Git Product home page Git Product logo

pinduoduo_backdoor_unpacker's People

Contributors

davinci1012 avatar davincifans101 avatar testpersonal avatar xiaosipdd avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

h0rd7 e10514001 xtrive astro-angelfish freedom0925 qiaijueqing smilehalo leakless simp1er minghaolin2000 xiguayizu yangnuozhen secisle xudshen 0xxxyu jas502n sbilly bincrack666 4cce1er dec0mrad3 andy9211 djh82 ylarod liukuo362573 xuuhaoo alanleegd 5ec1cff papaya-x phantomlonely ttttupup defgaaa heckerstone sdlyxcc eterocell emptysuns pengguanming shineming fythem siyujie crackercat lennoxsears angrykub weststarqp noob7777777 zhangdaoxian dyingsu cyxvc fengzhongpiaodangdesha fengsha990817 d4renk wbwkx nuclearmissile larboy1991 marsman1996 doitzhangwangcheng 383113122 yixuanchen0 sunzj123 ilovehairtail verzqli georgerudd ptrainbow chen2021-web konseru roselia sukimio bohr777 sh1dim cugn windxaa dy9bala forking-up carrys17 1999fordfocus cjh0613 zz0u learnre kylinlin meilaopo ameca42 ohyeah521 winmin rushyoung chchjj trswygg auxiliarya ndylpy666 jidoer zhuotong shuyaoyimei 0xsb wangyuan0217 eternallyjie g00dfe11ow alicesync yeshuibo its-hans hlmichael bigfacecat2017 peter5he1by

pinduoduo_backdoor_unpacker's Issues

V6

v6 files do not unpack properly. They are XORing the opcodes.

nw0.bin文件从哪来?

大佬,我发现samples文件夹里的许多包名下的nw0.bin文件在apk里面是找不到的,请问是从哪里拿到的呢?

傻x吗

说不要学习,你还公布出来。有何居心?

mac run python bad

macos@macos nw0 % /usr/bin/python3 run.py nw0.bin ./output
input file: nw0.bin, output dir: ./output
use xorkey = ['0xec9b75bf', '0xec2fa4dc', '0x51be5a72', '0xeaac64d3']
engine flag: 0x0 0x0 0x2d
55228
string size: 0x288 total: 0x39a1
40470
constant size: 0xbb total: 0x3ab
39526
37539
parse 0x75 field
35809
parse 0xf7 method
15918
dex size: 0x3e04
0
sh: /Users/macos/dex-tools-2.1/d2j-dex2jar.sh: No such file or directory
unzip: cannot find or open ../fake-dex2jar.jar, ../fake-dex2jar.jar.zip or ../fake-dex2jar.jar.ZIP.
rm: ../fake-dex2jar.jar: No such file or directory
parse com/xunmeng/nvwavm/Module
compile com/xunmeng/nvwavm/Module fail
bash: krak2: command not found

parse com/google/devtools/build/android/desugar/runtime/ThrowableExtension
compile com/google/devtools/build/android/desugar/runtime/ThrowableExtension fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/SignatureDt$SignatureConf
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/SignatureDt$SignatureConf fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/R$string
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/R$string fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/utils/DtUtils
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/utils/DtUtils fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EmulatorDt$1
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EmulatorDt$1 fail
bash: krak2: command not found

parse com/google/devtools/build/android/desugar/runtime/ThrowableExtension$MimicDesugaringStrategy
compile com/google/devtools/build/android/desugar/runtime/ThrowableExtension$MimicDesugaringStrategy fail
bash: krak2: command not found

parse com/google/devtools/build/android/desugar/runtime/ThrowableExtension$AbstractDesugaringStrategy
compile com/google/devtools/build/android/desugar/runtime/ThrowableExtension$AbstractDesugaringStrategy fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/DebuggableDt
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/DebuggableDt fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EnvDt
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EnvDt fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/Main
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/Main fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EnvDtManager$EnvDtConf
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EnvDtManager$EnvDtConf fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/SeparationDt
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/SeparationDt fail
bash: krak2: command not found

parse com/google/devtools/build/android/desugar/runtime/ThrowableExtension$ConcurrentWeakIdentityHashMap
compile com/google/devtools/build/android/desugar/runtime/ThrowableExtension$ConcurrentWeakIdentityHashMap fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/RootDt$RootConf
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/RootDt$RootConf fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/R
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/R fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/Init
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/Init fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/AppDebuggableDt
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/AppDebuggableDt fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/RootDt
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/RootDt fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/SignatureDt
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/SignatureDt fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/NRogueDt
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/NRogueDt fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EnvDtManager
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EnvDtManager fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/DtRet
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/DtRet fail
bash: krak2: command not found

parse com/google/devtools/build/android/desugar/runtime/ThrowableExtension$NullDesugaringStrategy
compile com/google/devtools/build/android/desugar/runtime/ThrowableExtension$NullDesugaringStrategy fail
bash: krak2: command not found

parse com/google/devtools/build/android/desugar/runtime/ThrowableExtension$ConcurrentWeakIdentityHashMap$WeakKey
compile com/google/devtools/build/android/desugar/runtime/ThrowableExtension$ConcurrentWeakIdentityHashMap$WeakKey fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/utils/RpUtils
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/utils/RpUtils fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/SecBaseService
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/SecBaseService fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/JRogueDt$JRogueConf
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/JRogueDt$JRogueConf fail
bash: krak2: command not found

parse com/google/devtools/build/android/desugar/runtime/ThrowableExtension$ReuseDesugaringStrategy
compile com/google/devtools/build/android/desugar/runtime/ThrowableExtension$ReuseDesugaringStrategy fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EmulatorDt$EmtConf
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EmulatorDt$EmtConf fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/JRogueDt
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/JRogueDt fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EmulatorDt
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/EmulatorDt fail
bash: krak2: command not found

parse com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/NRogueDt$NRogueConf
compile com/xunmeng/pinduoduo/cs/sec/plg/bsd/env/NRogueDt$NRogueConf fail
bash: krak2: command not found

macos@macos nw0 %

似乎有一些Bug

脱壳貌似拖出来的部分代码方法缺少初始参数,希望大哥能修一下,谢谢大哥

nvwa_unpacker产物如何处理

使用nvwa_unpacker脱壳机脱壳后,文件后缀为.j, 看起来像是smali, 但也不是标准的smali, 请问这些文件怎么处理? 能转成.java文件吗?

`
.version 50 0

.class public super com/xunmeng/pinduoduo/alive/unify/ability/dynamic/abilities/dataCollect/collectors/XmVoiceAssistantUsageCollector
.super java/lang/Object

.implements com/xunmeng/pinduoduo/alive/unify/ability/dynamic/abilities/dataCollect/ability/IDataCollector

.field public static TAG Ljava/lang/String;
.field public static CONFIG_KEY_COLLECTOR Ljava/lang/String;
.field public static AB_KEY_TRACK Ljava/lang/String;
.field public static KEY_LAST_FAILURE_COLLECT_TIME Ljava/lang/String;
.field public static KEY_LAST_SUCCESS_COLLECT_TIME Ljava/lang/String;
.field public static FILE_PATH Ljava/lang/String;
.field public collectRecordKV Lcom/xunmeng/pinduoduo/alive/strategy/interfaces/adapter/intf/IMMKV;
.method public : ()V
.code stack 3 locals 1

L_0: aload 0
L_1: ldc "LVUA.XmVoiceAssistantUsageCollector"
L_2: ldc 0
L_3: invokestatic Method com/xunmeng/pinduoduo/alive/strategy/interfaces/adapter/proxy/MMKVCompat module (Ljava/lang/String;Z)Lcom/xunmeng/pinduoduo/alive/strategy/interfaces/adapter/intf/IMMKV;
L_4: putfield Field com/xunmeng/pinduoduo/alive/unify/ability/dynamic/abilities/dataCollect/collectors/XmVoiceAssistantUsageCollector collectRecordKV Lcom/xunmeng/pinduoduo/alive/strategy/interfaces/adapter/intf/IMMKV;
L_5: return

.end code

.end method

`

提权动作触发条件

请教大神PDD 提权是怎么触发的。现在试了下PDD并不是装上去就立即提权了,需要啥触发条件?

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.