1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Modding Logic? Server Sided Game

Discussion in 'Public Mod Discussion' started by Brandon Weibley, Oct 21, 2015.

  1. Brandon Weibley

    Brandon Weibley i r noob

    Joined:
    Sep 14, 2015
    Messages:
    16
    Likes Received:
    0
    Ok guys so Ive heard people say that Server Sided games cannot be modded. I understand that being server sided makes everything difficult, but it feels like there has to be some way to mod? I have been playing a game called Heroes Charge HD for months. The top players in the game bought many gems (In-App purchases) to stay at the top of the server. For months i did the same to stay at the top and now can no longer afford to do so. Ive been falling behind the top players and it feels like many months of purchasing gems have now been thrown down the drain since I can no longer stay at the top. So I am turning to modding in a desperate attempt to keep up. Before attempting to mod this game, I had no prior modding experience, although I do have a little bit of a programming background. So far the things I have tried:

    I started out with the easiest route, trying Freedom to make in-app purchases. Freedom ran through and did its job, going through the whole google play purchase process and saying purchase complete. As soon as the google purchase window closes though, I got an error saying that it couldnt be completed. This seems pretty obvious that there must be a server check at that point to see if money was actually transferred?

    I then Tried SBGameHacker and was able to edit just a few small things that helped in daily challenges that are not player vs player, but when it goes to player vs player, the game reaches out to the server and grabs the true values instead of using the values that my screen on my phone shows. I thought I was on to something when I was able to change a gear's purchase price to 1 gem. The "are you sure you want to purchase" message even said 1 gem. My screen showed my gem count only going down by 1. But as soon as I went out of the app and came back in I see that the server actually still took 255 gems instead of just 1. So there is definitely a lot of server checking going on.

    My next move was to get a little background in unity editing with .Net Reflector. I went though a tutorial and felt that I had a decent understanding just to realize very quickly when I unzipped the HeroesCharge APK that this was not Unity...

    My next move was to IDA and HxD. While trying to learn IDA I was told over and over that I woulnt be able to get around the server side issues this way, so I got discouraged and didnt bother to continue with IDA tutorials.

    One thing that really stood out to me when talking to someone else trying to mod a game that also has many server checks. He told me that the server checks were not hard to find and disable, but then the game just didnt do anything when he tried to purchase. This tells me that they arnt just server checks, but that literally everything happens at that instant when the apk reaches out to the server, so by stopping the apk from reaching out to the server you also stop the purchase from being able to happen.

    I feel like every day I realize 1 new piece to the puzzle, but I feel like there has to be someone out there who came across this type of situation and figured out a solution to it? Hopefully someone can help. Thank you guys!

    While playing around in IDA I found a few functions that have to do with in-app gem purchases. It looks like they are reaching out to the server for some type of key? If I knew exactly what the app was looking for as a return value from the server then I should be able to edit it to always equal that value, so that then Freedom would work. I have a VERY LIMITED understanding of the opicodes in ARM, hopefully someone else can help me make sense of this a little better. Here are a few functions that look like they pertain:

    EDIT: Deleting some useless code I posted. Heroes Charge HD released a new version which was actually a totally new design. The game is now written in Unity. The downside is that I was able to get a little bit of help by using SBGameHacker to do a few things like the daily campaigns, portals, instances, and Crusades since they were the only thing not checked by the server. I cant do that now that the game is unity, when I use SB the values dont change. I looked for a local database on my phone that would temp store some info, but there were none to be found
     
    #1 Brandon Weibley, Oct 21, 2015
    Last edited: Nov 16, 2015
  2. castiel

    castiel i r noob

    Joined:
    May 12, 2015
    Messages:
    33
    Likes Received:
    2
    Interesting post
     
  3. Brandon Weibley

    Brandon Weibley i r noob

    Joined:
    Sep 14, 2015
    Messages:
    16
    Likes Received:
    0
    Yes I am. I just came over when I saw your PM. I posted on where awhile back now that the game has switched over to unity maybe you will be able to help me out :) I read up on Unity a little bit the last 2 days but I haven't been able to do anything with it yet because they have hidden the assembly file somewhere so im not sure what to do. I do have Net Reflector on my computer already though :)

    See, no Assembly file:

    [​IMG]
     
  4. Brandon Weibley

    Brandon Weibley i r noob

    Joined:
    Sep 14, 2015
    Messages:
    16
    Likes Received:
    0
    Added an Edit to my main post hopefully it helps a little
     
  5. Brandon Weibley

    Brandon Weibley i r noob

    Joined:
    Sep 14, 2015
    Messages:
    16
    Likes Received:
    0
    Awesome! Mind sharing how you found it? I would love to learn also so that I can help others in the future
     
  6. tester123

    tester123 Rooted Member

    Joined:
    Nov 27, 2014
    Messages:
    569
    Likes Received:
    851
    It doesn't seem like they have the usual C-Sharp assembly. Interesting.

    In regard to modding, I've often hit the walls, and unless there are tutorials or some help/point to the right direction, you'll be stuck at that. Injection is pretty powerful, so I doubt anyone will release the method soon anyway.
     
  7. Penner2015

    VIP

    Joined:
    Oct 30, 2015
    Messages:
    114
    Likes Received:
    10
    I rly like this discussion...
     
  8. DaiCaVN

    DaiCaVN Cracking Team
    Staff Member Cracking Team

    Joined:
    May 14, 2015
    Messages:
    4,014
    Likes Received:
    23,962
    Heroes Charge will be in VIP soon
     
    ATSparhawk likes this.
  9. Brandon Weibley

    Brandon Weibley i r noob

    Joined:
    Sep 14, 2015
    Messages:
    16
    Likes Received:
    0
    Ok so Injection is still hush hush I get it :) Can you explain what injection is at least? When I hear injection I think of SQL injection into a server? BTW I know with Heroes Charge they are still releasing patches pretty frequently, will this still work or will it break after every patch? and did you guys work on the HD version?
     
  10. Dogboy69

    Dogboy69 I AR Make Video
    Staff Member Team AR

    Joined:
    Jan 26, 2015
    Messages:
    2,067
    Likes Received:
    1,209
    Injection is adding things to the game via a flaw in their security
    Usually premium currency
    The mod won't work after every patch but the modders are good at updating quickly so not much downtime
     
  11. Brandon Weibley

    Brandon Weibley i r noob

    Joined:
    Sep 14, 2015
    Messages:
    16
    Likes Received:
    0
    I just became VIP :) Looking forward to seeing what you guys are able to do :) Please throw a link here for me when ever its gets posted up. Thanks guys!
     
    #11 Brandon Weibley, Nov 16, 2015
    Last edited: Nov 17, 2015
  12. Brandon Weibley

    Brandon Weibley i r noob

    Joined:
    Sep 14, 2015
    Messages:
    16
    Likes Received:
    0
    BTW if the original Heroes Charge is where the work is done instead of HD, I just checked and I can also use my acct on the original version so I can change over when I want to use the mod. A few things that would be awesome to see would be:

    *getting extra stamina somehow or not spending it when doing Campaigns.

    *Obviously free diamonds would be awesome

    *If there was a way to set the countdown clocks to 0 on the Chests so that they could be opened over and over again that would be great (There is a magic stone chest that can only be seen by high VIP that I have access to that has great gear and stones in if I could keep that one open).

    *Inside the Arena > Grand Arena, In the redeem button on the bottom left there is a store. Free items from there or unlimited Coins for it would HELP IMMENSELY, there are also other stores that would be cool but the Grand Arena store is the most important.

    If you guys are working on modding it and have any game play type questions id gladly answer through PM here or Skype. I will help out in any way I can
     
  13. Dogboy69

    Dogboy69 I AR Make Video
    Staff Member Team AR

    Joined:
    Jan 26, 2015
    Messages:
    2,067
    Likes Received:
    1,209
    Most if not all of these ideas are extremely unlikely on a game like this.
    Stamina/energy/keys are 99.9% of the time completely server sided as are any sort of cooldown items such as free draws restricted entrance dungeons etc
    As for diamonds, we are checking to see if there are flaws that we can exploit usually hijacking info before it is sent back to the server but this is dependant on somebody at the game company not doing their job properly
     
  14. Brandon Weibley

    Brandon Weibley i r noob

    Joined:
    Sep 14, 2015
    Messages:
    16
    Likes Received:
    0
    That all would have been great to know before I signed up in VIP anticipating the MOD that would "be in VIP soon". I would have just saved my $20...
     
  15. Dogboy69

    Dogboy69 I AR Make Video
    Staff Member Team AR

    Joined:
    Jan 26, 2015
    Messages:
    2,067
    Likes Received:
    1,209
    Cant help that you completely overestimated what is actually possible when modding these sorts of game, if you indeed did do loads of research as you claimed about modding then you would have come across that these things are often protected with server checks. No modder, no matter how good can stop data that needs to be synced with the server.
    Nobody lied, we are working on the game currently and it will be in VIP
     
  16. Undrax

    Undrax i r noob

    Joined:
    Nov 16, 2015
    Messages:
    24
    Likes Received:
    2
    True, it's harder to "mod" server-sided games, the ones that store most important values, plus all that checks, etc but in general, it's not impossible. It's mostly just about finding and abusing new flaws, glitches, exploits, etc. which is the hardest part.
     
  17. Apocalyspe

    Apocalyspe i r noob

    Joined:
    Nov 28, 2015
    Messages:
    2
    Likes Received:
    0
    Guys after reading this discussion over and over i think ive came across something in my own works of modding and botting games oky so hear me out cause i plan on doing this on clash okay so i think if maybe i can do a quick freeze to the servers them inject my mod so the the server sync will skip the flaw well i had to rethink it cause thwn it will check its memory so thats when i thought maybe its possible i can delete the history during the time of the freeze so in which the acct never existed and pops up as the modded acct but that will take months to do just wanna know feed bacj
     
  18. Brandon Weibley

    Brandon Weibley i r noob

    Joined:
    Sep 14, 2015
    Messages:
    16
    Likes Received:
    0
    I know others talked about DOS/SQL Injection working. They claim the key is getting in and out during a freeze short enough that it doesnt throw a flag. As far as the check from the local client, the local content is filled from the server every time. So your covered there. This subject is usually hushed up because of it taking place on Modding forums, when its really an attack which most modding forums frown apon. Feel free to track me down on skppe though, same SN as on here.
     
  19. Dogboy69

    Dogboy69 I AR Make Video
    Staff Member Team AR

    Joined:
    Jan 26, 2015
    Messages:
    2,067
    Likes Received:
    1,209
    It is not just frowned upon it is illegal to Mod into a server which is why the discussions are hushed up.
    If you managed to Mod into a game server this whole discussion while be moot as you would have complete control anyway
     
    Myrtle likes this.
  20. Ren503

    Ren503 Guest

    Hint : just dump the apk and you will get this [​IMG]
     
Loading...
  • About Us

    Android Republic - Android Game Mods - Offering only the most advanced and exclusive android mods, protections like Xigncode are easily bypassed by our team.

    Exclusive Android Mods, android protections are no problem for us, only the best available games, here you will find only the best games such as Kritika, Summoners War, Raven, Dragon Striker, Avabel, Evil Bane, 7knights and seven knights, Darkness Reborn, Soul Seeker all fully modded and waiting for you! easy xigncode and dxshield bypass too!
  • Like us on Facebook