Pulse

TikTok by TikTok Ltd. v38.2.0 iTunes Page Bundle ID: com.zhiliaoapp.musically Requires: iOS 12.0 or later File size: 576.5 MB (or less) [Hidden Content]

Subway Surfers by Sybo Games ApS v3.40.4 App Store : [Hidden Content] Bundle ID: com.kiloo.subwaysurfers Requires: iOS 13.0 or later File size: 279.6 MB (or less) [Hidden Content]

We are implementing a lot of features this month. We will be adding new items soon. Please check back later for more soon!

Reverse Engineering eBooks Pack Book List inside the Collection: [Hidden Content]

this is just awesome... thanks for this...

Will need more of this. maybe i will break into sections.. too much info here

Thanks for this, will try it out..

Thanks for this!

[Hidden Content]

So I have used both rootful and rootless jailbreaks over the years, they both have their advantages and disadvantages. Knowing which to use comes down to personal preference, today we will go over some of the characteristics and key differences of using both jailbreak modes. By the the end of this topic you should be able to choose between the two or even try both. The terms rootful and rootless describe different modes of operation in a jailbroken or non-jailbroken iOS environment, particularly when discussing jailbreaks and their impact on file system access and privileges. Rootful Mode In a rootful environment, the jailbreak operates with full access to the root file system. This means the jailbreak can modify or replace system files directly. Characteristics: Full Root Access: You have unrestricted access to the root file system (/) and can modify system files and settings. Persistence: Changes to the file system (e.g., tweaks, daemons, or modifications) remain intact after a reboot until the jailbreak is removed or the device is restored. Invasive: System files are altered, which makes this mode detectable by some apps or system checks (e.g., banking apps or games). Compatibility: Compatible with older jailbreaks and tools that rely on modifying system files. Risks: Greater potential for bricking or corrupting the system due to accidental file system changes. Rootless Mode In a rootless environment, the jailbreak operates without modifying the root file system. Instead, all tweaks and changes are contained within a sandboxed or user space, typically under /var or another directory accessible without root permissions. Characteristics: No Root File System Access: The root file system remains untouched, meaning system files and directories are protected. Non-Persistent: The jailbreak operates temporarily, and no permanent changes are made to the system. Changes are removed on reboot unless reapplied. Safer and Less Detectable: Because the root file system is untouched, it is harder for apps or system checks to detect jailbreak-related changes. Modern Jailbreaks: Many newer jailbreaks, especially for iOS 15 and beyond, adopt rootless mode for better security and compatibility with Apple's protections. Compatibility Challenges: Some older tweaks or apps that expect root access or system file modifications may not work in rootless environments. Key Differences Feature Rootful Rootless Root File System Fully accessible and modifiable Protected and untouched Persistence Permanent until removed Temporary, reset on reboot Safety Higher risk of corruption Safer, no system modifications Detection Easier to detect by apps Harder to detect Compatibility Works with legacy tweaks Requires tweaks designed for rootless Jailbreak Checkra1n Dopamine, Palera1n (rootless) Which Should You Choose? Rootful: Use this if you need full system access and are okay with the risks of modifying the root file system. Ideal for older iOS versions or advanced users. Rootless: This is recommended for newer jailbreaks as it aligns with Apple's tighter security measures. It’s safer, less detectable, and compatible with modern tweaks.

Is it free? It uses spaces, wow just great LOL

In our case, the base address is “mono-2.0-bdwgc.dll”+004A1820. So, first, we have to get the address of mono-2.0-bdwgc.dll and add 0x004A1820 to it to get the base address. In pymeow, Process objects have a dictionary called modules that contains all the modules and those modules are also dictionaries and they have a parameter called baseaddr. Now what we want to do is get the base address of mono-2.0-bdwgc.dll and we can access it with process[“modules”][“mono-2.0-bdwgc.dll”][“baseaddr”], then we will add 0x017C58C0 to it to get the base address of the pointer. We can confirm that this is the right address in cheat engine Now we have to deal with offsets. First, i will explain how offsets works and how we will deal with them. Here, we can see that it has 7 offsets. We can see that below, the first address is 0x7ff920af1820. Then, the first offset came which is 140. What it does is it adds 0x140 bytes to the first address which is 0x7ff920af1820 and then it will get the value in that address with offset. Now that address points to another pointer and again, we will add 0x1F0 bytes into that pointer until we get to the last part which is the actual memory address of the user health. Now, lets implement it in our code. pymeow has a method pointer_chain but its not working for me so we will implement our own function instead. I came up with a function that i called read_offsets. It takes 3 arguments, the first one is the proc, which is the process, the second is the base address, the third is the array of offsets. In line 4, it will get the pointer in the base address. In line 6, it makes a new variable called current_pointer from the basepoint variable. Then it will loop through every offsets except for the last character, what it does is, it will read the pointer in the current_pointer+offset and set the value of current_pointer to it for the next iteration. Then in the last part, it will return the final pointer. We use read_int64 since we are working on a 64 bit program and memory address in 64 bit programs are 8 bytes. Now lets try it if it works I mapped out the offsets into an array in my code. Now lets run it. We can see that it works, it obtained the value 1337 which is the value we set the health earlier in in cheat engine. Now lets try modifying that address using write_int. Now if we get back to the game, We can see that it is successful and our health is now 200. This is the end of my writeup. I hope this resource will help for future hackers that are interested on game hacking with python. Thanks for reading Credits: Brandon Roldan

Now what we need to do next is go back to the pointer scan window, click on pointer scan, then rescan memory. Paste the new address and click OK. Now we have 14958. It is less than our previous scan. You can either repeat the proccess again and try to get the pointer paths lower or you can proceed to the next part. I will not scan anymore for this example Now for the next step, we have to guess. Which of these address do actually point to the address. So we will double click random pointers. Just a note, ignore the threadstacks. I picked 4 values Now we will test if these pointers do actually point to the health. We can do that by restarting the game again. After restarting the game, we can see that their values still match our in game health so that must mean they all actually points to the health address. Now you can pick any of those addresses but i will pick the first one. We can further confirm that this is pointer point to the health by modifying its value Now we are 100% sure that this pointer point to the health address in the game. If we double click it, we can see that it is a multilevel pointer Python Scripting Now in this part, we will be accessing this pointer and we will access the memory address it points to and modify it using python. We will be using pymeow for this writeup since from all the libraries i tested, this is the only one that worked. You can download pymeow here [Hidden Content] So we will make a new script and we will start by importing the library After that, we can start coding. We will follow the cheatsheet of pymeow for [Hidden Content]/blob/master/cheatsheet.txt There is 2 way to get the process, process_by_name, and process_by_pid. We will be using process_by_name since it is easier. In there we passed the name of the program ULTRAKILL.exe. Now, we have to get the base address of the pointer.

Hi. In this write up, i will be showing you, how to hack games by editing the memory with cheat engine and will also write a program in python that will automatically edit the memory and do the hack for us. While i was learning game hacking, i noticed that there very little resource about game hacking with python and more on c++. But im a big python fan so i learnt it myself with the help of a really good module in python. Lets get started Finding the Memory Address using cheat engine In this demo, we will be hacking a game called ultrakill. What we will try to do is modify the health and give ourselve alot of health. So, we start up by booting ultrakill and attaching cheat engine into it. So we start up the game and we can see that on start, we have 200 health. Now what we need to do is find the memory address responsible for this health. In cheat engine, we will scan for the int value 200 You can see that it gave us 3,802 memory address with the value 200. We need to narrow it down more. So in game, we will modify our health by using the shotgun explosive in front of us Now we are on 165 health. Now we will scan the lists of address we found before and we will look if any of those value changed to 165. We can do that by using the next scan. Now we are only down to 1 address. Double click it to add it to our address list. We can confirm that this is the memory address of health by changing it, if we change it, our health in the game should change too. And we can see that it does, i changed the value of the address to 300 and my health in the game become 300 too. Noice Finding static pointers that point to the health address Now even though we have found the health address, it is not static. If we reload or restart the game, this address will be invalid. So what we need to do is find static address that points to the memory of the health. We can do that by right clicking the memory address of the health and pointer scan for this address. The default setting is already good so just click ok. It may take a while. We can see that we found alot. We have to narrow this down. To do this, we have to restart the game and find the health address by following the first part of this writeup. Now i already done it and i got the address 0x173AC32475C

App Store Image App Name BitLife Version 3.16.3 Store Link [Hidden Content] Description How will you live your BitLife? Will you try to make all the right choices in an attempt to become a model citizen sometime before you die? You could marry the man/woman of your dreams, have kids, and pick up a good job along the way. Or will you make choices that horrify your parents? You could descend into a life of crime, start trouble in prison, smuggle goods across country lines, and rob banks. It's all up to you...

Are you tired of downloading iOS games and apps on your iphone just to decrypt it before finally dumping the decompiled files and folders. Well here comes Unity IL2CPP Dumper Online, with this tool you can upload your binary file and global-metada files in order to get a decompiled zip folder. Better still you can provide a direct link to the decrypted IPA and it will be decompiled as well. You can visit the link below to access this tool. [Hidden Content]

Here's a video tutorial on how to use Sideloadly

The new & best way to sideload your favorite games and apps to your iOS device, Apple Silicon Mac or Apple TV! Sideloadly Features - No Jailbreak required! Sideloadly was built for Non-Jailbroken devices in mind - Ability to sideload apps with a free or paid Apple Developer account - Ability to save your credentials for easy & quick sideloading - Supports iOS 7 and all the way up to iOS 18.2+ - Wi-Fi Sideloading! Sideload/Install apps without needing to connect your device via USB! - Automatic app refreshing. Sideloadly will automatically refresh your apps every few days to prevent them from expiring! NEW! - Just-In-Time compilation for sideloaded apps! JIT allows certain apps to run faster and work better by surpassing iOS restrictions. NEW! - Apple Silicon Sideloading Support! Use Sideloadly to install (unsupported) iOS apps to your M1/M2/M3 Pro/Max/Ultra Mac! Works with Free/Paid Apple IDs & SIP enabled - Apple TV (tvOS) Sideloading Support! Sideloadly can now sideload apps onto your Apple TV! NEW! - Drag & drop .IPA support - Change minimum iOS version required to run the app - Remove app/IPA restriction on supported devices - Change the app name that will appear on your home screen - Change the app icon that will appear on your home screen NEW! - Change the application bundle ID to allow multiple/duplicate app installs - Multiple install options. Apple ID Sideload (default), Normal Install, Ad-hoc sign & export tweaked IPA! Each feature is explained when hovered over. - App file sharing option. Allows you to access the sideloaded app's Documents on your PC & via the iOS Files app - Remove individual or all app extensions (PlugIns) option - URI Scheme to easily download and sideload an IPA directly from the web - Installation logs for easier troubleshooting - Device System Logs viewer for troubleshooting general device or app installation issues - Ability to hide sensitive information to make it easier to take screenshots, record tutorial videos or share your logs for troubleshooting - Ability to inject multiple .dylib, .deb, .framework & .bundle to your IPA. Including Cydia Substrate & Substitute framework support for Non-Jailbroken! - Light/Dark mode for macOS - More features to be added based on community suggestions Important Windows Task Windows users please make sure you have the web version of iTunes & iCloud installed. You must uninstall Microsoft Store iTunes & iCloud (if present), then install the non Microsoft Store version from: iTunes x64 - iTunes x32 iCloud web Apple download link Download Sideloadly Windows 64-bit Download — Windows 32-bit Download (Requires Windows 7 or higher) macOS Download (Requires macOS 10.12 Sierra and higher. Apple Silicon Mac M1/M2 Pro/Max/Ultra Sideloading Supported)

BitLife is a life simulation game where you make decisions to shape the story of your virtual character. It’s a mix of strategy, humor, and unpredictability, making every game session unique and entertaining. Here are some features that make BitLife so much fun: Life Choices: From birth to death, you make all the key decisions for your character. Choose your school, career, relationships, and even how you spend your free time. Career Paths: You can pursue various careers like a doctor, actor, pilot, or even a life of crime! Your decisions impact your character's happiness, health, and wealth. Relationship Management: Build relationships with friends, family, and romantic partners. You can propose, break up, have kids, or even stir up drama if you feel like it. Random Events: Life throws unexpected events your way, like winning the lottery, getting arrested, or finding out you’ve inherited a fortune! Customization: You can create custom lives and scenarios, adding a personal touch to the game. Mini-Games: Some events, like going to the casino or practicing crime, come with mini-games that add an extra layer of interaction. Achievements: Unlock a wide range of achievements by exploring different life paths and scenarios. Dark Humor: The game’s humor and quirky writing keep it light-hearted even when things go south for your character. Frequent Updates: The developers constantly update the game with new features, professions, and challenges, ensuring it never gets stale. It’s fascinating to see how your decisions ripple through your character's life, and no two playthroughs are the same. Whether you’re trying to live the dream or embrace chaos, BitLife has something for everyone. If you’ve played BitLife, what’s the craziest or most fun life story you’ve created? Share below! And if you haven’t, what are you waiting for? Download it and see how your choices shape your BitLife! [Hidden Content]

1. Decompiling Tools (The Key to Unlocking Code) Il2CppDumper: This is the go-to tool for extracting C# code from Unity games built with IL2CPP (the technology Unity uses to convert C# into native code). It’s the starting point for most people because it helps you decompile the game’s code into a format you can understand. Il2CppDumper GUI just makes this easier by giving you a graphical interface instead of command lines. Il2CppInspector: If you want to dive deeper into the game’s code after using Il2CppDumper, this tool helps you inspect the classes and methods in more detail. It’s a bit more complex but useful for advanced analysis. Unity Asset Bundle Extractor (UABE): This tool helps you dig into Unity’s asset bundles, which is where the game stores all its textures, models, and sounds. While it won’t help you decompile code, it’s essential if you’re looking to modify or inspect the game’s assets like 3D models or images. 2. Debugging and Reverse Engineering (For The Really Deep Stuff) dnSpy: If you’re dealing with Unity games that use the Mono backend (as opposed to IL2CPP), dnSpy is your best friend. It lets you decompile and edit .NET assemblies (like Assembly-CSharp.dll) in a nice, readable way. This tool makes it easy to see and edit the code directly, which is perfect for modding or analyzing how a game works. Frida: This tool is awesome for live analysis. You can hook into a running game and dynamically modify its behavior in real-time. It’s especially helpful when you’re trying to understand how a game handles things like memory or runtime data. Hopper Disassembler / IDA Pro: For more advanced users, these are used to break down the game’s native code (like UnityFramework.dylib). They allow you to look at the low-level machine code and understand exactly how the game works under the hood. IDA Pro is very powerful but can be overwhelming unless you’re already comfortable with reverse engineering. 3. Extracting Assets (When You Want to See What's Inside) UnityPack: This is a tool for unpacking Unity files like asset bundles or scene files. If you’re trying to get at the models, textures, or sound files used in the game, this tool will help you pull them out. Asset Studio: Similar to UnityPack, Asset Studio lets you view and extract assets from Unity games. It's user-friendly and great for browsing through all the textures, models, and other assets that the game uses. 4. File Management and Extraction (Accessing Game Files on iOS) Filza File Manager (for Jailbroken iOS): If you’re on a jailbroken iOS device, Filza is a great tool for browsing the file system of the game. You can easily find the UnityFramework.dylib and global-metadata.dat files, which are crucial for decompiling IL2CPP games. iFunBox: A file management tool for iOS that doesn’t require a jailbreak. It’s good for accessing and transferring game files, though you won’t be able to modify the system files like you can with Filza. WinSCP/SSH: If you have SSH access to your jailbroken device, you can use this to transfer files from your iPhone to your computer for analysis. It’s pretty straightforward and helps you grab the important game files remotely. 5. Repackaging and Re-signing (Making Your Changes Stick) ios-deploy: A command-line tool that helps you install apps on a device directly from your computer. This is useful when you’ve made changes to a Unity game and want to push it to your device for testing. iOS App Signer: If you’re modding a game and need to re-sign it (to bypass Apple’s restrictions), this tool helps you re-sign the app with your developer certificate so it can be installed on a device. ldid: A tool used for signing binaries, like UnityFramework.dylib, with a certificate. This is especially important when you’re working with modified Unity games on iOS. 6. Learning Resources (When You Need Help) Il2CppDumper GitHub: If you’re using Il2CppDumper, the GitHub page is a great place to find updates, detailed documentation, and troubleshooting tips. It’s a community-driven resource, so you’ll find answers to most questions here. Unity Documentation: Unity’s official docs are always a great place to start if you want to understand how Unity works, how it handles assets, and how it structures games. It’s the best resource for learning the fundamentals of Unity. Reverse Engineering Communities: Communities like Reddit’s /r/ReverseEngineering and XDA Developers are great for getting tips, asking questions, and sharing knowledge. Everyone’s working on similar stuff, so it’s easy to find help. 7. Bonus Advanced Tools (For the Experts) Hex Fiend (Mac) / Cutter: If you want to get into hex editing or more detailed analysis, these tools are great. They allow you to look at and edit the binary files directly, which is super useful when you want to patch or modify a game at a low level. Wrapping Up These tools are your toolkit for decompiling and reverse-engineering Unity games, especially if you're working with iOS. Some tools are for extracting assets (like models or textures), some are for digging into the game’s code (like dnSpy and Il2CppDumper), and others help you test your changes (like Frida and ios-deploy). Whether you’re a modder, reverse engineer, or just curious about how Unity games work, these tools will help you unlock the inner workings of your favorite games.

Extract the UnityFramework File Locate the UnityFramework Binary: Navigate to the app's installation directory on the iOS device (requires jailbreak). /var/containers/Bundle/Application/<App-ID>/<App-Name>.app/ Copy the UnityFramework file (a Mach-O executable) from the app bundle to your computer. Transfer Other Required Files: Extract global-metadata.dat from: /var/containers/Bundle/Application/<App-ID>/<App-Name>.app/Data/Managed/Metadata/ Prepare for Il2CppDumper Install Il2CppDumper on your computer (available on GitHub). Ensure you have: The UnityFramework binary. The corresponding global-metadata.dat. Run Il2CppDumper Open Il2CppDumper and load the files: Select global-metadata.dat first. Then, select the UnityFramework binary. The tool will attempt to identify the game's architecture (e.g., ARM64) and process the binary. If successful, it will generate the following: dump.cs: Decompiled C# scripts. script.json: Metadata mappings for reverse engineering. Troubleshooting If the Dump Fails: The UnityFramework binary might be encrypted or stripped. Use a dumped UnityFramework from memory: Run the game on the jailbroken iOS device. Use tools like Frida or r2frida to dump the decrypted binary from memory: frida -U -n <game-bundle-id> -e '/* memory dump script */' Re-run Il2CppDumper with the decrypted binary. Missing Symbols: Some Unity games strip symbols for security. In this case, you may need to manually reconstruct the mappings using tools like IDA Pro or Hopper. Inspect Decompiled Code Open dump.cs in a text editor to explore the C# code. Use script.json alongside debuggers like IDA Pro or Ghidra to correlate native function calls and Unity methods. Optional: Modify and Repackage Modify extracted code or assets if needed. Repackage the IPA with the updated files. Sign the IPA using a valid certificate and deploy it back to the device. Useful Tools Il2CppDumper: For dumping and decompiling IL2CPP games. Frida/r2frida: For memory dumping. IDA Pro or Ghidra: For analyzing stripped binaries. ios-deploy or Xcode: For re-signing and deploying IPAs.

thanks for sharing...

Disabled: Until further notice...

Disassembling is the process of taking something apart, or separating it into its components or subassemblies. Get some of the resources here. [Hidden Content]

You can now see forum sections like categories, forums and clubs in tabs!