3.9
LineOfSightTo offset : 0x7a0
Yaw : 0x880
Roll: 0x888
Pitch: 0x878
β€2
GL 3.9
GNameFun: 0x1049A3510
GNameData: 0x10A217E50
GWorldFun: 0x1029d1558
GWorldData: 0x10a8bb0e0
LineOfsight: 0x105fcc5d4
GUObject: 0x10a6a4cc8
ActorDecr: 0x10613042c
by @saudgl
shared from @Bubg_dev
//GL 3.9
if([bundleIdentifier isEqualToString:@"com.tenβ¦in"]) { ///UP GL 3.9.0 make sure from bundle name
kUWorld = "0x10681620C";
kGNames = "0x1049A3510";
hookHUD = "0x1087B1958";
kGetHUD = "0x10339B304";
kDrawText = "0x1064A9628";
kDrawLine = "0x1060C8988";
kDrawRectFilled = "0x1060C88F8";
kDrawCircleFilled = "0x1064A9A94";
kEngine = "0x10A8B9EE";
kLineOfSight_1 = "0x1049A3C04";
kLineOfSight_2 = "0x10A8A2250";
kLineOfSight_3 = "0x105F1793C";
kLineOfSight_4 = "0x105F17A4C";
kLineOfSight_5 = "0x105F226CC";
kBonePos = "0x1030FE934";
kProjectWorldLocationToScreen= "0x1060732B0";
//GUObjectArray 0x10A6A4CC8
}
By a group member
Sahred from @bupg_dev
β€3
ActorDecr Addresses For PβG V3.9:
// GL:
ActorDecr: 0x10613042C
// KR:
ActorDecr: 0x1062DA8F4
// VN:
ActorDecr: 0x10607D3FC
// TW:
ActorDecr: 0x1062B13FC
//by @OOOQG
//shared from @Bubg_dev
π€£11β€7π«‘3π2
For jailbreak users if you install Frida, Game will crash , even with the Hide jb tools will be detected
flags Frida detected .
to solve it try hook like :
OR:
Create an anchor file, e.g. /etc/pf.anchors/fridablock with:
"block in quick on lo0 proto tcp from any to any port { 27042, 27043 }"
then Edit /etc/pf.conf and add at the end:
anchor "fridablock"
load anchor "fridablock" from "/etc/pf.anchors/fridablock"
then Reload pf:
pfctl -f /etc/pf.conf
pfctl -e
OR:
use Kernbypass
flags Frida detected .
to solve it try hook like :
static int (*orig_connect)(int, const struct sockaddr*, socklen_t);
// our replacement
static int my_connect(int sockfd, const struct sockaddr *addr, socklen_t addrlen) {
if (addr->sa_family == AF_INET && addrlen >= sizeof(struct sockaddr_in)) {
const struct sockaddr_in *in4 = (const void*)addr;
uint16_t port = ntohs(in4->sin_port);
if (in4->sin_addr.s_addr == inet_addr("127.0.0.1")
&& (port == 27042 || port == 27043)) {
// pretend there's no server
errno = ECONNREFUSED;
return -1;
}
}
// otherwise, do the real connect
return orig_connect(sockfd, addr, addrlen);
} // then use any hook it using method like dobby or substrate, etc ..
OR:
Create an anchor file, e.g. /etc/pf.anchors/fridablock with:
"block in quick on lo0 proto tcp from any to any port { 27042, 27043 }"
then Edit /etc/pf.conf and add at the end:
anchor "fridablock"
load anchor "fridablock" from "/etc/pf.anchors/fridablock"
then Reload pf:
pfctl -f /etc/pf.conf
pfctl -e
OR:
use Kernbypass
β€2
I dev easy way to hook with dobby in rootfull-jailbreak . look at and read instractions : https://github.com/saudgl/BaseGetter-with-Dobby-iOS-hook
GitHub
GitHub - saudgl/BaseGetter-with-Dobby-iOS-hook: iOS Hook
iOS Hook . Contribute to saudgl/BaseGetter-with-Dobby-iOS-hook development by creating an account on GitHub.
β€2
dumps_all_Frameworks_bubg39_GL.zip
1 MB
π Here the all classes dump for ALL Frameworks . enjoy π₯°, if you ask is all Frameworks important ? yes its!! but not all.
Include: ShadowTr.. and Anogs
Include: ShadowTr.. and Anogs
β€1
HideGL1.dylib
166.5 KB
I dev this tweak based on users requests
"HideGL1" is a tweak designed to conceal jailbreak detection and resolve intentional crashes caused by Games if they detect you using like Frida GamePlayer , GameMaster, GameMasterPlus , GameGemiOS , iGameGuardian .
It complements other jailbreak-hiding tweaks such as Shadow and iHide by covering detection vectors they may miss. Using "HideGL1" alongside these tools can provide comprehensive jailbreak concealment for games. by @saudgl @Bubg_dev
"HideGL1" is a tweak designed to conceal jailbreak detection and resolve intentional crashes caused by Games if they detect you using like Frida GamePlayer , GameMaster, GameMasterPlus , GameGemiOS , iGameGuardian .
It complements other jailbreak-hiding tweaks such as Shadow and iHide by covering detection vectors they may miss. Using "HideGL1" alongside these tools can provide comprehensive jailbreak concealment for games. by @saudgl @Bubg_dev
β€5
use this to run app on xcode like run game in xcode to trace it live debug
if you face domain error : XCode -> File -> Project setting -> Advanced -> legacy
how is work ? rename you IPA file to app.ipa the put on "IPAPatch/Assets/app.ipa" then enjoy
https://github.com/saudgl/IPAPatch-saudgl
if you face domain error : XCode -> File -> Project setting -> Advanced -> legacy
how is work ? rename you IPA file to app.ipa the put on "IPAPatch/Assets/app.ipa" then enjoy
https://github.com/saudgl/IPAPatch-saudgl
GitHub
GitHub - saudgl/IPAPatch-saudgl: Patch iOS Apps, The Easy Way, Without Jailbreak.
Patch iOS Apps, The Easy Way, Without Jailbreak. Contribute to saudgl/IPAPatch-saudgl development by creating an account on GitHub.
PB 4 GL = Global
GName Fun : 0x104ab914c
GName Data : 0x10a3ed0e0
GWorld Fun : 0x102a3a7f8
GWorld Data : 0x10aa91290
GUObject : 0x10a87ac70
LineOfsight : 0x1060e7b8c
ActorDecr: 0x10624b5ac
By @saudgl
@Bubg_dev
π₯1
ActorDecr Addresses For PβG V4:
// GL:
ActorDecr: 0x10624B5AC
// KR:
ActorDecr: 0x1063F5AA4
// TW:
ActorDecr: 0x10619858C
// VN:
ActorDecr: 0x1063CC58C
//by @OOOQG
β€1π1π«‘1
Forwarded from GL-DEV2
PB 4.1
0x10A4A4A70 VNG GUObject
0x104A847E0 VNG GName
0x10A7A7370 KR GUObject
0x104cdd26c KR GName
0x10A5DF0F0 GL GUObject
0x104b4449c GL GName
GL-DEV
by @abrhmanm
Forwarded from GL-DEV2
SDK ( internal & external)
https://github.com/saudgl/-Pubg-4.1-IOS-SDK-GL/
https://github.com/saudgl/-Pubg-4.1-IOS-SDK-GL/
GitHub
GitHub - saudgl/-Pubg-4.1-IOS-SDK-GL
Contribute to saudgl/-Pubg-4.1-IOS-SDK-GL development by creating an account on GitHub.