iOS 逆向hook微信

參考資料

分分鐘讓你在 微信運(yùn)動(dòng) 霸占榜首

一步一步實(shí)現(xiàn)iOS微信自動(dòng)搶紅包(非越獄)

給微信加 hook 嘗試記錄

所有需要的文件都已經(jīng)生成,然后把embedded.mobileprovision 和修改后的WeChat二進(jìn)制文件拷貝至WeChat.app中替換。cd 到wanggangdeMacBook-Pro:Payload 目錄下,

參考圖片wechat對(duì)應(yīng)的目錄

Snip20160703_26.png
簽名成功
//1
codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/libautoGetRedEnv.dylib
//2
codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/Watch/WeChatWatchNative.app
//3
codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/PlugIns/WeChatShareExtensionNew.appex
//4
codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex


//簽名失敗
codesign -f -s "iPhone Distribution: Wuhan Master 
HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" --entitlements Entitlements.plist WeChat.app



an Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" --entitlements Entitlements.plist WeChat.app
Entitlements.plist: cannot read entitlement data

wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" --entitlements Entitlements.plist WeChat.app
Entitlements.plist: cannot read entitlement data

wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex
WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex: replacing existing signature

wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex
WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex: replacing existing signature



//
wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex
WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex: replacing existing signature

//libautoGetRedEnv.dylib 簽名成功
wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/libautoGetRedEnv.dylib
WeChat.app/libautoGetRedEnv.dylib: replacing existing signature

//簽名成功
wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/Watch/WeChatWatchNative.app
WeChat.app/Watch/WeChatWatchNative.app: replacing existing signature

//appnex簽名成功
wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/PlugIns/WeChatShareExtensionNew.appex
WeChat.app/PlugIns/WeChatShareExtensionNew.appex: replacing existing signature

//簽名成功
wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex
WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex: replacing existing signature

//簽名成功
wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex
WeChat.app/Watch/WeChatWatchNative.app/PlugIns/WeChatWatchNativeExtension.appex: replacing existing signature



//實(shí)體添加失敗
wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" --entitlements Entitlements.plist WeChat.app
Entitlements.plist: cannot read entitlement data
//** Entitlements.plist千萬(wàn)不要放到wechat.app中,和wechat.app同一級(jí)目錄下面**

//實(shí)體簽名成功
wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" --entitlements Entitlements.plist WeChat.app
WeChat.app: replacing existing signature
wanggangdeMacBook-Pro:Payload wanggang$ 

wanggangdeMacBook-Pro:Payload wanggang$ codesign -f -s "iPhone Distribution: Wuhan Master HealthCare Science And Technology Co. ,Ltd. (WKXVLUH7Q6)" --entitlements Entitlements.plist WeChat.app

//打包生成ipa

xcrun -sdk iphoneos PackageApplication -v WeChat.app  -o ~/WeChat.ipa

//簽名結(jié)果
....
.....
  adding: Payload/WeChat.app/zh_TW.lproj/InfoPlist.strings  (in=955) (out=621) (deflated 35%)
  adding: Payload/WeChat.app/zh_TW.lproj/mm.strings     (in=323020) (out=148686) (deflated 54%)
  adding: Payload/WeChat.app/zh_TW.lproj/network_setting.html   (in=1819) (out=926) (deflated 49%)
total bytes=89940114, compressed=41865331 -> 53% savings
]
Results at '/Users/wanggang/WeChat.ipa' 
wanggangdeMacBook-Pro:Payload wanggang$

最后安裝失敗居然是AppSync 沒(méi)有安裝

最后編輯于
?著作權(quán)歸作者所有,轉(zhuǎn)載或內(nèi)容合作請(qǐng)聯(lián)系作者
【社區(qū)內(nèi)容提示】社區(qū)部分內(nèi)容疑似由AI輔助生成,瀏覽時(shí)請(qǐng)結(jié)合常識(shí)與多方信息審慎甄別。
平臺(tái)聲明:文章內(nèi)容(如有圖片或視頻亦包括在內(nèi))由作者上傳并發(fā)布,文章內(nèi)容僅代表作者本人觀(guān)點(diǎn),簡(jiǎn)書(shū)系信息發(fā)布平臺(tái),僅提供信息存儲(chǔ)服務(wù)。

相關(guān)閱讀更多精彩內(nèi)容

友情鏈接更多精彩內(nèi)容