Recent Posts

Oops sorry, wrong link. Here you go. Anyway, I found the keystone / capstone modes for x86 and x86_64. So I'll go update the tool right now. Here is the new version! Took 5 hours xD. For your needs, this should be a sufficient script, though: OFFSET = "0x970000" LIB_PATH = r"C:\Users\zachy\Downloads\frida-gadget-17.3.2-android-x86.so" ARCHITECTURE = "x86" # OR: "x86_64" from functools import cache import itertools import binascii import keystone import capstone def remove_whitespace(s: str) -> str: return "".join(s.split()) def wraptext(s: str, size: int) -> list[str]: # Thanks to https://stackoverflow.com/questions/9475241/split-string-every-nth-character return [s[i:i + size] for i in range(0, len(s), size)] def getbytes(hexstring: str) -> list[str]: """ Splits a hex string into a list of bytes. Convenient function because it accounts for both whitespace-separated and un-separated hex strings. """ hexstring = remove_whitespace(hexstring) assert len(hexstring) % 2 == 0, "Invalid hex string (odd length)" return wraptext(hexstring, 2) @cache def bytecount(hexstring: str) -> int: """ Counts the number of bytes in a hex string. Very simple function, but improves readability. """ return len(getbytes(hexstring)) @cache def make_ks(architecture: str) -> keystone.Ks: if architecture == "32bit": return keystone.Ks(keystone.KS_ARCH_ARM, keystone.KS_MODE_ARM) elif architecture == "64bit": return keystone.Ks(keystone.KS_ARCH_ARM64, keystone.KS_MODE_LITTLE_ENDIAN) elif architecture == "x86": return keystone.Ks(keystone.KS_ARCH_X86, keystone.KS_MODE_32) elif architecture == "x86_64": return keystone.Ks(keystone.KS_ARCH_X86, keystone.KS_MODE_64) else: raise ValueError(f"Unrecognized architecture: {architecture}. Only '32bit', '64bit', 'x86', and 'x86_64' are " f"valid strings") @cache def make_cs(architecture: str) -> capstone.Cs: if architecture == "32bit": cs = capstone.Cs(capstone.CS_ARCH_ARM, capstone.CS_MODE_ARM) elif architecture == "64bit": cs = capstone.Cs(capstone.CS_ARCH_ARM64, capstone.CS_MODE_LITTLE_ENDIAN) elif architecture == "x86": cs = capstone.Cs(capstone.CS_ARCH_X86, capstone.CS_MODE_32) elif architecture == "x86_64": cs = capstone.Cs(capstone.CS_ARCH_X86, capstone.CS_MODE_64) else: raise ValueError(f"Unrecognized architecture: {architecture}. Only '32bit', '64bit', 'x86', and 'x86_64' are " f"valid strings") cs.detail = True return cs def offset_to_hex(offset: str, libfile: str, hexbytes: int = 600, sep: str = " "): try: decimal_offset = int(offset, 16) except ValueError: raise ValueError(f"Invalid offset: {offset}. Please provide a hexadecimal value.") with open(libfile, "rb") as lib: # Read certain number of bytes from offset lib.seek(decimal_offset) hexstr = lib.read(hexbytes).hex().upper() if hexstr == "": raise Exception(f"Offset {offset} not found in file {libfile}") return sep.join(getbytes(hexstr)) @cache def armtohex(armcode: str, architecture: str, sep: str = " ", upper: bool = True) -> str: ks = make_ks(architecture) # Convert string of code to list of instructions (split by newline) lines = armcode.split("\n") convertedhexlist = [] for instruction in lines: if instruction.isspace(): continue try: convertedinstruction = ks.asm(instruction, as_bytes=True)[0] convertedhexlist.append(binascii.hexlify(convertedinstruction).decode()) except Exception: raise Exception(f"Failed to assemble ARM opcode: {instruction} with {architecture} " f"architecture. Is the ARM instruction valid? Is the architecture correct?") from None convertedhex = sep.join(convertedhexlist) if upper: convertedhex = convertedhex.upper() return convertedhex @cache def hextoarm(hexstr: str, architecture: str) -> list[str]: if hexstr == "" or hexstr.isspace(): return [] cs = make_cs(architecture) convertedinstructions = [] for insn in cs.disasm(bytearray.fromhex(remove_whitespace(hexstr)), 0x0): op = f"{insn.mnemonic} {insn.op_str}".strip() convertedinstructions.append(op) if not convertedinstructions: raise Exception(f"Failed to disassemble hex: {hexstr} with {architecture} architecture." f" Check that the hex instruction comes from the right lib file at the " f"right offset, and the architecture is correct.") from None return convertedinstructions def is_relative_instruction(instruction: str, architecture): """ Uses capstone and manual heuristics to check if an asm instruction is dynamic. Should work for any architecture! """ cs = make_cs(architecture) # This is annoying. We need to assemble the instruction to hex, then disassemble it again to get capstone info. cs_insns = tuple(cs.disasm(bytearray.fromhex(remove_whitespace(armtohex(instruction, architecture))), 0x0)) if len(cs_insns) != 1: raise Exception(f"Instruction {instruction} is not one instruction (it is {len(cs_insns)}) with architecture" f" {architecture}") cs_insn = cs_insns[0] # noinspection IncorrectFormatting return ("0x" in instruction or "#" in instruction) or (cs_insn.group(capstone.CS_GRP_CALL) or cs_insn.group(capstone.CS_GRP_JUMP) or cs_insn.group(capstone.CS_GRP_BRANCH_RELATIVE)) def generate_aob(hexinstructions: str, architecture: str) -> str: # Convert string of code to list of instructions wildcard_byte = "??" hexlist = [] for instruction in hextoarm(hexinstructions, architecture): instruction_hex = armtohex(instruction, architecture) if instruction_hex == "": continue if is_relative_instruction(instruction, architecture): hexlist.append(" ".join([wildcard_byte] * bytecount(instruction_hex))) else: hexlist.append(instruction_hex) # We want our separator in between every byte, so we do this little maneuver. aob = "".join(hexlist) # Unformatted return " ".join(getbytes(aob)) hexstring = offset_to_hex(OFFSET, LIB_PATH, hexbytes=600) # hexbytes = amount of bytes for AOB print(generate_aob(hexstring, ARCHITECTURE)) x86 turned out to be a huge pain because it has variable-length opcodes and it is harder to detect dynamic ones. But this should work - let me know if it suits you! If you need the dependencies, you can install the tool's requirements.txt.

how this work?

View File angry birds evolution need five same birds Submitter shuang0524 Submitted 09/23/2025 Category LUA scripts  

I have been using the script made by ApexGG for the game brick inc. there's 3 options available Weapon cooldown(which works), brick hp and gold per brick (both not working), I've been trying to figure out how to change the value manually for the brick hp and coin but I don't know how. Any help is appreciated.

Nice! So you edit directly the amount you already have, the amout you can collect with prestige...is it in E:double, Other like soul eggs? 'Cause when I edit what i find nothing happens, searching in auto gives me like 5 millions numbers Or do you cheat everything else to get to an high number, like I'm doing? Appreciate any tips!

Check YouTube channel update available there

View File Hunting Sniper ❥Ruminant 999 Damage ❥Ruminant 999 Muzzle Velocity ❥Ruminant 999 Slow Motion ❥Ruminant 999 Zoom Time ❥Other Snipers Stat Editor Submitter luckyday-999 Submitted 09/22/2025 Category LUA scripts  

Thanks!

There are mods for this app, but I can't install them I was wondering how can I hack this game

Hi, Game name: Bloody ***** Google Play link: https://play.google.com/store/apps/details?id=com.tibith.badboxing Is the game free? Yes! I want to hack the level value to open all the classes But whenever i change it the game crashe!? But! If i change the level by one Like 21 to 22 it's okay! But if I want to open all the level the game crashe The coins in other hands is same thing but the values is saved even after crashed I tried encrypted value search, X4 search, F,D, Double same thing Any help?

I think most of those clone apps just cause trouble, fill up with junk quickly, and games usually block them anyway. I’d rather stick to a clean, direct install.

I need some help. I accidently add +25 or +50 (i forgot) Toto crystal when you save Mimi in Toto Theater World years ago. So i cant use warp immediately even after clearing Toto Theater World. Can you help solving me ? I don't know how to search it in Nopaew

We cannot simply delete your account or posts without specific reasons. But I can hide your content if you prefer.

How can I speed up time, or get rewards for days I missed without logging in? Any ideas? I've seen values that decrease, possibly a countdown timer, but it doesn't change.

For the new season points : UTF-8 ? ?

Yeah thats true if you look for optimization more than simple arm patches and I really recommend it for hot functions

I can hack it

Pirates of the Caribbean TOW This game I am trying to hack since many years but till the date nothing gets back with game guardian of anyone can help please suggest me .. When I am hacking gold it shows increase for just few moments then it settles again as it is

View File Dead Ahead: Zombie Warfare Version: 4.2.3 Combat Menu • Zero Energy Cost • Instant Spawn • Global AoE Radius • Global Shield Boost • Global Critical Boost Player Menu • HighDamage • God Mode • Mission XP Boost • Item Bonus Extreme • Ad Coin Boost Bus Menu • Bus Invincibility • Bus Damage Boost • Minigun Damage Boost • Unlock Bus Upgrade Submitter xZeta Submitted 09/18/2025 Category LUA scripts  

Two updates, it was unexpected I have updated the script, you can download it on the first page

Using VMOS as a virtual Android 5.1 environment to run Game Guardian without rooting is a clever workaround. Makes it much safer for your main system and still gets the job done.

View File Minecraft Script ❥God Mode ❥Creative Fly ❥Fast Sprint ❥Speed Hack ❥Jump Blocks ❥Item Hack ❥Water Speed ❥Fly Speed ❥Head Rotate ❥Fov Slider ❥1 Hit Ender Dragon ❥1 Hit Wither ❥1 Hit Warden ❥1 Hit Iron Golem Submitter luckyday-999 Submitted 09/17/2025 Category LUA scripts  

View File Power Zone Script ❥Epic Chest Free/1000000 Coins ❥Free Skins/Emotes/Lolli Hammer/Weapon Skins ❥Jump Height Slider ❥Low Gravity ❥Crouch Speed Slider ❥Pulse Constant High Damage ❥Nova Constant High Damage ❥Fov Slider ❥Camera Distance Slider ❥Teleport All Players Center Map ❥Teleport All Players Out Of Bounds ❥Glow Chams Submitter luckyday-999 Submitted 09/16/2025 Category LUA scripts  

If anyone needs the video I can send

**“Brothers, I need a little help. I want to make a level bypass function. The idea: Find the value using ClassName and Field Offset, but instead of a fixed edit, a prompt box should appear so we can enter our own value. That custom value will be applied, allowing us to reach the specific level we want. Example: Level bypass ClassName: Player Field offset: 0x3C If anyone can add this feature in the script, it will help not only me but also many others here. Thanks in advance ”**