如何破解反调试,静态如何找到.so中的lua解密函数
各位:最近在玩一个手游,想试着破解它的lua脚本,遇到两个问题:
1:用android studio的x86模拟器,IDA动态调试.so在加载了腾讯的bugly后就出现ida和虚拟机的连接断开。
在网上找了些关于反调试的内容,搞了一段时间,没搞出来。
ida的打印信息如下,我应该如何定位到底是那个位置的线程或者代码把ida断开了?
AAAA7000: loaded /data/app/com-------/lib/x86/libBugly.so//删掉了app名称
B726209F: thread has started (tid=22153) ------ //删掉了名称
B726209F: thread has started (tid=22154) -------- //删掉了名称
Debugger: thread 22154 has exited (code 0)
B726209F: thread has started (tid=22155) BUGLY_THREAD
737D9E9B: got SIGSEGV signal (Segmentation violation) (exc.code b, tid 22057)
Couldn't retrieve file information.
Couldn't retrieve file information.
B72CF1A6: got SIGCHLD signal (Child status has changed) (exc.code 11, tid 22149)
Couldn't retrieve file information.
Couldn't retrieve file information.
B72CEC5B: got SIGCHLD signal (Child status has changed) (exc.code 11, tid 22057)
B726209F: thread has started (tid=22177)------ //删掉了名称
B72621E2: got unknown signal #33 (exc.code 21, tid 22057)
B72CE295: got EXC_21 signal () (exc.code 21, tid 22063)
B72621E2: got EXC_21 signal () (exc.code 21, tid 22067)
B72CF1A6: got EXC_21 signal () (exc.code 21, tid 22068)
B72CF1A6: got EXC_21 signal () (exc.code 21, tid 22069)
Debugger: thread 22068 has exited (code 0)
Debugger: thread 22069 has exited (code 0)
Debugger: thread 22079 has exited (code 0)
Debugger: process has exited (exit code 33)
2:静态查看libcocos2dlua.so的代码发现applicationDidFinishLaunching被改写了,和网上帖子的xxtea解密的内容不一致,我对cocos2dx引擎不了解,所以静态查看代码头大,找不到加载lua文件的地方。
有对cocos2dx-lua熟悉的朋友能够帮忙今天看看libcocos2dlua.so找一下解密的代码在哪里么?
网盘链接是x86的libBugly.so和libcocos2dlua.so,请各位大佬下载下来看看。
链接:https://pan.baidu.com/s/1d237bgXNcCMoiVcmoRf5PQ
提取码:y37t
自己顶一下
页:
[1]