Comments (6)
from fridamanager.
枚举下所有的符号和函数确认一下 Zero09 @.> 于 2023年12月27日周三 17:00写道:
…
var verify = Module.findExportByName("libsscronet.so", "SSL_CTX_set_custom_verify"); 配置好 启动app verify都会是null 是有什么配置不对吗 — Reply to this email directly, view it on GitHub <#11>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AD4TPESZE2DV5DRG5HUN2RDYLPPTBAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43ASLTON2WKOZSGA2TOMJQGQ3TENI . You are receiving this because you are subscribed to this thread.Message ID: @.>
加载traceJNIRegisterNative这个脚本 也是无法成功 能帮忙解答下不
from fridamanager.
from fridamanager.
使用fridagadget需要注意下时机的问题,要确定这个so加载以后,再去枚举,你可以先hook住so的加载流程函数,等这个so加载了以后再去枚举看看 Zero09 @.> 于2023年12月28日周四 16:40写道:
…
枚举下所有的符号和函数确认一下 Zero09 @. > 于 2023年12月27日周三 17:00写道: … <#m_-6594726359867502509_> var verify = Module.findExportByName("libsscronet.so", "SSL_CTX_set_custom_verify"); 配置好 启动app verify都会是null 是有什么配置不对吗 — Reply to this email directly, view it on GitHub <#11 <#11>>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AD4TPESZE2DV5DRG5HUN2RDYLPPTBAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43ASLTON2WKOZSGA2TOMJQGQ3TENI https://github.com/notifications/unsubscribe-auth/AD4TPESZE2DV5DRG5HUN2RDYLPPTBAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43ASLTON2WKOZSGA2TOMJQGQ3TENI . You are receiving this because you are subscribed to this thread.Message ID: @.> 加载traceJNIRegisterNative这个脚本 也是无法成功 能帮忙解答下不 — Reply to this email directly, view it on GitHub <#11 (comment)>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AD4TPEQCKBAG5HBLVFTZ6QDYLUV7JAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNZQHE2DIMBYGQ . You are receiving this because you commented.Message ID: @.>
简单写个了脚本 您帮忙看看:
var modules = Process.enumerateModules();
for (var i in modules) {
var module = modules[i];
LOG(module.name);
if (module.name.indexOf("libprocessgroup.so") > -1) {
LOG("11111111111");
var baseAddr = Module.findBaseAddress("libprocessgroup.so");
LOG("2222222222222222222");
LOG(baseAddr);
}
}
log:
E/fridamanager: libimg_utils.so
E/fridamanager: libnetd_client.so
E/fridamanager: libsoundtrigger.so
E/fridamanager: libminikin.so
E/fridamanager: libprocessgroup.so
E/fridamanager: 11111111111
E/fridamanager: 2222222222222222222
LOG(baseAddr); 的打印还是空 这时候 libprocessgroup.so确实有找到的
所以问题还是在 Module.findBaseAddress
会不会版本问题 您这个版本的 frida-gum没有 findBaseAddress和findExportByName ???
from fridamanager.
from fridamanager.
在枚举module的时候使用JSON.stringfy打印下module的信息,或者直接module.base看看基址 Zero09 @.> 于 2023年12月29日周五 15:11写道:
…
使用fridagadget需要注意下时机的问题,要确定这个so加载以后,再去枚举,你可以先hook住so的加载流程函数,等这个so加载了以后再去枚举看看 Zero09 @. > 于2023年12月28日周四 16:40写道: … <#m_-4629241560475757103_> 枚举下所有的符号和函数确认一下 Zero09 @. > 于 2023年12月27日周三 17:00写道: … <#m_-6594726359867502509_> var verify = Module.findExportByName("libsscronet.so", "SSL_CTX_set_custom_verify"); 配置好 启动app verify都会是null 是有什么配置不对吗 — Reply to this email directly, view it on GitHub <#11 <#11> <#11 <#11>>>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AD4TPESZE2DV5DRG5HUN2RDYLPPTBAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43ASLTON2WKOZSGA2TOMJQGQ3TENI https://github.com/notifications/unsubscribe-auth/AD4TPESZE2DV5DRG5HUN2RDYLPPTBAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43ASLTON2WKOZSGA2TOMJQGQ3TENI https://github.com/notifications/unsubscribe-auth/AD4TPESZE2DV5DRG5HUN2RDYLPPTBAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43ASLTON2WKOZSGA2TOMJQGQ3TENI https://github.com/notifications/unsubscribe-auth/AD4TPESZE2DV5DRG5HUN2RDYLPPTBAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43ASLTON2WKOZSGA2TOMJQGQ3TENI . You are receiving this because you are subscribed to this thread.Message ID: @.> 加载traceJNIRegisterNative这个脚本 也是无法成功 能帮忙解答下不 — Reply to this email directly, view it on GitHub <#11 (comment) <#11 (comment)>>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AD4TPEQCKBAG5HBLVFTZ6QDYLUV7JAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNZQHE2DIMBYGQ https://github.com/notifications/unsubscribe-auth/AD4TPEQCKBAG5HBLVFTZ6QDYLUV7JAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNZQHE2DIMBYGQ . You are receiving this because you commented.Message ID: @.> 简单写个了脚本 您帮忙看看: var modules = Process.enumerateModules(); for (var i in modules) { var module = modules[i]; LOG(module.name); if (module.name.indexOf("libprocessgroup.so") > -1) { LOG("11111111111"); var baseAddr = Module.findBaseAddress("libprocessgroup.so"); LOG("2222222222222222222"); LOG(baseAddr); } } log: E/fridamanager: libimg_utils.so E/fridamanager: libnetd_client.so E/fridamanager: libsoundtrigger.so E/fridamanager: libminikin.so E/fridamanager: libprocessgroup.so E/fridamanager: 11111111111 E/fridamanager: 2222222222222222222 LOG(baseAddr); 的打印还是空 这时候 libprocessgroup.so确实有找到的 所以问题还是在 Module.findBaseAddress 会不会版本问题 您这个版本的 frida-gum没有 findBaseAddress和findExportByName ??? — Reply to this email directly, view it on GitHub <#11 (comment)>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AD4TPEWKTYTXHZDLBIQJOSTYLZUIRAVCNFSM6AAAAABBEDUPA6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNZRHAYDAMZZGQ . You are receiving this because you commented.Message ID: @.>
发现 android_dlopen_ext 执行之后 加载到 libreparo.so就不再往下执行了,但是app正常打开. 能否请教下该如何绕过这个so
from fridamanager.
Related Issues (12)
- 百度云盘链接已失效 && 微信加好友提示用户不存在 HOT 1
- 有没有nexus5的机型支持 HOT 2
- FridaManager Applist找不到应用 HOT 10
- 有没有考虑出一个zygisk 的模块,而不是riru,现在magisk24 出了 HOT 1
- 因为文件命名而导致启动失败的问题 HOT 1
- Android 12 不支持,没有任何提示,log中没有任何提示,貌似压根没有加载到frida文件,我用demo中的hellofrida试的 HOT 1
- 发现一个非常奇怪的现象 HOT 1
- 希望FridaManager能够增加对系统app的显示 ,比如 Google Service Framewrok
- 赶紧更新新版本,都2022年了,还停留2021年 HOT 5
- 不现实,xposed直接root就可以用,frida要刷系统,估计没几个人会使用
- Update
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from fridamanager.