Amelia Riski h1code2

FRIDA抓包相关笔记/常用操作

原文链接:https://api-caller.com/2019/11/05/capture-note/

抓包应该是被问到最多的事情了, 记录一些片段.

珍惜Any 之前提过 一种思路 是遍历所有类, 按照特征去判断校验类和方法.

此处的思路则是, 先跑一遍并让它失败, 找到特征打印堆栈, 即可锁定位置, 再行 hook 即可.

squid 配置文件 / squid.conf

# Recommended minimum configuration:
#

# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
acl localnet src 10.0.0.0/8	# RFC1918 possible internal network
acl localnet src 172.16.0.0/12	# RFC1918 possible internal network

PM2多进程运行Python程序配置文件参考

let apps =  [
    {
      name: 'youtube-spider',
      cwd: '/srv/spider/wuyi_spider',
      script: 'venv/bin/python cli.py youtube_basic_spider_task --max_threads 5',
      watch: false,
      number:2,
 },

设置合上笔记本盖子不休眠的方法

众所周知，服务器是没有AB面的（KVM当然不算了），燃鹅笔记本有，不能让屏幕一直打开亮着吧，但是默认都是关闭盖子休眠，咋办呢

ěi éi，这不是Debian系的嘛

编辑一哈/etc/systemd/logind.conf

#HandlePowerKey按下电源键后的行为，默认power off
#HandleSleepKey 按下挂起键后的行为，默认suspend
#HandleHibernateKey按下休眠键后的行为，默认hibernate

ELF可执行程序加载so文件尝试

#include <unistd.h>
#include <stdio.h>
#include <dlfcn.h>

typedef void (*pfnfoo)(void);//函数类型指针
const char path[]="/data/local/tmp/1.so";///1.so就是要加载的动态链接库的名称

	function showStacks() {
	Java.perform(function() {
	console.log(Java.use("android.util.Log").getStackTraceString(Java.use("java.lang.Exception").$new()));
	});
	}

	function hook() {
	Java.perform(function () {
	const commonPaths = [
	"/data/local/bin/su",

	import aioredis
	from fastapi import FastAPI
	from api.views import router as api_router
	from ws.views import router as wss_router

	from config import redis_config


	async def redis_pool(db: int = 0):
	"""

	var listJava = Java.use("java.util.List");
	var CookieManager = Java.use("java.net.CookieManager");
	CookieManager.getCookieStore.implementation = function () {
	try{
	ue_tool.showUETMenu();
	}catch(e){
	console.log(e)
	}
	console.log("getCookieStore ============= start");
	var ret = this.getCookieStore();