#development

Eudy

Rusy

Rust

yes

No

it is rust

Rsut is horrifying

I've committed war crimes while learning rusr

Do you need a dev account to be able to sign safari extension apps. No it’s not for piracy thinking of making my own

Wtf is this https://developer.apple.com/documentation/contacts/cnlabelcontactrelationyoungercousinmotherssiblingsdaughterorfatherssistersdaughter

The label for the contact’s mother’s sibling’s younger daughter or father’s sister’s younger daughter

god they really made an enum of all of them, impressive

who wasted their time on that

someone at apple did something bad and got punished

this shit is so easy to make tho

this is also funny:

Oct  5 15:22:06 familycircled[7342] <Error>: No iCloud, no family. You know the rules.                                                                    ```

I’m crying lmao

https://twitter.com/zhuowei/status/1445908647930904579?s=21

Process()

is this actually in serial log

I think it was syslog but yeah

are you able to see it on a jb devic

yes, even without JB

just Console.app on macOS or idevicesyslog otherwise

on a JB device oslog may work on-device

do you have to be signed in

out

of ic

no that's the whole point, this happens if you're not logged in to iCloud

alr

who fucking made that string tho frfr

the amount of shit that has been enumed by apple is unbelievable

the not useful things that have been enumed*

enumed, that's a brand new word

enum -> enumerate/enumeration | enumed -> enumerated

me -> your mom -> you

😳

arent i older than you?

how old are you

12

.

wtf

im not 12

missclick

im 11

I turned 16 in September

So

hah loser

hah loser

I turned 16 in July

hah loser
I turned 16 in January 2015

Ok grandpa

tell us stories abt the wars you fought in

Since you’re old

hah loser

youre old and shit

cases = cases.cases amazing code

Isn’t oslog a tweak?

Also that menubar kinda fresh doe 😳

yes it is, but its a console tweak

you just need to look at the syslog

so after you install it you can run the oslog command

Sir that’s called a cli utility

im putting it in terms i think the whitename can understand

i do that sometimes

bruh... i have rats in my walls

i still havent gotten to gage the knowledge

i legit hear rats running all around

my walls

L

and i hear them too

like their annoying little noise

when they eat

i used to have squirrels in my rafters

and then we finally kicked them out

and like 3 in the morning all i would hear would be

bruh how tf do i get rats out my walls

great the walls

bro has Taylor swift in his walls

rattatatatatattatatatatatatata brrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr skskskskskskkkskksks

bro has whitenames running around

Fiore got that dev role and forgor how to act

im taking a shit and i heard a fucking rat do his minion high pitch noise for the longest time

im taking a shit and i heard a fucking rat do his minion high pitch noise for the longest time

Any oslog cli deb that actually works on 14

im just superior to everyone

My guys got the minions in his walls

shit on the rat

thats not higher than me on the foodchain

figure out how to access syslog

the ideal way is through a computer

Just use console.app 💀

Console.app

not everyone has macos

not everyone has a mac

^

i dont

broke asses

Cope then

I know Nathan does tho

but i still use syslogs

There’s some libimobiledevice utility for it

console.app is just a frontend for device syslog

idevicesyslog

wait libimobiledevice was built for windows

yes

Idevicesyslog ez

i ssh into my phone and run the oslog command on that ssh thing

ez

DCSD cable

Ez

ssh without USB is the slowest thing

Ever

ssh over usb is cum

Sex over usb

depends what you are doing over ssh

if you just using theos/syslog and running simple commands over ssh. you don’t really need the usb its still pretty fast

not for me

My terminal starts to lag

tremendously

is ur router good?

Doing, well, anything over non USB ssh

In terms of what

Like

General internet speeds?

bandwidth

It’s very fast

dk then. what terminal do you use on your computer

iterm 2

Does it lag with stock terminal.app

Yes

they do the same thing

people who use stock terminal are kinda weird

just download it2 bro!!

idk it doesn’t lag for me, but then again i don’t run that many commands on it

i use on device lldb and it works decent

it lags sometimes but no hella

I Brick my os installs so often I don’t get around to reinstalling it

it takes one second

bruh

have you tried

not 'bricking' your os installs

my terminal gotta be all setup before i can even do anything

i think my ssd is failing rather than me bricking them tbh

i use stock term

Read/write speeds are getting slower by the day

L

Available Spare Threshold: 99%
Percentage Used: 1%
Data Units Read: 44,269,572 [22.6 TB]
Data Units Written: 27,111,259 [13.8 TB]
Host Read Commands: 609,098,871
Host Write Commands: 261,952,897

that's my mac

Give the tool you used and I will show mine

smartctl

brew install smartmontools

I think from last time smartctl just didn’t be very smart with my ssd

i am going to hunt for this on my ipod 7 syslog when i get home

Well then

That’s a few more “old age” and “pre-fail” from when I last checked

your_mom()

@grave sparrow do I just need to add setuid and setgid for a root helper tool

for it to run things as root

then you can give it any command to run as root and it’ll do so?

What if I verify who spawns it

Run 1 command as root

That’s it

dimentio

there is libdimentio but idk how I’d use that

But that requires root too I think

yes sir

like this

wheee is the like this tho

Ok nvm

LOL

thanks

So that’s for the helper tool itself?

o

Hello mr assembly man

execl() is the obj c version of System()?

Would you be my friend if I made a hook for gameseagull in assembly?

Like pure assembly

o

I just use posix_spawn

same

How can I access this.potion variable in PhuThuy.js to use in index.js guys ?

Isn’t that bad

Wouldn’t that crash the app

We hate JS

o

Really lol

Thanks!

@grave sparrow on one last question

I’d have to create a make file for the new tool

Right?

In the original make file

What do I put

To tell it to the compile the helper tool

Wouldn’t this make a separate deb for the helper tool?

Indeed

W

thank youuuuuuu

Thank you

Looks epic

Will do it later and tell you how it goes 😁

I never figured out, how do you configure Xcode to use make files

I don’t want to keep switching between terminal and Xcode

🤨

ohhh

Can you do that without an xcodeproj

I started writing code for jb stuff by putting a Package.swift so Xcode would open the source root properly

It’s def a nice setup

Package.swift is fun

true

@lime pivot dumb question, but can something that uses $(THEOS_MAKE_PATH)/library.mk makefile use the LIBRARIES flag? like for example randomLib_LIBRARIES = MobileGestalt

do not fr me.

thank you

anyone know react? i need some help

i have no idea why, but using axios to make a post request makes my page refresh. fetch doesnt

try reacting to the times and using a better language

Is Lua used?

ive used react and vue react def on top

react typescript specifically

He is not. Why do you think he is an admin for this server

I am making some xenHTML widgets and was wondering if there is a way I can emulate an iphone on my pc so I dont have to upload the files to my phone everytime I want to preview it?

Maybe the Xcode iPhone simulator and Simject would work

have you hear of xenlive before? thought it was interesting but there is barely any documentation on it and abt how to set it up

The vscode thing? Yeah I remember but I haven’t heard anything about it since

Maybe someone here will know

WWTC doesn’t have the best track record of tweaks announced there actually coming out though

Thanks, I will check out the xcode simulator

Its HTML... can use a browser

lies.

HTML Requires an IDE

no it doesnt

nothing does

almost like i was joking

i can use a browser, but i cant get any info such as time and dates

without altering the code for it to work on pc instead of iphone

NO FUCKING WAY

yeah that's been around a while, it's amusing

What is wildcard

what lang uses .s? i think swift doesnt

nvm

its assembly

im uncultered

It’s assembly but a certwin type of assembly

Like one uses .asm but one with better syntax uses .s

I think

is this what the whole

at&t vs intel

thing is about

https://stackoverflow.com/questions/34098596/assembly-files-difference-between-a-s-asm

Sorry I’m not well versed in assembly yet

what’s the difference between .s and .S

What’s the difference between jpg and jpeg

ah

that surprisingly made sense

yeah

i do actually

you got a problem?

gcc is a console tweak

did you finally turn off the gpu?

fan

?

damn

@hardy glen birdshit in da ida

autoshot wen

gl

._.

fiore has left the chat

Just when the talk abt a stable .1 release began

real ones only use objdump

leak dylib please

/s ofc im not pirating

yeah ofc bestie

wtf

no it only processes the one

i remember i was trying to use a .s file in a theos project and it kept shitting itself until i changed it to .S

cflags n shit don't work on .s files only .S

idk why .s even exists

forgot about that project

i was trying to make a chip8 interpreter in raw arm

with theos?

damn you got me there bro

should it work? I can fix it

reaction

is there even a difference between .s and .S?

one is capitalized

well that makes it clear as mud thanks

i think you need your eeyes checked

True

no i don't think .s is supposed to support it

ida true

has anybody seen problems with substrate on 14.6+? I saw somebody say that on reddit but it has no details or info

only thing I've seen to indicate there are issues other than one reddit post is some suspect GIR spam that makes no sense

you are insane

truly

just make it in C like a normal functioning human being

Isn’t it broken

Not that I know of it worked fine when i tested it

there was a tag explaining that substrate was broken on 14.6+ on here

!t checkra1n

Oh safe mode is broken

nvm

Which seems to have no basis in reality

Where is any info about this?

Or person with the problem or how to duplicate it or anything

Yes that bs message is why I’m asking for anybody with a legit issue with it

See, I think @steady nest was able to reproduce it

But I never was

I restored roots and re jail broke like 5 times

And no issues

@tepid olive I don’t think you were able to, either

If anybody can get me crash logs or how they duplicate an issue (or you know let me know when there is something having issues so I can look at it lol)

yeah I didn’t have any issues with Substrate on 14.6+ so far but I’ve only used it rarely

I just installed it on my a10x and it broke, 14.6 and 14.7

send a mfin log

A11 is fine for me

only A10X I have is the Apple TV 4K which only supports Substitute

Not gonna ruin my install for some logs

BRUHHHH

hmm

whats with you and the memory leaks man

#development message

substrate was fine on 14.7.1 on my 6s

@grave sparrow mfer forgot how to enter dfu

wdym Apple's website doesn't even say how to enter DFU

Its so.ewhere on the dovs

Docs

I remember apple has a page for dfu

But it was very vague

it explains what it is yes

but the link to "how to enter DFU" just shows how to enter recovery

oh idk the difference between those

booba

are you using a usb c cable @grave sparrow

you're not using USB-C right?

@grave sparrow did you just fail a restore

have to make sure man

hi

Toilet vat

Cat

gm

One time I wasn’t able to go into dfu, the apple logo would flash for like half a millisecond

After a failed restore

iOS 15 lets you enter DFU with USB-C btw but only from normal mode, not from recovery

and for some reason when entered this way, DFU times out after 2 minutes

oh wow if only there were an Apple device that actually had USB c

So the restriction is an OS thing??

bruh

mfw

why did that restriction even exist

someone said they're probably just working around it by spoofing the accessory ID or something

Do you need dfu for checkra1n

uhh I seem to attract them somehow

they're not changing DFU itself

#779134930265309198 message

.

Siguza tried it and it worked for him too

dfu always times out after 2 minutes

unless it's pwned

sometimes it times out even when pwned for me

but sometimes it stays there forever unless I reboot it

you literally just enter DFU the same way as before from normal mode

but it works with USB-C too on iOS 15

wtf i do

(this time)

hope your brain bootloops mid restore

i believe that's called a stroke

did you try another cable

time to give it up

no more iphones

Hello. Does anyone know how to extend a Mach-O segment?

Commit a toilet cat move and move to Android

Of course - but it always gets killed

Something something ldid

Something something

otool -tV /Users/aiden/binary2
/Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/objdump: '/Users/user/binary2': truncated or malformed object (load command 6 with size less than 8 bytes)
```

No idea

I'm trying to figure out how to do it properly

seems to happen when I enter (long) urls in Safari, see this url for example

It crashes my notes app

lmfao

lol

Whenever I try to write to certain headers it'll error

Safari seems to have even more trouble when I create urls that are around the 12mb lol

I don’t blame it

It almost seems like Safari wasn't built for large urls

now my new question is how do I patch it properly

ask the assembly man

might have something to do with it trying to convert all âæ characters to url encoded

does the segment have padding?

it’s not that easy

depending on where the segment is, one might need to rebase every other segment as well

which is also not easy because you might need to deal with fixups as well

that's what I have been trying to do (by increasing the offsets)

the only segment that’s easy-ish to extend is LINKEDIT afaik

since it’s usually the last one

(see codesign_allocate)

well I'm trying to extend __TEXT so i can insert code

(and before anyone ask s- no I can't just inject a dylib)

So I hav to find a way to static modify the code of the program

(and change entrypoint but yeah)

Whenever I try to overwrite the LC_SYMTAB, even if I make no modifications, it errors...

@grave sparrow Do I also need to increase vmaddr?

0x0000000100000000 yep

Yes, but I'm extending it so doesn't the address for the next commands have to increaase by the same amount?

alright

truncated or malformed object (for BIND_OPCODE_SET_DYLIB_ORDINAL_ULEB bad library ordinal: 8 (max 4) for opcode at: 0x0)
hmm

@grave sparrow I might've found the problem

I need to list symbols.

Symbols seem to be pointing 16 bytes behind where they hsould

Now I can hopefully figure it out

has anyone tried getting the mouse cursor effects working on iPhone

Any solutions?

@proper reef

<@&355177530061357057>

prefix Objective-C string literal with @

OH YEAH

write correct code

I’m dumb af

lmao

yeah we all make dumb mistakes sometimes

mod menu

still trying to figure out how to properly expand a mach segment

how my nuts taste

night

Pipe down

| down

@developers

gm

wow shit server

cant ping all devs

<@&355177983398641674>

stfu

they also installed theos to root

@developers

bruv.

DElveoper

s

<@&355177983398641674>

slim’s kittenRole icon, Developers
—
Today at 5:59 PM
@Developers

I’m starting to think it’s not “another”

bruh

<@&896169980779962380>

yoooo

bruh

ok you may have a girlfriend but have you ever seen an obese man shooting heroin outside of a tj maxx

thought not.

<@&355177983398641674>

yay i got it

@indigo peak

dont you bruh_l me

dont you bruh_* me

dont you bruh* me

Wildcard bruh

i swear to god

wtf

bruh squid game was weird asf

jokes on you asterisk matches 0 or more occurrences

@twilit jungle

dbruv

👻

d ^

hi there dbruv

i mean dbruv

dbruv

dbruv

sorry

dbruv

dbruv

dbruv

?????

im gonna make a tweak that automatically adds text replacement to dgh0st to dbruv

Except "Bruh" wouldn't match "bruh*"

grep -i

or [Bb]ruh.*

grep -i bruh.*

https://www.deviantart.com/aenami/gallery

you can thank me later

whatrs that

art

nice

looks nice as wallpapers, ngl one of the best artwork i’ve seen

/\W*(bruh)\W*/ig

fuck regex

wtf is all that junk for

around it

idk stackover flow gave it to me

i assume \w is the same as \W

it seems pointless when you can just match .*bruh.*

its supposed to ignore case, and catch all bruhs, no matter what's around it

this should do it

itll remove all the surroundings too

/.*bruh.*/i works

this is why i dont regex

who the fuck likes to regex

besides kabir

yes

what's wrong with that regex

it looks fine to me

there is nothing wrogn

im saying it works

i'm talking about this

i mean

who enjoys regex

like

honestly

i do

it's very useful

im currently trying to write tweaks without logos

because i want to feel cool

idk what that is

logos is the typical language for tweaks

its what implements all the directives

hmm

like %orig; %hook\%end %new

wth

so how im trying to write a tweak not using that

in pure objc

and then after that

assembly!

you’re aware that there are more humane methods of torture right?

yes, bit it would be funny

plus i want scoob and capt to like me again

false.

@gentle grove ```OBJC
#include "Tweak.h"
#include <substrate.h>
#include <Foundation/Foundation.h>

// Without logos

@interface ArcheryScene
@end

static void hook_ArcheryScene_setWind(ArcheryScene *self, SEL cmd, float power, float angle);
static void (*orig_ArcheryScene_setWind)(ArcheryScene *self, SEL cmd, float power, float angle);

static void hook_ArcheryScene_setWind(ArcheryScene *self, SEL cmd, float power, float angle) {
orig_ArcheryScene_setWind(self, cmd, 0.0, 0.0);
}

attribute((constructor)) static void init() {
MSHookMessageEx(
objc_getClass("ArcheryScene"),
@selector(setWind:angle:),
(IMP)&hook_ArcheryScene_setWind,
(IMP *)&orig_ArcheryScene_setWind
);
}```
yields the same result as

%hook ArcheryScene
// with logos

-(void)setWind:(float)arg1 angle:(float)arg2 {
    %orig(0.0, 0.0);
}
%end

wth

dumb language

how about you ```objc
#include "Tweak.h"
#include <substrate.h>
#include <Foundation/Foundation.h>

// Without logos

@interface ArcheryScene
@end

static void hook_ArcheryScene_setWind(ArcheryScene *self, SEL cmd, float power, float angle);
static void (*orig_ArcheryScene_setWind)(ArcheryScene *self, SEL cmd, float power, float angle);

static void hook_ArcheryScene_setWind(ArcheryScene *self, SEL cmd, float power, float angle) {
orig_ArcheryScene_setWind(self, cmd, 0.0, 0.0);
}

attribute((constructor)) static void init() {
MSHookMessageEx(
objc_getClass("ArcheryScene"),
@selector(setWind:angle:),
(IMP)&hook_ArcheryScene_setWind,
(IMP *)&orig_ArcheryScene_setWind
);
}

.

that was the intention

but i dont brain

yeah i know exactly what that does

Cursed as fuck lmao

hah no

can confirm, no he does not

i just asked him

understood

wait

what

fuck you capt

Wait a second wouldn’t it be #2? @grave sparrow

I’m a bit rusty tho

Yeh

That’s something Snapchat definitely did in the past

Fuckers

Cryptic mr snapchat man

@faint timber

its going great!

no

no

no

oh god fiore knows more asm than i do

f

cryptic is mr snapchat man

@next wadi wtf why are you orange

wha

wait

joe mama

idk why but i forgot that develpoer was orange

for like 3 mins

anyone have libiresolv.9 dylib for iOS

🗿

It’s a learning process , but I don’t wanna learn anymore

https://developer.apple.com/documentation/foundation/nstask/2890105-launchandreturnerror?language=objc

i love the extensive documentation

self explanatory

https://tenor.com/view/tom-tom-and-jerry-waiting-tom-waiting-gif-17813304

new devs after they are told to google

shut up

Ok but they deprecated the one with documentation and put one that doesn’t have any

also the method was kinda hard to find on the website

On the NSTask page

launch

and

return

error

you know what I mean

why tf is it growling

have you ever touched a cat before

Hearse when he’s told to google how cats work

https://tenor.com/view/tom-tom-and-jerry-waiting-tom-waiting-gif-17813304

which type of touching are you talking about

?????????????????

who was that

you saying you touch cats with baseball bats

normal interactions with a cat

that’s not it growling

That’s it purring

Means they’re comfortable

?!

Nah don’t delete it

Cause I caught you

WTF

NAH

caught you too

TJATS FAKE

thats wht they all say

Your honor

Hearse is fabricating evidence

deleted

Wtf

https://tenor.com/view/tom-tom-and-jerry-waiting-tom-waiting-gif-17813304

you after peta is at your door

Shit bro

My whole career is over

I’m gonna fake an ID to mexico

nah don’t delete it

https://youtu.be/uuU2AmXNFzs

https://tenor.com/view/hehe-gif-19830599

This is very confusing.

I am trying to properly extend a Mach-O segment

I get the error truncated or malformed object (for BIND_OPCODE_SET_DYLIB_ORDINAL_ULEB bad library ordinal: 8 (max 4) for opcode at: 0x0)

ooh someone is doing cool stuff with mach o

finally

@proper reef what are you trying to change

I'm trying to extend __TEXT

to modify a binary statically

that might prove to be way more difficult than you think

It already has.

you would have to adjust every single offset

past the end of __TEXT

also it looks like the dyld opcode table doesn't like u fucking around with the segment

i assume you're trying to extend it to fit in some custom code, you might just be able to overwrite unused code if you're lucky

Yes, I am. But I can't just overwrite unused code because there can be cases with no unused code

another strategy would be to "back up" a chunk of original code into an unused part of the binary, then your code can restore it back

If I were to compile a simple hello world, there wouldn't be enough unused space

So I could just append the code onto the end and copy it back from there?

you'd be surprised there's tons of empty space in mach o binaries

im just not sure if writing to it would cause issues

why don't you use something like theos-jailed which can create static binary modifications with ease

Actual static binary modifications?

yeah you take the IPA of the app and its just like writing a tweak but it packages it into a new patched ipa

GamePigeon++

probably doesnt support app extensions

Are you sure it doesn't use DYLD_INSERT_LIBRARIES or something similar?

it probably does but is that an issue

Yes

because that isn't statically modifying it

All I need help with is getting the binary to run after extending it

I can do the code patching myself

Do you know anyhting about this?

@lethal ice can you elaborate more on the "another strategy would be to "back up" a chunk of original code into an unused part of the binary, then your code can restore it back"

would I have to create a new segment?

any help?

How can you make own jailbreak tweaks and stuff like that

And can you do it on windows?

#development message

Ok thx

May i ask in which Programming Language do you code Tweaks?

If you refer back to my previous message

Read that comment

What this means is that you need to be familiar with Object Oriented Programming and how to use Objective C.

uroboro was kind enough to create a guide

that you can find here: https://uroboro.github.io/Learn-Objective-C-in-24-Days-Clone/

i have never learned how to read and i don’t plan to!

i have been suffering all day

what if nothing is unused

or if there's not enough unused space

at least 1

whitename culture 101

i'm trying to add enough so that I can add more later

@grave sparrow also i tried the thing with disassembler but im bad at finding details

There are quite a few write ups on mach-o formats, you shouldn’t have to find the details yourself except for debugging

Ones regarding extending segments?

No.

Yeah. That's my problme.

No it’s not

Your problem is you are trying to modify a system without understanding it

Ok

There are lot of write ups on mach-o format to understand that system. What you are trying to do would be straight forward once you understand how the system handles segments.

Alright. Can you link me some?

I'm sure there are some write ups that you recommend as higher quality etc.

Not at my computer but google for parsing Mach-o format. The one with diagrams of the various structures is good one.

the ones written in chinese are good

True

source: am chinese

This is an auto-generated message from the First National Socialist Bank of the People's Republic of China to inform you that 25 social credit points have been added to your balance. Please do not reply to this message.

People's Bank of China*

no, the First National Socialist Bank of the People's Republic of China

no it's actually the People's Bank of China

no, the First National Socialist Bank of the People's Republic of China

is it the People's First National Socialist Bank of the People's Republic of China

http://www.pbc.gov.cn/en/3688006/index.html

see

oh

the Central Bank of the People's Republic of China

people's bank of china

so the People's First Central National Socialist Bank of the People's Republic of China

from what I've seen my issue is symbol related maybe

so you’re telling me i must look up the information myself on google and you simply can’t tell me

https://tenor.com/view/tom-tom-and-jerry-waiting-tom-waiting-gif-17813304

i already tried much of googling

you have to learn how the mach-o format works in order for you to understand how you would need to do this.

this is what i would assume

https://lowlevelbits.org/parsing-mach-o-files/

https://github.com/aidansteele/osx-abi-macho-file-format-reference

https://adrummond.net/posts/macho

you're telling me i have to read those

and you can't just tell m exactly what code i need to write

that is exactly what i am saying

the ios development community is toxic

last one even has a overview of a hello world executable @proper reef

if you don’t hold my hand, how will i learn

true

@proper reef if you look at a mach-o binary in a hex editor, you can see that most of the space is just 0s (probably for alignment reasons)

fr

what i meant by what i said earlier is that you might be able to remove a section of original code from the binary, store it in the empty space, and then you can overwrite the original code and after you're done copy it back from where you saved it

alright

1f2003df

@lethal ice tweak in brainfuck when?

best language

brainfuck is pixelomer's thing

@ornate emberomer

hes gon

f

so you take his place

L

pwn20 got banned

i dont wanna use brainfuck

its interpreted so its slow

fuck interpreted languages

what other language would you use

could you actually write tweaks in like java/python or shit like that

C is just perfect i would use that

so like

Tweak.c

you could if you interface with c/c++ or another language that can read and write mem

logos is processed down to c/c++ code anyways so its not much different

i wanna be funny and make tweaks without objc/logos

or at least one gamepigeon hook

https://gist.github.com/donato-fiore/0faf9272a4a9cdc00c539b24fcbd8ea8

i did that

but

i wanna waste time and make tweaks without objc/logos

thats only without logos

just write in asm

NO

I TRIED

FUCK

how far did u get

uhm

let me guess it never stopped crashing

you dont wanna know

no

i uh

.text
_init:
    ret


.align 4

.mod_init_func

.data
class: .asciz "ArcheryScene"
sel: .asciz "setWind"

i dont know where to start

does .mod_init_func actually work

it compiles

you dont have a constructor in there tho so it doesnt do anything

i had this

but basically you wrote this

bc

I would assume so since most apps use it to execute their obfuscated checks

ctrl +x , ctrl + v

.text
.align 4

_init:
    ret

.section __DATA, __mod_init_func
.long _init

.data
class: .asciz "ArcheryScene"
selector: .asciz "setWind"

now it just needs a hook

you also need to store the orig function in .bss

add x0, x0, class@pageoff
bl _objc_getClass```

ez

wait no mshookmessageex does it automatically

real

how woudl i mshookmessageex

would i extern it?

no just bl _MSHookMessageEx the linker will find the symbol

i was thinking .extern _MSHookMessageEx

nah that doesnt work

interesting

.extern can only externalize local symbols

wait no im wrong im thinking of .global

so bl _MSHookMessageEx is all i need

yea and then make sure to add substrate as a library in ur makefile

yeye

but good luck setting up the args for mshookmessageex

thats

job

where

im dying

besides the starting part

im trying to just piece it together

args in assembly are the worst part

i could tell

so when you call a function, anything in registers x0-x15 will probably be trampled

so if you need to store a variable across a function call, you can either allocate stack/heap memory for it, or you can put it in x19-x28 and it will not be trampled

if you do decide to store a value in a x19-x28 though, you must back up it's previous value to the stack and restore it when you're done

so example maybe:

init:
  adrp x0, orig @page
  bl _MSHookMessageEx
.data
orig: .quad 0

like that?

sort of

maybe

i think?

adrp just gets the page address, so you need to add the pageoff too

add x0, x0, orig@pageoff

i was just gonna say that

like

no joke

true

it's best to write asm in an order that minimizes the amount of registers you need to save

so you can build the arguments however you want

yeah i need 2 args for this method

so would i do

you probably want to store x19 and x30 on the stack before you branch no?

x30 always needs to be saved when calling a function unless you use a tail call

ye

x19 doesnt need to be saved unless you overwrite it

wait mshookmessageex takes more than two args wtf

class, selector, hook, orig

init:
  adrp x0, orig @page
  add x0, x0, orig@pageoff

  adrp x1, orig @page
  add x1, x1, orig@pageoff
  
.data
orig: .quad 0```

fr

you should get the class and the selector before you address the hook/orig since you need to call objc_getClass and sel_registerName

wait i meant the frame pointer x29 not x19

do you not need to save that

oh ye you can if you want to use it but its not necessary

adrp    x0, className @page
add     x0, x0, className@pageoff
bl      _objc_getClass
``` would this be the getClass

and why would i need to registerName

im not doing the equivalent of %new

sel_registerName registers the selector with the objc runtime so it can actually be used

ohh

compiled objc binaries don't call it since they have a bunch of objc metadata sections that store the info but it's so much easier to just dynamically create it

i cant believe i was in jail 24 hours ago and now im just back to being scoop

makes sense

wtf

for drugs I bet

you saw the car right

yea ...

oh

no

I didn’t

https://cdn.discordapp.com/attachments/710656279089250315/896222704854765568/image0.jpg

wait you actually got put in jail

wtf

uhm, are you ok?

yea i was in jail from 4:45 am until 6 pm

drunk driving scoop

i was driving on mushrooms

seems fine

TROLLL

scoop be like

yea the car dead

i should have been dead

“bro is that a gordita in the road”

lmao

🌳 🚙

:bang:

wtf

my car launched like 5 feet in the air off of a retainer wall and slammed into a tree

troll

scoop when he sees a giant troll face in the road and tries to go around him

i came to and had to crawl out the shattered window because all the doors were sealed shut

all the damage seems to be on the right side, which in america, you drive on the left side

nissan altima 2014

what car

was*

DAMN IT

I HATE YOU

i get that a lot

but yea i probably got a fUcking dui

poggers

you were dui

Cringe!

mfer drove on shrooms

driving under the influence of too much trolling

bro i felt like i was in a dream i didnt even think about the fact i was intoxicated

intelligence yes

intj

driving under intj

give me shrooms

deadass

how many times do we have to go over this

why did you eat them all yourself

wtf

you can’t outrun the trollge

i got a quad of shrooms left over if u want them come get them

shoulda shared

i ate them with my friend

@lost nebulahappy birthday big man

he drove home ok

why dont you come to me

bet

oh wait

too soon

scoop

are u hurt

not really

i'm heading down to alabama rn

yeah like actually

are you ok?

w

thank you lmao

wtf im in ARIZONA

not redneckville

WTF.

same place

true

same thing

i have a pretty bad bruise from the seatbelt but other than that im chillin

omw

true

scoop

bro how did you hit something in Arizona there’s nothing there

did u get into a fight in jail

it’s jail not prison

he hit the sun bro

lmao no all the dudes were chill

i was joking

w

yea the bruise stretches like 10 inches across my body

u were put with the ones for non violent crimes is probably why

fr

@lethal ice omw

no

wha

eta

eta

eta

there were plenty of bad mfers there they just didnt feel like messing with anyone else ig

um???

bike ride.

wya

wfr

i actually wanna ride my bike to arizona now

that would be fun

u would be surprised some of the biggest guys aren't really mean i talked to this one dude who must have been 300 pounds of muscle about his tattoos for an hour

afraid to leave the conversation

i am so glad scoop did not die

/s