Rastakiwi

Corrupted data = diamond value too high (don't go above around 100 000) To get legendary heroes all the time, you have to modify your level, since heroes rarity in shop and player's level are related. You can change your level following my tuto, it is located near money, gems, water, etc... in memory.

You still should be able to change everything with the database in /data/data/com.toonblast[...]/files This is the .db file

Yes sorry this is not very clear but I can't edit it anymore so I cannot change it now. These kind of values can be found with GG, but it is hard. For example, recoil may most likely be in a structure, most likely with firerate, maybe with max ammos or even current ammos around it. You might find it by searching for your current ammos, then browsing around in memory (maybe with some pointers). Wallhacks can be done quite easily in fact. In most games you'll find a "flag" value, toogling only when you touch a wall. If you find it you can just freeze it to its unto ogled state, so it will never tell the game you touched a wall, and you'll be able to wallhacks. Anyways, you can find tutorials on internet for wallhacks using memory editors, "cheat the game" does it on PC with cheat engine, but it will give you a good taste of how it's done. The main thing to remember is that related values are related in memory, because programmers do their games a logical way, with structures. When it gets too complicated just with GG, you can deassemble the game to get the full code, understand it and mod it, but it can be a long and hard thing to do.

If you have too many values, try refining the search. Exclude the values you don't want using ≠, > or <, and try to change the value you want to find to refine even more quickly. If it doesn't work, try using the address: for this you'll need to know a little about the game and how it is structured. For example, in a specific game you could have all currencies located at the addresses around 8B16xxxxh (I chose this number randomly). If you can't find the value anyways, try to find related values instead (do not do a direct search). Related values can be other currencies (if you're looking for currencies) , strings, ... even the displayed value is related at some point to the internal value (encrypted and non-encrypted values are related). This method is most of the time the only way to find constants in a game, btw.

Nice. Sometimes values can vary between devices or other stuff... I always try to reset the game to see if the values are constant on my device, but I can't know if it will be the same on another one. You can still find the structure with pointer search. But it will have no use. I initially found the search to avoid using 109;109;9;1::69 since these are not constants, but apparently they is only initialized at the start of the game, so it works just as well in practice. ?

What is the reward amount you're talking about? About the search, you're saying you didn't find any pointer after the '19'? You can always try to search for 109;109;9;1::69 as Luthal said instead, it will get you directly in the structure, just a few bytes upon the encrypted money, gems, level and all I show in the video. About the level, you don't actually need to freeze anything. Just do as shown in the video and go to the shop, your heroes should almost all be legendary because your level will be very high.

Oh ok I remember it, but yeah, as you said, you can't just change the €14.99 like you can change the 100 gems, because as you said, there are multiple checks (google play is involved here, and their protection is ways harder to bypass lol). You have multiple options for what you want to do: 1- buy a dragonhunter and edit its rarity. (what you wanted to do) 2- change the flag of the purchase currency (if it exists here). (what I told you about in ly last post) 3- buy a random legendary heroe and edit something to get the dragonhunter instead at the sale rarity (maybe there is a flag for each heroe, or an ID). The advantage here is that if there is an ID involved (usually some random numbers stacked in about 10 Dwords), it is easier to spot than a simple rarity flag (usually 1 Dword). 4- hack the shop. (see below) What I mean by that is the kind of thing Nofear did in the game "last day on earth". He first searched for the price (real money, as a "double") of an IAP he wanted to get. From there he managed to get the pointer to the ID corresponding to the content of the IAP (he copied it). He then did the same thing with a non-IAP purchase to get to the pointer of its content's ID. He finally replaced this last pointer by the first one from the IAP. This method is basically an ID tweak between contents of 2 purchases. After that, he could get the content of the IAP by buying with just in-game money the other purchase.

Sorry, I didn't hack anything you talk about. Anyways, I hope i can help you with these tips: If you want to find heroe's rarity, you would first have to find the heroe's structure. You could find it starting from the heroe's stats (which you can easily find as a group search and edit), but the structure may be quite far away (multipointers or far offset). It might be very time consuming. :v Idk what is the legendary dragonmother, but if it is something you get from a real money purchase, it will be quite hard to hack with GG. Sometimes there is a flag to tell what currencies the purchase asks, maybe you could find it and change it to gems for example, but i'm not even sure there is something like that in this game for the IAPs... Finally for the random heroes, you could use the unrandomizer function of GG, but idk to which value you should unrandomize, nor if it even works xD. Good luck ? edit: could you send what method of nofear you're talking about ?

It was this or nothing

Don't you find anything with the group search above? Money is hard to find with fuzzy search and our is a custom encryption so you won't find it with encrypted exact search. If you found gems, craft materials, etc, finding gold is now easy. Every single currency in the game and even more than currencies (waves for example, which can also change the number of gold bought with gems) is stored in the same structure. To find it, just do a pointer scan from the value heading the encrypted gems structure (it's usually a pointer) , or from any currency you found. Sometimes you'll need to do 2 pointers scan but never more than 2. You'll see the game structure looks different because it is a serie of pointers all stacked together with no space between them. Once you got there, just go at the top, where you will see the constants of the group scan we talk about above, and the 3rd pointer will be money (the first pointer just after the constant is the starting of the structure, don't care about it). The 4th pointer will be gems, etc... I wrote down the structure on my older phone but updates changed it a bit. But it gives you the idea. The beginning of the structure didn't change at all. I thought I was soon gonna make a video about it (I talk about a general hack in my video description) but I was busy, I'll try to do it later.

Do you mean you think he first edited the dword value following the xored number of coins (target) to 0, but this didn't change anything so he assumed the xor key was before the target? No, because as you can see, there is no former value under parentheses next to the 0 (which is how GG displays the backup of an edited value). Even if the following value wasn't originally 0, there would probably be no point testing it because you can also suppose by a first look that the xor key is just before the target because you know it is 53 decrypted, so the difference between the xor key and the target shouldn't be very high (about 100~200 max I suppose).

I meant I did it too

Oh ok thanks, I corrected it. Can it be a Qword if we precise X8, or did you mean "not Qword" instead of "not Dword"?

Good intuition... magic is still not part of hacking, sorry. ? I think you didn't really get what is this [value] in the video: "[value]X4" Just to be sure I say this, but I think you already know that and it's not the problem here. Let's say you search for Dword: Searching for "[value]X4" means: "find a Dword, containing [value] (not encrypted) xored with the Dword (see nofear following post) 4 bytes after or before (= just the length of the Dword containing [value], so the following/preceding Dword)" Well if you understand that, you have to know what [value] you want to search for. I think you were confused because it wasn't maybe the best example. Nofear is searching for an odd thing. He's looking for the number of coins here, not the actual money value you see. So he does "1~9X4" first because he just collected between 1 and 9 coins, and then he searches for "53X4" because he counted the number of coins the arrow of coins he collected was made of, which is exactly 53 coins ^-^. Why? Because the money is probably not Xor encrypted, and the numbers of coins collected are xor encrypted and can indirectly change money, and/or Nofear just wanted to show another way to hack money that the way you'll first think about, which is directly changing the money. You second problem is related to the definition of "[value]X4" I wrote, or most probably to the xor encryption itself. Xor operation is reversible: the value which is xored with [value] can be after or before it. In this case it is before. Plus you have to know that [value] xor 0 = [value]. So eventually, in this case, nofear sets the xor key to 0 and then he can simply change the encrypted coins number as if it wasn't encrypted at all!

Great discovery! I could do it too. In fact you just need to make the value greater or equal to 256. I'm looking at inventory now. ? your search code is good, but it could not work sometimes because the values involved could change. If you have problems finding this GM value, do what I do in my video but go to offset 16C instead and change the value to 256 (or more).

Please create a topic in the request section of the forum if you want help to hack another game

Dude you really got to remember how you did :p. Do you have any more screenshot? Did you edit just these 4 values or more around ?

Oh ok so it was in the game structure. I knew it would have very interesting stuff, but that exceeds even my expectations ^^. I think it has even more to offer, like tutorial flags (skip tutos), mission number, and maybe inventory pointer.

Wow you say you accessed gm commands by changing a value here ? Nice. Could you tell where it was exactly?

Here is the video, enjoy, and ask questions if you have ;). Encryption is explained a bit deeper in the YouTube description, but still I don't fully understand it ?

I did some research and I finally found a static area who can conduct to the structure. ? I'll be polishing some stuff but the video should come soon. For the moment you can search for -1,082,130,432;-1,082,130,432;1,818,576,914;1,769,235,830;24,931;33;19::25 , go to the 6th result, then browse to and go to the second pointer, then calculate offset with the first address and 1A8. Money is the 5th and 6th value.

Use the "quote" button used the answer you want to quote

Well, the hack itself is not so easy, so considering you don't know how to use GG for the moment, it is comprehensible ahah. I'm gonna do a video, but actually, it takes time (1-2 hours for me or even more). Because I have to not misclick on anything during about 5 minutes, and then I have to edit everything (speed up boring searches, make text to explain or even music), so it takes time, and no it's not easier for us at all lol...