Giters

Djngo / Hooking-and-Patching-android-template

Hooking and binary patching template using Substrate and KittyMemory respectively.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Hooking-and-Patching-android-template

This is a template for the usage of Cydia Substrate and KittyMemory.

It is based on an already made hooking template by joeyjurjens/Ted2 here https://github.com/joeyjurjens/Android-Hooking-Template

And the KittyMemory repo by MJx0 here https://github.com/MJx0/KittyMemory

NEW Added hook alternative for aarch64 from this repo https://github.com/Rprop/And64InlineHook


Installation


How to use

  • x32/main.cpp This is where you will write your hooks and patches for armeabi-7va.
  • x64/main.cpp This is where you will write your hooks and patches for arm64-v8a (I added an example for the hook alternative but it works exactly like mshook).
  • Utils.h Edit the targeted library here. (In x64 too)

Change the outputed library name:

  • Android.mk Replace the default name by whatever you want at "LOCAL_MODULE :="
  • Android.mk Do the same for the other folder (x64)
  • libLoader$1.smali Change it in this file as well. (line 38)

Loading the lib.so

First we need to compile our project.

  • Edit params.txt & paste your ndk-build path location on the very first line and the project location on the second line like I did.
  • Start Build.bat and follow instructions.
  • Once compiled you'll have 2 new file in x32 and x64 named libs and obj. In order to load your lib.so, you'll need to decompile the apk, you can use Apk Easy Tool for this.
  • Go to Libs and copy the created lib.so in the Lib folder of your game.
  • Navigate to "/smali/com" & copy the loadLib from this git inside of that folder.
  • Open the AndroidManifest.xml file in the decompiled apk and search this
android:name="com.unity3d.player.UnityPlayerActivity"

it will give us the path of the MainActivity so in our case it's at "com/unity3d/player/UnityPlayerActivity"

  • Open that file with Notepad++ or any text editing software and search something like this:
.method protected onCreate(Landroid/os/Bundle;)V
    .locals 2
  • Once found, paste this code under .locals 2:
invoke-static {}, Lcom/loadLib/libLoader;->loadLib()V
  • Step 1: Recompile the apk
  • Step 2: Profit

Useful links

For Cydia Substrate:

If you're here or if you made mod menus before you probably already know how to use KittyMemory.

About

Hooking and binary patching template using Substrate and KittyMemory respectively.

Languages

Language:C++ 82.3%Language:C 13.9%Language:Makefile 1.7%Language:Smali 1.2%Language:Batchfile 1.0%