📌 Mod Requirements

        - Jailbroken iPhone or iPad.
        - iGameGod / Filza / iMazing.
        - Cydia Substrate, ElleKit, Substitute or libhooker depending on your jailbreak (from Sileo, Cydia or Zebra).

         

        🤩 Hack Features

        - Damage Multiplier
        - Defense Multiplier
        - No Wall Damage

         

        ⬇️ iOS Hack Download Link


        Hidden Content

        Download Hack







         

        📖 iOS Installation Instructions

        STEP 1: Download the .deb hack file from the link above. Use Safari, Google Chrome or other iOS browsers to download.
        STEP 2: Once the file has downloaded, tap on it and then you will be prompted on whether you want to open the deb with iGameGod or copy it to Filza.
        STEP 3: If needed, tap on the downloaded file again, then select ‘Normal Install’ from the options on your screen.
        STEP 4: Let iGameGod/Filza finish the cheat installation. If it doesn’t install successfully, see the note below.
        STEP 5: Open the game, log in to your iOSGods account when asked, then toggle on the features you want and enjoy!

         

        NOTE: If you have any questions or problems, read our Jailbreak iOS Hack Troubleshooting & Frequently Asked Questions & Answers topic. If you still haven't found a solution, post your issue below and we'll do our best to help! If the hack does work for you, please post your feedback below and help out other fellow members that are encountering issues.

         

        🙌 Credits

        - @KyosukeNanbu

         

        More iOS App Hacks
        If you’re looking for Non-Jailbroken & No Jailbreak required iOS IPA hacks, visit the iOS Game Cheats & Hacks or the iOSGods App for a variety of modded games and apps for non-jailbroken iOS devices.

        Modded Android APKs
        Need modded apps or games for Android? Check out the latest custom APK mods, cheats & more in our Android Section.
        • 27 replies
        KyosukeNanbu

        Picked By

        KyosukeNanbu,
      • AXIS BLADE v1.1.1 +3 cheats [ Dmg x Def ]

        AXIS BLADE v1.1.1 +3 cheats [ Dmg x Def ]

        KyosukeNanbu posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: AXIS BLADE By AWESOMEPIECE<br style="background-color:#1e1f25;color:rgba(255,255,255,0.81);font-size:14px;">
        Bundle ID: com.awesomepiece.axisblade<br style="background-color:#1e1f25;color:rgba(255,255,255,0.81);font-size:14px;">
        iTunes Store Link: https://apps.apple.com/us/app/axis-blade/id6736382225

         

        📌 Mod Requirements

        - Non-Jailbroken/Jailed or Jailbroken iPhone or iPad.
        - Sideloadly or alternatives.
        - Computer running Windows/macOS/Linux with iTunes installed.

         

        🤩 Hack Features

        - Damage Multiplier
        - Defense Multiplier
        - No Wall Damage
         

         

        ⬇️ iOS Hack Download IPA Link


        Hidden Content

        Download IPA Hack







         

        📖 PC Installation Instructions

        STEP 1: Download the pre-hacked .IPA file from the link above to your computer. To download from the iOSGods App, see our iOSGods App IPA Download Tutorial which includes a video example.
        STEP 2: Download Sideloadly and install it on your Windows or Mac.
        STEP 3: Open Sideloadly on your computer, connect your iOS device, and wait until your device name appears in Sideloadly.
        STEP 4: Once your iDevice is recognized, drag the modded .IPA file you downloaded and drop it into the Sideloadly application.
        STEP 5: Enter your Apple Account email, then press “Start.” You’ll then be asked to enter your password. Go ahead and provide the required information.
        STEP 6: Wait for Sideloadly to finish sideloading/installing the hacked IPA. If there are issues during installation, please read the note below.
        STEP 7: Once the installation is complete and you see the app on your Home Screen, you will need to go to Settings -> General -> Profiles / VPN & Device Management. Once there, tap on the email you entered from step 6, and then tap on 'Trust [email protected]'.
        STEP 8: Now go to your Home Screen and open the newly installed app and everything should work fine. You may need to follow further per app instructions inside the hack's popup in-game.

        NOTE: iOS/iPadOS 16 and later, you must enable Developer Mode. For free Apple Developer accounts, you will need to repeat this process every 7 days. If you have any questions or problems, read our Sideloadly FAQ section of the topic and if you don't find a solution, please post your issue below and we'll do our best to help! If the hack does work for you, post your feedback below and help out other fellow members that are encountering issues.

         

        🙌 Credits

        - @KyosukeNanbu

         
        • 35 replies
        KyosukeNanbu

        Picked By

        KyosukeNanbu,
      • War Commander: Rogue Assault v9.3.0 +2 Jailed Cheats

        War Commander: Rogue Assault v9.3.0 +2 Jailed Cheats

        AlyssaX64  posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: War Commander: Rogue Assault By KIXEYE Inc
        Bundle ID: com.kixeye.warcommanderrogueassault
        iTunes Store Link: https://apps.apple.com/us/app/war-commander-rogue-assault/id695948278?uo=4


        Mod Requirements:
        - Non-Jailbroken/Jailed or Jailbroken iPhone/iPad/iPod Touch.
        - Sideloadly / Cydia Impactor or alternatives.
        - A Computer Running Windows/macOS/Linux with iTunes installed.


        Hack Features:
        - Damage Multiplier
        - Never Die


        Jailbreak required hack(s): 


        iOS Hack Download IPA Link:

        Hidden Content

        Download via the iOSGods App








        PC Installation Instructions:
        STEP 1: If necessary, uninstall the app if you have it installed on your iDevice. Some hacked IPAs will install as a duplicate app. Make sure to back it up so you don't lose your progress.
        STEP 2: Download the pre-hacked .IPA file from the link above to your computer. To download from the iOSGods App, see this tutorial topic.
        STEP 3: Download Sideloadly and install it on your PC.
        STEP 4: Open/Run Sideloadly on your computer, connect your iOS Device, and wait until your device name shows up.
        STEP 5: Once your iDevice appears, drag the modded .IPA file you downloaded and drop it inside the Sideloadly application.
        STEP 6: You will now have to enter your iTunes/Apple ID email login, press "Start" & then you will be asked to enter your password. Go ahead and enter the required information.
        STEP 7: Wait for Sideloadly to finish sideloading/installing the hacked IPA. If there are issues during installation, please read the note below.
        STEP 8: Once the installation is complete and you see the app on your Home Screen, you will need to go to Settings -> General -> Profiles/VPN & Device Management. Once there, tap on the email you entered from step 6, and then tap on 'Trust [email protected]'.
        STEP 9: Now go to your Home Screen and open the newly installed app and everything should work fine. You may need to follow further per app instructions inside the hack's popup in-game.

        NOTE: iOS/iPadOS 16 and later, you must enable Developer Mode. For free Apple Developer accounts, you will need to repeat this process every 7 days. Jailbroken iDevices can also use Sideloadly/Filza/IPA Installer to normally install the IPA with AppSync. If you have any questions or problems, read our Sideloadly FAQ section of the topic and if you don't find a solution, please post your issue down below and we'll do our best to help! If the hack does work for you, post your feedback below and help out other fellow members that are encountering issues.


        Credits:
        - AlyssaX64


        Cheat Video/Screenshots:

        N/A
        • 47 replies
        AlyssaX64

        Picked By

        AlyssaX64 ,
      • (Tower Of Saviors) 神魔之塔 v2025.211 +4 Jailed Cheats

        (Tower Of Saviors) 神魔之塔 v2025.211 +4 Jailed Cheats

        AlyssaX64  posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: 神魔之塔 By Mad Head Limited
        Bundle ID: com.madhead.tos.zh
        iTunes Store Link: https://apps.apple.com/us/app/%E7%A5%9E%E9%AD%94%E4%B9%8B%E5%A1%94/id583798880?uo=4


        Mod Requirements:
        - Non-Jailbroken/Jailed or Jailbroken iPhone/iPad/iPod Touch.
        - Sideloadly / Cydia Impactor or alternatives.
        - A Computer Running Windows/macOS/Linux with iTunes installed.


        Hack Features:
        - Damage Multiplier
        - Defense Multiplier
        - Weak Enemies
        - Dumb Enemies


        Jailbreak required hack(s): 


        iOS Hack Download IPA Link:

        Hidden Content

        Download via the iOSGods App








        PC Installation Instructions:
        STEP 1: If necessary, uninstall the app if you have it installed on your iDevice. Some hacked IPAs will install as a duplicate app. Make sure to back it up so you don't lose your progress.
        STEP 2: Download the pre-hacked .IPA file from the link above to your computer. To download from the iOSGods App, see this tutorial topic.
        STEP 3: Download Sideloadly and install it on your PC.
        STEP 4: Open/Run Sideloadly on your computer, connect your iOS Device, and wait until your device name shows up.
        STEP 5: Once your iDevice appears, drag the modded .IPA file you downloaded and drop it inside the Sideloadly application.
        STEP 6: You will now have to enter your iTunes/Apple ID email login, press "Start" & then you will be asked to enter your password. Go ahead and enter the required information.
        STEP 7: Wait for Sideloadly to finish sideloading/installing the hacked IPA. If there are issues during installation, please read the note below.
        STEP 8: Once the installation is complete and you see the app on your Home Screen, you will need to go to Settings -> General -> Profiles/VPN & Device Management. Once there, tap on the email you entered from step 6, and then tap on 'Trust [email protected]'.
        STEP 9: Now go to your Home Screen and open the newly installed app and everything should work fine. You may need to follow further per app instructions inside the hack's popup in-game.

        NOTE: iOS/iPadOS 16 and later, you must enable Developer Mode. For free Apple Developer accounts, you will need to repeat this process every 7 days. Jailbroken iDevices can also use Sideloadly/Filza/IPA Installer to normally install the IPA with AppSync. If you have any questions or problems, read our Sideloadly FAQ section of the topic and if you don't find a solution, please post your issue down below and we'll do our best to help! If the hack does work for you, post your feedback below and help out other fellow members that are encountering issues.


        Credits:
        - AlyssaX64


        Cheat Video/Screenshots:

        N/A
        • 90 replies
        AlyssaX64

        Picked By

        AlyssaX64 ,
      View All
    ×
    ×
    • Create New...

    Important Information

    We would like to place cookies on your device to help make this website better. The website cannot give you the best user experience without cookies. You can accept or decline our cookies. You may also adjust your cookie settings. Privacy Policy - Guidelines