-
Posts
2,980 -
Joined
-
Last visited
-
Days Won
224
Content Type
Profiles
Forums
Downloads
Gallery
Posts posted by NoFear
-
-
4 hours ago, zwz said:
About hybridclr, I think it can be dumped completely, the field offsets are correct, but the method addresses are wrong, you can try to change the fields, and for hybridclr, you can dm me if you are interested.
I think I'm all set. Unless you think this info can help allow to mod the game. Would have friend mod the ios version.
0 -
-
Which game (playstore link)?
Can give better directions.
1 -
22 minutes ago, MAARS said:
Interesting, this technique could be also useful with my other project, which tool you use to monitor memory access ?
Gdb, rwatch on value. If editing value with GG triggers a ban or local error, just rwatch value to see everything reading it. Sometimes you'll get many results, just have to go through and find the one that triggers ban. Ideally, it'd be a branch to one anti cheat function. Then you could xref that function, NOP all the branches to it, or RET the function.
0 -
-
Without checking dump or going into ida, just simple debug to find what's reading gems.
Armv8
Offset: 11A6C34
Edit to
B [PC,#0x80]
This will skip the area that would trigger ban.
Then this
Offset: 113DD74
Mov w22 (large value).
This is what writes value after it does a check. So you can force it to write something excessive after it checks value (I don't think you have limit since the check will never branch to ban, see attached image).
You could apply this same concept to any value, just set read watch to see what is checking it, then bypass the ban. Could check dump or something to see what the offset is part of or maybe what it branches to.
1 -
12 hours ago, eliottalderson said:
Hello @NoFear
I know this is a bit late but is there any chance I can get the link to the discord server?I don't have one for this
0 -
4 hours ago, 8ernity said:
I feel like it's impossible to see the functions in the game i'm tring to mod.
Any tips ? the screen of app goes black when i'm rwatch an address (which i guess is OK) then i only see "??" @NoFear
Tried IDA, now GG + gdb but no luck so farThe blue is an address location. Need to calculate the offset from start of lib to that address. That will be your offset that you would go-to in ida if using ida.
But the lib hit on your screen shot is system and not game lib... Can't debug on emulator if that's what you're attempting...
1 -
9 minutes ago, Fencey said:
Actually @NoFear can you teach us what software we need to use to find these values? So we can find them ourselves in the future
I used GG...
One could use ida or ghidra. But GG worked fine for finding it this time.
0 -
1 hour ago, 8ernity said:
How do you install GDB in termux ?
pkg install gdb
0 -
Armv8
C80E42B8r;081540FDr::3809
Edit
28008052r;E803679Er
And if you want to set so you can claim all without playing (set number of keys collected).
Offset (Version 6.9.5)
3FBCA54
Edit
00FA8052r
6 -
-
Device ban
in Help
20 hours ago, kotako said:I trying change -
Android ID, ip address, IMEI, boot id, phone number, MAC-ADRESS, Serial info , Device ID, ID, reinstalling game/virtual machine clear all google services, well and offsets. And maybe something similar. but already forgot
This doesn't mean it was done correctly. I know in Android Faker, can do all those toggles and randomize. But if correct apps/services aren't selected, it won't matter what you change.
0 -
Device ban
in Help
2 hours ago, kotako said:As I said at the beginning, I used a virtual space with built-in android fakers, where I could select all the parameters for the phone. And it didnt work, but i get idea that the game can see a real IP through VPN, because even VPN does not change everything about a person. There is always the "original IP" and the game requests a "request for confidential information" every time when u enter the game. I think it would be better if you check it out for yourself, I'm just not a master at explaining something.
0x1E7AAC4 its offset for hack
diamonds, use it and buy any item in the store and try relogin game, then u get max. type ban.
Well, of course it's just a request, I won't force it, if you don't want to, then don't need
Then I can't help you. I had recommendation on tools that would work. It's your choice.
Good luck
0 -
Device ban
in Help
4 hours ago, kotako said:Well, in my opinion, I did everything right, but nothing works. + i tired use offset for delete check unique identifiers, but then i cant logging to online.
Well, thx for help
When module activated, what did you select for apps to apply it to?
0 -
Device ban
in Help
12 minutes ago, kotako said:I remember have virtual with "android faker" there will be fake boot id, imei and all other, but too didnt help
If not done correctly, it won't help.
0 -
Device ban
in Help
If familiar with xposed framework, can try lsposed with either Android Faker or Geergit module.
0 -
4 hours ago, sammax71 said:
Now you'll get a million more pm's
Inbox full
0 -
2 hours ago, afmatt said:
Thanks for responding, figured that they had patched it - mainly was asking cause if there was a discord server talking about modding the game I'd be very interested in joining
It's not patched... He's just not selling anymore.
0 -
5 minutes ago, DoDevil said:
@NoFearso far i can find both diamond, gold and energy but i don't get how to add them or edit them, can you guide me? or just trick about encrypt
every time i edited game always freeze
btw i can copy cat QWORD of gem value to Coin or Energy and game not freeze
Yes. They are all pointers... You need to follow the pointer to see the "value".
1 -
-
5 minutes ago, DoDevil said:
dump file
Fairly certain dump is incomplete and of no use...
Hybridclr
https://github.com/AkiKurisu/HybridCLR_IL2CPP_Modding
But even with that, I don't think you'll have much luck either.
1 -
6 minutes ago, DoDevil said:
i saw your post on iosgod and then try with GG but no clues
i will try again with unknown search on directly values
You have VIP at iosgods? It's exactly the same method.
0 -
Bug Report: "Copy as group search" assumes values are consecutive when used with utf-8 text and utf-16 text options
in Help
Posted
I believe the utf-8 and utf-16 is assumed consecutive characters, so will always be treated that way. Not really a bug. Can't search utf with "wildcard"/missing character. Byte search would be best approach.