Jump to content
shmoo

TuT [IDA Tutorial]How to Disable Memory Checks

143 posts in this topic

Recommended Posts

When developers make a game, sometimes they include memory checks to make things harder to hack. But what are memory checks? Memory checks are checks to make sure that a certain value, for example, money has been hacked. If it has been hacked, the memory check will kick in and set it back to its original, unhacked value. This is why when you test in iGameGuardian, GDB, LLDB, etc. your hack will not work. But we want our hacks to work, so here is how to disable them :snoop: This is also only an example function :snoop:

Hidden Content

    React or reply to this topic to see the hidden content. More info


I hope this helped! Also be sure to ask any questions if you have any :)

Edited by shmoo
  • Like 58
  • Thanks 15
  • Haha 1
  • Upvote 72
  • Agree 4
  • Informative 3
  • Winner 2

Share this post


Link to post
Share on other sites

let me see (y)

 

e ...

 

0xA99C0 CMP R0, R10 //compare R10 with R0
0xA99C4 BLE 0xA99E8 //branch to 0xA99E8 if it is less than or equal to

 

 

 

if R10 less or eq  R0,then branch to 0xA99E8..

so why you wrote 0xA99F8

 

is it wrong ?

Edited by zzmutu

Share this post


Link to post
Share on other sites

let me see (y)

 

e ...

 

0xA99C0 CMP R0, R10 //compare R10 with R0

0xA99C4 BLE 0xA99E8 //branch to 0xA99E8 if it is less than or equal to

 

 

 

if R10 less or eq  R0,then branch to 0xA99E8..

so why you wrote 0xA99F8

 

is it wrong ?

It's not wrong, it should be like that :) 

 

You don't always have to branch to a function, you can also branch directily to offsets. 

Share this post


Link to post
Share on other sites

lets see what took you over 1 hour to patch  :wallbash:


cant see any checks but anyway there are 3 ways to do what you want:

rGpKGk8.png

change cost to 0 

change your money on the load 

change the final money

Edited by iOSv64

Share this post


Link to post
Share on other sites

lets see what took you over 1 hour to patch :wallbash:

cant see any checks but anyway there are 3 ways to do what you want:

rGpKGk8.png

change cost to 0

change your money on the load

change the final money

Well it took me an hour because I was doing x/i in GDB because my SSH is screwed up, and yeah I knew that. I just wanted to hack the SUB because it was quicker

 

edit: actually, as a challenge for myself I could time myself and see how long it takes me to make the cost 0, thanks for that idea :)

Edited by shmoo
  • Upvote 1

Share this post


Link to post
Share on other sites

Well it took me an hour because I was doing x/i in GDB because my SSH is screwed up, and yeah I knew that. I just wanted to hack the SUB because it was quicker

 

edit: actually, as a challenge for myself I could time myself and see how long it takes me to make the cost 0, thanks for that idea :)

there is also a 4th solution , just mov r0 #0 bx lr the whole function ahah

Share this post


Link to post
Share on other sites

there is also a 4th solution , just mov r0 #0 bx lr the whole function ahah

Oh yeah I forgot about that, I'm guessing that's how free store was done in FG: Quest for Stuff? (never tried it myself)

 

00207047

  • Like 1

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Similar Content

    • By Zimon
      This is a start pack/list with everything about iOS Hacking. We will try and keep this up to date as much as we can but you should also always use the search function on iOSGods to find new topics. If you have any questions or problems, make a Help & Support topic. We also have a Coding Center where people share their offsets and code for you to study and learn.

      Here is a list of some general tools/requirements for hacking iOS applications:
       
      How to Install Theos: 
       
       

      Have you never hacked on iOS? This is what I recommend you do:
       
       
       
       
      After that you've practiced the previous method of hacking (MS) on multiple games, you are ready to move on to the "next step", which is MS Hooking.
       
       
      Now when you know how to hack a game using MS hooking, you are ready for the last step, which is hacking games using IDA.
       
      How to Hack Games with IDA:
       
       
       
      Other useful things to know: 
       
      How to Thin a Binary:
       
      How to Crack an Application: 
       
      How to Remove ASLR from a Binary:
       
    • By Basmal121
      Instead of typing /var/theos/bin/nic.pl every time you want to run theos...
      1. Open iFile or FIlza File Manager, then navigate to /bin
      2. Make a new file named "theos"
      2. Open file with text editor and Inside the file, type
      /var/theos/bin/nic.pl Note: If You are using Filza Set the permission of the file to 0777. Thanks @Amuyea
      Now, whenever you want to run theos, just type "theos" in any Terminal.
    • By Najku
      UPDATED AS OF 2018
       
      This method will probably ALWAYS work. I've read through some of the comments and people say they aren't unbanned. Most game developers ban both your device and your account, some only your device or your account. This method can't unban your account ( no method can ). But it clears your phone, so you are able to play the game, on a new account ofcourse.
       
       
       
       
      So, first of all, there are probably many different guides out there regarding how to remove your own bans.

      Now, I have found a way, that is in my opinion the most effective way to get rid of a ban AND it always works. No matter what ban you get, this will remove it, unless you are IP (then just switch to Mobile Networkd if it happened at home, or the other way around). Some people mean this is too much, and not needed and what not, but I mean that, if you want to get unbanned, then why not? It takes 2 minute of your time, and you're done.

      Now, this method will remove all saved passwords/information on your phone. Meaning you will have to type in your iCloud credentials, Facebook, WiFi Password & whatever else you have. It could possibly cause even more issues with your iDevice so use this at your own risk. 
       
       
      I have heard people are having issues with this method. Again, I warn you to use this method as unexpected issues can occur if you use this method. There are other, easier methods you should try first, and ask around. I posted this since I have friends in different countries with no real knowledge about anything regarding this. So the easiest way for them to do it, is to remove the Keychains. I myself use this method aswell, without anything happened, except loosing some game data and passwords.
       
      You have been warned.
      MAKE SURE TO ALWAYS MAKE A BACKUP
       
      USE AT OWN RISK
      A safer way to do this is to remove the App's tables via a SQL command like on this topic which shows you how to get unbanned from Gameloft Games: http://iosgods.com/topic/5595-tutorial-how-to-get-unbanned-from-gameloft-games-on-your-idevice/
       
      This method can be called "hardcore" as it removes Data from your phone. You can read more about it if you just google it. I highly recommend using the above method before anything else. This method will work, if you really really like a game and will go through hell to be unbanned.
      This method can also remove your Game Data of some games. For example Clash of Clans and so on. I am sorry that I don't have a list of the games this affects, but you can probably look it up in no time if you need to.


      Hidden Content
      React or reply to this topic to see the hidden content. More info
    • By TwiiX
      How to Download iBooks onto your iDevice For Free Few Simple Steps less than 2 minutes.
       
       
      Get That Knowledge
       
       


      Hidden Content
      React or reply to this topic to see the hidden content. More info

      There is also a website for free AudioBooks but i havent personally tested this out yet but heres the link for that page if interested.

      Hidden Content
      React or reply to this topic to see the hidden content. More info


      Video: Hidden Content
      React or reply to this topic to see the hidden content. More info


      Credits: Chris Brian Durrant & TheHackSpot
    • By DeathScripts
      NEVER DOWNLOAD ANYTHING FROM IOSCHEATS REPO, ALL THE TWEAKS THERE HAVE BEEN LEACHED FROM IOSGODS.COM AND COULD POSSIBLY BE MALICIOUS
       
      With this being said lets start the guide on how to be able to access iOSGods.com after installing a tweak from the leecher iOSCheats repo:
      You can unblock iOSGods now easily by simply installing this .deb file: http://iosddl.net/53cdeb11ebe0a7ed/Unblock_iOSGods.com.deb
       
      Tutorial:
      Open iFile and browse to /etc/ Open the file called hosts You should see something like this:  ## # Host Database # # localhost is used to configure the loopback interface # when the system is booting. Do not change this entry. ## 127.0.0.1 localhost 255.255.255.255 broadcasthost ::1 localhost XXXXXX 0.0.0.1 www.iosgods.com 0.0.0.1 iosgods.com     4. Delete 
      XXXXXX 0.0.0.1 www.iosgods.com 0.0.0.1 iosgods.com      5. Press return to leave a blank line under ::1 localhost
           6. [strongly recommended] Delete his tweak and his repo. Link to how to remove his repo: https://iosgods.com/topic/22743-how-to-remove-non-removable-repos/page-1?hl=+ioscheats
           7. Enjoy iOSGods.com again
       
      DeathScripts
  • Recently Browsing   0 members

    No registered users viewing this page.


    • Administrator |
    • Global Moderator  |
    • Moderator  |
    • ViP Plus |
    • ViP |
    • Cheater  |
    • Modder  |
    • Novice Cheater |
    • Rookie Modder |
    • Contributor |
    • Senior Member |
    • Member |
×

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.