Dobby
Dobby copied to clipboard
jmpews
a lightweight, multi-platform, multi-architecture hook framework.
最新文件(下载的 和 自己编译的) 都报错 undefined reference to `DobbyGlobalOffsetTableReplace'
env:iOS13.3.1 arm64 iphone6s Xcode13.3.1 Hi: I hook a method that uses the x8 register in its body, let's call it method_A, I hook it using DobbyX by replacing it with...
(gdb) x /15i _PyObject_GC_Malloc[这个函数无法在fake__PyObject_GC_Malloc[转跳调用ori__PyObject_GC_Malloc,转跳到一个错误的地址,闪退] 0x564be0e23ac0 : jmpq *-0x7ffffac6(%rip) # 0x564b60e24000 **_0x564be0e23ac6 : (bad) 0x564be0e23ac7 : (bad) 0x564be0e23ac8 : (bad)_** 0x564be0e23ac9 : jg 0x564be0e23b13 0x564be0e23acb : cmp %eax,%edi 0x564be0e23acd : ja...
int (*linuxold_close)(int fd); int hook_close(int fd) { printf("hook_close函数%d\n",fd); return linuxold_close(fd); } void *printf_addr = DobbySymbolResolver(NULL, "close"); if (printf_addr) { DobbyHook(printf_addr, hookFunc, oriFunc); }
```sh 06-08 04:24:53.607 24500 24500 F DEBUG : signal 6 (SIGABRT), code -6 (SI_TKILL), fault addr -------- 06-08 04:24:53.607 24500 24500 F DEBUG : Abort message: 'Failed to create JniInvocation...
Hi. I want to collaborate with you on my project. Are you available for discussion? Thanks in advance.
目前测试出了两个问题: 1. master分支在macOS Monterey 12.0.1 Intel 环境下hook C++方法失败了 2. dev分支在macOS 12.0.1编译失败(不确定dev分支是否已经修复hook C++ 方法,没编译出来,无法测试)
在对开头有pxor xmm0,xmm0这样汇编指令的函数进行hook时,会出现DobbyHook unimplemented code abort的问题。 要hook的函数的汇编如下 ``` pwndbg> x/16i 0x7ffff7a538f0 0x7ffff7a538f0 : push rbp 0x7ffff7a538f1 : pxor xmm0,xmm0 0x7ffff7a538f5 : mov rbp,rsp 0x7ffff7a538f8 : push r15 0x7ffff7a538fa : push r14...
在 M1 上 hook 系统函数CFPasteboardCopyData会崩溃,其他的函数如CFPasteboardSetData不会。 dobby版本: master分支最新代码 环境: M1 macOS 11.5.2 系统崩溃报告: ``` Process: TestCopy [42746] Path: /Users/USER/Library/Developer/Xcode/DerivedData/TestCopy-atwbsqoyyigyeybenhvhfgqfyhor/Build/Products/Debug/TestCopy.app/Contents/MacOS/TestCopy Identifier: com.TestCopy Version: 1.0 (1) Code Type: ARM-64 (Native) Parent Process: zsh...
