Leaderboard

View File Chainer Script to search for chains of pointers. Beta version. The script searches for pointer chains with a given depth and maximum offset to the .data or .bss regions. For found chains, you can generate a script that will restore the search results for these chains. Video: Chainer: search and restore pointers chains - GameGuardian (#8cfynel1) https://gameguardian.net/forum/search/?q=chainer&type=gallery_image&nodes=2 Submitter Enyby Submitted 06/17/2019 Category Tools  

try searching for ACT(anti cheat toolkit) or Code Stage (code stage anti cheat) it's almost standard for games that use il2cpp, but it may vary from game to game

Try get_hack get_ishack or something like that

get_ get_coins get_diamond get_money get_damage get_health get_hp get_attack_target get_attack get_target

I do not know if this is the same code, or you have already changed something. If you change something in the code, then you need to post it again. Because what was previously irrelevant.

Idk. Write code so that that variable cannot be nil when executed here. Without seeing all the code, nothing specifically can be said.

Again, just read message: _address is nil. But must be long (number).

Yep. Consult with API help if you not sure how write something.

gg.Type_DWORD case is matter. All constant must be totally in upper case.

Use dot, not comma.

_result[1],address is nil.

For some reason, binaries are not running on your firmware. Permission denied. Try another virtual space. If this does not help, you need root.

Offset from PC in LDR location. Useless in any other place.

What? http://www.catb.org/~esr/faqs/smart-questions.html

Of course. ARM code is just data for x86 CPU. It can not be executed. Binary arm translation read ARM code and translate it to x86 code,

Will be fixed in next GG release.

Added.

So there is no such value among those found. The game can move values in memory. As a means of protection, or as a result of the use of automatic memory management with the garbage collector.

Collect region log when this process selected in GG and attach log here.

It can load x86 lib. Even if it load arm lib, device is x86 and use binary arm translation.

I think it is easier to do it with LP methods, if it allowed to make custom patches for this.

All of that is hard task and need a lot of work for each game. LP work on general basis with many games.

The reverse is also true. Purchases within applications are not things that can be done through a memory editor. There a request is sent to the market, in one part of the code, and the other part of the code receives the response from the market. These are not things that can be easily changed through the memory editor. In any case, if we are talking about a fake request, and not its modification.

Use Lucky Patcher.

Memory page is 4096 bytes. or 1000 in hex. In general, you do not need to understand what and why. Enough to round up. I do not have time for long and extensive explanations.

No. Round up mean round UP. Round down mean round DOWN. And round mean round by math rules. In this case round always UP. .bss section must follow .data section. No gap allowed between its. So .bss, if not start at new page, started at end .data segment. So in game memory it look like round up.

Try read my messages. You need round up .bss start address to full page. 3 last numbers must be zero. [added 1 minute later] 003A4BA8 round up to 003A5000. So you need add 5170 to it. In hex math of course.

It can be any. 6.5 or 6.8 maybe even 5.0, maybe more new. Does not matter.

Round up to full page: 003D5000. 003D5000 + 5170 = 003DA170 Goto (key G): We here: We can press X and go on.

PinOut - hack time - fill, chainer - GameGuardian (#7ztuns7n) [added 0 minutes later] https://gameguardian.net/forum/search/?q=chainer&type=gallery_image&nodes=2

Look like bad firmware. If you work without root - get root and try again.

Understand nothing. Try explain more clearly.

By the way, in addition to the previous one, I would like to indicate one thing. I owe you nothing. Just as you owe me nothing. I do not have to implement something in GG, nor should I not implement something. Don't you like something? Do not use GG. I do not force you to use it. I do not force you to write scripts for GG. This is your choice. On the contrary, you should be grateful that you use my work for free. Believe me, this is quite a difficult job. If you are not satisfied with something, create your own hacking tool and do what you want there.

I'm afraid some scripts, in binary form, do not lend themselves to normal decryption. So the fact that you save them will not give you anything. Naturally, this is not easy to do.

Show screenshot of region list with visible video range, like this: and show screenshot of search stat after search like in your video.

I have not seen anything yet so that this indicates an error. I have a suspicion that the case is in your cryptographer, which was based on an error that has been fixed.

Show the script on which the error appears. The script must be the minimum size and in text form. For example print('abcdef') "In the old version it works, but in the new one it does not."

Provide minimal Lua code that does not work.

Need region log.

First attempt. Lua script on GG 82.0. 35 seconds for 595 searches. Not usable for production. It can be search too long time and too many times. Second attempt. Lua script with backing new features for not released GG. 0.5 seconds for build chains of pointers with depth 3. Good result. New GG version and awesome script will be released soon.

You can download a couple of pages of memory and find what you need on lua. There will be nothing in the logs. Approximately find what you need, and then filter the rest on lua.

Search in a complicated way, not a simple one. Since the code can be hidden and it is much more difficult to get to it - look for several things, read offsets from them, and then edit through setValues. Also use getValues. This will not allow tracking logic to repeat it. For example, I do three searches, then from one of the results I take an offset of 100, read the value from it, and so on. In the log it will be a jumble.

I already write this before: Anti-peeping mechanism (#4mlryoah)

You can say thank you to ssu (DoS site), TisNquyen (malicious scripts) and others, whose actions led to the addition of powerful logging. But, as I have written repeatedly, you can write scripts so that logging does not help steal the scripts. This is just a matter of desire and qualification.

It is very easy. Go to app settings page for gg. Press button uninstall. Press ok. Wait until gg deinstalled. Done.

I looked for a topic for this subject but did not find it, sorry if I put it in the wrong place. I have two suggestions for the GG API. 1) A function in api GG that updates the analyzed process memory (eg game) Some games have memory allocated dynamically, in other words, loads data into memory only when needed. When the GG is run it will analyze the memory of the process allocated at that moment. It is necessary later to have to update the analyzed memory manually in the GG. Anyway, there comes my need / request, I want a function in the GG API that updates the memory analyzed by the gg of the game process. 2) Colors in api prompt menu If possible add the "Choice" and "multiChoice" functions as well. More for a visual effect and having a better user interface, I need to replicate the use of the colors present in the "SpeedHack: functions" menu (example in the screenshot below) Many thanks to the GG team for the excellent work!