Posts

Showing posts from August, 2016

Spoofing ping indicator using GameGuardian (Visual hacking)

Image
This tutorial is very old and maybe useless for you but why not share it anyway, if I still have it on my hard drive? this prove that visual hacking is useful sometimes. You get the idea :D Can't play multiplayer? stuck in tutorial? Well you can change value of ms using GameGuardian to make the game think your connection is good GameGuardian require rooted device. If you don't have rooted device, you can use Bluestacks App Player on PC and root it using Kingroot app and play NFS NL in it. NFS NL chinese version is a  beta program that existed between 24-8-2016 to 7-9-2016. I don't remember any infomation about chinese version anymore 1. Download GameGuardian https://gameguardian.net/download 2. Install it on your device 3. Run GameGuardian and let it install. Allow root access if asked.   4. Press START to run GameGuardian. The floating icon will show on the screen 5. Run the game 6. Tap on floating icon of GameGuardian to open it and se

How to fix "INVALID METADATA VERSION" error in dll files

Image
It may happen with some Android games (and not only) that you see an error like this when trying to hack or simply browse a dll. When this does happen, it means there's a missing or corrupt metadata version in the dll headers. I'll be fast and simple. What we will do is replacing these headers using CFF Explorer and HxD (or your favourite HEX EDITOR.. even CFF Explorer if you do prefer) with some working metadata version headers. If you don't have CFF Explorer installed yet, you can download it from here:  CFF Explorer Now, let's open CFF Explorer and move the affected dll into the left box: Then, click on .NET Directory and a sub menu will appear. Just select MetaData Header and a table will show at the right. What you need to do is to copy the offset relative to the VersionString which represent the Version of the Metadata: As you can see, my Offset for the VersionString is: 00012118. I'll copy this offset. Now, let's use the Address Converter

Fix Invalid 'BSJB' signature error in DLL file (Unity3D)

Image
Note: This tutorial was created by xiaobaiyey and written in chinese. This tutorial is poorly translated from Google Translation but i have fixed some grammar to make it easier to understand. How to get the decrypted DLL , through IDA , GDB or directly decryption. A new gaming platform out of the game (game name omitted), try ida dump the decrypted DLL , (the previous method introduced, as dynamic debugging, you can find information on the Internet) What happen if you load DLL into Reflector, Invalid 'BSJB' Signature in the Metadata header. This error, that is, BSJB this structure there is an error, I do not know .net file header structure, specifically refer to the article, in recent days, will focus on learning under the net file header structure. http://www.cnblogs.com/dwlsxj/p/PE.html  If you don't have CFF Explorer installed yet, you can download it from here:  CFF Explorer Specifically I do not presented direct demonstration operation, will du

[IDA tutorial] How to mod x86 lib .so file

Image
Hello dear community, Today, i will teach you how to mod x86 libs. x86 is not that hard to understand because the instruction are almost the same as ARM. In this tutorial, i mod the game called The Sandbox 2. You don't really need to mod x86 at all since I never heard any problem with ARM translating to x86, and it's too hard to change instruction without code caving. Just wanna make tutorial lol Now let's start modding. In this tutorial, I'll show you how to mod The Sandbox Evolution very easy in x86. First of all, you need IDA PRO and Hex Workshop installed on your computer. If you already have them installed, go to next step Open the APK file with WinRar and extract the lib folder (In case you want to mod both x86 and ARM) Open the x86 .so file in IDA. You will see the dialog box similar to the following: In x86, you don't need to change anything. MetaPC is fine. C

How to change Play Store region without VPN (Working as of August 2016)

Image
Tested as of Summer 2016.  I don't know this method still work today  but please comment if this trick still work If you already enter your payment details and bought something in Play Store, VPN/proxy trick no longer work. If you want to change region, follow the steps or simple download apps and games at https://apkpure.com/ which are not avaliable in Play Store. Account changes will apply within a week!!! 1. On your computer, go to your personal info an login with your Google account https://myaccount.google.com/privacy#personalinfo 2. Remove your phone number. Make sure the location sharing is not enabled. 3. Go to Language https://myaccount.google.com/language 4. Add language "English (United states)" and delete other languages 5. Go to https://wallet.google.com 6. Click on the gear icon in top-right corner 7. Edit your customer details. Change your country to US and put fake US Address, click save here is my e

Dump decrypted DLL file with IDA Pro

Image
Note: This tutorial was created by xiaobaiyey and written in chinese. This tutorial is poorly translated from Google Translation but i have fixed some grammar to make it easier to understand. reviously I read an article by hook decrypting the encrypted dll Unity3D, recently new to dynamic, so they can try the next through IDA, the same as the shelling, dump the decrypted dll file, try the next, it really can, in here to share under Requirements: Tools:  IDA6.6. DOWNLOAD LINK Game: Monthly Dragon knife (just find a game) Enable USB-debugging in Developer Options Adb debugger: adb.exe Open lib in IDA: Unzip lib folder from the APK, drag the file libmono.so to IDA Several functions mainly in the upper and lower breakpoint (refer mono source ) mono_image_open_from_data_full mono_image_open_from_data mono_image_open_from_data_with_name In a decryption process can about these function View the final in front of a function call or  mono_image_open_from