Continuing to Mod Pixel Gun 3D, But I Keep Hitting a Snag

Wolzen Two said:
[Attachment removed from Quotes]
I found a Boolean that could possibly correspond with the signature check. Could I replace this method with a NOP code and be on my way?
Click to expand...
No if it's boolean you have two options true or false ... and i don't think that's the right function
 
Two things:

#1: Signature verification (The game can tell that the apk was not signed by the original signature at runtime)
#2: libil2cpp.so file HMAC verification (Hex editing the libil2cpp.so will change the files HMAC md5 and the game checks the HMAC hash at runtime)

There is more detection than just those in Pixel Gun 3D altogether. Also, trying to change the health to MOV R0, #65535 is not a good idea. That function is also wrong. The goal to achieving godmode is not by changing the players health to a high value. A better idea would be to make the player immune to being damaged by other players and/or the void and to make it so that the game does not subtract health upon taking damage.

It can all be bypassed.
I've done it before lol.
 
Jbro129 said:
Two things:

#1: Signature verification (The game can tell that the apk was not signed by the original signature at runtime)
#2: libil2cpp.so file HMAC verification (Hex editing the libil2cpp.so will change the files HMAC md5 and the game checks the HMAC hash at runtime)

There is more detection than just those in Pixel Gun 3D altogether. Also, trying to change the health to MOV R0, #65535 is not a good idea. That function is also wrong. The goal to achieving godmode is not by changing the players health to a high value. A better idea would be to make the player immune to being damaged by other players and/or the void and to make it so that the game does not subtract health upon taking damage.

It can all be bypassed.
I've done it before lol.
Click to expand...
Ouch. By the way you put things, it sounds like bypassing this protection would deserve a walkthrough on its own.
Also, I left a little cliffhanger on my previous post which mentioned whether or not I'd make this mod public should it be finished. I do not plan on redistributing any scripted code, as this is a personal endeavor only, as in no close friends of mine are helping me. Being a follower of your channel, I decided to tell you this for obvious reasons.
With that out of the way, I'd appreciate if you'd make a post compiling all the protections there are that could freeze the game like this. Thanks in advance.
 
Last edited:
Wolzen Two said:
Ouch. By the way you put things, it sounds like bypassing this protection would deserve a walkthrough on its own.
Also, I left a little cliffhanger on my previous post which mentioned whether or not I'd make this mod public should it be finished. I do not plan on redistributing any scripted code, as this is a personal endeavor only, as in no close friends of mine are helping me. Being a follower of your channel, I decided to tell you this for obvious reasons.
With that out of the way, I'd appreciate if you'd make a post compiling all the protections there are that could freeze the game like this. Thanks in advance.
Click to expand...

There are a few detections in pg3d

#1: libil2cpp.so HMAC hash verification
#2: APK signature verification
#3: Gems and Coins cheat protection
#4: Memory editing protection (GameGuardian)
#5: GodMode detection (checks if player health is above the max available for the mode)
#6: Parallel Space Detection (most multi-account app detection). There are multiple detections used so the game can know if it's being run in one of those apps.
#7: Checks for certain package names installed on your device like the old Chinese GG PG3D mod and my old launcher buyer.

There are probably more that I missed.

Some methods the devs have used to stop mods is by:
#1: Making the app freeze when loading
#2: Shop button doesn't work
#3: Can't connect to the server or can't play online.
#4: Resets your progress (wipes current player data)
#5: Kicking a player mid game (Other players in game start to freeze then you get sent back to the main menu out of nowhere).

I probably missed some there too.
 
Jbro129 said:
There are a few detections in pg3d

#1: libil2cpp.so HMAC hash verification
#2: APK signature verification
#3: Gems and Coins cheat protection
#4: Memory editing protection (GameGuardian)
#5: GodMode detection (checks if player health is above the max available for the mode)
#6: Parallel Space Detection (most multi-account app detection). There are multiple detections used so the game can know if it's being run in one of those apps.
#7: Checks for certain package names installed on your device like the old Chinese GG PG3D mod and my old launcher buyer.

There are probably more that I missed.

Some methods the devs have used to stop mods is by:
#1: Making the app freeze when loading
#2: Shop button doesn't work
#3: Can't connect to the server or can't play online.
#4: Resets your progress (wipes current player data)
#5: Kicking a player mid game (Other players in game start to freeze then you get sent back to the main menu out of nowhere).

I probably missed some there too.
Click to expand...
How would one go about adding a 1-hit kill mod considering these circumstances?
 
Wolzen Two said:
How would one go about adding a 1-hit kill mod considering these circumstances?
Click to expand...
A 1 hit is the most riskiest mod you can get for fps game even without those checks ... most convenient mods would be esp ... magic bullets ... aim assistance... but this require a bit advanced knowledge considering it's an il2cpp ... but won't hurt to have some boosted damage ... no recoil ... fire rate increment or anything that isn't suspicious
I can try later to release a public mod haven't checked the game yet
 
icry4u said:
A 1 hit is the most riskiest mod you can get for fps game even without those checks ... most convenient mods would be esp ... magic bullets ... aim assistance... but this require a bit advanced knowledge considering it's an il2cpp ... but won't hurt to have some boosted damage ... no recoil ... fire rate increment or anything that isn't suspicious
I can try later to release a public mod haven't checked the game yet
Click to expand...
Fair enough. I still have a lot to learn when it comes to adding ESP and magic bullets to Android game though. Could anyone point me to a tutorial thread that's easy to understand for beginners?
 
marse12 said:
@Jbro129
libil2cpp.so HMAC hash verification ?
can you show me , i mean like what's that?
Click to expand...
This is me guessing since i havent come across hmac verification but what i would try doing is:
Get the unmodded HMAC hash => find the function that returns the HMAC in run-time => force it to return the unmodded HMAC hash that we previously got.
 
Last edited:
You must log in or register to reply here.
Back
Top Bottom