{"id":1514,"date":"2024-09-07T14:49:28","date_gmt":"2024-09-07T06:49:28","guid":{"rendered":"http:\/\/www.xiaosuigu.top\/?p=1514"},"modified":"2024-09-07T14:49:28","modified_gmt":"2024-09-07T06:49:28","slug":"objection","status":"publish","type":"post","link":"https:\/\/www.xiaosuigu.top\/index.php\/2024\/09\/07\/objection\/","title":{"rendered":"objection"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\">objection\u7b80\u4ecb<\/h2>\n\n\n\n<p>objection\u662f\u57fa\u4e8efrida\u7684\u547d\u4ee4\u884chook\u96c6\u5408\u5de5\u5177, \u53ef\u4ee5\u8ba9\u4f60\u4e0d\u5199\u4ee3\u7801, \u6572\u51e0\u53e5\u547d\u4ee4\u5c31\u53ef\u4ee5\u5bf9java\u51fd\u6570\u7684\u9ad8\u9897\u7c92\u5ea6hook, \u8fd8\u652f\u6301RPC\u8c03\u7528\u3002\u53ef\u4ee5\u5b9e\u73b0\u8bf8\u5982\u5185\u5b58\u641c\u7d22\u3001\u7c7b\u548c\u6a21\u5757\u641c\u7d22\u3001\u65b9\u6cd5hook\u6253\u5370\u53c2\u6570\u8fd4\u56de\u503c\u8c03\u7528\u6808\u7b49\u5e38\u7528\u529f\u80fd\uff0c\u662f\u4e00\u4e2a\u975e\u5e38\u65b9\u4fbf\u7684\uff0c\u9006\u5411\u5fc5\u5907\u3001\u5185\u5b58\u6f2b\u6e38\u795e\u5668\u3002<\/p>\n\n\n\n<p><a href=\"https:\/\/github.com\/sensepost\/objection\">\u9879\u76ee\u5730\u5740<\/a><\/p>\n\n\n\n<p>\u5b89\u88c5\uff1a<code>pip install objection<\/code><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">objection\u5feb\u901f\u4e0a\u624b<\/h2>\n\n\n\n<p>\u65e5\u5fd7\u6587\u4ef6\u76ee\u5f55\uff1aC:\\Users\\Administrator\\.objection<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>\u542f\u52a8\u547d\u4ee4<\/strong><\/h3>\n\n\n\n<pre class=\"wp-block-code\"><code>objection -g \u5305\u540d explore\n\n# \u542f\u52a8\u524d\u5c31hook\nobjection -g \u8fdb\u7a0b\u540d explore --startup-command \"android hooking watch class \u8def\u5f84.\u7c7b\u540d\"<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>\u57fa\u7840API<\/strong><\/h3>\n\n\n\n<ul class=\"wp-block-list\"><li>\u67e5\u770b\u5185\u5b58\u4e2d\u52a0\u8f7d\u7684\u5e93\uff0c\u4f1a\u663e\u793a\u5f88\u591a\u57fa\u672c\u4e0d\u7528\uff1a<code>memory list modules<\/code><\/li><li>\u67e5\u770b\u5e93\u7684\u5bfc\u51fa\u51fd\u6570\uff0c\u4e0d\u5982\u76f4\u63a5\u7528IDA\u57fa\u672c\u4e0d\u7528\uff1a<code>memory list exports so\u540d\u79f0<\/code><\/li><li>\u67e5\u770b\u5185\u5b58\u4e2d\u52a0\u8f7d\u7684activity\uff1a<code>android hooking list activities<\/code><\/li><li>\u67e5\u770b\u5185\u5b58\u4e2d\u52a0\u8f7d\u7684services\uff1a<code>android hooking list services<\/code><\/li><li>\u542f\u52a8<code>activity<\/code>\u6216<code>service<\/code>\uff1a<code>android intent launch_activity \u7c7b\u540d<\/code><\/li><li>\u5173\u95edssl\u6821\u9a8c\uff1a<code>android sslpinning disable<\/code><\/li><li>\u5173\u95edroot\u68c0\u6d4b\uff1a<code>android root disable<\/code><\/li><\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">\u5185\u5b58\u6f2b\u6e38<\/h3>\n\n\n\n<ul class=\"wp-block-list\"><li>\u5185\u5b58\u641c\u522e\u7c7b\u5b9e\u4f8b\uff1a<code>android heap search instances \u7c7b\u540d<\/code><\/li><li>\u8c03\u7528\u5b9e\u4f8b\u7684\u65b9\u6cd5\uff1a<ul><li>\u65e0\u53c2\u8c03\u7528\uff1a<code>android heap execute &lt;hashcode&gt; &lt;\u65b9\u6cd5\u540d&gt;<\/code><\/li><li>\u6709\u53c2\u8c03\u7528\uff1a<ul><li>\u5148\u8fdb\u5165\u7f16\u8bd1\u5668\uff1a<code>android heap evaluate &lt;hashcode&gt;<\/code><\/li><li>\u4f20\u5165\u53c2\u6570\uff1a<code>console.log(clazz.\u65b9\u6cd5\u540d\u79f0(\u53c2\u6570));<\/code><\/li><li>\u6309\u4f4fesc+enter\u89e6\u53d1<\/li><\/ul><\/li><\/ul><\/li><li>\u5217\u51fa\u5185\u5b58\u4e2d\u6240\u6709\u7684\u7c7b\uff1a<code>android hooking list classes<\/code><\/li><li>\u5728\u5185\u5b58\u4e2d\u6240\u6709\u5df2\u52a0\u8f7d\u7684\u7c7b\u4e2d\u641c\u7d22\u5305\u542b\u7279\u5b9a\u5173\u952e\u8bcd\u7684\u7c7b\uff1a<code>android hooking search classes \u5173\u952e\u7c7b\u540d<\/code><\/li><li>\u5185\u5b58\u6f2b\u6e38\u7c7b\u4e2d\u7684\u6240\u6709\u65b9\u6cd5\uff1a<code>android hooking list class_methods \u7c7b\u540d<\/code><\/li><\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">HOOK<\/h3>\n\n\n\n<ul class=\"wp-block-list\"><li>hook\u7c7b\u7684\u6240\u6709\u65b9\u6cd5\uff1a<code>android hooking watch class \u7c7b\u540d --dump-args --dump-return --dump-backtrace<\/code><\/li><li>hook\u6307\u5b9a\u65b9\u6cd5\uff1a<code>android hooking watch class_method \u7c7b\u540d.\u65b9\u6cd5\u540d --dump-args --dump-return --dump-backtrace<\/code><\/li><li>hook \u7c7b\u7684\u6784\u9020\u65b9\u6cd5\uff1a<code>android hooking watch class_method \u7c7b\u540d.$init<\/code><\/li><li>hook \u65b9\u6cd5\u7684\u6240\u6709\u91cd\u8f7d\uff1a<code>android hooking watch class_method \u7c7b\u540d.\u65b9\u6cd5\u540d<\/code><\/li><\/ul>\n\n\n\n<p>\u611f\u8c22\uff1a<a href=\"https:\/\/www.52pojie.cn\/thread-1838539-1-1.html\">\u3010\u65b0\u63d0\u9192\u3011\u300a\u5b89\u5353\u9006\u5411\u8fd9\u6863\u4e8b\u300b\u5341\u56db\u3001\u662f\u65f6\u5019\u5b66\u4e60\u4e00\u4e0bFrida\u4e00\u628a\u68ad\u4e86(\u4e2d) &#8211; \u300e\u79fb\u52a8\u5b89\u5168\u533a\u300f &#8211; \u543e\u7231\u7834\u89e3 &#8211; LCG &#8211; LSG |\u5b89\u5353\u7834\u89e3|\u75c5\u6bd2\u5206\u6790|www.52pojie.cn<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>objection\u7b80\u4ecb objection\u662f\u57fa\u4e8efrida\u7684\u547d\u4ee4\u884chook\u96c6\u5408\u5de5\u5177, \u53ef\u4ee5\u8ba9\u4f60\u4e0d\u5199\u4ee3\u7801, \u6572\u51e0 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[],"class_list":["post-1514","post","type-post","status-publish","format-standard","hentry","category-android"],"_links":{"self":[{"href":"https:\/\/www.xiaosuigu.top\/index.php\/wp-json\/wp\/v2\/posts\/1514","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.xiaosuigu.top\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.xiaosuigu.top\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.xiaosuigu.top\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.xiaosuigu.top\/index.php\/wp-json\/wp\/v2\/comments?post=1514"}],"version-history":[{"count":0,"href":"https:\/\/www.xiaosuigu.top\/index.php\/wp-json\/wp\/v2\/posts\/1514\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.xiaosuigu.top\/index.php\/wp-json\/wp\/v2\/media?parent=1514"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.xiaosuigu.top\/index.php\/wp-json\/wp\/v2\/categories?post=1514"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.xiaosuigu.top\/index.php\/wp-json\/wp\/v2\/tags?post=1514"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}