charleyha 发表于 2022-10-31 17:49

frida Stalker.follow 死循环

我希望通过Stalker.follow 去读一段汇编的寄存器。现在这种写法会导致 一直在几个指令里循环,如果我不去看寄存器,而是通过console.log(instruction.address.sub(base_addr) + "\t:\t" + instruction); 去看执行的指令,是可以正常执行。

有没有大佬能给解答一下。

```
    var mou = Process.getModuleByName(MODULE_NAME)
    var tid = Process.getCurrentThreadId()
    Stalker.follow(tid, {

      transform: (iterator) => {
            const instruction = iterator.next();
            const startAddress = instruction.address;
            const isModuleCode = startAddress.compare(mou.base) >= 0 &&(mou.base.add(mou.size)).sub(startAddress) > 0;
            do {
                iterator.keep();
                if (isModuleCode) {
                                                                                                //console.log(instruction.address.sub(base_addr) + "\t:\t" + instruction);
                  iterator.putCallout((context) => {
                        let funcAddress = getFuncAddress(context.pc, exportTable);
                        console.log(JSON.stringify({
                            fromAddress: funcAddress,
                            x1 : context.x1,
                            x19:context.x19
                        }))
                  })
                }
            } while (iterator.next() !== null);
      }
    })

```

部分死循环的log

```
{"fromAddress":"0x1ca8f340","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f344","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f348","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f33c","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f340","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f344","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f348","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f33c","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f340","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f344","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f348","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f33c","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f340","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f344","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f348","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f33c","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f340","x1":"0x16f795577","x19":"0x11c66fe40"}
{"fromAddress":"0x1ca8f344","x1":"0x16f795577","x19":"0x11c66fe40"}

```
页: [1]
查看完整版本: frida Stalker.follow 死循环


免责声明:
吾爱破解所发布的一切破解补丁、注册机和注册信息及软件的解密分析文章仅限用于学习和研究目的;不得将上述内容用于商业或者非法用途,否则,一切后果请用户自负。本站信息来自网络,版权争议与本站无关。您必须在下载后的24个小时之内,从您的电脑中彻底删除上述内容。如果您喜欢该程序,请支持正版软件,购买注册,得到更好的正版服务。如有侵权请邮件与我们联系处理。

Mail To:Service@52pojie.cn