Created
July 24, 2024 14:23
-
-
Save FrankSpierings/28513128482e808047c8fd2343163302 to your computer and use it in GitHub Desktop.
Modded version of the Frida script from dzonerzy/aesinfo
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Thanks @dzonerzy/aesinfo | |
| Java.perform(function() { | |
| var use_single_byte = false; | |
| var complete_bytes = new Array(); | |
| var index = 0; | |
| var secretKeySpecDef = Java.use('javax.crypto.spec.SecretKeySpec'); | |
| var ivParameterSpecDef = Java.use('javax.crypto.spec.IvParameterSpec'); | |
| var cipherDef = Java.use('javax.crypto.Cipher'); | |
| var cipherDoFinal_1 = cipherDef.doFinal.overload(); | |
| var cipherDoFinal_2 = cipherDef.doFinal.overload('[B'); | |
| var cipherDoFinal_3 = cipherDef.doFinal.overload('[B', 'int'); | |
| var cipherDoFinal_4 = cipherDef.doFinal.overload('[B', 'int', 'int'); | |
| var cipherDoFinal_5 = cipherDef.doFinal.overload('[B', 'int', 'int', '[B'); | |
| var cipherDoFinal_6 = cipherDef.doFinal.overload('[B', 'int', 'int', '[B', 'int'); | |
| var cipherUpdate_1 = cipherDef.update.overload('[B'); | |
| var cipherUpdate_2 = cipherDef.update.overload('[B', 'int', 'int'); | |
| var cipherUpdate_3 = cipherDef.update.overload('[B', 'int', 'int', '[B'); | |
| var cipherUpdate_4 = cipherDef.update.overload('[B', 'int', 'int', '[B', 'int'); | |
| var secretKeySpecDef_init_1 = secretKeySpecDef.$init.overload('[B', 'java.lang.String'); | |
| var secretKeySpecDef_init_2 = secretKeySpecDef.$init.overload('[B', 'int', 'int', 'java.lang.String'); | |
| var ivParameterSpecDef_init_1 = ivParameterSpecDef.$init.overload('[B'); | |
| var ivParameterSpecDef_init_2 = ivParameterSpecDef.$init.overload('[B', 'int', 'int'); | |
| secretKeySpecDef_init_1.implementation = function(arr, alg) { | |
| const key = a2buffer(arr); | |
| log('Creating ', alg, ' secret key:\n', hexdump(key, {ansi: true})); | |
| return secretKeySpecDef_init_1.call(this, arr, alg); | |
| } | |
| secretKeySpecDef_init_2.implementation = function(arr, off, len, alg) { | |
| const key = a2buffer(arr); | |
| log('Creating ', alg, ' secret key:\n', hexdump(key, {ansi: true})); | |
| return secretKeySpecDef_init_2.call(this, arr, off, len, alg); | |
| } | |
| /*ivParameterSpecDef_init_1.implementation = function(arr) | |
| { | |
| var iv = b2s(arr); | |
| send("Creating IV:\n" + hexdump(iv)); | |
| return ivParameterSpecDef_init_1.call(this, arr); | |
| } | |
| ivParameterSpecDef_init_2.implementation = function(arr, off, len) | |
| { | |
| var iv = b2s(arr); | |
| send("Creating IV, plaintext:\n" + hexdump(iv)); | |
| return ivParameterSpecDef_init_2.call(this, arr, off, len); | |
| }*/ | |
| cipherDoFinal_1.implementation = function() { | |
| var ret = cipherDoFinal_1.call(this); | |
| info(this.getIV(), this.getAlgorithm(), complete_bytes, ret); | |
| return ret; | |
| } | |
| cipherDoFinal_2.implementation = function(arr) { | |
| addtoarray(arr); | |
| var ret = cipherDoFinal_2.call(this, arr); | |
| info(this.getIV(), this.getAlgorithm(), complete_bytes, ret); | |
| return ret; | |
| } | |
| cipherDoFinal_3.implementation = function(arr, a) { | |
| addtoarray(arr); | |
| var ret = cipherDoFinal_3.call(this, arr, a); | |
| info(this.getIV(), this.getAlgorithm(), complete_bytes, ret); | |
| return ret; | |
| } | |
| cipherDoFinal_4.implementation = function(arr, a, b) { | |
| addtoarray(arr); | |
| var ret = cipherDoFinal_4.call(this, arr, a, b); | |
| info(this.getIV(), this.getAlgorithm(), complete_bytes, ret); | |
| return ret; | |
| } | |
| cipherDoFinal_5.implementation = function(arr, a, b, c) { | |
| addtoarray(arr); | |
| var ret = cipherDoFinal_5.call(this, arr, a, b, c); | |
| info(this.getIV(), this.getAlgorithm(), complete_bytes, ret); | |
| return ret; | |
| } | |
| cipherDoFinal_6.implementation = function(arr, a, b, c, d) { | |
| addtoarray(arr); | |
| var ret = cipherDoFinal_6.call(this, arr, a, b, c, d); | |
| info(this.getIV(), this.getAlgorithm(), complete_bytes, c); | |
| return ret; | |
| } | |
| cipherUpdate_1.implementation = function(arr) { | |
| addtoarray(arr); | |
| return cipherUpdate_1.call(this, arr); | |
| } | |
| cipherUpdate_2.implementation = function(arr, a, b) { | |
| addtoarray(arr); | |
| return cipherUpdate_2.call(this, arr, a, b); | |
| } | |
| cipherUpdate_3.implementation = function(arr, a, b, c) { | |
| addtoarray(arr); | |
| return cipherUpdate_3.call(this, arr, a, b, c); | |
| } | |
| cipherUpdate_4.implementation = function(arr, a, b, c, d) { | |
| addtoarray(arr); | |
| return cipherUpdate_4.call(this, arr, a, b, c, d); | |
| } | |
| function info(iv, alg, plain, encoded) { | |
| if (iv) { | |
| log("Initialization Vector:\n", hexdump(a2buffer(iv), {ansi: true})); | |
| } else { | |
| log("Initialization Vector: " + iv); | |
| } | |
| log("Algorithm: " + alg); | |
| log("In:\n", hexdump(a2buffer(plain), {ansi: true})); | |
| log("Out:\n", hexdump(a2buffer(encoded), {ansi: true})); | |
| complete_bytes = []; | |
| index = 0; | |
| } | |
| function modulus(x, n) { | |
| return ((x % n) + n) % n; | |
| } | |
| function addtoarray(arr) { | |
| for (var i = 0; i < arr.length; i++) { | |
| complete_bytes[index] = arr[i]; | |
| index = index + 1; | |
| } | |
| } | |
| function a2buffer(arr) { | |
| return (new Uint8Array(arr)).buffer; | |
| } | |
| function log(...args) { | |
| console.log(...args); | |
| // Print Java stack trace | |
| var exception = Java.use('java.lang.Exception').$new('Trace'); | |
| var stackTrace = exception.getStackTrace(); | |
| for (var i = 0; i < stackTrace.length; i++) { | |
| console.log('\t \x1b[36m', stackTrace[i].toString(), '\x1b[0m'); | |
| } | |
| } | |
| }); |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment