Jump to content
Community Announcements, Giveaways & More!

IDA + LLDB Tutorial [Noob Friendly]

Ted2

By Ted2
Updated in Tutorials

 Share

95 posts in this topic

Recommended Posts

Recommended

Posted by Ted2,

Please see this updated tutorial on arm64:   armv7 hacks are useless nowadays.
Recommended by Ted2
  • Like

1 reaction

Go to this post
Guest

Guest

Posted
Posted (edited)

@Ted2

 

Damn this is a good ass tutorial, I'm gathering up some tuts for Drapes and I stumbled across this one. There's some errors though

  

LDR             R1, [R0,#0xAC] //Loads the value of R0,#0xAC into R1 (ammo)
SUB             R1, R1, #1 // Substracts the value of one from R1 (ammo) into R1 (ammo)
STR             R1, [R0,#0xAC] //Stores R1 (ammo) into R0,#0xAC]
LDR             R1, =(unk_C80D00 - 0x15281C) //I've no idea, it does load something into our ammo atleast.

The LDR R1, [R0, #0xAC] isn't loading the value of R0,#0xAC because that isn't a value. It's loading the value stored in R0+0xac. R0 is holding the address for some object, and R0+0xAC is the instance variable (or something similar) for ammo. The value held in R0 (0x1501c9c0) is the address for the object stored in memory. 0x1501c9c0 + 0xac (which is 0x1501CA6C) is the memory address for the instance variable of the object at 0x1501c9c0 that holds ammo. Same issue here with the STR R1, [R0, #0xac], its not putting ammo back into R0,#0xAC, its storing the updated value into R0(our object address)+0xac(our ammo instance variable).

 

Edit: go back to your watchpoints and check out the memory address for ammo. its 0x1501ca6c! again, you set a watchpoint on the instance variable for ammo :)

On September 9, 2017 at 8:58 PM, Ted2 said:

We can see in the 'register read' output we wrote down, R0 = 0x1501c9c0 in hex decimal, which is 352438720 in decimal value.
This is a big number & get's loaded into our ammo it says. 
This doesn't make sense to me, because  if that's true we had lots of ammo xD

You should update the comments in the assembly and this part with what I typed.

 

On September 9, 2017 at 8:58 PM, Ted2 said:

How we hack the LDR: 


- LDR R1, [R0,#0xAC] to LDR R1, [R7,#0xAC] --> What this does is load R7 (803 million) into our ammo instead of what the normal value should be.

This is incorrect. R7 typically stores a large garbage number so if the game tries to access R7+0xAC, it 99.9% will crash because its trying to access memory that doesn't exist. Or maybe it won't crash, but it will fail to load the ammo, leaving ammo to be a large uninitialized garbage number when its stored back, making it infinite. Its the same concept as above. R0 is the correct address of our object, R7 is some random thing. R0+0xac = where our ammo instance variable is stored, R7+0xac = ???? And your description of the hacked LDR is wrong, its loading uninitialized memory into R1, and that's what makes it infinite.

 

 

Updated by Guest
  • Replies 94
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

Ted2
Ted2

NOTE: iOS 11 is NOT able to run armv7, most devices run on iOS 11. I suggest NOT to hack armv7 binary, so this tutorial is KINDA useless. You can use this tutorial to reduce your knowledge. I wi

Rook
Rook

Wow! This is very detailed!

Ted2
Ted2

@Goran this is not Coin Dozer, coin dozer will be in my more 'advanced tutorial' the watchpoints you get from coin dozer, are not directly the right addresses. So that's why I'll cover that in my

Ted2 Supporter

Ted2 39k
  •   iPhone 13 Pro 
  •   16.0
  • Donor
  •  

    • Posted
    • Author
    Posted (edited)
    5 hours ago, shmoo said:

    @Ted2

     

    Damn this is a good ass tutorial, I'm gathering up some tuts for Drapes and I stumbled across this one. There's some errors though

      

    
LDR             R1, [R0,#0xAC] //Loads the value of R0,#0xAC into R1 (ammo)
SUB             R1, R1, #1 // Substracts the value of one from R1 (ammo) into R1 (ammo)
STR             R1, [R0,#0xAC] //Stores R1 (ammo) into R0,#0xAC]
LDR             R1, =(unk_C80D00 - 0x15281C) //I've no idea, it does load something into our ammo atleast.

    The LDR R1, [R0, #0xAC] isn't loading the value of R0,#0xAC because that isn't a value. It's loading the value stored in R0+0xac. R0 is holding the address for some object, and R0+0xAC is the instance variable (or something similar) for ammo. The value held in R0 (0x1501c9c0) is the address for the object stored in memory. 0x1501c9c0 + 0xac (which is 0x1501CA6C) is the memory address for the instance variable of the object at 0x1501c9c0 that holds ammo. Same issue here with the STR R1, [R0, #0xac], its not putting ammo back into R0,#0xAC, its storing the updated value into R0(our object address)+0xac(our ammo instance variable).

     

    Edit: go back to your watchpoints and check out the memory address for ammo. its 0x1501ca6c! again, you set a watchpoint on the instance variable for ammo :)

    You should update the comments in the assembly and this part with what I typed.

     

    This is incorrect. R7 typically stores a large garbage number so if the game tries to access R7+0xAC, it 99.9% will crash because its trying to access memory that doesn't exist. Or maybe it won't crash, but it will fail to load the ammo, leaving ammo to be a large uninitialized garbage number when its stored back, making it infinite. Its the same concept as above. R0 is the correct address of our object, R7 is some random thing. R0+0xac = where our ammo instance variable is stored, R7+0xac = ???? And your description of the hacked LDR is wrong, its loading uninitialized memory into R1, and that's what makes it infinite.

     

     

    Thanks, will read & fix when i'm on pc ??. Also, isnt the 0x AC in here [R0,#0xAC] some kind of variable, cause I thought it was, I've never really added it or never seen someone added it to the offset. In unity games, you can actually see what thess #0x.... numbers mean, not that I use that while hacking.

    Updated by Ted2
    Guest

    Guest

    Posted
    Posted
    3 hours ago, Ted2 said:

    Thanks, will read & fix when i'm on pc ??. Also, isnt the 0x AC in here [R0,#0xAC] some kind of variable, cause I thought it was, I've never really added it or never seen someone added it to the offset. In unity games, you can actually see what thess #0x.... numbers mean, not that I use that while hacking.

    read the LDR and STR locations as register+number. The LDR loads whatever is at R0+0xAC into R1

    trumansh0tmail.de Newbie

    trumansh0tmail.de 0

    Posted
    Posted

    F*ck, iOS 11 is not supported, I guess, LLDB have to be rebuilt.

      

    lldb
dyld: Library not loaded: @rpath/liblldb.3.8.dylib
  Referenced from: /usr/bin/lldb
  Reason: no suitable image found.  Did find:
    /usr/bin/../lib/liblldb.3.8.dylib: code signing blocked mmap() of '/usr/bin/../lib/liblldb.3.8.dylib'
    /usr/lib/liblldb.3.8.dylib: code signing blocked mmap() of '/usr/lib/liblldb.3.8.dylib'
Abort trap

    Installed libffi, readline via dpkg and Python via cydia.radare

    On latest Electra.

    Juku Newbie

    Juku 5k
  •   iPhone SE 
  •   11.3.1

    • Posted
    Posted
    On 3/11/2018 at 7:29 AM, trumansh0tmail.de said:

    F*ck, iOS 11 is not supported, I guess, LLDB have to be rebuilt.

      

    
lldb
dyld: Library not loaded: @rpath/liblldb.3.8.dylib
  Referenced from: /usr/bin/lldb
  Reason: no suitable image found.  Did find:
    /usr/bin/../lib/liblldb.3.8.dylib: code signing blocked mmap() of '/usr/bin/../lib/liblldb.3.8.dylib'
    /usr/lib/liblldb.3.8.dylib: code signing blocked mmap() of '/usr/lib/liblldb.3.8.dylib'
Abort trap

    Installed libffi, readline via dpkg and Python via cydia.radare

    On latest Electra.

    ios 11 is supported 

    Guest
    This topic is now closed to further replies.
     Share
    Go to topic listing

    • Our picks

      • [Free] Asphalt 8: Airborne Hack v8.4.0 +4 Cheats

        [Free] Asphalt 8: Airborne Hack v8.4.0 +4 Cheats

        Rook posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Asphalt 8: Airborne by Gameloft
        Bundle ID: com.gameloft.asphalt8
        iTunes Store Link: https://apps.apple.com/us/app/asphalt-8-airborne/id610391947


        Hack Features:
        - Unlimited Nitro Use / Nitro Doesn't Decrease
        - No Car Crash / No Wrecks
        - Anti-Ban -> Does not mean you can abuse the hack.
        - No Rank Required to do Mastery Missions

        This hack only works on x64 or ARM64 iDevices: iPhone 5s, 6, 6 Plus, 6s, 6s Plus, 7, 7 Plus, 8, 8 Plus, X, iPod Touch 6G, iPad Air, Air 2, Pro & iPad Mini 2, 3, 4 and later. This hack is an In-Game Mod Menu (iGMM). In order to activate the Mod Menu, tap on the iOSGods button found inside the app.

        ViP version of this hack with more features: https://iosgods.com/topic/39095-vip-asphalt-8-airborne-v321-13-cheats/
        Non-Jailbroken version of this hack: https://iosgods.com/topic/38140-hack-asphalt-8-airborne-v310-4-cheats-for-jailed-idevices-ios-10/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 8,879 replies
        Rook

        Picked By

        Rook,
      • Yu-Gi-Oh! Duel Links v9.9.0 - [ Always Best Tactics & More ]

        Yu-Gi-Oh! Duel Links v9.9.0 - [ Always Best Tactics & More ]

        Rook posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Yu-Gi-Oh! Duel Links By KONAMI
        Bundle ID: jp.konami.yugiohmobile
        iTunes Store Link: https://itunes.apple.com/us/app/yu-gi-oh-duel-links/id1068378177


        Mod Requirements:
        - Non-Jailbroken/Jailed or Jailbroken iPhone/iPad/iPod Touch.
        - Cydia Impactor.
        - A Computer Running Windows/Mac/Linux.


        Hack Features:
        -- Always The Best Tactics
        - Shows
        -- Enemies Hand Card Show
        - Show Monster And Status
        -- Enemies Deck Card Shows
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 1,414 replies
        Rook

        Picked By

        Rook,
      • [Hack] Asphalt 8: Airborne v8.4.0 +10 Cheats for Jailed iDevices! [ iOS 26 ]

        [Hack] Asphalt 8: Airborne v8.4.0 +10 Cheats for Jailed iDevices! [ iOS 26 ]

        Rook posted a topic in ViP Non-Jailbroken Hacks & Cheats,

        Modded/Hacked App: Asphalt 8: Airborne By Gameloft
        Bundle ID: com.gameloft.asphalt8
        iTunes Link: https://itunes.apple.com/us/app/asphalt-8-airborne/id610391947

        Hack Features:
        - Unlimited Nitro Use. Use Unlimited Nitro!
        - No Car Crash/Wreck
        - All Cars Unlocked
        - Unlimited Coins -> Coins will still decrease and go negative after buying and turning the hack off. Caused issues after uninstalling the hack. Removed.
        - Free Store - Buy any item for free which cost coins Patched. Removed.
        This hack only works on x64 or ARM64 iDevices: iPhone 5s, 6, 6 Plus, 6s, 6s Plus, 7, 7 Plus, 8, 8 Plus, X, SE, iPod Touch 6G, iPad Air, Air 2, Pro & iPad Mini 2, 3, 4 and later.

        Jailbroken version of this hack: https://iosgods.com/topic/23005-free-asphalt-8-airborne-hack-v321-4-cheats/
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 766 replies
        Rook

        Picked By

        Rook,
      • [ViP] Asphalt 8: Airborne v8.4.0 +13 Cheats!

        [ViP] Asphalt 8: Airborne v8.4.0 +13 Cheats!

        Battousai posted a topic in ViP Cheats,

        Modded/Hacked App: Asphalt 8: Airborne By Gameloft
        Bundle ID: com.gameloft.asphalt8
        iTunes Link: https://itunes.apple.com/us/app/asphalt-8-airborne/id610391947


        Hack Features:
        - Unlimited Nitro Use / Nitro Doesn't Decrease
        - 0 Coin Cost to buy Decals
        - All Seasons Unlocked
        - Tag Season Unlocked
        - Coins Hack (Enter your own amount in settings)
        - 0 Cost to Apply ProKits
        - Free Store (only works with coins. Blue tokens cost is server sided)
        - Mastery Unlocked at any Level (choose the amount of stars you want in settings to unlock early)
        - Anti-Ban -> Does not mean you can abuse the hack.
        - No Rank Required to do Mastery Missions
        - All Cars Unlocked
        - No Speed Limit
        - No Car Crash
         
        Free Version of this hack: https://iosgods.com/topic/23005-updated-asphalt-8-airborne-hack-v260-13-cheats/
        ViP No-Jailbreak Version of this Hack: https://iosgods.com/forum/78-vip-non-jailbroken-hacks-cheats/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 2,159 replies
        Rook

        Picked By

        Rook,
      • Tap Titans 2 v7.11.1 +3 [ iOS 18 Supported ]

        Tap Titans 2 v7.11.1 +3 [ iOS 18 Supported ]

        0xSUBZ3R0 posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Tap Titans 2 By Game Hive Corporation
        Bundle ID: com.gamehivecorp.taptitans2
        iTunes Store Link: https://itunes.apple.com/us/app/tap-titans-2/id1120294802

        Hack Features:
        - Freeze Gold -> Gold Won't Subtract
        - Freeze Mana -> Mana Won't Subtract
        - x10 Gold Drop -> Drop More Gold than Usual
        Only works on x64 or ARM64 iDevices: iPhone 5s, 6, 6 Plus, 6s, 6s Plus, 7, 7 Plus, 8, 8 Plus, X, SE, iPod Touch 6G, iPad Air, Air 2, Pro & iPad Mini 2, 3, 4 and later.


        Jailbroken version of this hack: https://iosgods.com/topic/58609-iosgods-vip-tap-titans-2-v210-6-cheats/
        Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 2,042 replies
        Rook

        Picked By

        Rook,
      • Yu-Gi-Oh! Duel Links v9.9.0 - [ Auto-Play & More ]

        Yu-Gi-Oh! Duel Links v9.9.0 - [ Auto-Play & More ]

        Rook posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Yu-Gi-Oh! Duel Links By KONAMI
        Bundle ID: jp.konami.yugiohmobile
        iTunes Store Link: https://itunes.apple.com/us/app/yu-gi-oh-duel-links/id1068378177
         

        Mod Requirements:
        - Jailbroken iPhone/iPad/iPod Touch.
        - iFile / Filza / iFunBox / iTools or any other file managers for iOS.
        - Cydia Substrate (from Cydia).
        - PreferenceLoader (from Cydia).


        Hack Features:
        - Auto-Play - Don't Work In PVP 
        -- Always The Best Tactics
        - Face Up Card
        -- Enemies Hand Card Show
        - Show Monster And Status
        -- Enemies Deck Card Shows
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 1,854 replies
        Rook

        Picked By

        Rook,
      • Monster Super League v4.0.1 Jailed Cheats +4

        Monster Super League v4.0.1 Jailed Cheats +4

        Rook posted a topic in ViP Non-Jailbroken Hacks & Cheats,

        Modded/Hacked App: Monster Super League By Four Thirty Three
        Bundle ID: com.ftt.msleague
        iTunes Store Link: https://itunes.apple.com/us/app/monster-super-league/id1092463295


        Mod Requirements:
        - Jailbroken or Non-Jailbroken iPhone/iPad/iPod Touch.
        - Cydia Impactor.
        - A Computer Running Windows/Mac/Linux.


        Hack Features:
        - x30 Stats
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 549 replies
        Rook

        Picked By

        Rook,
      • Last Day On Earth: Survival v1.37.2 +36 FREE Hacks

        Last Day On Earth: Survival v1.37.2 +36 FREE Hacks

        Rook posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Last Day on Earth: Survival By Andrey Pryakhin
        Bundle ID: zombie.survival.craft.z
        iTunes Link: https://itunes.apple.com/us/app/last-day-on-earth-survival/id1241932094

        Hack Features:
        - Coins Hack - Spend/Buy something that costs Coins to increase Coins!
        - Durability Hack - Weapons, Clothes, Boots, etc. Will not break. You can always keep using them.
        - Crafting Hack - Able to craft stuff without required items!
        - Skill Points Hack - Skill Points won't decrease, reset to increase.
        - Duplicate Items Hack - Split Items to duplicate them! Now it will duplicate by 20!
        - Loot box hack - Open 1 lootbox for 1000! - x64 only
        - Items increase when Taking from Inbox. You will never run out of Items in your inbox! - x64 only
        - Minigun Doesn't Overheat - x64 only
        - Unlimited Energy. Energy Increases instead of subtracting! - x64 only
        - Bow One Hit Kill - x64 only
        - Anti-Ban

        During the month of December, we have decided to make the ViP hack for free for all users! :) Extra features include:
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 30,078 replies
        Rook

        Picked By

        Rook,
      • Last Day on Earth: Survival v1.37.2 +17 FREE Jailed Cheats

        Last Day on Earth: Survival v1.37.2 +17 FREE Jailed Cheats

        Rook posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Last Day On Earth: Zombie Survival By Andrey Pryakhin
        Bundle ID: zombie.survival.craft.z
        iTunes Link: https://itunes.apple.com/us/app/last-day-on-earth-zombie-survival/id1241932094


        Hack Features
        Hack Features
        - Coins Hack - Buy something that costs coins to increase
        - Duplicate Items Hack - Split items to duplicate them :p
        - Skill Points Hack - Use to increase
        - Weapon/Item Durability Hack - Your weapons and items will never break.
        - Loot Boxes Hack! -> Open 1 loot box and gain 10,000!

        This hack was made by ZahirSher for iOSGods.com.
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 42,691 replies
        Rook

        Picked By

        Rook,
      • Tap Titans 2 - Hero Legends v7.11.1 +9

        Tap Titans 2 - Hero Legends v7.11.1 +9

        XxReddingtonxX posted a topic in ViP Cheats,

        Modded/Hacked App: Tap Titans 2 - Hero Legends By Game Hive Corporation
        Bundle ID: com.gamehivecorp.taptitans2
        iTunes Store Link: https://apps.apple.com/us/app/tap-titans-2-hero-legends/id1120294802?uo=4


        Hack Features:
        - Free Level Up
        - Free Skill Upgrades
        - Free Hired Heroes Upgrades
        - Skills Cost 0 Mana To Use
        - No Skill Cooldown
        - Skip Waves - Each Kill acts like the boss so it takes you to next stage instantly no need for waves to move on to next stage
        - Monsters Have Low HP - kill faster
        - Collect Ad Rewards Without Having to Watch Videos


        Non-Jailbroken & No Jailbreak required hack(s): https://iosgods.com/forum/79-no-jailbreak-section/
        Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 490 replies
        Rook

        Picked By

        Rook,
      • Need for Speed No Limits v8.5.11 +2 Jailed Cheats [Unlimited Nitro]

        Need for Speed No Limits v8.5.11 +2 Jailed Cheats [Unlimited Nitro]

        Rook posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Need for Speed No Limits by EA Swiss Sarl
        Bundle ID: com.ea.nfs2014.bv
        iTunes Store Link: https://itunes.apple.com/us/app/need-for-speed-no-limits/id883393043


        Mod Requirements:
        - Non-Jailbroken/Jailed or Jailbroken iPhone/iPad/iPod Touch.
        - Cydia Impactor.
        - A Computer Running Windows/Mac/Linux.


        Hack Features:
        - Dumb Opponents - Will cause all opponents and police to drive into the walls.
        - Unlimited Nitro - Use some nitro to fill the whole nitro bar.
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 1,185 replies
        Rook

        Picked By

        Rook,

      • Tap Titans 2 iOS Hack v7.11.1 [Gold & Mana Cheat]

        0xSUBZ3R0 posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Tap Titans 2 by Game Hive Corporation
        Bundle ID: com.gamehivecorp.taptitans2
        iTunes Store Link: https://itunes.apple.com/us/app/tap-titans-2/id1120294802


        Hack Features:
        - Custom Gold ( type your custom amount enable do a few taps collect some gold then disable )
        - Custom DPS  ( type your custom amount wait for NAN then disable )
        - Custom mana ( type your custom amount use skill)

        - ALL FEATURES BELOW REQUIRE NOT ENOUGH MANA AND SKILL UNLOCKED 

        TO USE ENABLE THE HACK SET MANA TO 0 WIT CUSTOM MANA THEN TAP SKILL BUTTON WATCH THE VIDEO TO SEE 

        - Use swipe perk for free 

        - Use doom perk for free 

        - Use make it rain perk free

        - Use clan make it rain perk free

        - Use double damage perk free 

         


        Non-Jailbroken & No Jailbreak required hack(s): https://iosgods.com/forum/79-no-jailbreak-section/
        Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
          • Informative
          • Agree
          • Haha
          • Thanks
          • Winner
          • Like
        • 3,584 replies
        Rook

        Picked By

        Rook,
      View All
    ×
    ×
    • Create New...

    Important Information

    We would like to place cookies on your device to help make this website better. The website cannot give you the best user experience without cookies. You can accept or decline our cookies. You may also adjust your cookie settings. Privacy Policy - Guidelines