Pubg sdk 3.0 GL
https://github.com/saudgl/Pubg-3.0-IOS-SDK
By @saudgl

A new threat to the security of your device (TrollStore).

—

The other day, the EntySec developer presented SeaShell Framework with open source. Internet users have already called the project “Malware” for TrollStore.

SeaShell Framework is an iOS post-operation platform that allows you to remotely access, manage and retrieve sensitive information.

All an attacker needs to do is generate an IPA file and start a TCP listener.

The capabilities of SeaShell are very large:

• Camera on

• Launching applications

• Access to contacts and sms

• Access to all files in the system

• etc.

Conclusion: This development and the ease of its installation jeopardize millions of devices from iOS 14.0 to 17.0 (inclusive), especially TrollStore users.

—

How to protect yourself from attack?

1. Unzip the IPA file(s) you are going to install.

2. Check the application(s) for suspicious executable files (H: SeaShell Framework adds an executable file called musssel to its application package).

3. Open Info.plist and find suspicious records (H: SeaShell adds CFBundleBase64Hash to your Info.plist, it contains a pair of hosts <host>:<port> encoded with base64).

4. Check the hash sum of the file(s) to confirm its integrity.

Source: EntySec | GitHub
by @jailbreaked

for who don't know UE
to update your esp
long time ago I developed header I think already comes with most of projects. I set all offsets in one .h file

in front on each offset there are text coped from sdk

all you need copy the text and search for it the sdk file and take its offset

in case there many results I set the structure name beside the text
structure name *if not set that mean its same as previous one or is unique search results

for example:

long mesh = 0x458;//*struct ACharacter : APawn {
    //struct USkeletalMeshComponent* Mesh; // Offset: 0x458 // Size: 0x08
    

the offset located under :
ACharacter : APawn

in line:

USkeletalMeshComponent* Mesh; // Offset: 0x458 // Size: 0x08
  
so its 0x458

If you would to do it your self read
UE4.27

https://docs.unrealengine.com/4.27/en-US/

Function Caller :
Sometimes you need to know who the caller of function when hooking

In Objective-C, you can use the NSLog function to print the caller's address or name. Here's an example of how to do this:

- (void)someMethod {
    NSLog(@"Caller address: %p", __builtin_return_address(0));
}

This will print the address of the calling function. If you want to print the name of the calling function, you can use the __PRETTY_FUNCTION__ macro:

- (void)someMethod {
    NSLog(@"Caller name: %s", __PRETTY_FUNCTION__);
}

In C++, you can use similar techniques to print the caller's address or name:

void someFunction() {
    std::cout << "Caller address: " << __builtin_return_address(0) << std::endl;
}


void someFunction() {
    std::cout << "Caller name: " <<

 PRETTY_FUNCTION 

<< std::endl;
}

Keep in mind that getting the name of the calling function is not always straightforward, and it may not be possible in all cases.

for more examples:
*this not ARM
https://hdevstudy.tistory.com/m/150

Bubg GL 3.0 kill msg
0x1076BD1D0

working and tested

Engine SDK
credit to aynb6

vTables for Game Hacking , If you don't understand, watch it again more than once .
https://www.youtube.com/watch?v=HfrBdf-hM28&ab_channel=GuidedHacking

Bubg BGMI 3.0 IOS

GWorldFun -> 0x1022BB9A0
GWorldData -> 0x10891F538
GNameFun -> 0x103DCFB80
GNameData -> 0x108572F70
LineOfSightTo -> 0x104E35BE8
LineOfSightTo -> 0x750

,
Best regards @OOOQG

Bubg VNG 3.1
GNameFunction: 0x1043d4160
GNameData: 0x108e8c350
GWorldFunction: 0x1029364f4
GWorldData: 0x109240c78
LineOfSightTo_Func: 0x105481464
GUObjectArray: 0x109131158

@pubg_dev

credit chunmod_vn

Engine SDK 3.1 64
*SDK are almost same for all versions also same as Android
@pubg_dev

credit WalterBoss

Internal SDK
I don't test yet

sdk almost same for all version

if you have difficulty on getting offset just take Android offsets caz there are same. however,android are everywhere. only real address are different like GNmae GWorld for each version and each OS.
@pubg_dev

SDK credit Yeeee2003

Kill message VNG

0x107698470

@pubg_dev

credit to developer @mirwani 🌺❤️

Note : if you going Internal rendering not just add the SDK to your project, but you need to edit victors on one of sdk file named:

BUBGM_CoreUObject_structs.hpp
Change first b to p if you like

find it in chat group .

🛑also be careful sometimes vtable are changes for what going to hook.

Bupg KR 3.1

GWorldFun: 0x102b4f0b4
GWorldData: 0x0x1094f0ff8
GNameFun: 0x1045ecd20
GNameData: 0x10913c3d0
LineOfSightTo: 0x10535c47c

@pubg_dev
By @saudgl

Bupgm GL 3.1:
GNameFunc = 0x1044748F4
GNameData = 0x108F9E2D0
GWorldFunc = 0x1029D6C88
GWorldData = 0x109352C78
GUObjectArray: 0x109243158
@pubg_dev

by 𝚈Δ𝚀𝙾𝚄𝚃 @abrhmanm

Bupg TW 3.1
GWorldFun = 0x102B6BCB4;
GWorldData = 0x1095266F8;
GNameFun = 0x104609920;
GNameData = 0x109171AD0;
LineOfSight = 0x750;

_________________

Bupg VNG 3.1
GWorldFun = 0x1029364F4;
GWorldData = 0x109240C78;
GNameFun = 0x1043D4160;
GNameData = 0x108E8C350;
LineOfSight = 0x750;
_________________


Bupg GL 3.1

GWorldFun = 0x1029D6C88;
GWorldData = 0x109352C78;
GNameFun = 0x1044748F4;
GNameData = 0x108F9E2D0;
LineOfSight = 0x750;
_________________


Bupg KR 3.1

GWorldFun = 0x102b4f0b4;
GWorldData = 0x0x1094f0ff8;
GNameFun = 0x1045ecd20;
GNameData = 0x10913c3d0;
LineOfSight = 0x750;

Only iOS
@pubg_dev

Best regards,
@OOOQG.

Esp Updata for Dolphins Source support pubg 3.1 all Version

Only iOS or Android 64bit
@pubg_dev

Best regards,
@OOOQG.

For who asked
GL 3.1
LineOfSight = 0x105521bf8

Bgmł 3.1 - IOS

GNamefun: 0x103DA8D38
GNameData: 0x10857B0D0
GWorldFun: 0x10230F4C0
GWorldData: 0x10892CC78

LineOfSightTo: 0x104E4EBB4
LineOfSightTo: 0x750

GUObject: 0x10881D158
Skin Hook: 0x106FB41F8
Actor offset: 0x104F930E8

shared from:
@pubg_dev

by @mirwani