本文使用大佬编译的去功能版frida使用https://github.com/hzzeyang/strongR-frida-android下载server-start方式与普通服务器一致。使用大佬编译的defeaturedfrida启动这个frida脚本spawn,不保证对每个app都有效Interceptor.attach(pfn_strstr,{onEnter:function(args){varstr1=Memory.readCString(args[0]);varstr2=Memory.readCString(args[1]);if(str2.indexOf("tmp")!==-1||str2.indexOf("frida")!==-1||str2.indexOf("gdbus")!==-1||str2.indexOf("gum-js-loop")!==-1||str2.indexOf("gmain")!==-1||str2.indexOf("linjector")!==-1){console.log("str1:%s-str2:%s\n",str1,str2);this.hook=true;}},onLeave:function(retval){如果(this.hook){retval.replace(0);}}});}启动方法frida-U--no-pause-fcom.xxx.xxx-lhook.js
