tableplus deviceID盲猜是md5
用frida hook cc_md5
Interceptor.attach(Module.findExportByName(null, 'CC_MD5'), {
onEnter: function (args) {
console.log("[+] --------------------------------------------------------------");
try {
const deviceid_ram = Memory.readUtf8String(args[0], args[1].toInt32());
LOG("[+] args[0]: " + deviceid_ram);
onLeave: function (retval) {
// retval == args[2]
var ByteArray = Memory.readByteArray(ArgPtr, 16);
var uint8Array = new Uint8Array(ByteArray);
var str = "";
for (var i = 0; i < uint8Array.length; i++) {
var hextemp = (uint8Array[i].toString(16))
if (hextemp.length == 1) {
hextemp = "0" + hextemp
}
str += hextemp;
}
LOG("[+] MD5 Hash: " + str);
}
});
从显示看出md5的参数是有一个网卡mac地址+序列号生成的,
类似这样11:11:11:11:11:11abcdefabcdef
ifconfig en0 | grep -o -E '([[:xdigit:]]{1,2}:){5}[[:xdigit:]]{1,2}'
system_profiler SPHardwareDataType | grep Serial
deviceID = md5(mac+Serial)
|