Trainer Canyon Need Help finding/modifying the offset values from dump.cs file

[Sasuke_Uchiha07]

Hello All, 

I am trying to modify a value of crystals/golds from one game, i was able to successfully create a dump file using il2cppDumper and found the class , field offset and method offset. in the game guardian i am providing the offset 0x824F0C (pic1) and then pressed "Xa" . It opens up a list of files to choose from(pic2)  and i am choosing "libil2cpp.so" (2nd option).  It brings me to the address shown in pic3. now i don't know what should i do next to find the real address of golds/crystals and how to change the values. I am still learning how to use game guardian. Can someone please help me.

The game is : Trainer Canyon 

link: https://trainer-canyon.en.softonic.com/android

 

Below is a snippet of the code from dump file.
 

// Namespace: protocol

[ProtoContractAttribute] // RVA: 0x824F0C Offset: 0x824F0C VA: 0x824F0C

[Serializable]

public class GetPlayerInfoAllWSC : IExtensible // TypeDefIndex: 3266

{

    // Fields

    private int _gold; // 0x34

    private int _crystal; // 0x40

   

[sammax71]

In the dump is there a method similar to "get_gold" or "get_crystal"?

[Sasuke_Uchiha07]

yes, there is.
 

// RVA: 0x12FE148 Offset: 0x12FE148 VA: 0x12FE148

    public int get_gold() { }

 

[sammax71]

16 minutes ago, Sasuke_Uchiha07 said:

yes, there is.
 

// RVA: 0x12FE148 Offset: 0x12FE148 VA: 0x12FE148

    public int get_gold() { }

 

Then try going to that offset and editing that and see if it works.

Have the Arm 64 opcodes set to show in GG. Go to the offset, press edit button, hit the triangle next to the value to open the drop down box, select the Arm 64 opcode at the bottom.

Edit will be something like "~A8 MOV W0, #65000". Edit the line directly under it to "~A8 RET".

Then check if your gold changes.

Good luck

[Sasuke_Uchiha07]

Hello sammax71,

i am trying to change " LDR W0,[X0,#0x34] " to "LDR W0,#999999" but it is showing the error from the second picture. I also tried changing the value by writing the relevent hex value i got from deepseek but it still shows the same error. I think it has some kind of security mechanism or i am just modifying the wrong way. can you please help me with this. Thank You

[sammax71]

1 hour ago, Sasuke_Uchiha07 said:

Hello sammax71,

i am trying to change " LDR W0,[X0,#0x34] " to "LDR W0,#999999" but it is showing the error from the second picture. I also tried changing the value by writing the relevent hex value i got from deepseek but it still shows the same error. I think it has some kind of security mechanism or i am just modifying the wrong way. can you please help me with this. Thank You

The max you can edit that way is #65535 otherwise you need to use hex format like #0xF8000 which is about 1 million for higher amounts.

You also want to change it to MOV W0, #0xF8000 and not LDR

Edited 8 hours ago by sammax71

[Sasuke_Uchiha07]

As you can see, i tried editing via "~A8 MOV W0, #6500" and also edited the line below this one which returns the value but the amount of coins is still unchanged .Btw Thank you for your help.

[sammax71]

1 hour ago, Sasuke_Uchiha07 said:

As you can see, i tried editing via "~A8 MOV W0, #6500" and also edited the line below this one which returns the value but the amount of coins is still unchanged .Btw Thank you for your help.

It's always disappointing when it doesn't work but also very exciting when you find a method and change it and it does work.

[HorridModz]

6 hours ago, Sasuke_Uchiha07 said:

As you can see, i tried editing via "~A8 MOV W0, #6500" and also edited the line below this one which returns the value but the amount of coins is still unchanged .Btw Thank you for your help.

Perhaps the game has yet to call the method. Try updating your coins (gaining or spending some).

[HorridModz]

Also, another method is to directlly edit those fields you mentioned. Editing fields is doable, but a bit of a pain. Here is a script for doing so:

https://hackershouse.tech/feild-offset-finder-game-guardian