Frida注入微信hook入门篇
首先找到frida官网
安装python环境
此处为win系统,需要根据自己环境进行安装
如输入python后输出版本号即安装成功
C:\Users\ASUS>python
Python 3.11.4 (tags/v3.11.4:d2340ef, Jun 7 2023, 05:45:37) [MSC v.1934 64 bit (AMD64)] on win32
Type "help", "copyright", "credits" or "license" for more information.
安装 frida-tools
pip install frida-tools
Frida 将自身注入到微信中
C:\Users\ASUS>frida-trace -i "recv*" -i "read*" wechat.exe
nstrumenting...
recv: Auto-generated handler at "C:\\Users\\ASUS\\__handlers__\\WSOCK32.dll\\recv.js"
recvfrom: Auto-generated handler at "C:\\Users\\ASUS\\__handlers__\\WSOCK32.dll\\recvfrom.js"
recv: Auto-generated handler at "C:\\Users\\ASUS\\__handlers__\\WS2_32.dll\\recv.js"
recvfrom: Auto-generated handler at "C:\\Users\\ASUS\\__handlers__\\WS2_32.dll\\recvfrom.js"
Started tracing 4 functions. Press Ctrl+C to stop.
/* TID 0x3590 */
5828 ms recv()
/* TID 0x39b0 */
5852 ms recv()
/* TID 0x3590 */
5895 ms recv()
/* TID 0x39b0 */
5981 ms recv()
/* TID 0xf88 */
6235 ms recv()
6323 ms recv()
/* TID 0x38c8 */
7142 ms recv()
/* TID 0x3910 */
7172 ms recv()
/* TID 0x336c */
7210 ms recv()
/* TID 0xc88 */
7227 ms recv()
/* TID 0x216c */
7245 ms recv()
/* TID 0x3668 */
7253 ms recv()
/* TID 0xc88 */
7441 ms recv()
/* TID 0x3910 */
7442 ms recv()
/* TID 0x38c8 */
7463 ms recv()
/* TID 0x216c */
7466 ms recv()
/* TID 0x336c */
7469 ms recv()
/* TID 0x3668 */
7469 ms recv()
/* TID 0x548 */
18113 ms recv()
18155 ms recv()
/* TID 0xf88 */
18258 ms recv()
18307 ms recv()
/* TID 0x32ec */
44927 ms recv()
45004 ms recv()
113169 ms recv()
113218 ms recv()
/* TID 0x1fc0 */
180637 ms recv()
180727 ms recv()
/* TID 0x32ec */
193981 ms recv()
343040 ms recv()