Fast search and dump dex on memory.
Available items
No Items, yet!
The developer of this repository has not created any items for sale yet. Need a bug fixed? Help with integration? A different license? Create a request here:
Readme
FRIDA-DEXDump
Features
- support fuzzy search broken header dex.
- fix struct data of dex-header.
- compatible with all android version(frida supported).
- support loading as objection plugin ~
- pypi package has been released ~
Requires
Installation
From pypi
pip3 install frida-dexdump frida-dexdump -h
From source
git clone https://github.com/hluwa/FRIDA-DEXDump cd FRIDA-DEXDump/frida-dexdump python3 main.py -h
Usage
-
Run
frida-dexdump
orpython3 main.py
to attach current frontmost application and dump dexs. -
Or, use command arguments:
-n: [Optional] Specify target process name, when spawn mode, it requires an application package name. If not specified, use frontmost application. -p: [Optional] Specify pid when multiprocess. If not specified, dump all. -f: [Optional] Use spawn mode, default is disable. -s: [Optional] When spawn mode, start dump work after sleep few seconds. default is 10s. -d: [Optional] Enable deep search maybe detected more dex, but speed will be slower. -h: show help.
Or, loading as objection plugin
1. clone this repo and move `frida_dexdump` into your plugins folder, eg:
```
git clone https://github.com/hluwa/FRIDA-DEXDump ~/Downloads/FRIDA-DEXDump;
mv ~/Downloads/FRIDA-DEXDump/frida_dexdump ~/.objection/plugins/dexdump
```
2. start objection with `-P` or `--plugin-folder` your plugins folder, eg:
```
objection -g com.app.name explore -P ~/.objection/plugins
```
3. run command:
1. ` plugin dexdump search ` to search and print all dex
2. ` plugin dexdump dump ` to dump all found dex.