Jump to content

🛡️ Introducing Shiro Security - Game Security Research & Engineering

×
Community Announcements, Giveaways & More!

debugserver game crash after $c or $n

syto203

By syto203
in Help & Support

16 posts in this topic

Recommended Posts

syto203 Newbie

syto203 216
  •   12.1.2

    • Posted
    Posted

    i've been trying to follow the tutorial available here

    https://iosgods.com/topic/75950-arm64-ida-lldb-tutorial-noob-friendly/

    and getting the debugserver from here

    https://kov4l3nko.github.io/blog/2016-04-27-debugging-ios-binaries-with-lldb/#preparing-the-sandbox

    also tried with apple-debugserver found in /usr/bin/

    since native LLDB support was discontinued to the best of my knowledge.

    attach debugserver to the process 

    $ debugserver *:1234 -a PID

    i get the waiting for debugger notice and the process freezes on my iphone.

    on Mac Terminal i enter
      

    $ lldb

(lldb) platform select remote-ios

(lldb) process connect connect://ipaddress:1234

    now following the tutorial refrenced above i get the ASLR value via 

    (lldb) image list

    as for the watchpoints / breakpoints i got the addresses from DLG injector

    tried first with watchpoint 

    (lldb) w s e -- 0x001234ED

    and received 

    Watchpoint created: Watchpoint 1: addr = 0x10a440e10 size = 8 state = enabled type = w
    new value: 4290672328769

    when i enter 

    (lldb) c

    or 

    (lldb)  n

    to try to get a new value from the game, the game remains frozen and doesnt allow me to do anything.

    same thing with breakpoint 

    (lldb) br s -a 0x1234ED

    Device: iPhone X

    OS: 12.1.2

    Jailbreak: Unc0ver 3.0.1

    syto203 Newbie

    syto203 216
  •   12.1.2

    • Posted
    • Author
    Posted

    the terminal log for $ c 

    (lldb) c
Process 776 resuming
Process 776 stopped
* thread #1, queue = 'com.apple.UIKit.pasteboardNotificationStateQueue', stop reason = EXC_BAD_ACCESS (code=50, address=0x101c8d5a0)
    frame #0: 0x0000000101c8d5a0 cy-UhTW4c.dylib`dlsym_internal
cy-UhTW4c.dylib`dlsym_internal:
->  0x101c8d5a0 <+0>:  stp    x24, x23, [sp, #-0x40]!
    0x101c8d5a4 <+4>:  stp    x22, x21, [sp, #0x10]
    0x101c8d5a8 <+8>:  stp    x20, x19, [sp, #0x20]
    0x101c8d5ac <+12>: stp    x29, x30, [sp, #0x30]
Target 0: (Bloody Harry) stopped.

     

    syto203 Newbie

    syto203 216
  •   12.1.2

    • Posted
    • Author
    Posted
    2 hours ago, K_K said:

    Doesn’t work on iOS 12.1.2 yet 

    the error i posted above meant that the process didn't have the right permissions

    so i enabled "task for pid" device wide and tried again

    this time watchpoints worked and resuming worked

    here is the terminal output from setting the "watchpoints" to the "register read" 

    (lldb) w s e -- 0x1095ACE10
Watchpoint created: Watchpoint 1: addr = 0x1095ace10 size = 8 state = enabled type = w
    new value: 4290672328772
(lldb) w s e -- 0x10C7A0EF0
Watchpoint created: Watchpoint 2: addr = 0x10c7a0ef0 size = 8 state = enabled type = w
    new value: 300647710788
(lldb) w s e -- 0x2809AE750
Watchpoint created: Watchpoint 3: addr = 0x2809ae750 size = 8 state = enabled type = w
    new value: 68
(lldb) w s e -- 0x2809B11F0
Watchpoint created: Watchpoint 4: addr = 0x2809b11f0 size = 8 state = enabled type = w
    new value: 68
(lldb) c
Process 1195 resuming

Watchpoint 1 hit:
old value: 4290672328772
new value: 4290672328771
Process 1195 stopped
* thread #1, queue = 'com.apple.main-thread', stop reason = watchpoint 1
    frame #0: 0x0000000103071eec BloodyHarry`___lldb_unnamed_symbol48543$$BloodyHarry + 200
BloodyHarry`___lldb_unnamed_symbol48543$$BloodyHarry:
->  0x103071eec <+200>: ldr    x1, [x9, #0x180]
    0x103071ef0 <+204>: ldr    x8, [x1, #0x10]
    0x103071ef4 <+208>: ldr    x8, [x8, #0x50]
    0x103071ef8 <+212>: blr    x8
Target 0: (BloodyHarry) stopped.
(lldb) register 
Available completions:
	read
	write
(lldb) register read 
General Purpose Registers:
        x0 = 0x00000001095acdd0
        x1 = 0x000000010d080560
        x2 = 0x000000010d080560
        x3 = 0x000000010cb24790
        x4 = 0x0000000109520eb0
        x5 = 0x000000010cf685b0
        x6 = 0x000000016d6b8930
        x7 = 0x0000000102cda484  BloodyHarry`___lldb_unnamed_symbol31876$$BloodyHarry + 48
        x8 = 0x0000000000000043
        x9 = 0x000000010ca57c28
       x10 = 0x0000000000002fa0
       x11 = 0x0000000000000003
       x12 = 0x0000000000000018
       x13 = 0x0000000000000000
       x14 = 0x7feffffffffffffe
       x15 = 0x00000001095291d0
       x16 = 0x000000019ca17270  libsystem_pthread.dylib`pthread_getspecific
       x17 = 0x0000000000000001
       x18 = 0x0000000000000000
       x19 = 0x00000001095acdd0
       x20 = 0x00000000ffffffff
       x21 = 0x00000001095750c0
       x22 = 0x000000010d080560
       x23 = 0x000000010cb24790
       x24 = 0x0000000109035000
       x25 = 0x00000001095acdd0
       x26 = 0x0000000115560560
       x27 = 0x000000010cebc1c0
       x28 = 0x0000000000002b80
        fp = 0x000000016d6b8bc0
        lr = 0x0000000103071ed4  BloodyHarry`___lldb_unnamed_symbol48543$$BloodyHarry + 176
        sp = 0x000000016d6b8b70
        pc = 0x0000000103071eec  BloodyHarry`___lldb_unnamed_symbol48543$$BloodyHarry + 200
      cpsr = 0x60000000

(lldb) c
Process 1195 resuming

Watchpoint 2 hit:
old value: 300647710788
new value: 300647710788
Process 1195 stopped
* thread #1, queue = 'com.apple.main-thread', stop reason = watchpoint 2
    frame #0: 0x0000000103168c28 BloodyHarry`___lldb_unnamed_symbol51036$$BloodyHarry + 124
BloodyHarry`___lldb_unnamed_symbol51036$$BloodyHarry:
->  0x103168c28 <+124>: str    w24, [x19, #0x120]
    0x103168c2c <+128>: ldr    x8, [x20, #0x18]
    0x103168c30 <+132>: ldr    x8, [x8, #0x10]
    0x103168c34 <+136>: ldr    x0, [x8, #0x30]
Target 0: (BloodyHarry) stopped.
(lldb) register read
General Purpose Registers:
        x0 = 0x000000010c7a0dd0
        x1 = 0x0000000000000043
        x2 = 0x0000000000000046
        x3 = 0x00000001097c40b0
        x4 = 0x0000000000000000
        x5 = 0x0000000000000000
        x6 = 0x0000000000000030
        x7 = 0x0000000102cda484  BloodyHarry`___lldb_unnamed_symbol31876$$BloodyHarry + 48
        x8 = 0x0000000000000000
        x9 = 0x000000016d6b8b88
       x10 = 0x0000000000002fa0
       x11 = 0x0000000000000003
       x12 = 0x0000000000000030
       x13 = 0x0000000000000030
       x14 = 0x0000000000000000
       x15 = 0x0000000000000031
       x16 = 0x000000019ca17270  libsystem_pthread.dylib`pthread_getspecific
       x17 = 0x0000000000000000
       x18 = 0x0000000000000000
       x19 = 0x000000010c7a0dd0
       x20 = 0x00000001097c40b0
       x21 = 0x00000001095750c0
       x22 = 0x0000000000000043
       x23 = 0x0000000000000046
       x24 = 0x0000000000000043
       x25 = 0x0000000109035000
       x26 = 0x0000000109542918
       x27 = 0x000000010930bfe0
       x28 = 0x0000000000000000
        fp = 0x000000016d6b8c30
        lr = 0x0000000103125844  BloodyHarry`___lldb_unnamed_symbol50564$$BloodyHarry + 1200
        sp = 0x000000016d6b8bc0
        pc = 0x0000000103168c28  BloodyHarry`___lldb_unnamed_symbol51036$$BloodyHarry + 124
      cpsr = 0x20000000

(lldb) c
Process 1195 resuming

Watchpoint 2 hit:
old value: 300647710788
new value: 300647710787
Process 1195 stopped
* thread #1, queue = 'com.apple.main-thread', stop reason = watchpoint 2
    frame #0: 0x0000000103168c2c BloodyHarry`___lldb_unnamed_symbol51036$$BloodyHarry + 128
BloodyHarry`___lldb_unnamed_symbol51036$$BloodyHarry:
->  0x103168c2c <+128>: ldr    x8, [x20, #0x18]
    0x103168c30 <+132>: ldr    x8, [x8, #0x10]
    0x103168c34 <+136>: ldr    x0, [x8, #0x30]
    0x103168c38 <+140>: ldr    x8, [x0, #0xa0]!
Target 0: (BloodyHarry) stopped.
(lldb) register read
General Purpose Registers:
        x0 = 0x000000010c7a0dd0
        x1 = 0x0000000000000043
        x2 = 0x0000000000000046
        x3 = 0x00000001097c40b0
        x4 = 0x0000000000000000
        x5 = 0x0000000000000000
        x6 = 0x0000000000000030
        x7 = 0x0000000102cda484  BloodyHarry`___lldb_unnamed_symbol31876$$BloodyHarry + 48
        x8 = 0x0000000000000000
        x9 = 0x000000016d6b8b88
       x10 = 0x0000000000002fa0
       x11 = 0x0000000000000003
       x12 = 0x0000000000000030
       x13 = 0x0000000000000030
       x14 = 0x0000000000000000
       x15 = 0x0000000000000031
       x16 = 0x000000019ca17270  libsystem_pthread.dylib`pthread_getspecific
       x17 = 0x0000000000000000
       x18 = 0x0000000000000000
       x19 = 0x000000010c7a0dd0
       x20 = 0x00000001097c40b0
       x21 = 0x00000001095750c0
       x22 = 0x0000000000000043
       x23 = 0x0000000000000046
       x24 = 0x0000000000000043
       x25 = 0x0000000109035000
       x26 = 0x0000000109542918
       x27 = 0x000000010930bfe0
       x28 = 0x0000000000000000
        fp = 0x000000016d6b8c30
        lr = 0x0000000103125844  BloodyHarry`___lldb_unnamed_symbol50564$$BloodyHarry + 1200
        sp = 0x000000016d6b8bc0
        pc = 0x0000000103168c2c  BloodyHarry`___lldb_unnamed_symbol51036$$BloodyHarry + 128
      cpsr = 0x20000000

(lldb) c
Process 1195 resuming

Watchpoint 1 hit:
old value: 4290672328771
new value: 4290672328770
Process 1195 stopped
* thread #1, queue = 'com.apple.main-thread', stop reason = watchpoint 1
    frame #0: 0x0000000103071eec BloodyHarry`___lldb_unnamed_symbol48543$$BloodyHarry + 200
BloodyHarry`___lldb_unnamed_symbol48543$$BloodyHarry:
->  0x103071eec <+200>: ldr    x1, [x9, #0x180]
    0x103071ef0 <+204>: ldr    x8, [x1, #0x10]
    0x103071ef4 <+208>: ldr    x8, [x8, #0x50]
    0x103071ef8 <+212>: blr    x8
Target 0: (BloodyHarry) stopped.
(lldb) register read
General Purpose Registers:
        x0 = 0x00000001095acdd0
        x1 = 0x000000010d080560
        x2 = 0x000000010d080560
        x3 = 0x000000010cb24790
        x4 = 0x0000000109520eb0
        x5 = 0x000000010cf685b0
        x6 = 0x000000016d6b8930
        x7 = 0x0000000102cda484  BloodyHarry`___lldb_unnamed_symbol31876$$BloodyHarry + 48
        x8 = 0x0000000000000042
        x9 = 0x000000010ca57c28
       x10 = 0x0000000000002fa0
       x11 = 0x0000000000000003
       x12 = 0x00000000016e3600
       x13 = 0x000000000001e8ec
       x14 = 0x7feffffffffffffe
       x15 = 0x00000001095291d0
       x16 = 0x000000019ca17270  libsystem_pthread.dylib`pthread_getspecific
       x17 = 0x00000001167256c8
       x18 = 0x0000000000000000
       x19 = 0x00000001095acdd0
       x20 = 0x00000000ffffffff
       x21 = 0x00000001095750c0
       x22 = 0x000000010d080560
       x23 = 0x000000010cb24790
       x24 = 0x0000000109035000
       x25 = 0x00000001095acdd0
       x26 = 0x0000000115560560
       x27 = 0x000000010cebc1c0
       x28 = 0x0000000000002b80
        fp = 0x000000016d6b8bc0
        lr = 0x0000000103071ed4  BloodyHarry`___lldb_unnamed_symbol48543$$BloodyHarry + 176
        sp = 0x000000016d6b8b70
        pc = 0x0000000103071eec  BloodyHarry`___lldb_unnamed_symbol48543$$BloodyHarry + 200
      cpsr = 0x60000000

     

     

    now however, the offsets i found after removing the ASLR value i cant find them in IDA.

    i'm running IDA Pro 7 x64. without any custom settings.

    i started IDA, chose new, chose the dycrypted binary and loaded as a Mach-O file with ARM as a processor

    it then said it detected Obj-C structures and wishes to parse and rename them, i chose yes.

    spacer.png

     

    K_K Experienced

    K_K 167.5k
  •   iPhone 13 Pro Max 
  •   15.1

    • Posted
    Posted

    Show me what the aslr slide is I’ll tell you the address.

    103071eec

    syto203 Newbie

    syto203 216
  •   12.1.2

    • Posted
    • Author
    Posted
    5 minutes ago, MeSailesh7 said:

    Is that IDA breakpoint?

    no. watchpoint

    1 minute ago, K_K said:

    Show me what the aslr slide is I’ll tell you the address.

    103071eec

    the aslr slide is 44000

    K_K Experienced

    K_K 167.5k
  •   iPhone 13 Pro Max 
  •   15.1

    • Posted
    Posted

    What is the name of the binary ?

    type i li binaryname 

    then show me the address 

    syto203 Newbie

    syto203 216
  •   12.1.2

    • Posted
    • Author
    Posted
    19 minutes ago, K_K said:

    What is the name of the binary ?

    type i li binaryname 

    then show me the address 

    ran it again 

    offset: 
Watchpoint 1 hit:
old value: 4290672328768
new value: 4290672328767
Process 1539 stopped
* thread #1, queue = 'com.apple.main-thread', stop reason = watchpoint 1
    frame #0: 0x0000000103859eec Bloody Harry`___lldb_unnamed_symbol48543$$Bloody Harry + 200
Bloody Harry`___lldb_unnamed_symbol48543$$Bloody Harry:
->  0x103859eec <+200>: ldr    x1, [x9, #0x180]
    0x103859ef0 <+204>: ldr    x8, [x1, #0x10]
    0x103859ef4 <+208>: ldr    x8, [x8, #0x50]
    0x103859ef8 <+212>: blr    x8
Target 0: (Bloody Harry) stopped.
    (lldb) image list 'Bloody Harry'
[  0] A0825C08-EAE4-3748-ADB5-042D675A380A 0x0000000102f2c000 /var/containers/Bundle/Application/4003E224-E24E-4FEE-92EB-34BC95E77BC3/Bloody Harry.app/Bloody Harry (0x0000000102f2c000)

     

    syto203 Newbie

    syto203 216
  •   12.1.2

    • Posted
    • Author
    Posted

    !solved

    the problem was with a wrong ASLR value. according to the guide it seemed like it was the 5th bit from the right as in

    0x0000000102f2c000 i thought it was "2c000" which is wrong. The correct value is "2f2c000" or it's the value after the first "1" bit from the left.

    ex:

    0x000000010102D456 the ASLR would be "102D456".

    thanks @K_K for helping out.

     

    btw, debugserver works fine on iOS 12.1.2 w/ Unc0ver JB didn't try chimera.

    on Unc0ver you need to enable "allow task" from it's options before jailbreaking

    on chimera if i remember correctly uses jailbreakd to grant "task for pid" to processes

    so sth like ".path/to/jailbreakd binary-name" might work.

    Archived

    This topic is now archived and is closed to further replies.

    Go to topic listing

    • Our picks

      • Candy Crush Solitaire +11 Jailed Cheats [ Game Breaking ]

        Candy Crush Solitaire +11 Jailed Cheats [ Game Breaking ]

        Puddin posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Candy Crush Solitaire By King.com Limited
        Bundle ID: com.midasplayer.apps.candysolitaire
        App Store Link: https://apps.apple.com/us/app/candy-crush-solitaire/id6474685626?uo=4

         
         

        🤩 Hack Features

        - Unlimited Free Gifts -> Head into the Shop to claim the free gift over & over.
        - Season Pass Purchased

        VIP
        - Add Coins*
        - Add Energy*
        - Add Colour Bomb Boosters*
        - Add UFO Boosters*
        - Add Wildcards*
        - Add Undo's*
        - Add Extra Moves*
        - Add Free Entries*
        - Add Lollipops*

        * Head into Settings and toggle the ? button. Only enable 1 feature at a time.
        • 47 replies
        Puddin

        Picked By

        Puddin,
      • Gang Battle Party: Playground +4 Jailed Cheats [ Unlimited Currencies ]

        Gang Battle Party: Playground +4 Jailed Cheats [ Unlimited Currencies ]

        Puddin posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Gang Battle Party: Animals 3D By LLP Take Top Entertainment
        Bundle ID: com.taketopios.chillybash
        iTunes Store Link: https://apps.apple.com/us/app/gang-battle-party-animals-3d/id1664783935?uo=4

         


        🤩 Hack Features

        - Unlimited Currencies -> Will increase instead of decrease.
        - God Mode
        - One-Hit Kill
        -- No Ads
        • 7 replies
        Puddin

        Picked By

        Puddin,
      • Cooking Wonder: Cooking Games +1++ Jailed Cheat [ Unlimited Currencies ]

        Cooking Wonder: Cooking Games +1++ Jailed Cheat [ Unlimited Currencies ]

        Puddin posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Cooking Wonder By WonderLegend Games
        Bundle ID: com.wonderlegend.cookingwonder
        iTunes Store Link: https://apps.apple.com/us/app/cooking-wonder/id1638005392
         

        Hack Features:
        - Unlimited Currencies -> Use some.


        Jailbreak required hack(s): https://iosgods.com/topic/169330-cooking-wonder-v120-1-cheat-unlimited-currencies/
        Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
        • 51 replies
        Puddin

        Picked By

        Puddin,
      • Pet Rescue Saga +4 Jailed Cheats [ Unlimited Moves ]

        Pet Rescue Saga +4 Jailed Cheats [ Unlimited Moves ]

        Puddin posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Pet Rescue Saga By King
        Bundle ID: com.midasplayer.apps.petrescuesaga
        iTunes Store Link: https://apps.apple.com/us/app/pet-rescue-saga/id572821456
         

        Hack Features:
        - Freeze Moves
        - Freeze Boosters
        - Unlimited Score -> Earn some.
        - Auto Win -> Rescue a pet.


        Jailbreak required hack(s): [Mod Menu Hack] Pet Rescue Saga v3.13.3.0 +4 Cheats [ Unlimited Moves ] - Free Jailbroken Cydia Cheats - iOSGods
        Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
        • 28 replies
        Puddin

        Picked By

        Puddin,
      • Idle RPG Starlight Chronicle +9 Jailed Cheats [ Unlimited Currencies ]

        Idle RPG Starlight Chronicle +9 Jailed Cheats [ Unlimited Currencies ]

        Puddin posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Idle RPG Starlight Chronicle By Just Idea
        Bundle ID: jp.justidea.starlightchronicle.prod
        App Store Link: https://apps.apple.com/us/app/idle-rpg-starlight-chronicle/id6752782877?uo=4

         
         

        🤩 Hack Features

        - Unlimited Gold -> Spend some.
        - Unlimited Diamonds -> Earn or spend some.
        - Unlimited Ad Tickets -> Earn or spend some.
        - Unlimited Super Summon Points -> Earn or spend some.
        - Unlimited 4 Star Points -> Earn or spend some.
        - Unlimited Ancient Items -> Earn or spend some.
        - Unlimited Luminastars -> Earn or spend some.
        - Unlimited Materials -> Earn or spend some.
        - One-Hit Kill
        • 17 replies
        Puddin

        Picked By

        Puddin,
      • Idle Pocket Planet +2 Jailed Cheats [ Unlimited Currencies ]

        Idle Pocket Planet +2 Jailed Cheats [ Unlimited Currencies ]

        Puddin posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Idle Pocket Planet By HyperBeard Inc.
        Bundle ID: com.hyperbeard.burgercats
        iTunes Store Link: https://apps.apple.com/us/app/idle-pocket-planet/id1600303144
         

        Hack Features:
        - Unlimited Soft Currency -> Will increase instead of decrease.
        - Unlimited Hard Currency -> Will increase instead of decrease.


        Jailbreak required hack(s): [Mod Menu Hack] Idle Pocket Planet ( All Versions ) +2 Cheats [ Unlimited Currencies ] - Free Jailbroken Cydia Cheats - iOSGods
        Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
        • 8 replies
        Puddin

        Picked By

        Puddin,
      • BLEACH Soul Puzzle +1 Jailed Cheat [ Freeze Moves ]

        BLEACH Soul Puzzle +1 Jailed Cheat [ Freeze Moves ]

        Puddin posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: BLEACH Soul Puzzle By KLab Inc.
        Bundle ID: com.klab.bleach.puzzle
        iTunes Store Link: https://apps.apple.com/us/app/bleach-soul-puzzle/id6479249487?uo=4


        Hack Features:
        - Unlimited Moves -> Will not decrease.


        Jailbreak required hack(s): [Mod Menu Hack] BLEACH Soul Puzzle v1.0.0 +1 Cheat [ Unlimited Moves ] - Free Jailbroken Cydia Cheats - iOSGods
        Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
        • 18 replies
        Puddin

        Picked By

        Puddin,
      • West Escape +7++ Jailed Cheats [ Unlimited Everything ]

        West Escape +7++ Jailed Cheats [ Unlimited Everything ]

        Puddin posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: West Escape By Estoty LLC
        Bundle ID: com.western.escape
        iTunes Store Link: https://apps.apple.com/us/app/west-escape/id6474681724?uo=4


        Hack Features:
        - Unlimited Everything
        - God Mode
        - God Mode - Horse
        - One-Hit Kill
        - No Ads -> Head into Settings and toggle the Discord Support button.


        Jailbreak required hack(s): [Mod Menu Hack] West Escape v1.0.13 +7++ Cheats [ Unlimited Everything ] - Free Jailbroken Cydia Cheats - iOSGods
        Modded Android APK(s): https://iosgods.com/forum/68-android-section/
        For more fun, check out the Club(s): https://iosgods.com/clubs/
        • 69 replies
        Puddin

        Picked By

        Puddin,
      • Void Reaper - Idle RPG v1.0.4 [ +3 APK MOD ] Currency Max

        Void Reaper - Idle RPG v1.0.4 [ +3 APK MOD ] Currency Max

        IK_IK posted a topic in Free Android Modded APKs,

        Mod APK Game Name: Void Reaper - Idle RPG
        Rooted Device: Not Required.
        Google Play Store Link: https://play.google.com/store/apps/details?id=com.rpg.voidreaper&hl=en

        🤩 Hack Features

        - Unlimited Gems
        - Unlimited Blood
        - Unlimited Soul
        • 0 replies
        IK_IK

        Picked By

        IK_IK,
      • Void Reaper - Idle RPG v1.0.6 [ +3 Jailed ] Currency Max

        Void Reaper - Idle RPG v1.0.6 [ +3 Jailed ] Currency Max

        IK_IK posted a topic in Free Non-Jailbroken IPA Cheats,

        Modded/Hacked App: Void Reaper - Idle RPG By Karate Gorilla
        Bundle ID: com.rpg.voidreaper
        App Store Link: https://apps.apple.com/us/app/void-reaper-idle-rpg/id6757342365?uo=4

        🤩 Hack Features

        - Unlimited Gems
        - Unlimited Blood
        - Unlimited Soul
        • 0 replies
        IK_IK

        Picked By

        IK_IK,
      • Void Reaper - Idle RPG v1.0.6 [ +3 Cheats ] Currency Max

        Void Reaper - Idle RPG v1.0.6 [ +3 Cheats ] Currency Max

        IK_IK posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Void Reaper - Idle RPG By Karate Gorilla
        Bundle ID: com.rpg.voidreaper
        App Store Link: https://apps.apple.com/us/app/void-reaper-idle-rpg/id6757342365?uo=4

         

         

        📌 Mod Requirements

        - Jailbroken iPhone or iPad.
        - iGameGod / Filza / iMazing.
        - Cydia Substrate, ElleKit, Substitute or libhooker depending on your jailbreak (from Sileo, Cydia or Zebra).

         

        🤩 Hack Features

        - Unlimited Gems
        - Unlimited Blood
        - Unlimited Soul

         

        ⬇️ iOS Hack Download Link


        Hidden Content

        Download Hack







         

        📖 iOS Installation Instructions

        STEP 1: Download the .deb hack file from the link above. Use Safari, Google Chrome or other iOS browsers to download.
        STEP 2: Once the file has downloaded, tap on it and then you will be prompted on whether you want to open the deb with iGameGod or copy it to Filza.
        STEP 3: If needed, tap on the downloaded file again, then select ‘Normal Install’ from the options on your screen.
        STEP 4: Let iGameGod/Filza finish the cheat installation. If it doesn’t install successfully, see the note below.
        STEP 5: Open the game, log in to your iOSGods account when asked, then toggle on the features you want and enjoy!

         

        NOTE: If you have any questions or problems, read our Jailbreak iOS Hack Troubleshooting & Frequently Asked Questions & Answers topic. If you still haven't found a solution, post your issue below and we'll do our best to help! If the hack does work for you, please post your feedback below and help out other fellow members that are encountering issues.

         

        🙌 Credits

        - IK_IK

         

        📷 Cheat Video/Screenshots

        N/A

         

        More iOS App Hacks
        If you’re looking for Non-Jailbroken & No Jailbreak required iOS IPA hacks, visit the iOS Game Cheats & Hacks or the iOSGods App for a variety of modded games and apps for non-jailbroken iOS devices.

        Modded Android APKs
        Need modded apps or games for Android? Check out the latest custom APK mods, cheats & more in our Android Section.
        • 0 replies
        IK_IK

        Picked By

        IK_IK,
      • Dungeon Rush v33 [ +8 Cheats ] Currency Max

        Dungeon Rush v33 [ +8 Cheats ] Currency Max

        IK_IK posted a topic in Free Jailbreak Cheats,

        Modded/Hacked App: Dungeon Rush By LAVA LABS OYUN YAZILIM VE PAZARLAMA ANONIM SIRKETI
        Bundle ID: com.lavalabs.dungeonrush
        App Store Link: https://apps.apple.com/us/app/dungeon-rush/id6766563652?uo=4

        🤩 Hack Features

        Pre Activated
        - Unlimited Gems
        - Unlimited Loot Box
        - Unlimited Summon Currency
        - Unlimited Red Dungeon Keys
        - Unlimited Green Dungeon Keys
        - Unlimited Mining Tools +3
        - Max EXP
        - Max Level / Easy To Get Higher Level Weapon / ATK HP DEF
        • 1 reply
        IK_IK

        Picked By

        IK_IK,
      View All
    ×
    ×
    • Create New...

    Important Information

    We would like to place cookies on your device to help make this website better. The website cannot give you the best user experience without cookies. You can accept or decline our cookies. You may also adjust your cookie settings. Privacy Policy - Guidelines