- 将
dbgsrv/android_server64推送到/data/local/tmp
adb push android_server64 /data/local/tmp/ida_android_server64- 授予权限
adb shell chmod +x /data/local/tmp/ida_android_server64
SeeFlowerX SeeFlowerX
SeeFlowerX
/ frida_hook_java_template.ts
Created
November 11, 2022 02:15
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function log(message: string): void { | |
| console.log(message); | |
| } | |
| function hook_demo(){ | |
| hook_java(); | |
| } | |
| function hook_java() { | |
| Java.perform(function() { |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # from https://gist.github.com/NeatMonster/c06c61ba4114a2b31418a364341c26c0 | |
| class hexdump: | |
| def __init__(self, buf, off=0): | |
| self.buf = buf | |
| self.off = off | |
| def __iter__(self): | |
| last_bs, last_line = None, None | |
| for i in range(0, len(self.buf), 16): |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| export function get_lr_info(ctx: Arm64CpuContext) { | |
| let mm = new ModuleMap(); | |
| let lr_info = mm.find(ctx.lr); | |
| if (lr_info == null) return ""; | |
| return ` ${lr_info.name}!${ctx.lr.sub(lr_info.base)}`; | |
| } |
SeeFlowerX
/ logcat_crash.log
Created
January 18, 2023 06:08
偶然遇到大量APP打开后在进入某些界面出现崩溃,Pixel 6 Android 12, SQ1D.220205.0004,记录日志如下,手机重启后恢复
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 01-18 14:03:04.217 1510 3211 V ActivityManager: Got obituary of 22855:com.google.android.gms.persistent | |
| 01-18 14:03:04.219 1510 2130 D ContextHubClientManager: Unregistered client with host endpoint ID 12285 | |
| 01-18 14:03:04.219 1510 1538 I ServiceWatcher: [RealLocationTimeZoneProviderProxy] disconnected from 10141/com.google.android.gms/.geotimezone.GeoTimeZoneService@1 | |
| 01-18 14:03:04.219 1510 1960 D ContextHubClientManager: Unregistered client with host endpoint ID 12284 | |
| 01-18 14:03:04.219 1510 3108 D ContextHubClientManager: Unregistered client with host endpoint ID 12286 | |
| 01-18 14:03:04.219 1510 1538 I ServiceWatcher: [network] disconnected from 10141/com.google.android.gms/com.google.android.location.network.NetworkLocationService@2 | |
| 01-18 14:03:04.219 1510 1538 I ServiceWatcher: [GeocoderProxy] disconnected from 10141/com.google.android.gms/.location.geocode.GeocodeService@2 | |
| 01-18 14:03:04.220 687 687 I Zygote : Process 22855 exited due to signal 9 (Killed) | |
| 01-18 14:03:04.220 1510 4669 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/system/bin/sh | |
| set -ex | |
| ip rule del fwmark 666 table 666 || true | |
| ip route del local 0.0.0.0/0 dev lo table 666 || true | |
| iptables -t nat -F | |
| iptables -t nat -X | |
| iptables -t mangle -F |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function main() { | |
| // hook test | |
| Java.perform(function() { | |
| let Uri = Java.use("android.net.Uri"); | |
| let StringCls = Java.use("java.lang.String"); | |
| let CharSequence = Java.use("java.lang.CharSequence"); | |
| let ClipData = Java.use("android.content.ClipData"); | |
| let ClipDataItem = Java.use("android.content.ClipData$Item"); | |
| let label = StringCls.$new("hhh"); |
SeeFlowerX
/ InMemoryDexClassLoaderFactory.java
Created
March 29, 2023 03:11
— forked from vvb2060/InMemoryDexClassLoaderFactory.java
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import android.app.AppComponentFactory; | |
| import android.content.pm.ApplicationInfo; | |
| import android.util.Log; | |
| import java.io.IOException; | |
| import java.nio.ByteBuffer; | |
| import java.nio.channels.Channels; | |
| import java.util.ArrayList; | |
| import java.util.List; | |
| import java.util.zip.ZipFile; |
SeeFlowerX
/ crash.log
Created
April 23, 2023 15:26
微信二维码扫描崩溃堆栈,测试版本:weixin8016android2040_arm64.apk
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 04-23 23:23:31.322 10756 10756 F DEBUG : *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** | |
| 04-23 23:23:31.322 10756 10756 F DEBUG : Build fingerprint: 'google/flame/flame:11/RQ3A.210805.001.A1/7474174:user/release-keys' | |
| 04-23 23:23:31.322 10756 10756 F DEBUG : Revision: 'MP1.0' | |
| 04-23 23:23:31.322 10756 10756 F DEBUG : ABI: 'arm64' | |
| 04-23 23:23:31.323 10756 10756 F DEBUG : Timestamp: 2023-04-23 23:23:31+0800 | |
| 04-23 23:23:31.323 10756 10756 F DEBUG : pid: 10736, tid: 10736, name: main >>> ./wxharness <<< | |
| 04-23 23:23:31.323 10756 10756 F DEBUG : uid: 0 | |
| 04-23 23:23:31.323 10756 10756 F DEBUG : signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0 | |
| 04-23 23:23:31.323 10756 10756 F DEBUG : Cause: null pointer dereference | |
| 04-23 23:23:31.323 10756 10756 F DEBUG : x0 b4000075d0d7c48f x1 0000000000000000 x2 0000000000000001 x3 616600474f4c5241 |
SeeFlowerX
/ LLDB动态调试步骤.md
Last active
May 11, 2023 13:58
和IDA类似,记录一些内容
全局调试,root下
magisk resetprop ro.debuggable 1
stop
start