dqzg12300 / fridauitools Goto Github PK
View Code? Open in Web Editor NEWfrida工具的缝合怪
frida工具的缝合怪
当前的frida版本 虽然内置了14和15, 但是frida还是会不段更新的
能否改成frida部分由用户自己下载然后上传到项目目录下, 这样工具就可以脱离了版本的控制,完全由用户决定啊
源码报错如下
➜ fridaUiTools-1.0.3 ./kmainForm.py
File "./kmainForm.py", line 339
res = self.spawnAttachForm.exec()
^
SyntaxError: invalid syntax
打包的
yangmoling-pc% ./fridaUiTools
Traceback (most recent call last):
File "PyInstaller/loader/pyimod04_ctypes.py", line 53, in init
File "ctypes/init.py", line 373, in init
OSError: libcapstone.so: cannot open shared object file: No such file or directory
The above exception was the direct cause of the following exception:
Traceback (most recent call last):
File "kmainForm.py", line 20, in
File "", line 991, in _find_and_load
File "", line 975, in _find_and_load_unlocked
File "", line 671, in _load_unlocked
File "PyInstaller/loader/pyimod03_importers.py", line 476, in exec_module
File "forms/Patch.py", line 6, in
File "", line 991, in _find_and_load
File "", line 975, in _find_and_load_unlocked
File "", line 671, in _load_unlocked
File "PyInstaller/loader/pyimod03_importers.py", line 476, in exec_module
File "utils/AsmUtil.py", line 1, in
File "", line 991, in _find_and_load
File "", line 975, in _find_and_load_unlocked
File "", line 671, in _load_unlocked
File "PyInstaller/loader/pyimod03_importers.py", line 476, in exec_module
File "capstone/init.py", line 312, in
File "capstone/init.py", line 285, in _load_lib
File "ctypes/init.py", line 451, in LoadLibrary
File "PyInstaller/loader/pyimod04_ctypes.py", line 55, in init
pyimod04_ctypes.PyInstallerImportError: Failed to load dynlib/dll 'libcapstone.so'. Most likely this dynlib/dll was not found when the application was frozen.
[2061672] Failed to execute script 'kmainForm' due to unhandled exception!
Is there English version of fridaUiTools ?
程序文件夹下的sh/tmp里的 frida_win.bat 内是命令
我尝试修改,发现软件在运行frida时,依旧会重置为原来的命令
我怎么才能手动更改frida文件名和启动路径
另外感谢多版本的兼容
在shell内执行了/data/local/tmp/fart/fart.so,还是报这个问题
{"type": "error", "description": "Error: dlopen failed: couldn't map "/data/local/tmp/fart/fart.so" segment 1: Permission denied", "stack": "Error: dlopen failed: couldn't map "/data/local/tmp/fart/fart.so" segment 1: Permission denied\n at value (frida/runtime/core.js:229)\n at hookart (node_modules/core-js/library/modules/_an-object.js:6)\n at apply (native)\n at (frida/runtime/core.js:51)", "fileName": "frida/runtime/core.js", "lineNumber": 229, "columnNumber": 1}
好像 PushFridaServerX86 和 PushFridaServer 代码有点差异 导致 启动 x86 frida 失败了
大佬 您的是 Pyinstaller -w -D .\kmainForm.py 这个命令打包的么
我打包的好像 有点问题
hook Event 点击就卡死闪退
自定义脚本那里,我用下面代码在原来的frida能用,但在window你这工具没信息显示?
Java.perform(function() {
var targetClass='com.shandui.common.utils.MD5Util';
var methodName='getMD5';
var gclass = Java.use(targetClass);
gclass[methodName].overload('java.lang.String').implementation = function(arg0) {
console.log('\nGDA[Hook getMD5(java.lang.String)]'+'\n\targ0 = '+arg0);
var i=thismethodName;
console.log('\treturn '+i);
return i;
}
})
日志以下,没显示
2022-12-07 09:44:59 default.js init hook success
2022-12-07 09:45:00 加载appinfo
2022-12-07 09:49:23 default.js init hook success
2022-12-07 09:49:23 加载appinfo
请问师傅1.0.10 windows版本什么时候出呀,谢谢师傅
Releases没找到linux端版本,后期是否会提供呢
注入java加解密的时候,app闪退,还有fridaUiTools也闪退是什么原因
操作系统:windows 10 x64
1.启动frida
2.选择java加解密
3.spawn附加进程
4.没有任何提示 直接就闪退了
有没有大佬也出现这个情况呢 之前是提示一个错误具体的忘记了,后面给文件设置饿了777权限就提示这个错误,查了一下好像说的是什么编码的问题导致,但是也不知道具体的解决方案。有大佬遇见这个问题并且解决的么
大佬fart.so不能开源么?用ida打开看了以下,混淆的太厉害了。
打印参数,结果,密钥等 是否可以加一个base64结果的?
以上 问题。
例如,我在hook前,勾选了r0capture,hook列表中也显示了r0capture名称和备注,但是类名/模块名,以及函数名没有显示,不知道是否正确,最重要的是,当我hook成功后,输出日志是成功的,控制台-日志也是成功的,最后保存hook列表的json文件时候,json内部是没有日志的,麻烦看下
用的是博主的release的最新版本
Windows10上无法连接设备, WIFI连接设置好了IP和端口后,附加进程提示,需要设置IP和端口,明明已经设置了呀,BUG太多了
刚才试了1.0.3版在我Windows10上无法正常感应到设备连接,包括无线adb,不管怎么连接拔插,软件都是未连接设备。有待改进
找不到这个包
keystone==22.3.1
大师什么时候开源,fartExt, fridaUitools
v1.0.14版本不知是我操作不对还是怎么了,上传后并不能启动,报错权限,打开对应程序目录会看见权限并没有自动赋予777,手动赋予权限后可以启动了,但是又无法附加进程,用回旧的版本又全部正常,请查验。
用户可以修改exec 里的frida 版本,且 sh/tmp 能执行
可以打包一下最新版的吗
大佬把chatgpt集成进去,乘着东风更火一把
哪位大佬分享一下Java解密代码,目前我分析的app 不能正常解密 app有爱加密企业版的壳 技术有限也没办法脱壳
android10
pip 安装使用报 Set read permission for memory range: 0x7041abff-0x704211e000错误
用 ui 使用报Error: access violation accessing 0x32c00000错误
考虑到应该是访问内存的问题
大佬知道该怎么解决么?
模拟器应该大部分是remote模式连接,但是工具貌似是usb所以导致device not found.
最新的1.0.2包里我这边下载到的还是14.2.18的frida-server,是上传错了吗?
fridaUiTools_for_window1.0.6版本frida选择的14.2.18,试了“雷电3x/4x-32位”,“逍遥5.1/7.1-32位”,上传frida-server均已失败告终,手动上传并启动,只能获取应用信息,其他功能都无法正常使用。
作者大大测试的是哪款模拟器,系统位数,frida版本等信息,请告知。
ImportError: ERROR: fail to load the dynamic library.
作者大佬,最新版可以加一个win版本吗?
每次点击hookEvent的复选框时程序就会闪退,发现下载的发行版中并没有`hookEvent.js这个脚本,然而即使是加进去之后,也会崩溃
某东检测了frida的默认端口,一附加进程就会闪退,大佬是否能加个配置文件换个端口
显示上传完成,但是文件内没有,启动frida闪退
Last login: Wed Dec 14 16:23:59 on ttys002
/Users/mac/Downloads/fridaUiTools_for_mac/kmainForm_14 ; exit;
macdeiMac-4:~ mac$ /Users/mac/Downloads/fridaUiTools_for_mac/kmainForm_14 ; exit;
Traceback (most recent call last):
File "kmainForm.py", line 22, in
File "PyInstaller/loader/pyimod02_importers.py", line 493, in exec_module
File "forms/Patch.py", line 6, in
File "PyInstaller/loader/pyimod02_importers.py", line 493, in exec_module
File "utils/AsmUtil.py", line 1, in
File "PyInstaller/loader/pyimod02_importers.py", line 493, in exec_module
File "capstone/init.py", line 315, in
ImportError: ERROR: fail to load the dynamic library.
[2538] Failed to execute script 'kmainForm' due to unhandled exception: ERROR: fail to load the dynamic library.
[2538] Traceback:
Traceback (most recent call last):
File "kmainForm.py", line 22, in
File "PyInstaller/loader/pyimod02_importers.py", line 493, in exec_module
File "forms/Patch.py", line 6, in
File "PyInstaller/loader/pyimod02_importers.py", line 493, in exec_module
File "utils/AsmUtil.py", line 1, in
File "PyInstaller/loader/pyimod02_importers.py", line 493, in exec_module
File "capstone/init.py", line 315, in
ImportError: ERROR: fail to load the dynamic library.
logout
Saving session...
...copying shared history...
...saving history...truncating history files...
...completed.
[进程已完成]
用wifi连接,启动frida命令中并没有体现出来 (没有替换转发端口27042)
adb shell su 0 /data/local/tmp/frida-server-16.0.2-android-arm64 -l 192.168.0.102:6666
adb forward tcp:27042 tcp:27042
adb forward tcp:27043 tcp:27043
这里的两个端口不应该对应么
希望大佬有时间回答一下。
用swapn附加进程,得到的类比普通附加进程得到的类要少,这个是什么情况呀?
命令行执行 frida -U -f com.example.nativedemo -l hook_RegisterNatives.js --no-pause 没有问题
但用python脚本 Interapter.attach中就不会执行
def hook():
# spawn模式
device = frida.get_usb_device()
pid = device.spawn(["com.example.nativedemo"])
device.resume(pid)
time.sleep(1)
session = device.attach(pid)
with open("hook_RegisterNatives.js", encoding="utf8") as f:
script = session.create_script(f.read())
script.on("message", message_handler)
script.load()
input()
#RegisterNative.js中内容
if (addrRegisterNatives != null) {
Interceptor.attach(addrRegisterNatives, {
onEnter: function (args) {
console.log('-----------------')
klog("[RegisterNatives] method_count:" + args[3]);
希望大神能解决一下。谢谢。
大佬可以改成输出pcap文件么,这样可以导入工具分析
这两条命令是针对android版本的?还是手机型号。我只能用 su 0
可以出一份教程吗
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.