This guide will walk through how to decompile/reverse engineer IL2CPP games for modding usage.
Note: expect this entire process to take upwards of an hour. Have something ready to do on the side while waiting for processing to finish.
Windows Kernel Learning: https://mirokaku.github.io/Blog/categories/Windows-kernel-learning/
Journey Into the Object Manager Executive Subsystem: Handles: https://ntamonsec.blogspot.com/2020/06/journey-into-object-manager-executive-handles.html
Random Windows Kernel Articles: https://codemachine.com/articles.html
Journey Into the Object Manager Executive Subsystem: Object Header and Object Type: https://ntamonsec.blogspot.com/2020/05/journey-into-object-manager-executive.html
Windows Exploitation Tricks (All Articles)
| # source:http://geocities.com/SiliconValley/heights/7052/opcode.txt | |
| From: [email protected] (Mark Hopkins) | |
| Newsgroups: alt.lang.asm | |
| Subject: A Summary of the 80486 Opcodes and Instructions | |
| (1) The 80x86 is an Octal Machine | |
| This is a follow-up and revision of an article posted in alt.lang.asm on | |
| 7-5-92 concerning the 80x86 instruction encoding. | |
| The only proper way to understand 80x86 coding is to realize that ALL 80x86 |
| global _time_load | |
| global _cache_flush | |
| global _run_attempt | |
| extern _bools | |
| extern _values | |
| extern _pointers | |
| section .text |
| #!/usr/bin/env bash | |
| # 2017-11-20T09:57:46.101+0000 1511171866101 65 Flat xDrip-DexcomG5 | |
| LINE=$(curl "https://acron-nightscout.herokuapp.com/api/v1/entries" 2> /dev/null | head -n1 ) | |
| TIME_THEN=$(echo $LINE | awk '{ print $2 }' | cut -c -10) | |
| TIME_NOW=$(date +%s) | |
| MMOL=$(echo $LINE | awk '{ print $3 }') | |
| ARROW=$(echo $LINE | awk '{ print $4 }') | |
| MINS_SINCE=$(echo "($TIME_NOW - ${TIME_THEN:-0}) / 60" | bc | xargs printf "%sm ago") | |
| case $ARROW in | |
| Flat) ARROW_SYM="\\u2192" |
