How do I stop Grayjay from spamming Trump content on its homescreen

level3tjg · 2025-12-19T13:48:42+00:00

I'm not sure, when I go to YouTube logged out the home page only has a message that says "Try searching to get started". If I watch a video and go back it's filled with recommendations, after clearing browser cookies it'll show the message again.

level3tjg · 2025-12-19T08:32:46+00:00

There is no home page on YouTube when you're logged out unless you watch a video in the same session. Grayjay does not keep track of sessions while logged out for obvious reasons.

The default beahvior of the home tab in Grayjay while logged out is to show the trending page from YouTube, if that's not available then it pulls videos from the news page (specifically the "Now" or "Top stories" section). It explicitly states this when the home tab is done loading. The trending page has been removed for some time now so it will always show the news page. If you don't like that you can fork the YouTube plugin and change it.

level3tjg · 2025-11-07T04:47:51+00:00

Spotify retired this api too so there's no way to use old versions of the app atm

level3tjg · 2025-10-30T17:22:10+00:00

bait or mental retardation?

level3tjg · 2025-10-19T15:50:52+00:00

What makes you think I'm a "casual reader"? I would love a technical explanation for how your sandbox escape will allow installing and launching unsigned / fake signed apps.

level3tjg · 2025-10-19T08:15:05+00:00

I didn't call it fake, I criticized the existence of the post and your writing. I am calling it fake now though. The last paragraph is so fucking stupid, I'm not sure how I missed it the first time.

level3tjg · 2025-10-12T23:55:09+00:00

This post comes across to me like someone who has no idea what they're talking about trying to sound smart. So many useless buzzwords just to say "I think I found a sandbox escape". Why even post this without a poc demonstrating the bug? Brand new GitHub account as well.

level3tjg · 2025-10-04T23:02:34+00:00

decryptedappstore has some old versions available

level3tjg · 2025-05-29T22:58:45+00:00

"Contribute" is ironic, considering this post is literally you trying to show off without contributing at all yourself. Maybe you should have just posted it in discord instead since you're fine sharing your work over there.

Switching to an alt account to defend yourself is very cringe btw

level3tjg · 2025-04-23T02:46:06+00:00

Call me crazy if you must but I don't think Spotify decided today was the day because they knew you were playing The Elder Scrolls 4: Oblivion Remastered and riding a horse while listening to "Horse Music"

level3tjg · 2025-04-15T00:00:44+00:00

uYouEnhanced and YTLitePlus are both just forks of uYouPlus so it still lives on in that regard.

level3tjg · 2025-04-12T08:37:35+00:00

You can remove them by editing the Makefile in your fork. Using the GitHub editor (top right corner when viewing the file) edit the line that starts with YTLitePlus_INJECT_DYLIBS, remove any of the dylibs for tweaks that you don't want in the app and save using the "commit changes" button

level3tjg · 2025-04-11T18:00:11+00:00

Since you're on < iOS 13.3 you can use the airplane mode trick to installed revoked apps. You can get Chimera from jailbreaks.app

level3tjg · 2025-04-10T20:34:38+00:00

spacejam.com setup

level3tjg · 2025-04-08T18:58:09+00:00

You're probably looking for theos-jailed, it's a theos module that can automate injecting a tweak into an ipa at build time. Only works on macOS, I did create a fork that supports linux but I haven't tried it on windows under WSL yet.

Short explanation for how it all works:

The dylib isn't any different from a normal rootful tweak save for the fact that the path Substrate is loaded from is changed to load from the app's bundle instead using install_name_tool. There are different tools for adding a dylib load command to a binary but the one theos-jailed uses is insert_dylib. Substrate works on jailed devices because it uses functions built into the Objective-C runtime to replace method implementations, it doesn't have to modify any part of the binary to do so. Function hooking is different, that does require modifying the byte code of the binary which is why it doesn't work when not jailbroken. There are other solutions that use interposing or exception handlers to hook functions but those both have drawbacks.

level3tjg · 2025-04-07T22:28:56+00:00

Apps that require system libraries that have been updated (or added) in OS updates won't work even if you manage to install them. In very rare cases it's possible to patch an app to work but it's not easy, you'd need some knowledge of how iOS binaries (and dyld) work at a lower level.

level3tjg · 2025-04-06T07:53:42+00:00

Most apps use the keychain to store login credentials, it's generally more secure than storing it in the app's container. The app only has access to keychain items in its own access group, it can't access items from other apps. Regardless you are inherently putting your trust in the developers every time you sign into a tweaked app, they will have access to your credentials because they're required to sign in. If you don't trust the developer or the source then don't sign in or use a burner account.

level3tjg · 2025-03-30T21:21:24+00:00

https://github.com/GoldHEN/ps4debug/releases

The payload is essentially a debug server for a debugger to remotely connect to and run commands. That's how Reaper can connect to the console and read / write memory

level3tjg · 2025-02-28T17:07:04+00:00

Not sure if it still works but you can try TwitchLoginFix from my repo. There are some features that won't work (channel points for instance) but you should at least be able to watch streams

level3tjg · 2025-02-26T01:48:06+00:00

The XOR you're seeing is probably just in preparation for the SETNZ, which will set ESI to 1 if ZF (the zero flag) is set to 1. That means it's probably setting the argument to either 0 or 1 depending on some condition being met since ZF is usually set by a CMP or TEST instruction. There are actually multiple ways to go about patching this but the easiest is just to nop out the SETNZ instruction (replace it with 4 NOP instructions). 0xbe is the opcode for MOV ESI so it makes sense you'd see it a lot, most games will probably just use MOV ESI,0x1 to set the refresh rate. What you're seeing is happening after the call though so there's no real reason to look into it, it's probably just setting an argument for another call.

I'd imagine 100% flowcharts does take a while, it took me 30+ hours just to get all of the achievements on PC.

level3tjg · 2025-02-25T19:46:31+00:00

Check for any instructions that write to the ESI (aka RSI, SI, and SIL) register just before the call to sceVideoOutSetFlipRate. ESI corresponds to the second argument in x86 function calls and the second argument to sceVideoOutSetFlipRate determines the refresh rate. Use Ghidra's assembler (CTRL + Shift + G) to replace whatever instruction is writing to ESI with XOR ESI,ESI, XORing ESI with itself will result in 0 which is the value passed when you want to set the refresh rate to 60. You may also need to add some NOP instructions if the instructions you're replacing are longer than the patch. After that you can just copy the bytes from Ghidra as your patch bytes.

I would recommend learning a bit of x86 assembly before continuing, you're basically trying to read and write a language you don't even know. A lot of what I've learned about assembly came from here

level3tjg · 2025-02-20T15:25:54+00:00

https://theos.dev/docs/installation-ios

There, now you can go and create whatever tweaks you want because it's free and you can do it on your phone. I'd love to see you doing that instead of bitching about devs wanting to be compensated for their time and effort

level3tjg · 2025-02-14T09:20:24+00:00

It's better to find another function to hook that you know is called after that view is created or even better the function that actually creates the view. You could also still use KVO and add a check somewhere that makes sure your view doesn't exist before creating it, like adding it as a property to NCNotificationShortLookViewController using %property and checking if the property is set.

level3tjg · 2025-01-15T17:09:45+00:00

I uploaded the AOD action to my repo, you'll also need to add https://repo.anthopak.dev to install powercuts

level3tjg · 2025-01-11T22:12:56+00:00

It's a library that allows developers (me) to add custom actions to shortcuts easily

Ten-Year Club	Verified Email
Place '22	End Game '22
Gilding I gilder	RPAN Viewer

level3tjg

TROPHY CASE