Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/qtfreet00/AntiFrida
通过内存特征检测frida
https://github.com/qtfreet00/AntiFrida
Last synced: 21 days ago
JSON representation
通过内存特征检测frida
- Host: GitHub
- URL: https://github.com/qtfreet00/AntiFrida
- Owner: qtfreet00
- Created: 2019-09-17T09:23:47.000Z (about 5 years ago)
- Default Branch: master
- Last Pushed: 2019-11-05T09:46:28.000Z (about 5 years ago)
- Last Synced: 2024-08-05T17:27:22.125Z (4 months ago)
- Language: C++
- Size: 128 KB
- Stars: 441
- Watchers: 12
- Forks: 94
- Open Issues: 3
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-hacking-lists - qtfreet00/AntiFrida - 通过内存特征检测frida (C++)
README
#### Frida检测
通过Frida内存特征对maps中elf文件进行扫描匹配特征,支持frida-gadget和frida-server
不使用frida文件名和端口进行扫描,该方式相对来说篡改比较方便,
在`https://github.com/b-mueller/frida-detection-demo`上进行了改进
上面项目仅支持frida-inject和端口扫描,frida可通过frida -l 修改远程端口bypass
新版实现可用性要高一些,测试Frida 12.7.3通过,原生不检测端口,修改端口无法bypass
编译需要在ndk 15及以上