Jump to content
Community Announcements, Giveaways & More!

[Tutorial] How to Perform a Binary Patch / How to Thin your Binary

Guest

By Guest
Updated in Tutorials

 Share

192 posts in this topic

Recommended Posts

Guest

Guest

Updated
Updated (edited)

No hidden content so the user can just see it, do it, and use the hack. If lipoARM64 won't work, here is how to manually do a binary patch:


Instructions:
1. Get 'Darwin CC Tools' (version 855) from the BigBoss repo, 'Clutch2' from cydia.iphonecake.com repo, and 'iOS Terminal' from the BigBoss repo.

2. - VERY IMPORTANT: The iOS 9 jailbreak breaks many command line tools and now they must be signed manually with ldid in order for them to work. Because of this, lipo must be signed or else you'll get the infamous "Killed: 9" error. To resign lipo, follow these steps:

1. Navigate to /usr/bin/ in iFile.

2. Find a file named "lipo" and copy it into /var/mobile/.

3. Open iOS Terminal and run these commands:


su
alpine
cd /var/mobile
ldid -s lipo

4. Now we have to set permissions to the newly signed lipo file. Set them as shown here:
Owner: root
Group: wheel

User: Read, Write, Execute
Group: Read, Execute
World: Read, Execute

5. Hit "Done" after setting permissions and copy the new lipo into /usr/bin/ and overwrite the old one.

6. You are done signing lipo!

3. Go into iOS Terminal, switch to root, and run Clutch (enter each command per line).

su
alpine
Clutch2

If I were to crack Netflix I would do this:

MJWiS6k.jpg



Then crack the app and go to /var/mobile/Documents/Cracked (or wherever you set your cracked apps location when configuring Clutch). There should be a new .ipa file there. Rename the .ipa extension to .zip then simply open it with WinRar/7-Zip on your PC or iFile/Filza on your iDevice.

xDRYB0i.jpg



4. Locate the binary inside the .ipa archive: /Payload/App Name.app/Binary Name (Binary file has no extension)

zMbrszZ.jpg



5. Now extract the binary and send it to /var/mobile on your iDevice and rename it to "1" (to make it easier).

JnGtNtm.png



6. Switch back to iOS Terminal and then type in this command:

cd /var/mobile
lipo 1 -thin armv7 -o BinaryNameFromIPAHere

Here is what it would look like with Netflix:

ytNXWHD.png



7. Take the binary that lipo created (in /var/mobile, it will be smaller than the original binary by around half) and send it to the location where your game's folder is:

iOS 6 & 7: /var/mobile/Applications/AppName/AppName.app

iOS 8 & 9: /var/mobile/Containers/Bundle/Application/AppName/AppName.app

8. Now we will need to set permissions to the binary file inside the app's folder:

Owner: mobile
Group: mobile

User: Read, Write, Execute
Group: Read, Write, Execute
World: Read, Write, Execute

yT8JZA2.jpg



Do that or your game will crash.

9. Now you can celebrate because you just did a binary patch. :snoop:

Updated by Guest
Added Clutch2 instead of Clutch
  • Replies 191
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

Raggnar
Raggnar

Awesome! Thanks

ipaarchive.com
ipaarchive.com

no why? show mem

MART938G
MART938G

I'm completely lost in this conversation +_+

Guest

Guest

Posted
Posted

Does this do anything?

For me:

1. It takes off the arm64 portion of the binary cos its useless to me

2. It makes it so that I can patch syscall (debugging protection) successfully

3. It makes it so that I can remove ASLR (address space layout randomization, basically makes it so that the original offset is hidden)

4. It makes it so that I'm able to set watchpoints and so that there are no 64 bit memory addresses

5. It makes it so that I can attach GDB to the app successfully (for breakpoints)

6. It makes it so that LLDB won't flip out when I try to attach

7. It makes it so that I don't have to patch the arm64 part as well as the armv7 part

8. Smaller binary size = less time to load in IDA

 

For you:

1. It makes the hack work

 

:p

ipaarchive.com Newbie

ipaarchive.com 11.1k

    • Posted
    Posted

    For me:

    1. It takes off the arm64 portion of the binary cos its useless to me

    2. It makes it so that I can patch syscall (debugging protection) successfully

    3. It makes it so that I can remove ASLR (address space layout randomization, basically makes it so that the original offset is hidden)

    4. It makes it so that I'm able to set watchpoints and so that there are no 64 bit memory addresses

    5. It makes it so that I can attach GDB to the app successfully (for breakpoints)

    6. It makes it so that LLDB won't flip out when I try to attach

    7. It makes it so that I don't have to patch the arm64 part as well as the armv7 part

    8. Smaller binary size = less time to load in IDA

     

    For you:

    1. It makes the hack work

     

    :p

    so basically nothing useful :rofl:

    Create an account or sign in to comment

    You need to be a member in order to leave a comment

    Create an account

    Sign up for a new account in our community. It's easy!

    Register a new account

    Sign in

    Already have an account? Sign in here.

    Sign In Now
     Share
    Go to topic listing

    • Our picks

      • Obsidian Knight RPG v1.200.12 [+3 Jailed Cheats]

        Obsidian Knight RPG v1.200.12 [+3 Jailed Cheats]

        Cashlaz  posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Obsidian Knight RPG By ActFirst Games AB
        Bundle ID: com.actfirstgames.obsidianknight
        iTunes Store Link: https://apps.apple.com/us/app/obsidian-knight-rpg/id6505061490?uo=4



        🚀 Hack Features

        - Unlimited Currency
        - God Mode / Never Die
        - High Damage / OHK
        • 30 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Obsidian Knight RPG v1.200.12 [+3 Cheats]

        Obsidian Knight RPG v1.200.12 [+3 Cheats]

        Cashlaz  posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Obsidian Knight RPG By ActFirst Games AB
        Bundle ID: com.actfirstgames.obsidianknight
        iTunes Store Link: https://apps.apple.com/us/app/obsidian-knight-rpg/id6505061490?uo=4

         

        🚀 Hack Features

        - Unlimited Currency
        - God Mode / Never Die
        - High Damage / OHK
        • 31 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Margonem Adventures v2.4.6 [+3 Jailed Cheats]

        Margonem Adventures v2.4.6 [+3 Jailed Cheats]

        Cashlaz  posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Margonem Adventures By GARMORY sp. z o.o. sp. k.
        Bundle ID: pl.Garmory.MargonemAdventures
        iTunes Store Link: https://apps.apple.com/us/app/margonem-adventures/id6444410609?uo=4

         

        🤩 Hack Features

        - Enemy Can't Move
        - Enemy Can't Attack
        - Unlimited Mana
        • 24 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Margonem Adventures v2.4.6 [+3 Cheats]

        Margonem Adventures v2.4.6 [+3 Cheats]

        Cashlaz  posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Margonem Adventures By GARMORY sp. z o.o. sp. k.
        Bundle ID: pl.Garmory.MargonemAdventures
        iTunes Store Link: https://apps.apple.com/us/app/margonem-adventures/id6444410609?uo=4



        🤩 Hack Features

        - Enemy Can't Move
        - Enemy Can't Attack
        - Unlimited Mana
        • 16 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Pal Go: Tower Defense TD v0.4.51 [+7 Cheats]

        Pal Go: Tower Defense TD v0.4.51 [+7 Cheats]

        Cashlaz  posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Pal Go: Tower Defense TD By Playwind Ltd
        Bundle ID: com.playwindgames.freedefender
        iTunes Store Link: https://apps.apple.com/us/app/pal-go-tower-defense-td/id6479316663?uo=4


         

        🚀 Hack Features

        - [VIP] Freeze Currency (Currency will not decrease when used)

        - [VIP] Currency Always Enough (Buy even when you don't have enough currency)

        - [Free] Higher Recruit Energy (Gives 500 Recruit Energy Every Wave)

        - [Free] Always Can Drag Hero

        - [Free] Skip Ads

        - [Free] No Attack Cooldown

        - [Free] Global Speed Multiplier (Enable Inside Battle)

         

        Warning


        Do not use on main account. There is a chance of ban. Not responsible for any bans.

         


        🍏 For Non-Jailbroken & No Jailbreak required hacks: https://iosgods.com/forum/79-no-jailbreak-section/
        🤖 Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        • 71 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Pal Go: Tower Defense TD v0.4.51 [+7 Jailed Cheats]

        Pal Go: Tower Defense TD v0.4.51 [+7 Jailed Cheats]

        Cashlaz  posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Pal Go: Tower Defense TD By Playwind Ltd
        Bundle ID: com.playwindgames.freedefender
        iTunes Store Link: https://apps.apple.com/us/app/pal-go-tower-defense-td/id6479316663?uo=4


         

        Hack Features

        - [VIP] Freeze Currency (Currency will not decrease when used)

        - [VIP] Currency Always Enough (Buy even when you don't have enough currency)

        - [Free] Higher Recruit Energy (Gives 500 Recruit Energy Every Wave)

        - [Free] Always Can Drag Hero

        - [Free] Skip Ads

        - [Free] No Attack Cooldown

        - [Free] Global Speed Multiplier (Enable Inside Battle)

         

        Warning


        Do not use on main account. There is a chance of ban. Not responsible for any bans.

         

        Jailbreak required iOS hacks: https://iosgods.com/forum/5-game-cheats-hack-requests/
        Modded Android APKs: https://iosgods.com/forum/68-android-section/
        • 94 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Fortress: Stickman Trenches v3.5 [+2 Jailed Cheats]

        Fortress: Stickman Trenches v3.5 [+2 Jailed Cheats]

        Cashlaz  posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Fortress: Stickman Trenches By APPWILL COMPANY LTD
        Bundle ID: com.g1.growfortmarines
        App Store Link: https://apps.apple.com/us/app/fortress-stickman-trenches/id6445945405?uo=4



        🤩 Hack Features

        - Enemy Can't Attack
        - Unlimited Currency
        • 2 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Fortress: Stickman Trenches v3.5 [+2 Cheats]

        Fortress: Stickman Trenches v3.5 [+2 Cheats]

        Cashlaz  posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Fortress: Stickman Trenches By APPWILL COMPANY LTD
        Bundle ID: com.g1.growfortmarines
        App Store Link: https://apps.apple.com/us/app/fortress-stickman-trenches/id6445945405?uo=4


        🤩 Hack Features

        - Enemy Can't Attack
        - Unlimited Currency
         
        • 1 reply
        Cashlaz

        Picked By

        Cashlaz ,
      • Zombie Fortress: Trap Defense v0.13.1 [+6 Jailed Cheats]

        Zombie Fortress: Trap Defense v0.13.1 [+6 Jailed Cheats]

        Cashlaz  posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Zombie Fortress: Trap Defense By SayGames LTD
        Bundle ID: com.nlabsoft.zombiecrusher.s
        App Store Link: https://apps.apple.com/us/app/zombie-fortress-trap-defense/id6747713523?uo=4



        🤩 Hack Features

        - Add Cash
        - Add Diamond
        - Add Energy
        - Add Parts
        - Never Die
        - Add Battle Gold (Enable inside battle)
        • 5 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Zombie Fortress: Trap Defense v0.13.1 [+6 Cheats]

        Zombie Fortress: Trap Defense v0.13.1 [+6 Cheats]

        Cashlaz  posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Zombie Fortress: Trap Defense By SayGames LTD
        Bundle ID: com.nlabsoft.zombiecrusher.s
        App Store Link: https://apps.apple.com/us/app/zombie-fortress-trap-defense/id6747713523?uo=4



        🤩 Hack Features

        - Add Cash
        - Add Diamond
        - Add Energy
        - Add Parts
        - Never Die
        - Add Battle Gold (Enable inside battle)
        • 2 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Shadowborn v0.6.1 Debug Menu [+8 Jailed Cheats]

        Shadowborn v0.6.1 Debug Menu [+8 Jailed Cheats]

        Cashlaz  posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Shadowborn By VIVA GAMES S.L.
        Bundle ID: com.onemb.shadowborn
        App Store Link: https://apps.apple.com/us/app/shadowborn/id6738343504?uo=4

         

        🤩 Hack Features

        - Debug Menu
        • 12 replies
        Cashlaz

        Picked By

        Cashlaz ,
      • Shadowborn v0.6.1 Debug Menu [+8 Cheats]

        Shadowborn v0.6.1 Debug Menu [+8 Cheats]

        Cashlaz  posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Shadowborn By VIVA GAMES S.L.
        Bundle ID: com.onemb.shadowborn
        App Store Link: https://apps.apple.com/us/app/shadowborn/id6738343504?uo=4



        🤩 Hack Features

        - Debug Menu
         
        • 19 replies
        Cashlaz

        Picked By

        Cashlaz ,
      View All
    ×
    ×
    • Create New...

    Important Information

    We would like to place cookies on your device to help make this website better. The website cannot give you the best user experience without cookies. You can accept or decline our cookies. You may also adjust your cookie settings. Privacy Policy - Guidelines