Bubg VNG 3.0 IOS
GWorldFun : 0x10273B9FC
GWorldData: 0x1091A67B8
GNameFun: 0x104252D04
GNameData: 0x108DF6A30
LineOfSightTo: 0x1052C0228
Pubg KR 3.0 IOS
GWorldFun : 0x102953B7C
GWorldData: 0x109456EB8
GNameFun: 0x10446AE84
GNameData: 0x1090A6EE0
LineOfSightTo: 0x1054D8374
PUBG TW 3.0 IOS
GWorldFun : 0x10296F9BC
GWorldData: 0x10948C638
GNameFun: 0x104486CC4
GNameData: 0x1090DC630
LineOfSightTo: 0x1054F41B4
CREDIT - @RSDMODS
GWorldFun : 0x10273B9FC
GWorldData: 0x1091A67B8
GNameFun: 0x104252D04
GNameData: 0x108DF6A30
LineOfSightTo: 0x1052C0228
Pubg KR 3.0 IOS
GWorldFun : 0x102953B7C
GWorldData: 0x109456EB8
GNameFun: 0x10446AE84
GNameData: 0x1090A6EE0
LineOfSightTo: 0x1054D8374
PUBG TW 3.0 IOS
GWorldFun : 0x10296F9BC
GWorldData: 0x10948C638
GNameFun: 0x104486CC4
GNameData: 0x1090DC630
LineOfSightTo: 0x1054F41B4
CREDIT - @RSDMODS
π3π1
A new threat to the security of your device (TrollStore).
β
The other day, the EntySec developer presented SeaShell Framework with open source. Internet users have already called the project βMalwareβ for TrollStore.
SeaShell Framework is an iOS post-operation platform that allows you to remotely access, manage and retrieve sensitive information.
All an attacker needs to do is generate an IPA file and start a TCP listener.
The capabilities of SeaShell are very large:
β’ Camera on
β’ Launching applications
β’ Access to contacts and sms
β’ Access to all files in the system
β’ etc.
Conclusion: This development and the ease of its installation jeopardize millions of devices from iOS 14.0 to 17.0 (inclusive), especially TrollStore users.
β
How to protect yourself from attack?
1. Unzip the IPA file(s) you are going to install.
2. Check the application(s) for suspicious executable files (H: SeaShell Framework adds an executable file called musssel to its application package).
3. Open Info.plist and find suspicious records (H: SeaShell adds CFBundleBase64Hash to your Info.plist, it contains a pair of hosts <host>:<port> encoded with base64).
4. Check the hash sum of the file(s) to confirm its integrity.
Source: EntySec | GitHub
by @jailbreaked
β
The other day, the EntySec developer presented SeaShell Framework with open source. Internet users have already called the project βMalwareβ for TrollStore.
SeaShell Framework is an iOS post-operation platform that allows you to remotely access, manage and retrieve sensitive information.
All an attacker needs to do is generate an IPA file and start a TCP listener.
The capabilities of SeaShell are very large:
β’ Camera on
β’ Launching applications
β’ Access to contacts and sms
β’ Access to all files in the system
β’ etc.
Conclusion: This development and the ease of its installation jeopardize millions of devices from iOS 14.0 to 17.0 (inclusive), especially TrollStore users.
β
How to protect yourself from attack?
1. Unzip the IPA file(s) you are going to install.
2. Check the application(s) for suspicious executable files (H: SeaShell Framework adds an executable file called musssel to its application package).
3. Open Info.plist and find suspicious records (H: SeaShell adds CFBundleBase64Hash to your Info.plist, it contains a pair of hosts <host>:<port> encoded with base64).
4. Check the hash sum of the file(s) to confirm its integrity.
Source: EntySec | GitHub
by @jailbreaked
GitHub
GitHub - EntySec/SeaShell: SeaShell Framework is an iOS post-exploitation framework that enables you to access the device remotelyβ¦
SeaShell Framework is an iOS post-exploitation framework that enables you to access the device remotely, control it and extract sensitive information. - EntySec/SeaShell
β€6
for who don't know UE
to update your esp
long time ago I developed header I think already comes with most of projects. I set all offsets in one .h file
in front on each offset there are text coped from sdk
all you need copy the text and search for it the sdk file and take its offset
in case there many results I set the structure name beside the text
structure name *if not set that mean its same as previous one or is unique search results
for example:
If you would to do it your self read
UE4.27
https://docs.unrealengine.com/4.27/en-US/
to update your esp
long time ago I developed header I think already comes with most of projects. I set all offsets in one .h file
in front on each offset there are text coped from sdk
all you need copy the text and search for it the sdk file and take its offset
in case there many results I set the structure name beside the text
structure name *if not set that mean its same as previous one or is unique search results
for example:
long mesh = 0x458;//*struct ACharacter : APawn {
//struct USkeletalMeshComponent* Mesh; // Offset: 0x458 // Size: 0x08
the offset located under :
ACharacter : APawn
in line:
USkeletalMeshComponent* Mesh; // Offset: 0x458 // Size: 0x08
so its 0x458
If you would to do it your self read
UE4.27
https://docs.unrealengine.com/4.27/en-US/
β€2
Bubg 3.0 KILL MSGGL - 0X1072D6900
KR - 0X107493E60
VNG - 0X107211420
TW - 0X1074BC630
CREDIT - @RSDMODS
π5β€2
Function Caller :
Sometimes you need to know who the caller of function when hooking
In Objective-C, you can use the
This will print the address of the calling function. If you want to print the name of the calling function, you can use the
In C++, you can use similar techniques to print the caller's address or name:
Keep in mind that getting the name of the calling function is not always straightforward, and it may not be possible in all cases.
for more examples:
*this not ARM
https://hdevstudy.tistory.com/m/150
Sometimes you need to know who the caller of function when hooking
In Objective-C, you can use the
NSLog function to print the caller's address or name. Here's an example of how to do this:- (void)someMethod {
NSLog(@"Caller address: %p", __builtin_return_address(0));
}
This will print the address of the calling function. If you want to print the name of the calling function, you can use the
__PRETTY_FUNCTION__ macro:- (void)someMethod {
NSLog(@"Caller name: %s", __PRETTY_FUNCTION__);
}
In C++, you can use similar techniques to print the caller's address or name:
void someFunction() {
std::cout << "Caller address: " << __builtin_return_address(0) << std::endl;
}
void someFunction() {
std::cout << "Caller name: " <<PRETTY_FUNCTION
<< std::endl;
}
Keep in mind that getting the name of the calling function is not always straightforward, and it may not be possible in all cases.
for more examples:
*this not ARM
https://hdevstudy.tistory.com/m/150
κΉμΈμ°μ κ°λ° 곡λΆ
[C] Get return address of functions (__builtin_return_address)
Let's get the return address of a function with __builtin_return_address. Syntax void* __builtin_return_address(unsigned int level); level 0 : Return the address of the current function 1 : Return the address of the caller of the current function 2 ~ 63 :β¦
β€3π1
vTables for Game Hacking , If you don't understand, watch it again more than once .
https://www.youtube.com/watch?v=HfrBdf-hM28&ab_channel=GuidedHacking
https://www.youtube.com/watch?v=HfrBdf-hM28&ab_channel=GuidedHacking
YouTube
vTables for Game Hacking & VMT Hooking
π₯ Learn How vTables are used in Game Hacking & VMT Hooking
π¨βπ» Buy Our Courses: https://guidedhacking.com/register/
π° Donate on Patreon: https://patreon.com/guidedhacking
β€οΈ Follow us on Social Media: https://linktr.ee/guidedhacking
π Article Link: httpβ¦
π¨βπ» Buy Our Courses: https://guidedhacking.com/register/
π° Donate on Patreon: https://patreon.com/guidedhacking
β€οΈ Follow us on Social Media: https://linktr.ee/guidedhacking
π Article Link: httpβ¦
β€3
PUBGM_3.1_64.zip
3.7 MB
Engine SDK 3.1 64
*SDK are almost same for all versions also same as Android
@pubg_dev
credit WalterBoss
*SDK are almost same for all versions also same as Android
@pubg_dev
credit WalterBoss
SDK_3_1_64.zip
1.6 MB
Internal SDK
I don't test yet
sdk almost same for all version
if you have difficulty on getting offset just take Android offsets caz there are same. however,android are everywhere. only real address are different like GNmae GWorld for each version and each OS.
@pubg_dev
SDK credit Yeeee2003
I don't test yet
sdk almost same for all version
if you have difficulty on getting offset just take Android offsets caz there are same. however,android are everywhere. only real address are different like GNmae GWorld for each version and each OS.
@pubg_dev
SDK credit Yeeee2003
GL-DEV
PUBGM_3.1_64.zip
Note : if you going Internal rendering not just add the SDK to your project, but you need to edit victors on one of sdk file named:
BUBGM_CoreUObject_structs.hpp
Change first b to p if you like
find it in chat group .
πalso be careful sometimes vtable are changes for what going to hook.
BUBGM_CoreUObject_structs.hpp
Change first b to p if you like
find it in chat group .
πalso be careful sometimes vtable are changes for what going to hook.
Bupg TW 3.1
GWorldFun = 0x102B6BCB4;
GWorldData = 0x1095266F8;
GNameFun = 0x104609920;
GNameData = 0x109171AD0;
LineOfSight = 0x750;
_________________
Bupg VNG 3.1
GWorldFun = 0x1029364F4;
GWorldData = 0x109240C78;
GNameFun = 0x1043D4160;
GNameData = 0x108E8C350;
LineOfSight = 0x750;
_________________
Bupg GL 3.1
GWorldFun = 0x1029D6C88;
GWorldData = 0x109352C78;
GNameFun = 0x1044748F4;
GNameData = 0x108F9E2D0;
LineOfSight = 0x750;
_________________
Bupg KR 3.1
GWorldFun = 0x102b4f0b4;
GWorldData = 0x0x1094f0ff8;
GNameFun = 0x1045ecd20;
GNameData = 0x10913c3d0;
LineOfSight = 0x750;
Only iOS
@pubg_dev
Best regards,
@OOOQG.
GWorldFun = 0x102B6BCB4;
GWorldData = 0x1095266F8;
GNameFun = 0x104609920;
GNameData = 0x109171AD0;
LineOfSight = 0x750;
_________________
Bupg VNG 3.1
GWorldFun = 0x1029364F4;
GWorldData = 0x109240C78;
GNameFun = 0x1043D4160;
GNameData = 0x108E8C350;
LineOfSight = 0x750;
_________________
Bupg GL 3.1
GWorldFun = 0x1029D6C88;
GWorldData = 0x109352C78;
GNameFun = 0x1044748F4;
GNameData = 0x108F9E2D0;
LineOfSight = 0x750;
_________________
Bupg KR 3.1
GWorldFun = 0x102b4f0b4;
GWorldData = 0x0x1094f0ff8;
GNameFun = 0x1045ecd20;
GNameData = 0x10913c3d0;
LineOfSight = 0x750;
Only iOS
@pubg_dev
Best regards,
@OOOQG.
π₯°38β€24π₯14π10π7π©6π€©2π―2β€βπ₯1π1
UpdataDolphins_3.1.mm
1.1 KB
Esp Updata for Dolphins Source support pubg 3.1 all Version
Only iOS or Android 64bit
@pubg_dev
Best regards,
@OOOQG.
Only iOS or Android 64bit
@pubg_dev
Best regards,
@OOOQG.
β€3π₯1π1π«‘1