Jump to content
Sign in to follow this  
TheParadigm

Changing a methods return if I know offset

Recommended Posts

I'm fairly new to game guardian I've dumped the methods from an il2cpp game so I have the method names and returns. With game guardian am I able to modify the return value from specific methods if I know the offsets of those methods? 

 

I know I can do it with a hex editor but it means recompiling the app and signing it to test each time which is time consuming. 

Share this post


Link to post
Share on other sites

Yes. Using the offset, you can offset from start of lib in memory to known location from dump.

Share this post


Link to post
Share on other sites

Thanks for the reply. I'm not sure I understand. 

Am I able to directly go to the offset which I have in GG and change the return value? I can't see any way to go directly to the offset. 

Share this post


Link to post
Share on other sites

Memory editor - go to address. You need know full address for loaded lib.

Sometimes it is just addition to base address so you can use libgame.so+1abd

All other depends from you. For change return value you need be familiar with assembler.

[added 1 minute later]

You can click on address in dialog and see examples.

scr_1562968153.png

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×
×
  • Create New...