该项目是一个 macOS dylib 项目,集成了 Dobby Hook 框架,旨在通过使用 Dobby Hook 框架对软件进行辅助增强。
开发环境:
- MacOS (关闭 SIP & 允许任何来源)
- xcode 15.2 | clion
- dobby
- insert_dylib
- hopper | ida
目录结构 :
- dylib_dobby_hook: 源码
- libs: 项目依赖的开源 dobby 库
- release: build 后的成品
- script:
- auto_hack.sh 静态注入
sudo bash auto_hack.sh - auto_dynamic_hack.sh 动态注入[SIP OFF]
sudo bash auto_dynamic_hack.sh
- auto_hack.sh 静态注入
- tools: insert_dylib 开源注入工具
- 跨平台 HOOK
- Xcode|Clion 集成开发调试环境
- 特征码搜索
点击这里展开/收起
| App | version | x86 | arm | Download | SIP | Author |
|---|---|---|---|---|---|---|
| TablePlus | 6.* | ✔ | ✔ | https://tableplus.com/ | ||
| DevUtils | 1.* | ✔ | ✔ | https://devutils.com/ | ||
| AirBuddy | 2.* | ✔ | ✔ | https://v2.airbuddy.app/download | ||
| Navicat Premium | 17.* | ✔ | ✔ | App Store | ||
| Paste | 4.1.3 | ✘ | ✔ | App Store | LeeeMooo | |
| Transmit | 5.* | ✔ | ✔ | https://panic.com/transmit/#download | ||
| AnyGo | 7.* | ✔ | ✔ | https://itoolab.com/gps-location-changer/ | ||
| Downie | 4.* | ✔ | ✔ | https://software.charliemonroe.net/downie/ | ||
| Permute | 3.* | ✔ | ✔ | https://software.charliemonroe.net/permute/ | ||
| ProxyMan | 5. | ✔ | ✔ | https://proxyman.io/ | ON | |
| Movist Pro | 2.* | ✔ | ✔ | https://movistprime.com/ | ||
| Surge | 5.8.* | ✔ | ✔ | https://nssurge.com/ | ON | |
| Infuse | 7.7.* | ✔ | ✔ | App Store | ||
| MacUpdater | 3. | ✔ | ✔ | https://www.corecode.io/macupdater/#download | ||
| CleanShotX | 4. | ✔ | ✔ | https://updates.getcleanshot.com/v3/ | ||
| ForkLift | 4. | ✔ | ✔ | https://binarynights.com/ | ON | |
| IDA Pro | 9. | ✔ | ✔ | https://out5.hex-rays.com/beta90_6ba923/ | alula |
tar -xzvf dylib_dobby_hook.tar.gz
cd script
sudo bash auto_hack.sh基础代码已经完成, 为了兼容更多的 app 补丁, 使用了适配器模式来进行扩展
#import <Foundation/Foundation.h>
#import <objc/runtime.h>
#import "HackProtocol.h"
@interface XXXHack : HackProtocolDefault
@end
@implementation XXXHack
- (NSString *)getAppName {
return @"com.dev.xxx";
}
- (NSString *)getSupportAppVersion {
return @"1.0";
}
- (BOOL)hack {
#if
defined(__arm64__) || defined(__aarch64__)
// do arm something..
#elif
defined(__x86_64__)
// do x86 something..
#endif
return YES;
}
@end
编译后, 会得到一个我们的 dylib 补丁
然后编写 shell 脚本,来注入
cp -f source_bin source_bin_backup
"${insert_dylib}" --weak --all-yes "${YOUR_BUILD_PATH}/libdylib_dobby_hook.dylib" "source_bin_backup" "source_bin"
- [MacOS逆向] MacOS TablePlus dylib注入 HOOK x86/arm 双插 完美破解 https://www.52pojie.cn/thread-1739112-1-1.html
- [C&C++ 原创] C++ 跨平台 内联汇编集成 (MacOS,Linux,Windows) https://www.52pojie.cn/thread-1653689-1-1.html
- jmpews/Dobby https://github.com/jmpews/Dobby
仅供研究学习使用,请勿用于非法用途
注:若转载请注明来源(本贴地址)与作者信息。