Help/Support Help about IDA CODE (game hack)

[Goran 1.9k]

am doing this one 5 hours... It is value for bullets in Trigger Fist v1.12 latest one, come today... I wanna make hack and post here like first hack I made in DEB

i found function in lldb..

R5 holds Bullets

its 86914C                 STRH.W          R0, [R11,#0x11E]

0086910E                 CMP             R0, #0        offset: 0086510E    HEX:0028
0086910E                 NOP                                 offset: 0086510E    HEX:C046

0086913A                 CMP             R1, #0        offset: 0086513A    HEX:0029
0086913A                 NOP                                offset: 0086513A    HEX:C046

0086913C                 BNE             loc_8690F8    offset: 0086513C    HEX:DCD1
0086913C                 NOP                                     offset: 0086513C    HEX:C046

0086913E                 B.W             loc_86A45E    offset: 0086513E    HEX:01F08EB9
0086913E                 NOP                                    offset: 0086513E    HEX:C046C046

00869144                 SUBS            R5, R0, #1    offset: 00865144    HEX:451E
00869144                 SUBS            R5, R0, #0    offset: 00865144    HEX:051E

0086916C                 CMP             R2, R0        offset: 0086516C    HEX:8242
0086916C                 NOP                                offset: 0086516C    HEX:C046

0086916E                 BNE             loc_86923A    offset: 0086516E    HEX:64D1
0086916E                 NOP                                     offset: 0086516E    HEX:C046

00869174                 CMP             R0, #1        offset: 00865174    HEX:0128
00869174                 NOP                                offset: 00865174    HEX:C046

 

YEAP all this done in one deb and game still crash after a first shot bullet So am missing some function.... tried many combinations, always same crash on shoot....

What function you recommend that I change, and witch branch making problem from your experience...

 

Please be kind and just answer short and clear, without judging and philosophy.... if you dont wont to answer just pass away... THANKS for you kindness...

Updated September 15, 2017 by Goran

[sn0wqt 42.5k iPhone X 13.3]

How do u know R5 holds the ammo?

also try this: do add r5, r0, #1 on the sub

this might work and add bullets instead of subtracting 

[Goran 1.9k]

17 minutes ago, Mr Cub3s said:

How do u know R5 holds the ammo?

also try this: do add r5, r0, #1 on the sub

this might work and add bullets instead of subtracting 

man I used 2Register read" and saw that R5 have bullets..

it is a lot CMP and branch there... i will try that tomorrow because is 02:45

do u suggest that I nope something there???

[sn0wqt 42.5k iPhone X 13.3]

Nope don't nop anything yet

 

[Goran 1.9k]

9 hours ago, Mr Cub3s said:

How do u know R5 holds the ammo?

also try this: do add r5, r0, #1 on the sub

this might work and add bullets instead of subtracting 

man, game just crash at this function....

[sn0wqt 42.5k iPhone X 13.3]

25 minutes ago, Goran said:

man, game just crash at this function....

Then that's not the right offset lol

when did it crash? While shooting?

[Ted2 39.1k iPhone 13 Pro 16.0 Donor]

The #1 in the subs to 0.

 

i'm pretty sure you dont use the right ARM code. Armv7 has diffrent ones, so uze the right one. Covered in tutorial.

[Goran 1.9k]

13 minutes ago, Mr Cub3s said:

Then that's not the right offset lol

when did it crash? While shooting?

 

11 minutes ago, Ted2 said:

The #1 in the subs to 0.

 

i'm pretty sure you dont use the right ARM code. Armv7 has diffrent ones, so uze the right one. Covered in tutorial.

yeap when shooting...
i tried to SUB #0 but it crash...
igg address point me on that function... that function on picture...