实践是检验真理的唯一标准,程序设计更是如此。-----箴言
Frida的安装与初步使用:
1. 官网:
https://frida.re/docs/home/
https://www.frida.re/docs/javascript-api/
2. 安装:
(1)安装:
(sudo) pip install frida
(sudo) pip install frida-tools(2)验证python命令 :
cmd 输入python ,进入python
继续输入 import frida
如果什么都没显示,恭喜应该是安装好了。
例如:
aaaaa:frida$ python
Python 3.8.2 (v3.8.2:7b3ab5921f, Feb 24 2020, 17:52:18)
[Clang 6.0 (clang-600.0.57)] on darwin
Type "help", "copyright", "credits" or "license" for more information.
>>> import frida
>>>
验证成功。
3. push frida-server:
push到木木模拟器:
先连接模拟器:adb kill-server && adb server && adb shell;
下载好对应的frida-server的版本,并且,push和改名到/data/local/tmp/frida-server,改权限并运行;
adb push frida-server /data/local/tmp/
adb shell
cd /data/local/tmp
chmod 755 frida-server
./frida-server (&)
1400
4. Frida工具使用:(1)frida-ps常用命令:
frida-ps --version
frida-ps (-U)
frida-ps --help
frida-ps -h
frida-ps -j
frida-ps -a
frida-ps -Ua
frida-ps -Uai(2)frida命令:
frida -h (--help)
frida --version(3)frida-trace 追踪某个函数:
它主要的工作方式是将脚本库注入到目标进程,在目标进程执行脚本。这里需要注意的是,它是将脚本库注入到已经启动的进程.
aaaaa:Downloads$ frida-trace -i "open" -U com.test.myglibtestapp
Instrumenting...
open: Auto-generated handler at "/Users/user1/Downloads/__handlers__/gralloc.x86.so/open.js"
Started tracing 1 function. Press Ctrl+C to stop.
/* TID 0x645 */
11531 ms open(path="/dev/ashmem", oflag=0x2)
14864 ms open(path="/dev/ashmem", oflag=0x2)
1万+
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
