deathmemory / Fridacontainer
FridaContainer 整合了网上流行的和自己编写的常用的 frida 脚本,为逆向工作提效之用。 frida 脚本模块化,Java & Jni Trace。
Stars: ✭ 190
Programming Languages
javascript
184084 projects - #8 most used programming language
Projects that are alternatives of or similar to Fridacontainer
Frida Skeleton
基于frida的安卓hook框架,提供了很多frida自身不支持的功能,将hook安卓变成简单便捷,人人都会的事情
Stars: ✭ 222 (+16.84%)
Mutual labels: hook, frida
Frida Trace
Trace APIs declaratively through Frida.
Stars: ✭ 120 (-36.84%)
Mutual labels: frida, trace
Uatu
Android方法调用跟踪 ; 方法耗时统计 ; 方法调用参数以及返回值跟踪 ; 方法调用替换;方法hook
Stars: ✭ 93 (-51.05%)
Mutual labels: hook, trace
Dexcalibur
[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
Stars: ✭ 512 (+169.47%)
Mutual labels: hook, frida
Fridaandroidtracer
A runnable jar that generate Javascript hook script to hook Android classes.
Stars: ✭ 114 (-40%)
Mutual labels: hook, frida
Frida Ios Hook
A script that helps you trace classes, functions, and modify the return values of methods on iOS platform
Stars: ✭ 151 (-20.53%)
Mutual labels: frida, trace
Dobby
a lightweight, multi-platform, multi-architecture hook framework.
Stars: ✭ 2,550 (+1242.11%)
Mutual labels: hook
Frida Boot
Frida Boot 👢- A binary instrumentation workshop, with Frida, for beginners!
Stars: ✭ 179 (-5.79%)
Mutual labels: frida
Useworker
⚛️ useWorker() - A React Hook for Blocking-Free Background Tasks
Stars: ✭ 2,233 (+1075.26%)
Mutual labels: hook
Headwolf
Scaffolding for agile development based on Xposed and Sekiro/基于Xposed和Sekiro搭建的敏捷开发的脚手架🎁献给懒汉们的小礼物😘只需四步!部署完一个Hook项目!👋👋新版本只需两步!!!
Stars: ✭ 182 (-4.21%)
Mutual labels: hook
Simple Git Hooks
A simple git hooks manager for small projects
Stars: ✭ 179 (-5.79%)
Mutual labels: hook
Cloudsim Plus
☕️🏗⛅️🎓 A modern, full-featured, easier-to-use, highly extensible, faster and more accurate Java 8+ Framework for Cloud Computing Simulation
Stars: ✭ 178 (-6.32%)
Mutual labels: trace
Ethereum Graph Debugger
Ethereum solidity graph plain debugger. To have the whole picture when debugging.
Stars: ✭ 177 (-6.84%)
Mutual labels: trace
Qujing
曲境是一个xposed模块,可实现在PC浏览器上动态监控(hook)函数调用和查看堆栈信息,及反射调用(invoke)等功能。
Stars: ✭ 197 (+3.68%)
Mutual labels: hook
Ios Monitor Platform
📚 iOS 性能监控 SDK —— Wedjat(华狄特)开发过程的调研和整理
Stars: ✭ 2,316 (+1118.95%)
Mutual labels: hook
FridaContainer
FridaContainer 整合了网上流行的和自己编写的常用的 frida 脚本,为逆向工作提效之用。
npm build 后,用 Pycharm 打开编辑,可以看到 frida api 代码补全提示。
1. 编译和使用
1.1 源码直接使用【推荐】
需要根据自己的需求修改 index.ts,编写实际操作内容。 使用 index.ts 入口方式可以按照以下方式编译和调用。
$ git clone https://github.com/deathmemory/FridaContainer.git
$ cd FridaContainer/
$ npm install
## after edit index.ts
$ npm run build
$ frida -U -f com.example.android --no-pause -l _fcagent.js
- 开发实时编译
$ npm run watch
- Setup for android
为 Andriod 手机初始化环境以应用第三方库(gson)
$ python setupAndroid.py
1.2 作为 npm node 模块使用
支持作为 npm node 模拟直接嵌入 typescript 项目中。
1.3 赘述几句我当前的使用习惯
- 使用
pycharm做开发(其他 IDE 也一样) - clone 仓库后,在项目根目录创建 agent 目录(已加入 gitignore)在这里开发业务脚本
- 修改
index.ts引入 agent 目录下的类 - 单开一个 shell 跑
npm run watch实时编译脚本 - 不断修改 index 或 agent 的脚本,注入、测试,达到目的。
2. 功能简介
本仓库会持续补充更新。
2.1 Android
- 一键去常规反调试
- 打印堆栈
- 通用的 Dump dex 方法
- 过 ssl pinning
- Hook JNI
- Java methods trace
- JNI trace
......
2.2 iOS
- 便捷的获取函数地址
- 打印堆栈
2.3 FCCommon 跨平台通用方法
| 方法 | 说明 |
|---|---|
| showStacksModInfo | 打印指定层数的 sp,并输出 module 信息 (如果有) |
| getModuleByAddr | 根据地址获取模块信息 |
| getLR | 获取 LR 寄存器值 |
| dump_module | dump 指定模块并存储到指定目录 |
3. 感谢
[todo 引用参考]
由于引用较多,且时间比较久了,也很难都列出来,以后慢慢列举吧。 感谢无私的代码分享者们。
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].