hluwa/ FRIDA-DEXDump
Need help with FRIDA-DEXDump?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.
About the developer
2.0K Stars 
535 Forks 
GNU General Public License v3.0 
68 Commits 
13 Opened issues 
Description
Fast search and dump dex on memory.
Services available
Contributors list
Readme
FRIDA-DEXDump
Features
- support fuzzy search broken header dex.
- fix struct data of dex-header.
- compatible with all android version(frida supported).
- support loading as objection plugin ~
- pypi package has been released ~
Requires
Installation
From pypi
pip3 install frida-dexdump frida-dexdump -h
From source
git clone https://github.com/hluwa/FRIDA-DEXDump cd FRIDA-DEXDump/frida-dexdump python3 main.py -h
Usage
-
Run
frida-dexdump
orpython3 main.py
to attach current frontmost application and dump dexs. -
Or, use command arguments:
-n: [Optional] Specify target process name, when spawn mode, it requires an application package name. If not specified, use frontmost application. -p: [Optional] Specify pid when multiprocess. If not specified, dump all. -f: [Optional] Use spawn mode, default is disable. -s: [Optional] When spawn mode, start dump work after sleep few seconds. default is 10s. -d: [Optional] Enable deep search maybe detected more dex, but speed will be slower. -h: show help.
Or, loading as objection plugin
1. clone this repo and move `frida_dexdump` into your plugins folder, eg:``` git clone https://github.com/hluwa/FRIDA-DEXDump ~/Downloads/FRIDA-DEXDump; mv ~/Downloads/FRIDA-DEXDump/frida_dexdump ~/.objection/plugins/dexdump ```
start objection with
-Por--plugin-folderyour plugins folder, eg:objection -g com.app.name explore -P ~/.objection/pluginsrun command:
plugin dexdump searchto search and print all dexplugin dexdump dumpto dump all found dex.