惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

S
Secure Thoughts
罗磊的独立博客
T
The Blog of Author Tim Ferriss
人人都是产品经理
人人都是产品经理
博客园 - 叶小钗
Last Week in AI
Last Week in AI
美团技术团队
Google Online Security Blog
Google Online Security Blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
D
Docker
G
Google Developers Blog
大猫的无限游戏
大猫的无限游戏
酷 壳 – CoolShell
酷 壳 – CoolShell
小众软件
小众软件
月光博客
月光博客
L
LINUX DO - 最新话题
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
W
WeLiveSecurity
H
Heimdal Security Blog
Vercel News
Vercel News
SecWiki News
SecWiki News
Forbes - Security
Forbes - Security
Blog — PlanetScale
Blog — PlanetScale
Google DeepMind News
Google DeepMind News
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
www.infosecurity-magazine.com
www.infosecurity-magazine.com
TaoSecurity Blog
TaoSecurity Blog
T
Troy Hunt's Blog
A
About on SuperTechFans
C
Check Point Blog
S
Security Affairs
Hacker News - Newest:
Hacker News - Newest: "LLM"
AI
AI
WordPress大学
WordPress大学
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
Help Net Security
Help Net Security
博客园_首页
The Last Watchdog
The Last Watchdog
S
SegmentFault 最新的问题
Hugging Face - Blog
Hugging Face - Blog
Security Archives - TechRepublic
Security Archives - TechRepublic
Engineering at Meta
Engineering at Meta
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
I
Intezer
K
Kaspersky official blog
M
MIT News - Artificial intelligence
J
Java Code Geeks
G
GRAHAM CLULEY
P
Palo Alto Networks Blog

博客园 - nasdaqhe

Android https 抓包 云效流水线部署ack Android 解包重签名打包 centos7 docker 安装及配置 CentOS 6 升级 curl Mac 下编译安装 php-5.6 ubuntu+php5-fpm 下安装 memcached PHP扩展 cmd下使用telnet连接到memcached服务器操作 Lucence.Net 2.9.3 日期范围搜索 SQL语句优化一例 row_number not in or flickr head中用到的标签 - nasdaqhe - 博客园 判断中文是否UTF8编码 MSSQL备忘 新浪微博产品图 (Vincent.H手笔) MindManage HTML5学习资料整理 ubuntu备忘 const 与 readonly ubuntu 10.04 安装 oracle11g VS2010 .NET 4学习资料整理
Frida 使用
nasdaqhe · 2021-12-14 · via 博客园 - nasdaqhe

1.安装 frida-server

adb push frida-server-15.1.12-android-arm64 /data/local/tmp
adb shell chmod 755 /data/local/tmp/frida-server-15.1.12-android-arm64

2.安装 objection

pip3 install objection
pip3 install --upgrade objection

3.启动 frida-server

adb shell /data/local/tmp/frida-server-15.1.12-android-arm64

4.使用objection 

参考资料:

https://baijiahao.baidu.com/s?id=1680254855843073847&wfr=spider&for=pc

https://blog.csdn.net/song_lee/article/details/108993169

#objection -g 包名 explore
objection -g com.immomo.momo explore

#列出所有activity
android hooking list activities

#列出内存中所有类
android hooking list classes

#根据关键字搜索内存中的类
android hooking search classes Okhttp

#列出类的所有方法
android hooking list class_methods com.fish.main.MainGameActivity

#hook 指定类
android hooking watch class com.xxx.xxx

#hook 指定方法,打印出入参,堆栈
android hooking watch class_method com.xxx.xxx.methodName --dump-args --dump-backtrace --dump-return

#关闭SSL证书锁定,可以抓包

5.使用 frida 脚本注入

参考资料:https://blog.csdn.net/cqcre/article/details/107602760

Java.perform(function () {
    var OkHttpClient = Java.use("okhttp3.OkHttpClient");

    OkHttpClient.newCall.implementation = function (request) {
        var result = this.newCall(request);
        console.log(request.url());
        var headers = request.headers();
        for (var i=0;i<headers.size();i++) {
           console.log(headers.name(i) + "=" + headers.value(i));
        }
        console.log("====================================");
        return result;
    };

});
#列出正在运行的进程
frida-ps -U

#注入指定pid的进程
frida -U -p 11097 explore -l hook_momo_http.js

#spawn模式会直接调起进程,可以注入启动前期,通过 -f 参数指定spawn模式


frida -U -f tv.w.com  -l hool_live.js