Posts

Showing posts from February, 2018

[Fake bug] Bypassing X509 fingerprint & MD5 file check with fake crash

Image
I still had 3 years old APKs of a racing game that fake crashes if using resigned APK but wasn't able to bypass it due to lack of cracking skills. Today I try to bypass it. While comparing both old and new version, I discovered a new folder with 2 smali hidden pretending to be ads at \com\applovin\sdk\applovinsdkattributioninterface\. Attribution.smali is an X509 fingerprint check that checks if the APK's fingerprint match with the original fingerprint stored in-game but where the heck is string of fingerprint and fake crash code? I deleted the folder applovinsdkattributioninterface, compile apk and launch to see what happen. Game gets stuck on black screen. I captured a logcat and got interesting logs Now I know the signature check and fake crash come from Assembly C# code. After a while of searching I met this code. This code execute Attribution class code to get SHA1 fingerprint and forward data to Unity game. Quit(); is called if fingerprint does not match

Merge all dumped files into one using CMD or Powershell

Image
Copy command is useful to combine/merge all GameGuardian's dumped files (.bin files) into one file so you no longer have to analyze files one by one. Works on both CMD and Powershell Usage: copy *.bin yournewfile.bin

Game developers are weird sometimes... (collections)

Image
This developer hates Unity? Of course they are. Gameloft trying hard... I'm sure i have found more but i forgot them. I will update this post if i found any

[Cross-platform tool] BytecodeViewer - View smali and java code

Image
Bytecode Viewer is an Advanced Lightweight Java Bytecode Viewer, GUI Java Decompiler, GUI Bytecode Editor, GUI Smali, GUI Baksmali, GUI APK Editor, GUI Dex Editor, GUI APK Decompiler, GUI DEX Decompiler, GUI Procyon Java Decompiler, GUI Krakatau, GUI CFR Java Decompiler, GUI FernFlower Java Decompiler, GUI DEX2Jar, GUI Jar2DEX, GUI Jar-Jar, Hex Viewer, Code Searcher, Debugger and more. It's written completely in Java, and it's open sourced. It's currently being maintained and developed by Konloch. How to use: Download BytecodeViewer from official source: https://github.com/Konloch/bytecode-viewer/releases Launch BytecodeViewer.exe for WIndows or BytecodeViewer 2.9.8.jar for *Unix, and MacOS Drop your jar/zip/apk/dex in Files form. If you have problem with apk, extract dex from apk and drop dex file. If you are working with smali. Select View -> Pane 1 -> JD-GUI -> Java and View -> Pane 2 -> Smali/DEX -> Smali/DEX Select a

How to make mod menu using iOSGods Android Menu Maker

Image
My friend TheArmKing made this Mod Menu Maker, an alternative of PMT Menu Maker. Download link:  https://iosgods.com/topic/64199-android-iosgods-menu-maker-v10-build-your-own-mod-menus-on-unity-based-games/ Features: Easy to use Already Generated Toggles Modder Needs to specify minimal code Works for all Methods ( No Instance Reference Errors )  Highly Customizable ( You get to decide Your Button's Colours and whats to be written on them ) Menu Re-Adjusts itself according to Modder's Wish The people who made this possible: TheArmKing iAndroHacker G-Bo Video tutorial: