Jump to content

Info about GameGuardian

Recommended Posts

Explanation of status bar

Many have noticed the bottom of the application window line with a bunch of obscure characters. Now I will explain why this is necessary, that the symbols mean and how to use it.
Let's say you see a line like this:
Attached Image
The string consists of four parts, separated by a blank space. In version 7.3.6 and lower parts will be three, not four.
So, in order, from left to right:
1. version GG. In this example, "8.0.1b". It allows you to always know the version of the application in the video, or hacking on screen. What gives? If you have another version of the GG, there may not be any functions or they may work differently. Knowing version, this is easily remedied by setting desired.
2. Status of the demon. "D: +", instead of "+" might still be "?". The issue means that running was not a demon. Whether root cause wait, or root not at all. This option is great for debugging and support.
3. Type the search. It appeared since version 8.0.0, before it was not. "S: I" - the possible options:
"S: I" - the first search was for a specific number;
"S: F" - the first search was fuzzy.
This option allows you to answer one very simple question - Was there a boy whether to use the fuzzy search. Mainly useful for helping others, but sometimes it helps to guess on screen / video How to search start.
4. The list of regions of memory used. "R: Ch, Lh, Ca, Cd, Cb, A". It allows you to always know that in the regions selected on the video or screenshot. Accordingly, you can put in their regions in the same way. List of regions:

  • Ch - C ++ heap
  • Jh - Java heap
  • Ca - C ++ alloc
  • Cd - C ++ .data
  • Cb - C ++ .bss
  • A - Anonymous
  • S - Stack
  • O - Other

Abbreviations are simple enough to understand what is what, but you can not understand, and put at random until the status line does not coincide with the desired value.

Actually all. I hope after this material you will appreciate the convenience of this innovation by following the instructions, the authors did not bother to specify which version of the GG or used regions.

Share this post

Link to post
Share on other sites

Using filters

The annex contains the filters, which is not in any similar application.
Currently filters work with Java code. This means that they are not very fast, and can consume a lot of memory. In the future, filters will be improved and rewritten in C.

So, what is a filter?
Filters are special rules used to filter the current results. Unlike dropout filters do not affect the status of the search. Once you remove the filters, everything was back to the same state it was in before filtration.
What is comfortable? You can search for any special significance, not being afraid to make a mistake and lose the rest.

Filters are available on "..." button, click Filter.
After his selection will be shown the settings window filters:

Attached Imagescr_1447195234.png

Consider the order of each field:

  • Filter, not more than - specifies the number of entries to filtration
  • See, no more than - specifies the number of entries displayed in the search results

Then came various filters, which we will consider later.
So far, the return to the mechanism of the filters in order to understand why we need these two numbers.
I must say about the second - is the number of results you see at the end of the search. It always works, even if you do not select any filter.
It is necessary to bring the first 1000 results, please enter 1000 and presses apply. At least 10 million. The value is not limited in any way.
But remember, the more results you upload, the more memory consumption. Then the memory is not enough, and the system washes GG. So do not put very many.
We looked at how many found: Attached Image
In this case, we found 8,674,304 results and shows the first 100, and you need 10 000. So you put the filters in the second number 10 000. And get your 10 000 results, and then change them all. And then the game because of it flies, as you there is something broken. But that's another story.
Let's go back to the first field in the filters. To understand what it means, you need to talk a little bit about how filters work.
So, imagine that we have included filters and found 10 million results. The application will receive the results and check each against all filters. Get results the program is not everything, but no more than that number, which is indicated in the first field. Why not more? Because as soon as the typed number to display, continue to receive will be discontinued.
Returning to the example. 10 million total results. Filter we will be 1000, and output 100. This means that there will be obtained the first 1000 results and tested for the filters. Those that have passed, but no more than 100 will show. I hope it is clear.

Here you can still make an analogy with a sieve. The first number is the amount that you ship in a sieve, and the second - the maximum amount of results of the last sieve. If it has a screen more than the second number, it will be only the first of them.

So now on the filters themselves. Their is 5 pieces:

  • Skip similar addresses - if this filter is enabled, after the result which matches the rest of filters, will be missed all the results, the distance to less than or equal to the specified number. Let me explain with an example: is the number 10, it fits the filter, followed at a distance of 8 bytes is the number 11, which is under the filter is not suitable, but if you have activated the filter "to pass close to the address" with a value of not less than 8, then 11, also fall into conclusion. What is comfortable? For example, you know that after the number 10 goes to 12 bytes the desired value. You are filtering by value and turn the filter parameter 12.

Example of usage.

  • Address > - skips all options that address more than the specified number. This way you can portions of, for example, 1000, to view all found each time putting here the last address of the found variants.
  • Address < - same as above, but applies to all addresses less parameter.
  • Value > - similar and values. Here there is only a small problem - all values are treated as dword, regardless of what they actually are. So this will work fine only dword. This will be corrected once.
  • Value <

When the filter is the number of results displayed, not as a single number or two, but as three numbers. For example, I asked a search of 101 in the first 1000 results:


But he was not there: Attached Image
If the filters are included, there are always three numbers: the first - the number of results found, and the second - the number of results submitted to the input filter, and the third - the number of results past the filters.
If the filter is not enabled, there may be one or two numbers. If the number is one, it means that all results have shown results. For example, "(20)" means that we have found 20 results, and they are all displayed.
If the two numbers, the first number is the number found, and the second - the number shown. For example, "(20/10)" - found only 20 and 10 are shown first.

Let's go back to the filters. I still want to find her 101. Somewhere as it should be. And I do not weed out hunting. Therefore, I will increase the number of results submitted to the input filters.
By the way, the more of them, the slower will be updated list. Take 100 000 for example:


And then we are fine: Attached Image


You can now with these values do something - to remember to change or something else.

That's all.

Oh yes. When you enter values or addresses, you can enter it in hexadecimal by adding the letter h at the end:
100 = 64h
102 = 66h


The result is the same as above, as a record of the same filter, just in a different form.
This option can be used in almost every place where you need to enter the number: Edit the values of the variable parameters of filters and so on.

Share this post

Link to post
Share on other sites

Tell me, please, how to look for floating matter if the game timer time shows only part of the whole, and after the comma does not show? Game Hacker floating value can search only by the first part of the whole number. What also look for GG?

In version 7.2.0, you can search for more / less.

For example, to 100.0 without decimal places, looking for all that and more is less than 101.0 100.0.


Here's a video with the burglary:
Hacking Star Bus Rush search very rapidly changing values
Breaking distance runner in Champions Riding Trails 3D example of a float variable search range
Endless life in the GTA: Vice City hacking and freezing the variable

Share this post

Link to post
Share on other sites
By the way, about the speed of the search.

Starting with version 8.1.0 adds the ability to store data in memory.
If you have enough RAM available, it can greatly speed up the search (10 times more).
Go to settings and select the desired setting:

However, the application may crash if memory is insufficient. Therefore, this option is not enabled by default.
If the application closes spontaneously, try to choose the lesser value, or disable this option entirely.

On the emulator, the same as the BlueStacks, memory usage may be slower than the use of files. Try.
Spoiler (General Recommendations)
The search speed depends on the speed of reading and writing to the memory card. Therefore, to seek faster, it makes sense to put as much as possible high-speed memory card. Especially when using the fuzzy search.
To make it clearer, citing figures.
Displacement of the temporary file, depending on the situation, can reach 100-300 MB and above. Say it 100 MB. This is about 10 million dword values.
Normal operation on the file is in its full reading and writing. Typically, reading faster than writing, so I will focus on the recording speed.
Take the usual Class 2 memory card on which the maximum write speed will be about 2 MB / s. Record 100 MB will be carried out within 50 seconds.
Now let us compare with the 10 class (10 Mb / s) - 10 seconds. Sensible difference.
If you take more high-speed card, for example, SDCA10 from Kingston, and there speed (I was to write 25 MB / s) allows you to record 100 MB 4 seconds.

Search time will not be less than the figures shown above.

If we consider the search time, the distribution cost of time, in decreasing order of importance, is:
  1. Read / write to the memory card.
  2. Reading the memory process.
  3. Various mathematics (comparison, search, etc.)

As can be seen, the basic search time is not strongly dependent on the program code, as defined by your device or equipment thereon.
To speed up the search, you can do the following:
  1. As I wrote - to use the fastest memory card.
  2. Select only the necessary regions of memory and does not use slow regions (Others) - access to them can be very significantly slow searching.
  3. To reduce the maximum amount for the search.

For example:
  • after the start of a fuzzy search use the "not equals" rather than "is" because the memory addresses that have changed are always much smaller than those that have not changed.
  • The search is performed on "fresh" start the game, if it is possible, because the longer the game runs, the greater the amount of memory used and the more space for the search.
  • Try not to use the data type to "Auto", because there is a lot of checks carried out, which may be unnecessary in your case.

Share this post

Link to post
Share on other sites

1) GK 10 times faster searches. (This means GK is written in assembly language, and therefore faster)

I researched this issue. GK uses memory to store data. The memory card is only used for the first fuzzy search and all. Further, it is not used at all.

This decision can not be called successful. Yes, it allows you to quickly search for, but at what cost!
Memory consumption is not limited in nature. As a result, the GK flies, the game. It depends on what will beat the system running out of memory.
Here is an example:
1. Launch Minion Rush.
2. Launch GK.
3. I am fuzzy search. It found 40 million values. But they are in the buffer to disk. There is no problem. Memory consumption demon GK - 1,3 MB.
4. Now again looking for fuzzy search. I opt for not changed. GK starts looking devouring memory buffers:
125 MB, 188 MB, 215 MB, 237 MB, 259 MB, 278 MB, 298 MB, 316 MB, 348 MB, 387 MB ...
Oh, what is it? GK was closed, and the game is closed.
In my opinion, not worth the high speed flight games or utilities for hacking.
Imagine that you have achieved some special situations in the game to hack it, and spent time and resources to do so. And then the game went and took off. All for nothing.
Maybe all the same, it is better to look for more slowly, but with guarantees that the flight would not be?

By the way, I still have this 1 GB of memory on board. What would happen if 512 or 256 MB? All will fly much earlier.

And now we repeat the situation of GG:
1. Launch Minion Rush.
2. Run GG.
3. I am fuzzy search. It found 14.6 million values (the value is 0 or -1 are ignored, therefore 40 million in GK). Memory consumption demon GG - 774 KB.
4. Now again looking for fuzzy search. I opt for not changed. GG starts looking, memory consumption remains almost unchanged: 774 - 776 - 784 KB.
Of course nothing is taken off, since there are no reasons for this.

For fun, we spend the same with GH:
1. Launch GH.
2. I am fuzzy search. It found 39.5 million values. Memory consumption demon GH - 1.28 MB.
3. Now again looking for fuzzy search. I opt for not changed. GH begins to look, devouring memory:
259 MB - 338 MB - 384 MB ...
Demon GH crashes interface GH is infinite Status. What's funny, the system even with gains GK.
Well, at least the game is not relegated lucky today.
Absolutely the same situation as with the GK.

Conclusion: GG looking for with minimal memory consumption, but slower than the GK or GH, since it uses a memory card. But it ensures that no game, nor an attacker does not fly at the wrong time.
What is more important for you, speed or reliability? Decide for yourself.

Share this post

Link to post
Share on other sites

Comparsion GameKiller with GameGuardian


Let the points tell what GK best. And then, at the same time update the cap. And the fact that there is not drawn to the "best":

Of the features:
1. call icons that can be dragged
Doubtful plus all the utilities so able. GameGuardian version 7.3.5. Also got the opportunity to drag the icon. Although previously it was possible to change its position, even slightly more sophisticated way.

2. You can pause the game
That Yes, until recently, very few people knew how. But again GameGuardian 7.3.5 is able.

3. You can choose to between open applications (some of them want to hack)
GameHacker and GameGuardian it can.

4. Search value with the sign "-"
GameGuardian knows how long ago.

5. off-line instructions and assistance
Someone reads HELP? At the start GameGuardian minihelp opens.

6. any search settings
In GameGuardian also have "any search settings".

7. search value type (4 bytes, 2 bytes, 1 byte, float)
GameGuardian knows all this, plus he knows how to search for XOR, which does not know how anybody.

And now you can go through the rest of the items, which are not present at GK:
1. Controlling the speed of the game is?
No. In GameGuardian there, but only for the ARM.

2. Support for x86-based devices have?
No. In GameGuardian there.

3. Lollipop support?
Somehow yes, judging by the reviews on the forums. We GameGuardian this is much better.

4. Editing a large number of results once there?
No. All that is greater than 500 is not shown. And you can edit GameGuardian least the first 10 000 of found 1 000 000. The main thing that had the memory.

5. Freeze there?
Yes, the usual. And GameGuardian 7.3.5 has expanded. Usually, only the increase, decrease and only on the band, in ArtMoney.

6. Displays the status of the search there?
No. Sit and wonder, search, or simply goes the inscription on the screen. GameHacker GameGuardian and show the status of the search process.

7. Is it possible to enter a hexadecimal value to search for?
No. In GameGuardian you can, if you add the letter h at the end.

8. If the ability to search / produce screenings for conditions other than equality? For example, all that more / less / not equal 100?
No. In GameGuardian and GameHacker such a possibility.

9. Can I run 10-20 fuzzy search for equality immediately for screening random values?
No. Sit and manually tap. In GameGuardian such a possibility.

10. What is the situation with the transfer and support?
And in any way. If not translate enthusiasts, there will be Chinese. Developer there. Bug reports or suggestions for improving writing nowhere. And what we have in GameGuardian? Developer online, normal Russian (and not only) in the language of the official version, you can write bug reports and something to offer / ask for.

11. Can I make an icon GK was not visible on the screen (some anti-cheat do screenshots)?
No. In GameGuardian possible.

12. You can adjust the transparency of the icon?
No. And GameGuardian possible.

13. Specify the path to a temporary file, you can (for example you have two cards and the first goal)?
No. In GameGuardian possible.

14. You can find these regions?
No. There is something unintelligible, called as an upper limit, but it is not the regions, and a certain amount. A GameGuardian possible.

Perhaps enough. Do not pull the GK on the "best of its kind." I would be glad if you can prove otherwise.

Share this post

Link to post
Share on other sites

Algorithms' typical break-ins

1) The value is not encrypted and known.
   A typical case would be for money, stars, coins, resources, etc.


   1. Search Type - "Known". Data type - usually, Auto, if you are not sure.
   2. Open GG, search for the number that we are want change in the game. This will find a lot of values.
   3. We return to game and making changes in the game to crack parameters: earn or spend.
   4. Re-open GG and search again for the new value.
   5. Repeat steps 3-4 until there are only a few values.
      To speed up the drop-out extra values, I recommend using different ways to change the value on 3 step. For example, alternative way for change hacked value.
   6. If you have only a few values - change each one, or all of them at once, or however you want to do it. That is all.

2) The value is unknown and/or encrypted.
   A typical case of an unknown value - any scale/bar. For example health, mana, nitro, etc. The changes are seen, but no numerical values are visible.
   A typical case for encrypted values would be money, stars, coins, etc., but when searching with 1 algorithm does not find anything, or change of found values do not lead to changes numbers in game.


   1. Search Type - "Unknown". Data type - usually, Auto, if you are not sure.
   2. Open GG, run a search for the unknown value. This will return lots of search results.
   3. We return to game and making changes in the game to crack parameters: earn or spend.
   4. Re-open GG, in search of the unknown value, select the desired option: "Value changed".
      Here it is possible to use variants of "Value increased" or "Value decreased", if you truly believe the value is changing one way or the other. However, I want to say that things are not always as they seem. For example, instead of accounting for the life of the character, it may take into account the damage received, and this value increases with a decrease in life. Therefore it's safer to use variants of "Value unchanged" / "Value changed", because that issue doesn't affect these search types.
   5. We hide GG, in the game we do different things that do not change the hacked value. It is desirable that they are complicated and can change all other parameters expect hacked.
   6. Open GG, in search of the unknown, select the desired option: "Value unchanged".
   7. Repeat steps 3-6 until there are only a few values.
      To narrow down the results faster, I recommend using different ways to perform steps 3 and 5, because it can more effective rather then run same action every time. For example, drive a race to earn money and then drive a race not earning money. In fact, you can change a lot of parameters, and what there can be, according to the difference between them, to understand which one is correct.
   8. If you have a few values - change each one, or all of them at once, or however you want to do it. That is all.

3) The value is encrypted (Mode Hacking).
   A typical case for encrypted values would be money, stars, coins, etc., but when searching with 1 algorithm does not find anything, or change of found values do not lead to changes numbers in game.


   1. Search Type - "Known". Data type - usually, Dword, if you do not know anything further.
   2. Open GG, select "Mode Hacking", search for the number that we have in the game, will find a lot of values.
   3. We return to game and making changes in the game to crack parameters: earn or spend.
   4. Re-open GG and again search for the new value. The checkbox "Mode Hacking" must be selected.
   5. Repeat steps 3-4 until there will be little value.
      To speed up the drop-out extra values, I recommend to use different ways to change the value on 3 step. For example, alternative way for change hacked value.
   6. You have small count of values - change, or all at once, or what we want. This is all.


3 algorithm is much faster than 2, but it may not work for all games.



General algorithm hacking

    1. Make sure that the game is not online:
        1. works without connection to the Internet;
        2. does not require to choose a server to connect;
        3. there is no opportunity to play with other players via the Internet;

    2. Check that the hacks parameter is not stored on the server:
        1. it should work without the Internet;

    3. Try to crack using known search (1 algorithm) for a value in memory.
    4. If nothing is found, or a change in the values found does not lead to the desired results - try to crack using a unknown search (2 and 3 algorithm).


If, however, in which case nothing is found, or a change in the values found does not lead to the desired results - try to crack not the option, but that affects him.
For example, instead of breaking amount of money, you can crack the value of a thing and sell it. Or rather buy a negative price.
There may also be doned with a known or unknown searches.

Share this post

Link to post
Share on other sites

The principle of pause

Pause the game works like this:
If you press it, the selected process will be put on pause for as long as open interface GG.
If you minimize the interface with active pause, the pause is switched off, but when you open it will be automatically activated.

The principle of selecting a folder for temporary files

In the settings you can specify the path to a temporary file. The path can be absolutely anything, even wrong.
The program makes the list of the most common ways that can be used. Your version will be the first.
Further, each path in turn tested for the ability to create a file and write data to it. As soon as there is an appropriate way to further the search stops and the selected path is set as the desktop.
This will be reported in the log. For example:


12-09 09: 23: 07.111 I / bulldog-daemon (3913): Possible pathes: /my/custom/path/|/mnt/sdcard|/sdcard|/mnt/sdcard/Android/data/com.ea.nfs.nfs14_row/files|/data/data/com.ea.nfs.nfs14_row/files|/data
12-09 09: 23: 07.111 E / bulldog-daemon (3913): Open file (/my/custom/path//write_check.tmp) failed. Error: No such file or directory
12-09 09: 23: 07.111 I / bulldog-daemon (3913): Use path: / mnt / sdcard
12-09 09: 23: 07.141 I / bulldog-daemon (3913): setPath: (/ mnt / sdcard)
The list includes ways to common folders are usually available for recording. Not all of them are located on the external drive, most of them are in the device memory, which allows the application to work when the memory card is damaged or removed.

Hide application icons

In application settings you can adjust the time to hide the icons and transparency.
If transparency, everything is clear, with a hidden, not all clear what it is.
Hiding is to establish full transparency for the icons, after a specified interval.
The icon does not disappear and is at the same place where it was, just that she is 100% transparent and not visible. But it is still possible to click and call the API.
This behavior can be useful when working anti-cheat, take screenshots of the screen. Or when you do take screenshots and do not want to show that started cracking utility.

Quick access to certain functions

For some functions organized by applications access.
1. To select an application to break, you can click on the icon in the upper left corner or the name of the application.
2. To set the number of results displayed or set filters, you can click on the counter of found results.
3. To select regions of the search, just click on the status bar at the bottom of the interface.

Non-obvious opportunities

Not all features are visible in the interface and some of them can be skipped if you do not know.
In most cases this is due to long tapom on different elements.
1. Long tap the application icon opens the interface speedhack. He and hides it.
2. Long tap on counter speedhack resets it back to normal.
3. Long tap on the search result, or stored value and the editor memory cell, a context menu with the copy and go to to the address.
4. Long tap on the log tab, copy text to the clipboard.

Share this post

Link to post
Share on other sites

Why should I choose to help improve GameGuardian?

Because it depends on what will be the application. Whether you like it or not, you have to use it.
The fact that the main counterparts: GameHacker, GameKiller and GameCIH - abandoned. With the support of the fifth android above them all bad.
And the further, the worse the picture. The seventh android (for example) they can even refuse to launch.

There are CheatEngine. But there are problems in bulk. Starting with the fact that its development is also at issue, ending with the fact that his discovery by anticheats extremely banal - for binary ceserver.
Well, there is not much interface is well done.

Therefore, if you are not making any effort to improve GameGuardian, then you have to use what we have.

At the moment, GG is the most stable cracker available. I am more than sure that nobody collects errors, analyzes them and making all the possible changes to the attacker worked almost everywhere.
Yeah, he's not the fastest, and there still is not much, but once Moscow was built.

Therefore, if you have specific suggestions and improvements - are welcome. Write, we will think and discuss.
And if earlier Water was wet but the grass is greener cracks were better because it is better and you are not able to articulate anything specific, then alas.

To be clear, the statement should answer the simple question, "what to change to become better than GG was?". Adoption in the style of "GH is better, because it is clear", and formal; it can not be implemented, as opposed to "at the GH spidhak available slide to the left and it shows, in contrast to the long tap on the icon GG". Or "To find in GK I do not need to click on the search button, I can immediately enter the number to search for."
And so on.
Therefore formulate their wishes and concerns specific and not vague abstractions that each person has his.

Share this post

Link to post
Share on other sites

Extended edit all values

In GameGuardian there are unique features that are not, in any other similar utilities.
One is editing incrementally.

Consider it more.

"Hacks" I'll be the application TapCounter. Its essence is simple - it counts the number of Taps on the screen.
The perfect object for hacking.

We assume that the value is not changed to crack. A typical example - the price in the store.

Here I am 47 tapov self-fulfilling. Now I want to do to make it 200.


I enter in the search found dword 47. 370 values. Too much. But to change the value, I can not, so I can not weed.


Just then comes to the rescue and change all values.

Now I have uploaded the first 100 values. Only try to change them. You can not put 100, and the other numbers if the tap on the number found.


So, open edit all values.


Here we are interested in the "increment". The default is zero. What does it mean? This is the number that will be added to each value multiplied by the number in the list of results starting from scratch.
Let me explain what that means with an example.
We have three numbers. The value is 47. The increment is 0. If you change will be recorded 47, 47, 47.
Put increment:
1 - 47, 48, 49.
2 - 47, 49, 51.
10 - 47, 57, 67.
n - 0 * 47 + n, 47 + 1 * n, 47 + 2 * n.

What do we need? Check the variable address. How do we do? We assign increment 1 and see the new value in the game. We do.


The "game" remains 47. What does it mean? The fact that the desired value, we have not changed. In some games, you need to exit / enter on the screen (the store), the change will be displayed.
Here, too, the value does not update itself, so I click the first "+" and then "-" that it was updated.

To play is not taken off, change all the values back to the 47.
Now we need to download the following 100. While the user-friendly interface for this is not, use the filters on the address.
Move to the last. Copy the address, making it a long tap.


Select the filters and activate the filter address our more than copied.


Now we see that filtered 200 results, showing 100, and a total of 370.

Repeat change the value incrementally. The game once again, nothing has changed.


Again missing addresses 100 through filters.


In general, repeated as long as the value does not change.


It changed to 84.

We go back to the GG, find the line with the value of 84.


This will be the key we are. Click on it. Put a check mark on the preserve.


Then again we go to edit everything and the value of 47 is returned to all that the game has not taken off.
Clear the search and go to the tab the stored values. There will be our stored value. We put him 200 and enjoy life.


Mission accomplished.

You could not dance with the filters and put the number of output is higher than the number of found (370) and change all through the increment. But then the more chance you'll change something is not right, and the game will crash.
Of course, she can fly, and so, there could be as lucky. But this method is better than nothing.

Share this post

Link to post
Share on other sites

Group search format:
value1; value2; value 3: region
In total, you can specify from 2 to 8 values. The region should be 1 to 65535. The larger the area, the slower the search and more memory is needed for it.
If the region is not specified, it is assumed to be equal to 512.
The value can be specified as a number or in hexadecimal with a pointer type, or in the reverse hexadecimal.
For example:
10 - 10 type Auto.
10B - 10 with the type Byte.
10F - 10.0 with the Float type.
10X - 10 with the type of Xor.
0Ah - 10 in hexadecimal notation.
0A00hD - 2560 in hexadecimal notation and the type Dword.
0A00rW - 10 in reverse hex and Word type.
Contact hexadecimal notation allows you to record the bytes as they are in the memory, not doing their permutation.
For example, the number ABCDEFh in memory will be written as EF CD AB. Instead of rearranging the bytes yourself, you can simply write EFCDABr.
Thus, you can write something like:
10; BCh; 0A00hW; FFEErD; 1.234F: 2345
And it will search with GG.
The most simple and obvious use - Search byte string in memory. The maximum length is 4 * 8 - 32 bytes.
For example:
"6E 6E 62 61 65 64 72 6F 66 5F 6D"
62 61 6E 6ErD; 65 64 5F 66rD; 72hB; 6FhB; 6DhB: 11
The only negative - will be found all the permutations of these numbers.

Share this post

Link to post
Share on other sites

Alterantives for GameGuardian

Memory Editor:


Clones of GameGuardian 6.0.5 (memory editor + speedhack):



Windows Phone:
         Nothing Found.

Share this post

Link to post
Share on other sites

I found some lessons for GameGuardian on the internet.

It made quite well, although in some places there is an mistakes. There's a problem with navigation, so here I will post all the links.

Unfortunately, there are only 5 lessons.


Unfortunately, author remove this lessons. I save two files from Google cache.

GameGuardian. Lesson #1.htm

GameGuardian. Lesson #3.htm

Share this post

Link to post
Share on other sites

Another option, which affects the speed of search - access to memory.
It has three values:

     Normal - the usual option, suitable for most cases.
     Extended - can sometimes speed up access to memory or cause a hang-up and reset.
     Experimental - the same as above, but more options.

All except the first, can cause problems. Try at your own risk.

Share this post

Link to post
Share on other sites

Offset: Summary

1. What is it.

The offset is the distance between the two addresses.
Addresses are always written in hexadecimal. Offset too.
The offset can be positive, if the second address is greater than the first or negative if not.
Essentially offset is the amount (and direction: forward plus, minus - back) bytes which must move to get from the first to the second address.

2. For what.

Let's say we have a game with silver and gold. The values are encrypted, so you do not able to find them directly. Silver is easy to obtain, so it is easy to find in the memory.
Gold is much more difficult to obtain. Accordingly, the more difficult to find a memory address.
But you know that gold is offset -3BA, relative to silver.
How? We read somewhere, or on the basis of previous hacks have suggested, and it was confirmed.

To find the gold you find silver in the memory. This is done simply. Next you add the offset (long tap on an item of gold -> offset calculator) and proceed to the memory address of gold. This is all.

For example, your address 091857B4 for silver. Offset -3BA. Then gold will be on the address 091853FA.

It is important to understand that not all games can be applied offset. If game have a different offset between silver and gold
every restart, then this method will not work.

Share this post

Link to post
Share on other sites

How to shoot yourself in the leg

This list is not exhaustive. When fantasy stock almost anything can cause a shot in the leg.
Here they are listed only the most common methods.

1. Turn on speedhack with 1,000,000 or higher speed, and then complain about game data is damaged.
2. Make time jump for a few months or years in advance, and then complain about game data is damaged.

3. Change the values of several thousand in memory of the game, and then complain about game data is damaged.
4. Install the new version of GG, make horrible changes it in the settings, and then complain that the new version is not worked like the old, in which the default settings.
5. Select the settings English, use "," as the decimal separator, and then complain that it not used.
6. Use hide from the application, and freezing the values at the same time, and then complain that the game slows down.
7. Change the value in an online game like Clash of Clans, and then complain that the hack does not work.
8. Enter in the search for negative values, and then complain that finds the positive values (old version).
9. Enter in the search for positive values, and then complain that is a negative value (the new version).
10. Enable the auto pause in GG, and then complain that the system reports that the game does not respond.
11. Try to use speedhack in the game without x86 libraries on emulators, and then complain about speedhack not work.
12. Set count of output values of the first results near a million, and then complain that the GG force closes.
13. Watch the video with another application (GameHacker, iGG and so on.), press similar buttons in the GG, and then complain that the hack does not work.
14. Open the memory editor to see there another output format, and then complain that there is not so in the video / manual.
15. Fill in all the fields, that is, at least something, and then complain that the hack does not work.
16. In the temporary path enter numbers for search, and then complain that not work.
17. When we rename any label, or make any changes, then complain about the fact that it worked before, but now everything is broken.
18. Use the memory regions that are marked as dangerous, changing them in random data, and then complain that the game has crashed.
19. Freeze value, try to edit it, and then complain that the value does not change.
20. Trying to enter the type of data more than it can be in this type, and then complain that generates an error.
21. Try to perform the group search, using as separator ",".

Share this post

Link to post
Share on other sites

How to crack the most games

Most games are free from protection and can be hacked by changing the values in its memory.
It is only necessary to find the right value in the memory.

In most cases, it looks like this (1 method):
You have in game a certain number, which you can change. This can be anything: money, crystals, the number of lives, the number of resources, damage and so on.
Are you looking for this value in the memory. Most likely find a lot of values.
Returns to game, change this number, and looking again. And so as long as there will be a small number of results.
Then you change to the desired number and all done.
Type of data to search - usually Dword. If nothing is found, then you try to type Auto.
If in Auto has not found, then the value may be encrypted. Try Dword + "encrypted value" or Auto + "value is encrypted." (3 method)

It may happen that the number found is not reduced.
Change a lot of values is dangerous - you can get glitches or game crashes.
Use the filling to find the desired value, among those found.

This is done as follows: choose "edit all", click the "more" button, put in the increment 1. As a result, all values will be filled in ascending order.
Return back to the game and check how the value has changed.
If there is no change, then the hack did not work - as a result there is the desired value. Returns to the GG, roll back the changes on all the results to avoid crash, and try other methods.

If the value has changed, then see the new value, and then looking at the list of found the same values. With him remove the check mark. Everything else revert to previous values and delete.
The remaining change to the desired result.

In principle, it is enough to break many games.

If this does not work, you can use the fuzzy search. It is longer and more complicated, but allows more options to hack protections.

It looks like this (method 2):
You start a fuzzy search in GG. Then you go into the game and change the number to be hacking.
Returns to GG, press the "value change". Then again in the game, you make it any action, but the number does not change. Back to GG and choose "value has not changed."
And so on. Alternating change with his absence, you pretty quickly will eliminate all unnecessary values.
We need to try to change the number of different ways - then will be fewer results.
What remains - are trying to edit and look at the result.

If you know exactly the amount by which the value of the game has changed, then the fuzzy search, you can click "more" and specify the exact value.
If the number has decreased, then with a minus sign. Then press a button "N = O + D" (new = old + delta) and everything that does not fit, will be deleted.

If the number does not change, then weed out the excess may be difficult in the game.
You need to look whether there is in the game next to the number of the other numbers. If so, search for group (4 method), you can try.

Typically, it looks like this:
There are a few numbers that appears next in a game. Are you looking for them through the group list.
Will find a lot. Then you are looking at the results of just the right number, discarding the rest.
In fact that's left - filling apply, as described above. It will allow to find the right value.

In general, it is all about this.

A couple of tips:

Often, game values are adjacent in memory. Do not be lazy to go to the memory editor and see what kind of values are close to the desired parameter. For example, the game has a silver and gold.
Silver to earn and spend just as gold does not. After breaking silver you go in the memory editor at silver and below you can see the number that matches your amount of gold.
Try to change it. Most likely, this is the value that you need.

The game can speed up or slow down if it works speedhack. There is also a function time jump. Sometimes it may provide additional opportunities for hacking. For example, the value of the game is changing too fast - slow down the game in 1000 times and find the desired value.

No need to dwell on the main game settings. You can not hack gold? Crack the number of items and then sell. Or hack the price of the object.

Also, do not forget that the number may be negative. Purchase price for the negative - a typical approach is to crack.

Still it is possible to break the number of received awards, bonuses and so on.

Sometimes it is possible to break even that does not look like the numbers at first glance. For example, some flag. You're in the air - in memory 1, you are on the ground - in memory 0. You will find this value, and then freeze it as 1 or 0, and you can "walk" through the air.
Sometimes these things can be done to make it autoaim, endless events and so on.

In general, it is all about this. These approaches and techniques enough to break most games.
Of course if it is possible. If the game stores data on the server, then it will not help.
When you try hacking these games may be issued a message on the data out of sync with their subsequent overloading the server.
If the game does not work without the Internet, there is need to enter your login / password, select the server to connect to, you can play with other players, it is likely that all of the data on the server and you will not be able to crack anything.

Share this post

Link to post
Share on other sites

Analysis of protection for most games

Most of the games are not protected as such.
Simple search values in the memory, and then change gives the desired result.
Hacking can be done by any tool.

Some games (such is not very much), base their protection on the use of float or double data type for integer types.
Basically, the differences from the previous embodiment have. Some difficulty may be rounded values, although usually it is not.
Hacking can be carried out by any tool with the support of the required type.
If the tool does not support the media type, you can use converters and look for the value as dword, although it is inconvenient.

Some games use encryption based on the xor, bit shifts and others, simple and cheap operation.
Direct search value to find such data in memory can not be.
Hacking can be accessed via fuzzy search or search through an encrypted (only GameGuardian). Search encrypted usually several times faster than the fuzzy search.

Suffice rare complex encryption, which does not meet the requirements for the search through the "encrypted value" mode.
You can find the correct values through fuzzy search in these cases. fit any tool with such capabilities.

So much for the search changes the value in memory. Usually it's simple enough. These methods break down 90-95% of games with variable values.

Now consider the case where the value can not be changed. A typical example is object prices in stores.

In most cases the data are not encrypted, but find it difficult in the memory, because too many of the same values to memory.
Naturally you need to search and sift through, but often it does not give significant reductions in the number of results found.
If you change everything, the game may crash.

There are two approaches to this case:

1. Group search, if there is any number of nearby. It works in many games and can give very good results for screenings when experimenting with a maximum group size.
Usually, you can search up to 8 numbers at once.
You can use any attacker that supports group search. However, not all tools correctly handle certain difficult situations, such as group search with the same values.
Plus, not all tools can maintain the desired type in the group search.

2. The change in the value with subsequent verification of the change in the game. You can use any tool, but GameGuardian allows you to automate the process, doing everything in two or three clicks, while the remaining tools require hundreds, or even thousands of actions. It's about AutoFill.

By combining these two approaches can achieve most of the hacking static values.

Another useful thing is a memory editor in the hacker. If it is, you can view the memory near the values found - sometimes it allows you to find other values, or to speed up hacking.
This requires the tool with the editor of memory and support for the conclusions of relevant data types.

Sometimes you want to freeze to the successful hacking.
Here, too, will fit any tool with this feature.

These approaches and methods enough to break most existing games. Naturally it is only those games that can be hacked.

Share this post

Link to post
Share on other sites

Requirements to the UI.


If you decide to offer a new UI for GG, you should understand the following:
1. UI must support different screen resolutions.  From the minimum to the maximum sizes.
Different sizes you can view in manuals from google:
small screens are at least 426dp x 320dp
2. UI must support both portrait and landscape orientation.
3. UI must support the entire set of versions of Android, from 2.3.3 (API 10).
4. You need to understand what it means to each element of the interface, how it is used, under what conditions and how often.
5. The interface must not be beautiful, it's not a picture. It should be comfortable and functional.
6. There is some agreement in Material Design. You must be aware of them at the UI design. For example the size of touchable item must be at least 48dp.
7. GG is not SBGH or any other tool. We have our own way, own features and own interface. So no need to blindly copy someone else's interface. Such ideas will not be considered. You are only wasting yours and our time.
8. Although it is possible to make different layout for different screen sizes, orientations and even the Android version, the UI should look the same everywhere, so as not to confuse users.

Share this post

Link to post
Share on other sites

A little explanation about the coloring in the memory editor:

If the hex representation is not white, but color, then most likely in this value is the pointer. The color indicates which type of memory this pointer refers to.
This can be executable memory, writable or read-only. In rare cases, it can be writable and executable memory.


Share this post

Link to post
Share on other sites

How to write a simple script

In short, the process of creating a script looks like this:
1. Make a list of actions to achieve the desired result.
2. Perform them manually, in the interface, to check that everything works.
3. Then start each item in the code. To do this, see what functions are, what parameters they take and select the one you want.
4. Test the script, correcting it if necessary.

For example, you need to crack some game A.
1. Make a list of actions:
- find dword 123
- replace the first 100 results by 456.

2. Perform actions manually:
- search for dword 123
- replace the first 100 results by 456.
- make sure that everything works as it should, the game does not crash and so on.

3. open the help on scripts:

Go to the function description page:

Take the first action "find dword 123" and browse the list of functions until you find the one you need.
In this case, this is

 mixed searchNumber (string text, int type = gg.TYPE_AUTO, bool encrypted = false, int sign = gg.SIGN_EQUAL, long memoryFrom = 0, long memoryTo = -1)
 Perform a search for a number, with the specified parameters. More ... 

Go to the function description, study it:

Write the first line of the script:

 gg.searchNumber ('123', gg.TYPE_DWORD) 

Let's move on to the second action "replace the first 100 results by 456."
We read the reference again.
We see that we need two functions:

 mixed getResults (int maxCount)
 Load results into results. More ...
mixed editAll (string value, int type)
 Edit all search results. More ... 

We pass to them and read:

We write down the following two lines of code:

 gg.getResults (100)
gg.editAll ('456', gg.TYPE_DWORD) 

Continue until you have written the script completely.
In this case, the script is already ready:

 gg.searchNumber ('123', gg.TYPE_DWORD)
gg.getResults (100)
gg.editAll ('456', gg.TYPE_DWORD) 

4. Save the script, run it in GG, check the correctness of the work.

This example is very simple, but it shows the essence. As an extension of the script, you can add cleaning results at the very beginning, setting search regions and so on.

For more complex scripts, you need to understand the programming language lua and the ability to write code.

Share this post

Link to post
Share on other sites

How to understand that you can use unrandomizer

1. Start the game.
2. Open the list of unrandomizer functions so that it loads.
3. Make the necessary actions in the game, which, presumably, are associated with random numbers.
4. Re-open the list of unrandomizer functions. See if there are green timers in the first column. If they do not exist, the unrandomizer will not work.
If so, you can try to set some value for the unrandomizer and repeat the action in the game to see if there is any difference.

Share this post

Link to post
Share on other sites
This topic is now closed to further replies.