Hi Laurie! Can you demonstrate when and how to hook the native libraries by the enumerated export addresses you showed at 8:25 ? Love your content! Thanks!
Hello, Do you know if it is possible to inject a WebView (or any other type of GUI) inside the Frida script so the user of the modified version will be able to change values of hooked functions when the APK is built using Objection?
Hi laurie, thanks for the video. enumerateExports is not working(Showing an empty array) in my version frida 16.1.10, but it is showing results in your version 16.0.19,, any reason laurie behind this. the same code is not working for me in same 16.0.19 as well.
And what if a native library is loaded in "stealth mode", I mean, it doesn't show as an enumerated module. But I can see it loaded in memory, how can I attach to it?
I am not an expert - I have an application on my phone, and there is a file containing settings for the application, and I import the file into the application..... I want to use hook to extract those settings... How do I do that? Give me a simple example😭
Such approach works for some scenarios with very simple Android apps. In serious software this hooking gives us nothing as all of the hidden and secured app logic is implemented in native obfuscated code. Android app loads a native lib, then this lib opens some socket and communicates with Android app via that socket using encrypted strings. And when you want to change how native code works the only thing you can do is trying to trace and debug native lib via IDA. And this approach is much more complicated without any guarantee of success.
Are you saying that native hooking never helps for real apps? Hard disagree. It won't work for certain apps, but it's super useful in a lot of real-world situations. For example, if you are trying to get by some native anti-emulation.
static disassembler like ida wont give much btw, needs to take backtrace by frida, if app have antidebugger you have to hook system calls and trace libc, for example hook functions that looks in proc/self/status
of course for advanced malware the approach wouldn't be "that easy"... Don't forget that this video is merely educative to help people understand and progress.
Nerdy girls exist: confirmed. Now how to meet them... I'll bookmark this video as part of my research to crack apks. I've been poking one unity game with the intention of removing vendor-lock. The game doesn't work unless installed from (or spoofed) the Google play store. It also has some sort of signature check apart from the usual one. Bother.
awesome video, thanks for sharing! all of your videos have great production quality and are really informative. you deserve way more subscribers!
cool vid! can this be used for windows java applications/games to hook interpreted/compiled methods as well from a c++ dll? (using frida C api)
Hi Laurie! Can you demonstrate when and how to hook the native libraries by the enumerated export addresses you showed at 8:25 ? Love your content! Thanks!
Thanks these videos were incredibly helpful
Hello,
Do you know if it is possible to inject a WebView (or any other type of GUI) inside the Frida script so the user of the modified version will be able to change values of hooked functions when the APK is built using Objection?
Your reverse engineering videos are very informative. Ty 🙏
What are those LED lights you have in the background, the ones that change different hues of pink, I want to buy them haha
Which emulator are you using? Is it Android Studio AVD or is it something else?
thanks for explaining, good vids. Keep up
Underrated video 🎉
Laurie should be a model on top of this. Very talented
Great content. Thank you! 👍🏻
Great ❤,,more videos like this 😊
Hi laurie, thanks for the video.
enumerateExports is not working(Showing an empty array)
in my version frida 16.1.10, but it is showing results in your version 16.0.19,, any reason laurie behind this. the same code is not working for me in same 16.0.19 as well.
Great video Laurie. You are a really bright, smart, beautiful girl. Great stuff.
I think being tech savvy is so last year
Can you give me link of your wallpaper? It's very cool
Thank u very informative
Brains and Beauty plus easy to understand.
i really like your hair in this video. That's the most technical thing i can say.
Love your vids :3
i dont understand anything this girl is just looking goood
could you help me analyzing an app,it is very difficult
And what if a native library is loaded in "stealth mode", I mean, it doesn't show as an enumerated module. But I can see it loaded in memory, how can I attach to it?
I am not an expert - I have an application on my phone, and there is a file containing settings for the application, and I import the file into the application..... I want to use hook to extract those settings... How do I do that? Give me a simple example😭
Couldnt you just hook the constructor?
Sure thing! You could hook many different functions and get similar results. Just preference by situation :)
Very good thanks
Can u do ida native so debugging? I always get sig errors
I think you slightly misplaced the mayo
Smart and beautiful
Love❤
At least it's not an IBM server written in Apache
More like Laurie Hired!
I really tried to pay attention, but the eyes... catchs my soul
Im sorry 😔
Such approach works for some scenarios with very simple Android apps. In serious software this hooking gives us nothing as all of the hidden and secured app logic is implemented in native obfuscated code. Android app loads a native lib, then this lib opens some socket and communicates with Android app via that socket using encrypted strings. And when you want to change how native code works the only thing you can do is trying to trace and debug native lib via IDA. And this approach is much more complicated without any guarantee of success.
Are you saying that native hooking never helps for real apps? Hard disagree. It won't work for certain apps, but it's super useful in a lot of real-world situations. For example, if you are trying to get by some native anti-emulation.
static disassembler like ida wont give much btw, needs to take backtrace by frida, if app have antidebugger you have to hook system calls and trace libc, for example hook functions that looks in proc/self/status
of course for advanced malware the approach wouldn't be "that easy"...
Don't forget that this video is merely educative to help people understand and progress.
And don't get me started on Chromebooks
I just collect books now I hate most computers ..... especially Fujitsu and Seimens
Nerdy girls exist: confirmed.
Now how to meet them...
I'll bookmark this video as part of my research to crack apks. I've been poking one unity game with the intention of removing vendor-lock.
The game doesn't work unless installed from (or spoofed) the Google play store.
It also has some sort of signature check apart from the usual one. Bother.
wtf is frida and what is use of this??
...Are you married? hahahaha. Taking the joke away, Congratulations on the video, very good indeed!!! +1Subscribed
wtf is this an ai?
Hey you very attractive 😅 i loos my focus 😂😂😂 of the video topic 😂😂
me also
@@gxbytes bro don't be thirsting over her. she's a professional. this is a tech video, not a thirst trap. take it seriously.
you too hacker_07. don't be cringe.
Will you become my friend 😢 pleasee
Amazing...... but video is tool long . It can be done in 5 minutes... In your next video, be to the point
Great video 💪🏽Thanks!