Getting function in memory

[LoopTurn]

I decompiled an il2cpp game, specifically avakin life. I got all the offsets. I am just wondering how do I go about using those offsets. I have a particular file and I want to get the function but I tried to use "libil2cpp.so + offset" but how would I go about debugging the function and stepping through the assembly?

[AKidWithMidgetFriend]

 

On 9/1/2021 at 2:22 PM, LoopTurn said:

I am just wondering how do I go about using those offsets

Libil2cpp.so + offset will bring you to the address belonging to the first byte of the hex code. Select all 8 edit as byte, you'll need to do hex to decimal on each byte of the hex code you're writing over the old, and this should return the byte values that you're going to patch the pre-existing hex code corresponding with the function you're trying to patch

On 9/1/2021 at 2:22 PM, LoopTurn said:

but how would I go about debugging the function and stepping through the assembly?

Do you mean getting the function names of an assembly in a disassembler? There should be ida.py or ghidra.py scripts outputted by the dumper that you can drop into ida or ghidra to define these functions