Sākums Izpētīt Palīdzība
Reģistrēties Pierakstīties
xiongzhu
/
frida-rcs-hack
1
0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne
Koks: 505d82213d
Atzari Tagi
frida-rcs-hack
/
scripts
/
system_server.js

system_server.js 2.3 KB
Vēsture Neapstrādāts

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162 
  1. function trace(tag) {
    2. 

  2.     Log.e((tag || '') + Java.use('android.util.Log').getStackTraceString(Java.use('java.lang.Throwable').$new()))
    3. 

  3. }
    4. 

  4. 

  5. function readFile(path) {
    6. 

  6.     var FileOutputStream = Java.use('java.io.FileOutputStream')
    7. 

  7.     var FileInputStream = Java.use('java.io.FileInputStream')
    8. 

  8.     var File = Java.use('java.io.File')
    9. 

  9.     var InputStreamReader = Java.use('java.io.InputStreamReader')
    10. 

  10.     var BufferedReader = Java.use('java.io.BufferedReader')
    11. 

  11.     var ByteArrayOutputStream = Java.use('java.io.ByteArrayOutputStream')
    12. 

  12. 

  13.     var file = File.$new(path)
    14. 

  14.     var fileInputStream = FileInputStream.$new(file)
    15. 

  15. 

  16.     var inputStreamReader = InputStreamReader.$new(Java.cast(fileInputStream, Java.use('java.io.InputStream')))
    17. 

  17.     var bufferedReader = BufferedReader.$new(inputStreamReader)
    18. 

  18.     var line
    19. 

  19.     var content = ''
    20. 

  20.     while ((line = bufferedReader.readLine()) !== null) {
    21. 

  21.         content += line + '\n'
    22. 

  22.     }
    23. 

  23. 

  24.     bufferedReader.close()
    25. 

  25.     inputStreamReader.close()
    26. 

  26.     fileInputStream.close()
    27. 

  27. 

  28.     return content
    29. 

  29. }
    30. 

  30. 

  31. setImmediate(() => {
    32. 

  32.     Java.perform(function () {
    33. 

  33.         const Log = Java.use('android.util.Log')
    34. 

  34. 

  35.         function log(msg) {
    36. 

  36.             console.log(`\x1b[30m[system_server] ${msg}\x1b[0m`)
    37. 

  37.             Log.d('frida-system_server', msg)
    38. 

  38.         }
    39. 

  39. 

  40.         const DeviceIdentifiersPolicy = Java.use(
    41. 

  41.             'com.android.server.os.DeviceIdentifiersPolicyService$DeviceIdentifiersPolicy'
    42. 

  42.         )
    43. 

  43. 

  44.         DeviceIdentifiersPolicy.getSerial.overload().implementation = function () {
    45. 

  45.             const original = this.getSerial()
    46. 

  46.             const spoof = '1234567890'
    47. 

  47.             log(`DeviceIdentifiersPolicy.getSerial() called, returning: ${spoof}, original: ${original}`)
    48. 

  48.             return spoof
    49. 

  49.         }
    50. 

  50. 

  51.         DeviceIdentifiersPolicy.getSerialForPackage.overload('java.lang.String', 'java.lang.String').implementation =
    52. 

  52.             function (callingPackage, callingFeatureId) {
    53. 

  53.                 const original = this.getSerialForPackage(callingPackage, callingFeatureId)
    54. 

  54.                 const spoof = '1234567890'
    55. 

  55.                 log(
    56. 

  56.                     `DeviceIdentifiersPolicy.getSerialForPackage(${callingPackage}, ${callingFeatureId}) called, returning: ${spoof}, original: ${original}`
    57. 

  57.                 )
    58. 

  58.                 return spoof
    59. 

  59.             }
    60. 

  60. 

  61.     })
    62. 

  62. })
    63.