Coder Social home page Coder Social logo

windstylebar / dylib_dobby_hook Goto Github PK

View Code? Open in Web Editor NEW

This project forked from marlkiller/dylib_dobby_hook

0.0 0.0 0.0 2.12 MB

该项目是一个集成了 Dobby Hook 框架的 macOS dylib 项目,通过使用 Dobby Hook 框架实现对应用程序的钩子函数,以实现跨平台破解软件的效果。

License: MIT License

Shell 5.30% C 4.16% Objective-C 90.55%

dylib_dobby_hook's Introduction

About

xcode 开发 dylib , 基于跨平台的 dobby HOOK 框架来构建跨平台的通杀补丁.
**再也不用担心你只能跑 Rosetta 了..

开发环境:

  • MacOS (关闭 SIP)
  • xcode 15.2
  • dobby
  • insert_dylib
  • hopper | ida

目录结构 :

  1. dylib_dobby_hook: 源码
  2. libs: 项目依赖的开源 dobby 库
  3. release: build 后的成品
  4. script:
    • hack.sh 自定义注入脚本 sudo sh hack.sh
    • auto_hack.sh 妹妹全自动注入脚本 sudo sh auto_hack.sh
  5. tools: insert_dylib 开源注入工具

Feat

  1. 跨平台 HOOK
  2. Xcode 集成开发调试环境
  3. 特征码搜索
App version x86 arm Download remark Author
TablePlus 5.* https://tableplus.com/
DevUtils 1.* https://devutils.com/
AirBuddy 2.6.3 https://v2.airbuddy.app/download
Navicat Premium 16.* App Store inject_bin="/Applications/Navicat Premium.app/Contents/Frameworks/EE.framework/Versions/A/EE" QiuChenlyOpenSource
Paste 4.1.3 App Store LeeeMooo
Transmit 5.* https://panic.com/transmit/#download
AnyGo 7.* https://itoolab.com/gps-location-changer/ DMCA !!
Downie 4.* https://software.charliemonroe.net/downie/ inject_bin="/Applications/Permute 3.app/Contents/Frameworks/Licensing.framework/Versions/A/Licensing"
Permute 3.* https://software.charliemonroe.net/permute/ inject_bin="/Applications/Downie 4.app/Contents/Frameworks/Licensing.framework/Versions/A/Licensing"
ProxyMan 5.* https://proxyman.io/ inject_bin="/Applications/Proxyman.app/Contents/Frameworks/HexFiend.framework/Versions/A/HexFiend"

Quick Start

git clone https://github.com/marlkiller/dylib_dobby_hook.git 
cd script 
sudo sh auto_hack.sh

Develop

关键 hook 函数,可以参考帖子(以 TabpePlus 该软件为例) : https://www.52pojie.cn/thread-1739112-1-1.html

0x0

基础代码已经完成, 为了兼容更多的 app 补丁, 使用了适配器模式来进行扩展

0x1 定义实现类(以当前 TablePlus 为例)

#import <Foundation/Foundation.h>
#import "TablePlusHack.h"
#import <objc/runtime.h>

@implementation TablePlusHack


- (NSString *)getAppName {
    return @"com.tinyapp.TablePlus";
}

- (NSString *)getSupportAppVersion {    
    return @"5.8.2";
}

- (BOOL)hack {
    
#if defined(__arm64__) || defined(__aarch64__)
    // do arm something..
#elif defined(__x86_64__)
    // do x86 something..
#endif
    
    return YES;
}
@end

0x2 Build & 注入

编译后, 会得到一个我们的 dylib 补丁
然后编写 shell 脚本,来注入

current_path=$PWD
echo "当前路径:$current_path"

app_name="DevUtils"

# 默认注入到主程序中,如果需要自定义,请编辑 inject_bin 变量,否则不要碰它
# inject_bin="/Applications/Navicat Premium.app/Contents/Frameworks/EE.framework/Versions/A/EE"
# inject_bin="/Applications/${app_name}.app/Contents/MacOS//${app_name}"

# release dylib
dylib_name="dylib_dobby_hook"
prefix="lib"
insert_dylib="${current_path}/../tools/insert_dylib"

BUILT_PRODUCTS_DIR="${current_path}/../release"

app_bundle_path="/Applications/${app_name}.app/Contents/MacOS/"
app_bundle_framework="/Applications/${app_name}.app/Contents/Frameworks"

if [ -n "$inject_bin" ]; then
    app_executable_path="$inject_bin"
else
    app_executable_path="${app_bundle_path}/${app_name}"
fi
app_executable_backup_path="${app_executable_path}_Backup"

# 注入前,备份程序
cp -f "${insert_dylib}" "${app_bundle_path}/"
if [ ! -f "$app_executable_backup_path" ]; 
then
    cp "$app_executable_path" "$app_executable_backup_path"
fi

# 复制 dylib 到目标程序下,执行注入
cp -f "${BUILT_PRODUCTS_DIR}/${prefix}${dylib_name}.dylib" "${app_bundle_framework}"
cp -f "${BUILT_PRODUCTS_DIR}/libdobby.dylib" "${app_bundle_framework}"

"${app_bundle_path}/insert_dylib" --weak --all-yes "@rpath/${prefix}${dylib_name}.dylib" "$app_executable_backup_path" "$app_executable_path"

Ref

  1. [MacOS逆向] MacOS TablePlus dylib注入 HOOK x86/arm 双插 完美破解 https://www.52pojie.cn/thread-1739112-1-1.html
  2. [C&C++ 原创] C++ 跨平台 内联汇编集成 (MacOS,Linux,Windows) https://www.52pojie.cn/thread-1653689-1-1.html
  3. jmpews/Dobby https://github.com/jmpews/Dobby

WARN

仅供研究学习使用,请勿用于非法用途
注:若转载请注明来源(本贴地址)与作者信息。

dylib_dobby_hook's People

Contributors

marlkiller avatar gyc-12 avatar leeemooo avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.