Questions tagged [shared-object]
The shared-object tag has no summary.
34 questions
0
votes
0
answers
67
views
Applying right offsets of Android Native Code in Ghidra
I'm reverse engineering x86_64 native code library that's loaded by an application.
I use Ghidra to get the following decompiled code and I'm trying to make sense of the function calls and different ...
- 1
1
vote
0
answers
428
views
Read value from frida hooked native method Jlong parameter
I am new to using frida for hooking native android code i.e lib.so, so I have load the lib into ghidra and can find the native function. the native function is getting 5 params including jnienv and ...
- 309
0
votes
1
answer
490
views
How learn which functions are called in .so library at Android?
I want to learn how listen certain .so files. I mean what is the way to know which fuctions are called which body of code executed in shared library at Android? I just wanted mofify stock camera on my ...
1
vote
0
answers
70
views
JEB pro is not showing xrefs for native code (arm)
i have this problem when analyzing arm shared object.
when working with IDA pro, it finds all xrefs but in jeb, most of xrefs are missing.
when JEB finfishes, the final analysis lacks most of xrefs. I ...
- 51
2
votes
0
answers
591
views
Cannot load libvulkan.so on Linux chroot running on Android while normal Android apps can load it
Environment
First I will give a quick summary of my environment
Device: Samsung Galaxy M20 (m20lte)
SoC: Exynos 7904 (with Mali-G71 GPU)
OS: Android 10 (Stock ROM with root using Magisk)
Kernel: 4.4....
- 279
2
votes
0
answers
309
views
ghidra assigns local variable to register
im reversing a android native library and im trying to understand how a token is generated the toke n is passed to a callback java method and i traced where the method is getting called from
this is ...
- 191
1
vote
0
answers
52
views
How to prevent dynamic loader from modifying binary in memory?
I have patched a loadable object (an .so file) from this:
xor eax,0x304b7c0
to this:
mov eax,0x0
When I try to run my binary with these modifications, the application loads the .so file and then it ...
- 11
1
vote
0
answers
141
views
how to hide all export functions in a elf so library?
I have this game I want to patch, the game server executable loads a elf so library with functions. I want to add new functions into this library so I patched the game server executable with elfpatch ...
2
votes
1
answer
943
views
Load to Ida binary with all of SO
I have a Linux ARM binary with a lot of shared libraries.
Can I load all of them into one IDA instance so that I can easily navigate between functions? For example: functions that the binary calls and ...
- 291
1
vote
0
answers
137
views
Which encryption returns 192 hash value it means 96 in bytes?
I am reversing an APK and there is a signature that needs to be found.
The function from where the signature is generated is present in the .so file.
I did small debugging. While doing it, the ...
- 11
2
votes
1
answer
336
views
Dynamically linked shared objects
From some time I struggle with the dynamically loaded object into process memory. How it exactly works? I found a lot of materials telling that shared objects shares the same code and has only on ...
2
votes
1
answer
2k
views
How do I execute "File -> Add To Program..." in a Ghidra script?
I'm reversing an old video game with large number of shared libraries, and in order to reference them all correctly (via "thunk" functions?) I think I need to import all of the raw files ...
- 21
2
votes
1
answer
189
views
Load a *.dylib or *.so object into the Javascript V8 runtime?
I was reading this Frida release page and noticed it made the following reference:
Short of writing the whole agent in C, one could go ahead and build a
native library, and load it using Module....
- 183
1
vote
2
answers
8k
views
IDA Freeware 7.0 disassemble ARM .so file
I have a .so file from an android app, and I want to disassemble it with IDA. However I get the error:
The processor type 'arm' is not included in the installed version of IDA.
IDA Version: Freeware ...
- 23
1
vote
3
answers
3k
views
Reverse engineer .so file from android app with radare2
I have a .so file from an android app, and I know how to list all functions in IDA Pro.
How can I do this with radare2?
- 23