index.html

<!DOCTYPE html><html lang="zh-CN" data-theme="light"><head><meta charset="UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no"><title>Forgo7ten'blog - 一些二进制安全学习的随笔  By:Forgo7ten</title><meta name="keywords" content="ctf; re; Android-Reverse"><meta name="author" content="Forgo7ten"><meta name="copyright" content="Forgo7ten"><meta name="format-detection" content="telephone=no"><meta name="theme-color" content="#ffffff"><meta name="description" content="Android逆向的学习随笔">
<meta property="og:type" content="website">
<meta property="og:title" content="Forgo7ten&#39;blog">
<meta property="og:url" content="https://forgo7ten.github.io/index.html">
<meta property="og:site_name" content="Forgo7ten&#39;blog">
<meta property="og:description" content="Android逆向的学习随笔">
<meta property="og:locale" content="zh_CN">
<meta property="og:image" content="https://forgo7ten.github.io/images/avatar.jpg">
<meta property="article:author" content="Forgo7ten">
<meta property="article:tag" content="ctf; re; Android-Reverse">
<meta name="twitter:card" content="summary">
<meta name="twitter:image" content="https://forgo7ten.github.io/images/avatar.jpg"><link rel="shortcut icon" href="/images/favicon.jpg"><link rel="canonical" href="https://forgo7ten.github.io/"><link rel="preconnect" href="//cdn.jsdelivr.net"/><link rel="preconnect" href="//hm.baidu.com"/><link rel="preconnect" href="//www.clarity.ms"/><link rel="preconnect" href="//fonts.googleapis.com" crossorigin=""/><link rel="preconnect" href="//busuanzi.ibruce.info"/><meta name="google-site-verification" content="8L0ZjthONyq6-m7FniRTH8A7Bh0x-KOPZbKOcNimnYA"/><meta name="baidu-site-verification" content="code-gjVsyPt7yr"/><link rel="stylesheet" href="/css/index.css"><link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/@fortawesome/fontawesome-free@6/css/all.min.css" media="print" onload="this.media='all'"><link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/node-snackbar/dist/snackbar.min.css" media="print" onload="this.media='all'"><link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/@fancyapps/ui/dist/fancybox.css" media="print" onload="this.media='all'"><script>var _hmt = _hmt || [];
(function() {
  var hm = document.createElement("script");
  hm.src = "https://hm.baidu.com/hm.js?b076845d73a4f28b3c7401b2a0a8a9db";
  var s = document.getElementsByTagName("script")[0]; 
  s.parentNode.insertBefore(hm, s);
})();
</script><script>(function(c,l,a,r,i,t,y){
    c[a]=c[a]||function(){(c[a].q=c[a].q||[]).push(arguments)};
    t=l.createElement(r);t.async=1;t.src="https://www.clarity.ms/tag/"+i;
    y=l.getElementsByTagName(r)[0];y.parentNode.insertBefore(t,y);
})(window, document, "clarity", "script", "9zbibmmffi");</script><link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Titillium+Web&amp;display=swap" media="print" onload="this.media='all'"><script>const GLOBAL_CONFIG = { 
  root: '/',
  algolia: undefined,
  localSearch: {"path":"search.xml","languages":{"hits_empty":"找不到您查询的内容：${query}"}},
  translate: {"defaultEncoding":2,"translateDelay":0,"msgToTraditionalChinese":"繁","msgToSimplifiedChinese":"簡"},
  noticeOutdate: undefined,
  highlight: {"plugin":"highlighjs","highlightCopy":true,"highlightLang":true,"highlightHeightLimit":300},
  copy: {
    success: '复制成功',
    error: '复制错误',
    noSupport: '浏览器不支持'
  },
  relativeDate: {
    homepage: true,
    post: false
  },
  runtime: '天',
  date_suffix: {
    just: '刚刚',
    min: '分钟前',
    hour: '小时前',
    day: '天前',
    month: '个月前'
  },
  copyright: undefined,
  lightbox: 'fancybox',
  Snackbar: {"chs_to_cht":"你已切换为繁体","cht_to_chs":"你已切换为简体","day_to_night":"你已切换为深色模式","night_to_day":"你已切换为浅色模式","bgLight":"#49b1f5","bgDark":"#121212","position":"bottom-left"},
  source: {
    justifiedGallery: {
      js: 'https://cdn.jsdelivr.net/npm/flickr-justified-gallery@2/dist/fjGallery.min.js',
      css: 'https://cdn.jsdelivr.net/npm/flickr-justified-gallery@2/dist/fjGallery.min.css'
    }
  },
  isPhotoFigcaption: false,
  islazyload: true,
  isAnchor: true
}</script><script id="config-diff">var GLOBAL_CONFIG_SITE = {
  title: 'Forgo7ten\'blog',
  isPost: false,
  isHome: true,
  isHighlightShrink: false,
  isToc: false,
  postUpdate: '2023-11-23 21:44:21'
}</script><noscript><style type="text/css">
  #nav {
    opacity: 1
  }
  .justified-gallery img {
    opacity: 1
  }

  #recent-posts time,
  #post-meta time {
    display: inline !important
  }
</style></noscript><script>(win=>{
    win.saveToLocal = {
      set: function setWithExpiry(key, value, ttl) {
        if (ttl === 0) return
        const now = new Date()
        const expiryDay = ttl * 86400000
        const item = {
          value: value,
          expiry: now.getTime() + expiryDay,
        }
        localStorage.setItem(key, JSON.stringify(item))
      },

      get: function getWithExpiry(key) {
        const itemStr = localStorage.getItem(key)

        if (!itemStr) {
          return undefined
        }
        const item = JSON.parse(itemStr)
        const now = new Date()

        if (now.getTime() > item.expiry) {
          localStorage.removeItem(key)
          return undefined
        }
        return item.value
      }
    }
  
    win.getScript = url => new Promise((resolve, reject) => {
      const script = document.createElement('script')
      script.src = url
      script.async = true
      script.onerror = reject
      script.onload = script.onreadystatechange = function() {
        const loadState = this.readyState
        if (loadState && loadState !== 'loaded' && loadState !== 'complete') return
        script.onload = script.onreadystatechange = null
        resolve()
      }
      document.head.appendChild(script)
    })
  
      win.activateDarkMode = function () {
        document.documentElement.setAttribute('data-theme', 'dark')
        if (document.querySelector('meta[name="theme-color"]') !== null) {
          document.querySelector('meta[name="theme-color"]').setAttribute('content', '#0d0d0d')
        }
      }
      win.activateLightMode = function () {
        document.documentElement.setAttribute('data-theme', 'light')
        if (document.querySelector('meta[name="theme-color"]') !== null) {
          document.querySelector('meta[name="theme-color"]').setAttribute('content', '#ffffff')
        }
      }
      const t = saveToLocal.get('theme')
    
          if (t === 'dark') activateDarkMode()
          else if (t === 'light') activateLightMode()
        
      const asideStatus = saveToLocal.get('aside-status')
      if (asideStatus !== undefined) {
        if (asideStatus === 'hide') {
          document.documentElement.classList.add('hide-aside')
        } else {
          document.documentElement.classList.remove('hide-aside')
        }
      }
    
    const detectApple = () => {
      if(/iPad|iPhone|iPod|Macintosh/.test(navigator.userAgent)){
        document.documentElement.classList.add('apple')
      }
    }
    detectApple()
    })(window)</script><meta name="generator" content="Hexo 5.4.0"><link rel="alternate" href="/atom.xml" title="Forgo7ten'blog" type="application/atom+xml">
</head><body><div id="loading-box"><div class="loading-left-bg"></div><div class="loading-right-bg"></div><div class="spinner-box"><div class="configure-border-1"><div class="configure-core"></div></div><div class="configure-border-2"><div class="configure-core"></div></div><div class="loading-word">加载中...</div></div></div><div id="web_bg"></div><div id="sidebar"><div id="menu-mask"></div><div id="sidebar-menus"><div class="avatar-img is-center"><img src="/images/avatar.jpg" onerror="onerror=null;src='/img/friend_404.gif'" alt="avatar"/></div><div class="site-data is-center"><div class="data-item"><a href="/archives/"><div class="headline">文章</div><div class="length-num">20</div></a></div><div class="data-item"><a href="/tags/"><div class="headline">标签</div><div class="length-num">8</div></a></div><div class="data-item"><a href="/categories/"><div class="headline">分类</div><div class="length-num">6</div></a></div></div><hr/><div class="menus_items"><div class="menus_item"><a class="site-page" href="/"><i class="fa-fw fas fa-home"></i><span> 首页</span></a></div><div class="menus_item"><a class="site-page group" href="javascript:void(0);"><i class="fa-fw fas fa-compass"></i><span> 目录</span><i class="fas fa-chevron-down"></i></a><ul class="menus_item_child"><li><a class="site-page child" href="/archives/"><i class="fa-fw fas fa-archive"></i><span> 归档</span></a></li><li><a class="site-page child" href="/categories/"><i class="fa-fw fas fa-folder-open"></i><span> 分类</span></a></li><li><a class="site-page child" href="/tags/"><i class="fa-fw fas fa-tags"></i><span> 标签</span></a></li></ul></div><div class="menus_item"><a class="site-page" href="/atom.xml"><i class="fa-fw fa fa-rss"></i><span> RSS订阅</span></a></div><div class="menus_item"><a class="site-page" href="/link/"><i class="fa-fw fas fa-link"></i><span> 友链</span></a></div><div class="menus_item"><a class="site-page" href="/about/"><i class="fa-fw fas fa-heart"></i><span> 关于</span></a></div><div class="menus_item"><a class="site-page" href="/messageboard/"><i class="fa-fw fas fa-comment-dots"></i><span> 留言板</span></a></div></div></div></div><div class="page" id="body-wrap"><header class="full_page" id="page-header" style="background-image: url('http://forgo7ten.gitee.io/store/imgs/17.jpg')"><nav id="nav"><span id="blog_name"><a id="site-name" href="/">Forgo7ten'blog</a></span><div id="menus"><div id="search-button"><a class="site-page social-icon search"><i class="fas fa-search fa-fw"></i><span> 搜索</span></a></div><div class="menus_items"><div class="menus_item"><a class="site-page" href="/"><i class="fa-fw fas fa-home"></i><span> 首页</span></a></div><div class="menus_item"><a class="site-page group" href="javascript:void(0);"><i class="fa-fw fas fa-compass"></i><span> 目录</span><i class="fas fa-chevron-down"></i></a><ul class="menus_item_child"><li><a class="site-page child" href="/archives/"><i class="fa-fw fas fa-archive"></i><span> 归档</span></a></li><li><a class="site-page child" href="/categories/"><i class="fa-fw fas fa-folder-open"></i><span> 分类</span></a></li><li><a class="site-page child" href="/tags/"><i class="fa-fw fas fa-tags"></i><span> 标签</span></a></li></ul></div><div class="menus_item"><a class="site-page" href="/atom.xml"><i class="fa-fw fa fa-rss"></i><span> RSS订阅</span></a></div><div class="menus_item"><a class="site-page" href="/link/"><i class="fa-fw fas fa-link"></i><span> 友链</span></a></div><div class="menus_item"><a class="site-page" href="/about/"><i class="fa-fw fas fa-heart"></i><span> 关于</span></a></div><div class="menus_item"><a class="site-page" href="/messageboard/"><i class="fa-fw fas fa-comment-dots"></i><span> 留言板</span></a></div></div><div id="toggle-menu"><a class="site-page"><i class="fas fa-bars fa-fw"></i></a></div></div></nav><div id="site-info"><h1 id="site-title">Forgo7ten'blog</h1><div id="site-subtitle"><span id="subtitle"></span></div><div id="site_social_icons"><a class="social-icon" href="https://github.com/Forgo7ten" target="_blank" title="Github"><i class="fab fa-github"></i></a><a class="social-icon" href="mailto:Forgo7ten2020@gmail.com" target="_blank" title="Email"><i class="fas fa-envelope"></i></a><a class="social-icon" href="/atom.xml" target="_blank" title="RSS"><i class="fa fa-rss"></i></a></div></div><div id="scroll-down"><i class="fas fa-angle-down scroll-down-effects"></i></div></header><main class="layout" id="content-inner"><div class="recent-posts" id="recent-posts"><div class="recent-post-item"><div class="post_cover left"><a href="/AndroidReverse/2022/Android_devices_init/" title="Android刷机记录"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/13.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="Android刷机记录"></a></div><div class="recent-post-info"><a class="article-title" href="/AndroidReverse/2022/Android_devices_init/" title="Android刷机记录">Android刷机记录</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2022-05-02T16:00:00.000Z" title="发表于 2022-05-03 00:00:00">2022-05-03</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2022-05-02T16:00:00.000Z" title="更新于 2022-05-03 00:00:00">2022-05-03</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/">Android逆向</a></span></div><div class="content">Android刷机 ¶ 
1234567891011121314151617181920# 命令# fastboot命令fastboot reboot 重启fastboot flash boot 刷入bootfastboot flash system 刷入system镜像fastboot oem unlock 解锁blfastboot flashing unlock 也是解锁blfastboot  ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/AndroidReverse/2022/Frida_all_in_one/" title="Frida all in one"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/14.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="Frida all in one"></a></div><div class="recent-post-info"><a class="article-title" href="/AndroidReverse/2022/Frida_all_in_one/" title="Frida all in one">Frida all in one</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2022-04-22T16:00:00.000Z" title="发表于 2022-04-23 00:00:00">2022-04-23</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2022-04-22T16:00:00.000Z" title="更新于 2022-04-23 00:00:00">2022-04-23</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/">Android逆向</a></span></div><div class="content">[TOC]
Frida all in one ¶ 
努力ALL IN ONE，部分代码可配合AndroidReversePractice/FridaTestApp at main · Forgo7ten/AndroidReversePractice (github.com)试验。
JavaScript API | Frida • A world-class dynamic instrumentat ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/AndroidReverse/2022/Learning_about_cryptographic_algorithms/" title="对加密算法的学习"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/18.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="对加密算法的学习"></a></div><div class="recent-post-info"><a class="article-title" href="/AndroidReverse/2022/Learning_about_cryptographic_algorithms/" title="对加密算法的学习">对加密算法的学习</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2022-02-06T16:00:00.000Z" title="发表于 2022-02-07 00:00:00">2022-02-07</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2022-02-06T16:00:00.000Z" title="更新于 2022-02-07 00:00:00">2022-02-07</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/">Android逆向</a></span></div><div class="content">[TOC]
序列密码(流密码) ¶ 
将明文消息按字符逐位进行加密。

RC4 ¶ 
RC4(Rivest Cipher 4)是一种流加密算法，密钥长度可变。在给定一密钥时，会生成一固定序列的字节流，用于和明文进行异或。
用途：WEP、WPA、SSL、TLS
原理 ¶ 
RSA主要包括初始化算法(KSA)和伪随机子密码生成算法(PRGA)，其核心部分的S-box长度可为任意，但一般为256字节。
 ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/AndroidReverse/2022/Android_dynamic_debugging_collection/" title="Android APK无源码动态调试合集"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/3.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="Android APK无源码动态调试合集"></a></div><div class="recent-post-info"><a class="article-title" href="/AndroidReverse/2022/Android_dynamic_debugging_collection/" title="Android APK无源码动态调试合集">Android APK无源码动态调试合集</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2022-01-20T16:00:00.000Z" title="发表于 2022-01-21 00:00:00">2022-01-21</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2022-01-20T16:00:00.000Z" title="更新于 2022-01-21 00:00:00">2022-01-21</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/">Android逆向</a><i class="fas fa-angle-right article-meta-link"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/%E8%BF%87%E7%A8%8B%E8%AE%B0%E5%BD%95%E5%A4%87%E6%9F%A5/">过程记录备查</a></span></div><div class="content">Android动态调试合集 ¶ 
[TOC]
JEB动态调试smali ¶ 


选中smali代码后，Ctrl B下断点


启动app


以debug模式启动Activity（调试一启动就执行的方法）
1adb shell am start -D -n [package_name]/[activity_name]


调试可以手动触发(不着急)的方法，手动打开app或者去掉上述命令的-D参数 ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/Crack/Some_crack_apps/" title="对一些app的Crack分析"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/18.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="对一些app的Crack分析"></a></div><div class="recent-post-info"><a class="article-title" href="/Crack/Some_crack_apps/" title="对一些app的Crack分析">对一些app的Crack分析</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2021-12-31T16:03:00.000Z" title="发表于 2022-01-01 00:03:00">2022-01-01</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2022-03-17T16:00:00.000Z" title="更新于 2022-03-18 00:00:00">2022-03-18</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/">Android逆向</a><i class="fas fa-angle-right article-meta-link"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/%E5%B0%8F%E5%B1%95%E8%BA%AB%E6%89%8B/">小展身手</a></span></div><div class="content">对一些app的Crack分析 ¶ 

20220109-ES FileExplorer修改
20220110-AdGuard高级版解锁
20220110-清浊高级功能解锁
20220114-猛鬼宿舍各种功能修改
20220317-168轻断食

</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/Reverse/2021/010Editor_registration_process_analysis/" title="010Editor注册license算法分析"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/12.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="010Editor注册license算法分析"></a></div><div class="recent-post-info"><a class="article-title" href="/Reverse/2021/010Editor_registration_process_analysis/" title="010Editor注册license算法分析">010Editor注册license算法分析</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2021-11-20T16:00:00.000Z" title="发表于 2021-11-21 00:00:00">2021-11-21</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2021-11-20T16:00:00.000Z" title="更新于 2021-11-21 00:00:00">2021-11-21</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Reverse/">Reverse</a></span></div><div class="content">010Editor注册流程分析 ¶ 

无限试用：
  1rm -rf ~/.config/SweetScape/010\ Editor.ini

key
12Name: Forgo7tenLicense: 1f93-56ac-c63e-540d-a9ab
注册完后
Linux：chattr +i 010\ Editor.ini
Mac：chflags uchg 010\ Editor.ini
V ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/Reverse/2021/Analysis_of_intent_redirection_derived_from_2021bytectf/" title="由2021ByteCTF引出的intent重定向浅析"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/16.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="由2021ByteCTF引出的intent重定向浅析"></a></div><div class="recent-post-info"><a class="article-title" href="/Reverse/2021/Analysis_of_intent_redirection_derived_from_2021bytectf/" title="由2021ByteCTF引出的intent重定向浅析">由2021ByteCTF引出的intent重定向浅析</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2021-10-16T16:00:00.000Z" title="发表于 2021-10-17 00:00:00">2021-10-17</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2021-10-17T16:00:00.000Z" title="更新于 2021-10-18 00:00:00">2021-10-18</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/">Android逆向</a></span></div><div class="content">由2021ByteCTF引出的intent重定向浅析 ¶ 
在此先感谢ByteCTF的赛前培训，感谢summer师傅的倾情讲解
Intent浅要概述 ¶ 

Intent是Android程序中各组件之间进行交互的一种重要方式，它不仅可以指明当前组件想要执行的动作，还可以在不同组件之间传递数据。Intent一般可被用于启动活动、启动服务以及发送广播等场景。
Intent是一种运行时绑定（runtim ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/AndroidReverse/2021/Analysis_of_WeChat/" title="vx逆向分析随笔"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/18.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="vx逆向分析随笔"></a></div><div class="recent-post-info"><a class="article-title" href="/AndroidReverse/2021/Analysis_of_WeChat/" title="vx逆向分析随笔">vx逆向分析随笔</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2021-08-13T16:00:00.000Z" title="发表于 2021-08-14 00:00:00">2021-08-14</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2021-08-19T16:00:00.000Z" title="更新于 2021-08-20 00:00:00">2021-08-20</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/">Android逆向</a><i class="fas fa-angle-right article-meta-link"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/%E5%B0%8F%E5%B1%95%E8%BA%AB%E6%89%8B/">小展身手</a></span></div><div class="content">vx逆向分析随笔 ¶ 
另外有Android逆向可以一起交流学习呀。点击联系我，一个人闷搞挺没劲的。
@app_version = 7.0.20
@app_date = 2020.11.19
本来是想分析vx8的，但是电脑性能不够……反编译工具直接卡死
vx Log日志 ¶ 
当进行分析时，发现反复调用了ae.i,ae.d方法

来到com.tencent.mm.sdk.platformtools ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/AndroidReverse/2021/Crack_com.xhey.xcamera/" title="今日水印相机自定义水印"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/17.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="今日水印相机自定义水印"></a></div><div class="recent-post-info"><a class="article-title" href="/AndroidReverse/2021/Crack_com.xhey.xcamera/" title="今日水印相机自定义水印">今日水印相机自定义水印</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2021-08-09T16:00:00.000Z" title="发表于 2021-08-10 00:00:00">2021-08-10</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2021-08-09T16:00:00.000Z" title="更新于 2021-08-10 00:00:00">2021-08-10</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/">Android逆向</a><i class="fas fa-angle-right article-meta-link"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/%E5%B0%8F%E5%B1%95%E8%BA%AB%E6%89%8B/">小展身手</a></span></div><div class="content">今日水印相机自定义水印 ¶ 
@app_version：v2.8.19.10
今日水印相机_v2.8.19.10-E6F9CE50D9CC85A5FD433DD1FEE1F863 Download
apk没有加壳，还是比较好分析的
抓包 ¶ 
打开app开始抓包，有以下几个api

逆向分析 ¶ 
分析天气参数的获取 ¶ 
jeb分析 ¶ 
jeb中搜索相应的URI

选择第二个来到 一个所有re ...</div></div></div><div class="recent-post-item"><div class="post_cover left"><a href="/AndroidReverse/2021/Edit_the_Android_image_boot.img/" title="编辑Android镜像boot.img修改全局可调试"><img class="post_bg" src="http://forgo7ten.gitee.io/store/imgs/12.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="编辑Android镜像boot.img修改全局可调试"></a></div><div class="recent-post-info"><a class="article-title" href="/AndroidReverse/2021/Edit_the_Android_image_boot.img/" title="编辑Android镜像boot.img修改全局可调试">编辑Android镜像boot.img修改全局可调试</a><div class="article-meta-wrap"><span class="post-meta-date"><i class="far fa-calendar-alt"></i><span class="article-meta-label">发表于</span><time class="post-meta-date-created" datetime="2021-08-07T16:00:00.000Z" title="发表于 2021-08-08 00:00:00">2021-08-08</time><span class="article-meta-separator">|</span><i class="fas fa-history"></i><span class="article-meta-label">更新于</span><time class="post-meta-date-updated" datetime="2021-08-07T16:00:00.000Z" title="更新于 2021-08-08 00:00:00">2021-08-08</time></span><span class="article-meta"><span class="article-meta-separator">|</span><i class="fas fa-inbox"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/">Android逆向</a><i class="fas fa-angle-right article-meta-link"></i><a class="article-meta__categories" href="/categories/Android%E9%80%86%E5%90%91/%E8%BF%87%E7%A8%8B%E8%AE%B0%E5%BD%95%E5%A4%87%E6%9F%A5/">过程记录备查</a></span></div><div class="content">@[toc]
编辑Android镜像boot.img修改全局可调试 ¶ 
boot.img解包打包工具 ¶ 
https://github.com/Forgo7ten/BootImgTool
一、解压谷歌原版镜像 ¶ 

二、打开zip压缩包，复制出boot.img文件 ¶ 

三、对boot.img进行解包 ¶ 
首先要编译BootImgTool
12cd BootImgTool/./build ...</div></div></div><nav id="pagination"><div class="pagination"><span class="page-number current">1</span><a class="page-number" href="/page/2/#content-inner">2</a><a class="extend next" rel="next" href="/page/2/#content-inner"><i class="fas fa-chevron-right fa-fw"></i></a></div></nav></div><div class="aside-content" id="aside-content"><div class="card-widget card-info"><div class="is-center"><div class="avatar-img"><img src="/images/avatar.jpg" onerror="this.onerror=null;this.src='/img/friend_404.gif'" alt="avatar"/></div><div class="author-info__name">Forgo7ten</div><div class="author-info__description">Android逆向的学习随笔</div></div><div class="card-info-data is-center"><div class="card-info-data-item"><a href="/archives/"><div class="headline">文章</div><div class="length-num">20</div></a></div><div class="card-info-data-item"><a href="/tags/"><div class="headline">标签</div><div class="length-num">8</div></a></div><div class="card-info-data-item"><a href="/categories/"><div class="headline">分类</div><div class="length-num">6</div></a></div></div><a id="card-info-btn" target="_blank" rel="noopener" href="https://github.com/Forgo7ten"><i class="fab fa-github"></i><span>Follow Me</span></a><div class="card-info-social-icons is-center"><a class="social-icon" href="https://github.com/Forgo7ten" target="_blank" title="Github"><i class="fab fa-github"></i></a><a class="social-icon" href="mailto:Forgo7ten2020@gmail.com" target="_blank" title="Email"><i class="fas fa-envelope"></i></a><a class="social-icon" href="/atom.xml" target="_blank" title="RSS"><i class="fa fa-rss"></i></a></div></div><div class="card-widget card-announcement"><div class="item-headline"><i class="fas fa-bullhorn fa-shake"></i><span>公告</span></div><div class="announcement_content">一起学习共同进步噢！</div></div><div class="sticky_layout"><div class="card-widget card-recent-post"><div class="item-headline"><i class="fas fa-history"></i><span>最新文章</span></div><div class="aside-list"><div class="aside-list-item"><a class="thumbnail" href="/AndroidReverse/2022/Android_devices_init/" title="Android刷机记录"><img src="http://forgo7ten.gitee.io/store/imgs/13.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="Android刷机记录"/></a><div class="content"><a class="title" href="/AndroidReverse/2022/Android_devices_init/" title="Android刷机记录">Android刷机记录</a><time datetime="2022-05-02T16:00:00.000Z" title="发表于 2022-05-03 00:00:00">2022-05-03</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/AndroidReverse/2022/Frida_all_in_one/" title="Frida all in one"><img src="http://forgo7ten.gitee.io/store/imgs/14.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="Frida all in one"/></a><div class="content"><a class="title" href="/AndroidReverse/2022/Frida_all_in_one/" title="Frida all in one">Frida all in one</a><time datetime="2022-04-22T16:00:00.000Z" title="发表于 2022-04-23 00:00:00">2022-04-23</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/AndroidReverse/2022/Learning_about_cryptographic_algorithms/" title="对加密算法的学习"><img src="http://forgo7ten.gitee.io/store/imgs/18.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="对加密算法的学习"/></a><div class="content"><a class="title" href="/AndroidReverse/2022/Learning_about_cryptographic_algorithms/" title="对加密算法的学习">对加密算法的学习</a><time datetime="2022-02-06T16:00:00.000Z" title="发表于 2022-02-07 00:00:00">2022-02-07</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/AndroidReverse/2022/Android_dynamic_debugging_collection/" title="Android APK无源码动态调试合集"><img src="http://forgo7ten.gitee.io/store/imgs/3.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="Android APK无源码动态调试合集"/></a><div class="content"><a class="title" href="/AndroidReverse/2022/Android_dynamic_debugging_collection/" title="Android APK无源码动态调试合集">Android APK无源码动态调试合集</a><time datetime="2022-01-20T16:00:00.000Z" title="发表于 2022-01-21 00:00:00">2022-01-21</time></div></div><div class="aside-list-item"><a class="thumbnail" href="/Crack/Some_crack_apps/" title="对一些app的Crack分析"><img src="http://forgo7ten.gitee.io/store/imgs/18.jpg" onerror="this.onerror=null;this.src='/img/404.jpg'" alt="对一些app的Crack分析"/></a><div class="content"><a class="title" href="/Crack/Some_crack_apps/" title="对一些app的Crack分析">对一些app的Crack分析</a><time datetime="2021-12-31T16:03:00.000Z" title="发表于 2022-01-01 00:03:00">2022-01-01</time></div></div></div></div><div class="card-widget card-categories"><div class="item-headline">
            <i class="fas fa-folder-open"></i>
            <span>分类</span>
            
            </div>
            <ul class="card-category-list" id="aside-cat-list">
            <li class="card-category-list-item "><a class="card-category-list-link" href="/categories/Android%E9%80%86%E5%90%91/"><span class="card-category-list-name">Android逆向</span><span class="card-category-list-count">11</span></a><ul class="card-category-list child"><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/Android%E9%80%86%E5%90%91/%E5%B0%8F%E5%B1%95%E8%BA%AB%E6%89%8B/"><span class="card-category-list-name">小展身手</span><span class="card-category-list-count">3</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/Android%E9%80%86%E5%90%91/%E8%BF%87%E7%A8%8B%E8%AE%B0%E5%BD%95%E5%A4%87%E6%9F%A5/"><span class="card-category-list-name">过程记录备查</span><span class="card-category-list-count">4</span></a></li></ul></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/Reverse/"><span class="card-category-list-name">Reverse</span><span class="card-category-list-count">3</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/%E5%B7%A5%E5%85%B7-%E7%8E%AF%E5%A2%83%E8%B0%83%E6%95%99/"><span class="card-category-list-name">工具&环境调教</span><span class="card-category-list-count">4</span></a></li><li class="card-category-list-item "><a class="card-category-list-link" href="/categories/%E5%BC%80%E5%8F%91/"><span class="card-category-list-name">开发</span><span class="card-category-list-count">2</span></a></li>
            </ul></div><div class="card-widget card-tags"><div class="item-headline"><i class="fas fa-tags"></i><span>标签</span></div><div class="card-tag-cloud"><a href="/tags/CrackApps/" style="font-size: 1.15em; color: rgb(104, 143, 176)">CrackApps</a><a href="/tags/%E5%B7%A5%E5%85%B7-%E7%8E%AF%E5%A2%83%E8%B0%83%E6%95%99/" style="font-size: 1.35em; color: rgb(190, 192, 38)">工具&环境调教</a><a href="/tags/Android%E9%80%86%E5%90%91/" style="font-size: 1.45em; color: rgb(72, 90, 113)">Android逆向</a><a href="/tags/Reverse/" style="font-size: 1.25em; color: rgb(49, 123, 8)">Reverse</a><a href="/tags/Python/" style="font-size: 1.15em; color: rgb(6, 106, 76)">Python</a><a href="/tags/%E7%97%85%E6%AF%92%E5%88%86%E6%9E%90/" style="font-size: 1.15em; color: rgb(168, 139, 10)">病毒分析</a><a href="/tags/Android%E6%BC%8F%E6%B4%9E/" style="font-size: 1.15em; color: rgb(96, 110, 29)">Android漏洞</a><a href="/tags/Android/" style="font-size: 1.15em; color: rgb(39, 108, 113)">Android</a></div></div><div class="card-widget card-archives"><div class="item-headline"><i class="fas fa-archive"></i><span>归档</span><a class="card-more-btn" href="/archives/" title="查看更多">
    <i class="fas fa-angle-right"></i></a></div><ul class="card-archive-list"><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2022/05/"><span class="card-archive-list-date">五月 2022</span><span class="card-archive-list-count">1</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2022/04/"><span class="card-archive-list-date">四月 2022</span><span class="card-archive-list-count">1</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2022/02/"><span class="card-archive-list-date">二月 2022</span><span class="card-archive-list-count">1</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2022/01/"><span class="card-archive-list-date">一月 2022</span><span class="card-archive-list-count">2</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2021/11/"><span class="card-archive-list-date">十一月 2021</span><span class="card-archive-list-count">1</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2021/10/"><span class="card-archive-list-date">十月 2021</span><span class="card-archive-list-count">1</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2021/08/"><span class="card-archive-list-date">八月 2021</span><span class="card-archive-list-count">3</span></a></li><li class="card-archive-list-item"><a class="card-archive-list-link" href="/archives/2021/07/"><span class="card-archive-list-date">七月 2021</span><span class="card-archive-list-count">2</span></a></li></ul></div><div class="card-widget card-webinfo"><div class="item-headline"><i class="fas fa-chart-line"></i><span>网站资讯</span></div><div class="webinfo"><div class="webinfo-item"><div class="item-name">文章数目 :</div><div class="item-count">20</div></div><div class="webinfo-item"><div class="item-name">已运行时间 :</div><div class="item-count" id="runtimeshow" data-publishDate="2020-09-15T16:00:00.000Z"></div></div><div class="webinfo-item"><div class="item-name">本站总字数 :</div><div class="item-count">97.2k</div></div><div class="webinfo-item"><div class="item-name">本站访客数 :</div><div class="item-count" id="busuanzi_value_site_uv"></div></div><div class="webinfo-item"><div class="item-name">本站总访问量 :</div><div class="item-count" id="busuanzi_value_site_pv"></div></div><div class="webinfo-item"><div class="item-name">最后更新时间 :</div><div class="item-count" id="last-push-date" data-lastPushDate="2023-11-23T13:44:21.001Z"></div></div></div></div></div></div></main><footer id="footer" style="background-image: url('http://forgo7ten.gitee.io/store/imgs/17.jpg')"><div id="footer-wrap"><div class="copyright">&copy;2020 - 2023 By Forgo7ten</div><div class="framework-info"><span>框架 </span><a target="_blank" rel="noopener" href="https://hexo.io">Hexo</a><span class="footer-separator">|</span><span>主题 </span><a target="_blank" rel="noopener" href="https://github.com/jerryc127/hexo-theme-butterfly">Butterfly</a></div><div class="footer_custom_text">Hi, welcome to my <a href="https://Forgo7ten.github.io/">blog</a>!</div></div></footer></div><div id="rightside"><div id="rightside-config-hide"><button id="translateLink" type="button" title="简繁转换">繁</button><button id="darkmode" type="button" title="浅色和深色模式转换"><i class="fas fa-adjust"></i></button><button id="hide-aside-btn" type="button" title="单栏和双栏切换"><i class="fas fa-arrows-alt-h"></i></button></div><div id="rightside-config-show"><button id="rightside_config" type="button" title="设置"><i class="fas fa-cog fa-spin"></i></button><button id="go-up" type="button" title="回到顶部"><i class="fas fa-arrow-up"></i></button></div></div><div id="local-search"><div class="search-dialog"><nav class="search-nav"><span class="search-dialog-title">本地搜索</span><span id="loading-status"></span><button class="search-close-button"><i class="fas fa-times"></i></button></nav><div class="is-center" id="loading-database"><i class="fas fa-spinner fa-pulse"></i><span>  数据库加载中</span></div><div class="search-wrap"><div id="local-search-input"><div class="local-search-box"><input class="local-search-box--input" placeholder="搜索文章" type="text"/></div></div><hr/><div id="local-search-results"></div></div></div><div id="search-mask"></div></div><div><script src="/js/utils.js"></script><script src="/js/main.js"></script><script src="/js/tw_cn.js"></script><script src="https://cdn.jsdelivr.net/npm/@fancyapps/ui/dist/fancybox.umd.js"></script><script src="https://cdn.jsdelivr.net/npm/instant.page/instantpage.min.js" type="module"></script><script src="https://cdn.jsdelivr.net/npm/vanilla-lazyload/dist/lazyload.iife.min.js"></script><script src="https://cdn.jsdelivr.net/npm/node-snackbar/dist/snackbar.min.js"></script><script src="/js/search/local-search.js"></script><script>var preloader = {
  endLoading: () => {
    document.body.style.overflow = 'auto';
    document.getElementById('loading-box').classList.add("loaded")
  },
  initLoading: () => {
    document.body.style.overflow = '';
    document.getElementById('loading-box').classList.remove("loaded")

  }
}
window.addEventListener('load',preloader.endLoading())</script><div class="js-pjax"><script>function subtitleType () {
  if (true) { 
    window.typed = new Typed("#subtitle", {
      strings: ["一些二进制安全学习的随笔"],
      startDelay: 300,
      typeSpeed: 150,
      loop: false,
      backSpeed: 50
    })
  } else {
    document.getElementById("subtitle").innerHTML = '一些二进制安全学习的随笔'
  }
}

if (true) {
  if (typeof Typed === 'function') {
    subtitleType()
  } else {
    getScript('https://cdn.jsdelivr.net/npm/typed.js/lib/typed.min.js').then(subtitleType)
  }
} else {
  subtitleType()
}</script></div><script src="https://cdn.jsdelivr.net/npm/butterfly-extsrc@1/dist/activate-power-mode.min.js"></script><script>POWERMODE.colorful = true;
POWERMODE.shake = true;
POWERMODE.mobile = false;
document.body.addEventListener('input', POWERMODE);
</script><script id="click-show-text" src="https://cdn.jsdelivr.net/npm/butterfly-extsrc@1/dist/click-show-text.min.js" data-mobile="false" data-text="ヾ(≧▽≦*)o 点个收藏叭,(*^▽^*),w(ﾟДﾟ)w,ㄟ(≧◇≦)ㄏ,(/≧▽≦)/点个关注叭,Σ(っ °Д °;)っ,(●ˇ∀ˇ●),( •̀ ω •́ )✧,(*/ω＼*),ヽ(*。&gt;Д&lt;)o゜真的不收藏一下嘛,(～o￣3￣)～,ヽ（≧□≦）ノ" data-fontsize="15px" data-random="false" async="async"></script><script src="https://cdn.jsdelivr.net/npm/pjax/pjax.min.js"></script><script>let pjaxSelectors = ["title","#config-diff","#body-wrap","#rightside-config-hide","#rightside-config-show",".js-pjax"]

var pjax = new Pjax({
  elements: 'a:not([target="_blank"])',
  selectors: pjaxSelectors,
  cacheBust: false,
  analytics: false,
  scrollRestoration: false
})

document.addEventListener('pjax:send', function () {

  // removeEventListener scroll 
  window.tocScrollFn && window.removeEventListener('scroll', window.tocScrollFn)
  window.scrollCollect && window.removeEventListener('scroll', scrollCollect)

  typeof preloader === 'object' && preloader.initLoading()
  document.getElementById('rightside').style.cssText = "opacity: ''; transform: ''"
  
  if (window.aplayers) {
    for (let i = 0; i < window.aplayers.length; i++) {
      if (!window.aplayers[i].options.fixed) {
        window.aplayers[i].destroy()
      }
    }
  }

  typeof typed === 'object' && typed.destroy()

  //reset readmode
  const $bodyClassList = document.body.classList
  $bodyClassList.contains('read-mode') && $bodyClassList.remove('read-mode')

})

document.addEventListener('pjax:complete', function () {
  window.refreshFn()

  document.querySelectorAll('script[data-pjax]').forEach(item => {
    const newScript = document.createElement('script')
    const content = item.text || item.textContent || item.innerHTML || ""
    Array.from(item.attributes).forEach(attr => newScript.setAttribute(attr.name, attr.value))
    newScript.appendChild(document.createTextNode(content))
    item.parentNode.replaceChild(newScript, item)
  })

  GLOBAL_CONFIG.islazyload && window.lazyLoadInstance.update()

  typeof chatBtnFn === 'function' && chatBtnFn()
  typeof panguInit === 'function' && panguInit()

  // google analytics
  typeof gtag === 'function' && gtag('config', '', {'page_path': window.location.pathname});

  // baidu analytics
  typeof _hmt === 'object' && _hmt.push(['_trackPageview',window.location.pathname]);

  typeof loadMeting === 'function' && document.getElementsByClassName('aplayer').length && loadMeting()

  // prismjs
  typeof Prism === 'object' && Prism.highlightAll()

  typeof preloader === 'object' && preloader.endLoading()
})

document.addEventListener('pjax:error', (e) => {
  if (e.request.status === 404) {
    pjax.loadUrl('/404.html')
  }
})</script><script async data-pjax src="//busuanzi.ibruce.info/busuanzi/2.3/busuanzi.pure.mini.js"></script></div><script src="/live2dw/lib/L2Dwidget.min.js?094cbace49a39548bed64abff5988b05"></script><script>L2Dwidget.init({"pluginRootPath":"live2dw/","pluginJsPath":"lib/","pluginModelPath":"assets/","tagMode":false,"debug":false,"model":{"scale":1,"hHeadPos":0.5,"vHeadPos":0.618,"jsonPath":"/live2dw/assets/z16.model.json"},"display":{"superSample":2,"width":200,"height":400,"position":"right","hOffset":0,"vOffset":-20},"mobile":{"show":true,"scale":0.5},"react":{"opacityDefault":0.7,"opacityOnHover":0.2},"log":false});</script></body></html>