MacOS Game Hacking with Bit Slicer – Part 2: Array of Bytes (Byte Array)

MacOS Game Hacking with Bit Slicer – Part 2: Array of Bytes (Byte Array)

We’re going to modify a Mac OS Sierra game using Bit Slicer! I will show you how to write a Python script for AoB scanning and modifying and how to find an array of bytes!

To get my project .slice files, check out the community forums!

Check out the blog post for more info –

* Patreon:
* Twitter:
* Facebook:
* Discord:
* Instagram:

MacOS Game Hacking with Bit Slicer – Part 2: Array of Bytes (Byte Array)

okay now we're gonna find an array of bytes and how this is done is we have to once again search for our values find our values then once we find our values we're going to browse the memory and copy the array of bytes that are there and I'll will go more in depth as we continue here but let's let's try this game flappy golf – under customize I have 90 of these blue eggs here so let's try to find those if we open a bit slicer let's search for a new value of 90 okay I got 263,000 I'll play some games and get some let's see let me find a level first that has some in it this one okay okay now we have 91 okay and then we'll go to another level there's one egg in here okay okay 92 must be this one right here okay so this is a very big address once again now when we find an array of bytes we can find that address and and of course one of the benefits of doing an a OB search is that if there was a patch to happen chances are you'd still be able to find that address even if it did change in this section of memory and within the process itself you can actually find that address again easily so what we're gonna do is go into show in memory viewer and if we hit enter we can see like exactly where it's at it's right here by this 5c and then this I just highlight several sections of code and then I copy it so I hit command C to copy and then I'm gonna go into my notepad and as you can see I have sections that I already copied and what we're gonna have to do is do this several times and we're gonna look for patterns in there so if I look at these patterns here see these each section is a time that I found that code so here here 3 4 5 I found it 5 times and then this bottom one here is what I'm writing so any sections of bytes that have changed we're gonna replace them with question marks anything that repeats like this this 7 actually repeats here this 2 repeats so it really depends how in-depth you want to go you do want to get this down to one returned search value so this first section here is different so I replaced it with question marks these are all zeros that repeats this 37 becomes 27 sometimes so I put two question marks but if you want to I think we can put a seven here question mark and a7 and get away with that and then two and zeros and then this whole section changes except for the zero right here does not change the 60 is the same here so we're gonna keep the 60 there all these are zeros I believe just got to make sure and yeah they look all the same they I mean if I were if I were you I would maybe use a hex view or something like that so you can put these all in line and you can see each section to make sure they're all the same it's a little more difficult when you have it all messy like this in multiple lines here so we're going to copy that and if you want to see if it works if we go back to here and we go to a byte array equals and then we punch in our address first let me clear the searches we currently have oh wait up now we're doing a search okay and this could take a while an array of bytes I mean depending on the size and how many question marks you have in there it could take a little bit that's why you can't really when writing a script you can't do it multiple times it's good just to do it on the initial scan on the initial start up of the script to do the scan for the AOB address and we're gonna go ahead and write a script for it because this seems to work pretty good so anyone copy this and we're gonna create a new we're gonna add a new script okay I'll paste in the script that I have here and we're going to put in our array of bytes here with the question mark mask and we're going to save and down here is where the writing happens it says five so we can change that to whatever nine hundred will close this and we'll call it nine hundred blue eggs now I activated it but it's could be still scanning in the background there and getting it ready so it could be a little bit till we actually receive the 900 if we want to what we can do is when I click that and activated we can go to the debug show logs okay so now it says writing to address 0 X 7 etc which matches the address right here so it found it I'll go ahead and unactive 8 so let's finish and let's come back into flappy golf and now we have 900 so it erased whatever was there and put in 900 instead of adding 2 like we could technically read the address then add to it but that's fine 900 so we can there we go this game is very glitchy okay yeah so I can purchase whatever works just fine this game I guess has no way of actually buying stuff with real currency I suppose I assume so that's a ob scanning like I said very good for if you want to make something that hopefully well so work after a patch happens with the game you know a lot of benefits with that you could be sometimes difficult to locate an exact AO be the only thing I can recommend is to grab as much of the bytes as many of the lines as you possibly can and then compare them and see what's necessary and what's not necessary but yeah the more lines you grab the more you're going to single out the actual address that you need