vtr0n/hack.js

## hack.js
<script src="https://cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.2/rollups/aes.js"></script>
<script src="https://ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js"></script>

<script>
    // your next score
    need_score = 999999;

    // part of game url, you can find this in network monitor on your browser. Find POST with "set-web-score*", when game is over
    var game_url = '*GAME URL*';

    // find "dataId" in source code, or in DOM inspector
    var dataId = '*DATA ID HERE*';

    // if api url changes, see it in sniff it in network monitor
    var apiUrl = "https://bots.gameeapp.com/set-web-score-qkfnsog26w7173c9pk7whg0iau7zwhdkfd7ft3tn";

    var CryptoJSAesJson = {
        stringify: function (cipherParams) {
            var j = {ct: cipherParams.ciphertext.toString(CryptoJS.enc.Base64)};
            if (cipherParams.iv) j.iv = cipherParams.iv.toString();
            if (cipherParams.salt) j.s = cipherParams.salt.toString();
            return JSON.stringify(j);
        },
        parse: function (jsonStr) {
            var j = JSON.parse(jsonStr);
            var cipherParams = CryptoJS.lib.CipherParams.create({ciphertext: CryptoJS.enc.Base64.parse(j.ct)});
            if (j.iv) cipherParams.iv = CryptoJS.enc.Hex.parse(j.iv)
            if (j.s) cipherParams.salt = CryptoJS.enc.Hex.parse(j.s)
            return cipherParams;
        }
    };

    function fake (score) {
        var url = window.game_url,
            timestamp = (new Date).getTime(),

            hash = CryptoJS.AES.encrypt(JSON.stringify({
                score: score,
                timestamp: timestamp
            }), window.dataId, {
                format: CryptoJSAesJson
            }).toString(),
            sData = {
                score: score,
                url: url,
                play_time: 0,
                hash: hash
            };
        send(sData)
    }

    function send(sData) {
        var jsonStringData = JSON.stringify(sData);
        var apiUrl = window.apiUrl;
        $.ajax({
            type: "POST",
            url: apiUrl,
            data: jsonStringData,
            success: function() {
                alert("hacked!")
            },
            dataType: "json",
            crossDomain: true
        })
    }

    fake(need_score)
</script>
	<script src="https://cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.2/rollups/aes.js"></script>
	<script src="https://ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js"></script>

	<script>
	// your next score
	need_score = 999999;

	// part of game url, you can find this in network monitor on your browser. Find POST with "set-web-score*", when game is over
	var game_url = 'GAME URL';

	// find "dataId" in source code, or in DOM inspector
	var dataId = 'DATA ID HERE';

	// if api url changes, see it in sniff it in network monitor
	var apiUrl = "https://bots.gameeapp.com/set-web-score-qkfnsog26w7173c9pk7whg0iau7zwhdkfd7ft3tn";

	var CryptoJSAesJson = {
	stringify: function (cipherParams) {
	var j = {ct: cipherParams.ciphertext.toString(CryptoJS.enc.Base64)};
	if (cipherParams.iv) j.iv = cipherParams.iv.toString();
	if (cipherParams.salt) j.s = cipherParams.salt.toString();
	return JSON.stringify(j);
	},
	parse: function (jsonStr) {
	var j = JSON.parse(jsonStr);
	var cipherParams = CryptoJS.lib.CipherParams.create({ciphertext: CryptoJS.enc.Base64.parse(j.ct)});
	if (j.iv) cipherParams.iv = CryptoJS.enc.Hex.parse(j.iv)
	if (j.s) cipherParams.salt = CryptoJS.enc.Hex.parse(j.s)
	return cipherParams;
	}
	};

	function fake (score) {
	var url = window.game_url,
	timestamp = (new Date).getTime(),

	hash = CryptoJS.AES.encrypt(JSON.stringify({
	score: score,
	timestamp: timestamp
	}), window.dataId, {
	format: CryptoJSAesJson
	}).toString(),
	sData = {
	score: score,
	url: url,
	play_time: 0,
	hash: hash
	};
	send(sData)
	}

	function send(sData) {
	var jsonStringData = JSON.stringify(sData);
	var apiUrl = window.apiUrl;
	$.ajax({
	type: "POST",
	url: apiUrl,
	data: jsonStringData,
	success: function() {
	alert("hacked!")
	},
	dataType: "json",
	crossDomain: true
	})
	}

	fake(need_score)
	</script>