Skip to content

Instantly share code, notes, and snippets.

@vtr0n
Created February 28, 2018 09:58
Show Gist options
  • Save vtr0n/42d5168d8e7f25c9ba8011a3403b738c to your computer and use it in GitHub Desktop.
Save vtr0n/42d5168d8e7f25c9ba8011a3403b738c to your computer and use it in GitHub Desktop.
Gravity Ninja 2 Hack, Telegram
<script src="https://cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.2/rollups/aes.js"></script>
<script src="https://ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js"></script>
<script>
// your next score
need_score = 999999;
// part of game url, you can find this in network monitor on your browser. Find POST with "set-web-score*", when game is over
var game_url = '*GAME URL*';
// find "dataId" in source code, or in DOM inspector
var dataId = '*DATA ID HERE*';
// if api url changes, see it in sniff it in network monitor
var apiUrl = "https://bots.gameeapp.com/set-web-score-qkfnsog26w7173c9pk7whg0iau7zwhdkfd7ft3tn";
var CryptoJSAesJson = {
stringify: function (cipherParams) {
var j = {ct: cipherParams.ciphertext.toString(CryptoJS.enc.Base64)};
if (cipherParams.iv) j.iv = cipherParams.iv.toString();
if (cipherParams.salt) j.s = cipherParams.salt.toString();
return JSON.stringify(j);
},
parse: function (jsonStr) {
var j = JSON.parse(jsonStr);
var cipherParams = CryptoJS.lib.CipherParams.create({ciphertext: CryptoJS.enc.Base64.parse(j.ct)});
if (j.iv) cipherParams.iv = CryptoJS.enc.Hex.parse(j.iv)
if (j.s) cipherParams.salt = CryptoJS.enc.Hex.parse(j.s)
return cipherParams;
}
};
function fake (score) {
var url = window.game_url,
timestamp = (new Date).getTime(),
hash = CryptoJS.AES.encrypt(JSON.stringify({
score: score,
timestamp: timestamp
}), window.dataId, {
format: CryptoJSAesJson
}).toString(),
sData = {
score: score,
url: url,
play_time: 0,
hash: hash
};
send(sData)
}
function send(sData) {
var jsonStringData = JSON.stringify(sData);
var apiUrl = window.apiUrl;
$.ajax({
type: "POST",
url: apiUrl,
data: jsonStringData,
success: function() {
alert("hacked!")
},
dataType: "json",
crossDomain: true
})
}
fake(need_score)
</script>
@fadilmk
Copy link

fadilmk commented Oct 29, 2021

How can i use this

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment