https://github.com/stackoverflowexcept1on/function-interceptor
hooking functions with funchook library
https://github.com/stackoverflowexcept1on/function-interceptor
cmake cpp20 hooking-template reverse-engineering
Last synced: 3 months ago
JSON representation
hooking functions with funchook library
- Host: GitHub
- URL: https://github.com/stackoverflowexcept1on/function-interceptor
- Owner: StackOverflowExcept1on
- Created: 2023-02-15T20:12:57.000Z (over 2 years ago)
- Default Branch: master
- Last Pushed: 2023-02-23T19:06:17.000Z (over 2 years ago)
- Last Synced: 2025-01-11T13:24:01.332Z (5 months ago)
- Topics: cmake, cpp20, hooking-template, reverse-engineering
- Language: C++
- Homepage:
- Size: 8.79 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
### function-interceptor
[](https://github.com/StackOverflowExcept1on/function-interceptor/actions/workflows/ci.yml)
This project demonstrates how to hook functions through the [funchook](https://github.com/kubo/funchook) library
### Requirements
- g++ compiler
- cmake
- python3
- frida: https://frida.re
### Preparing
```bash
# install dependencies
pip install frida
# change the ptrace_scope for frida
sudo sysctl kernel.yama.ptrace_scope=0
# build c++ project
./build.sh
```
### Running
```bash
# run program (it is assumed that in different terminals)
LD_LIBRARY_PATH=./build/bin ./build/bin/program
# attach `./build/bin/libhook.so` to `$(pidof program)`
./scripts/loader.py $(pidof program) ./build/bin/libhook.so
```
```
exampleFunction(a=1, b=2, c=3)
ret = 48
handle = 0x7f79317921e0
exampleFunction_original = 0x7f793178e120
exampleFunction(a=1, b=2, c=3)
[+] org ret = 48
[+] exampleFunction_hook(a=1, b=2, c=3)
ret = 42
```