heibai2006/frida-snippets
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

intercept read/pread/readv from file descriptors

Browse Source
This commit is contained in:
iddoeldor 2019-09-02 16:47:58 +03:00 committed by GitHub
parent e151ca90fb
commit 26b85c3e4a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
README.md
View File

@ -266,7 +266,7 @@ var fds = {};
Interceptor.attach(Module.findExportByName(null, 'open'), {
onEnter: function (args) {
var fname = args[0].readCString();
if (fname.endsWith('kdc')) {
if (fname.endsWith('.jar')) {
this.flag = true;
this.fname = fname;
}
@ -282,7 +282,8 @@ Interceptor.attach(Module.findExportByName(null, 'open'), {
onEnter: function (args) {
var fd = args[0];
if (fd in fds)
console.log(`${fnc}: ${fds[fd]}\n\t${Thread.backtrace(this.context, Backtracer.ACCURATE).map(DebugSymbol.fromAddress).join('\n\t')}`);
console.log(`${fnc}: ${fds[fd]}
\t${Thread.backtrace(this.context, Backtracer.ACCURATE).map(DebugSymbol.fromAddress).join('\n\t')}`);
}
});
});