【移动安全】Android(安卓)App Smail代码动态跟踪调试方法
16lz
2022-06-12
1、反编译可调试模式的smail代码
D:\software\android\ApkTool\dump\apktool>java -jar apktool.jar d -d b11842d4126d72df16c1c1870c819c37.apk -o outI: Using Apktool 2.0.0-RC3 on b11842d4126d72df16c1c1870c819c37.apkI: Loading resource table...I: Decoding AndroidManifest.xml with resources...I: Loading resource table from file: C:\Users\topsec\apktool\framework\1.apkI: Regular manifest package...I: Decoding file-resources...I: Decoding values */* XMLs...I: Baksmaling classes.dex...Cleaning up unclosed ZipFile for archive C:\Users\topsec\apktool\framework\1.apkI: Copying assets and libs...I: Copying unknown files...I: Copying original files...
2、在输出的out文件夹中,用文本编辑工具打开AndroidManifest.xml,在application节点中设置属性android:debuggable=”true”
D:\software\android\ApkTool\dump\apktool>java -jar apktool.jar b -d out -o debug.apkI: Using Apktool 2.0.0-RC3 on outI: Checking whether sources has changed...I: Smaling smali folder into classes.dex...I: Checking whether resources has changed...I: Building resources...Warning: AndroidManifest.xml already defines debuggable (in http://schemas.android.com/apk/res/android); using existing value in manifest.I: Copying libs...I: Building apk file...I: Copying unknown files/dir...Cleaning up unclosed ZipFile for archive C:\Users\topsec\AppData\Local\Temp\APKTOOL5083930743852064505.tmpD:\software\android\ApkTool\dump\apktool>cd D:\software\android\ApkTool\dump\apktool
3、使用签名工具对debug.apk文件进行签名,签名后安装
D:\software\android\ApkTool\dump\apktool>adb install -r debug.apk1726 KB/s (14505061 bytes in 8.203s) pkg: /data/local/tmp/debug.apksuccessD:\software\android\ApkTool\dump\apktool>
4、启动软件等待调试
5、下面开始设置Eclipse实时调试的环境,进入第1步产生的OUT文件夹,把里面的BUILD和DIST文件夹删除,这是APKTOOL编译APK时产生的。
6、启动ECLIPSE,构建JAVA项目
1) File -> New -> Project -> Java Project -> Next
2) Project Name随便起,Use default location选项去掉,Location选择out文件夹,然后Next
3) 把smali文件夹设为Source Folder,然后Finish
7、ddms中查看要调试进程端口,然后找到我们要下断点的smail代码设置断点
8、选择eclipse下run->debug configurations->Remote Java Application->new一个新配置选择端口,点击debug开始调试
9.手机中操作开始收报发包跟踪即可,同时抓包查看详细信息,调试跟踪找到加解密算法实现数据还原。
更多相关文章
- Android(安卓)system/bin 命令
- Android(安卓)Studio多环境打包
- Android调试工具 —— TraceView [整理]
- Android(安卓)studio出现Error:Unable to tunnel through proxy.
- android模拟器SD卡使用
- [RK3399][Android7.1] 调试笔记 --- 设置里打开返回按键
- AndroidStudio安装apk时失败时提示INSTALL_PARSE_FAILED_NO_CERT
- Android(安卓)APK反编译详解(附图)
- 用Android代码实现打开USB调试