|
|
@@ -1,3 +1,34 @@
|
|
|
# reflutter
|
|
|
|
|
|
-Flutter Reverse Engineering Framework
|
|
|
+### flutter抓包
|
|
|
+
|
|
|
+flutter app和firefox一样,使用自带的ssl验证,所以普通抓包方法都是无效的。
|
|
|
+
|
|
|
+(1)root手机 + frida
|
|
|
+
|
|
|
+在安卓系统底层,添加钩子,跳过 flutter app 在 C++代码(libflutter.so文件)中的ssl验证。
|
|
|
+
|
|
|
+(2)reflutter项目
|
|
|
+
|
|
|
+reflutter项目提供修改后的 libflutter.so 文件下载,并使用签名对齐工具重新打包。
|
|
|
+
|
|
|
+```
|
|
|
+git clone https://github.com/ptswarm/reFlutter.git
|
|
|
+
|
|
|
+# 替换 http://s.yoqi.me/enginehash.csv 链接
|
|
|
+
|
|
|
+python setup.py install
|
|
|
+
|
|
|
+reflutter main.apk
|
|
|
+reflutter main.ipa
|
|
|
+
|
|
|
+# https://github.com/patrickfav/uber-apk-signer/releases/tag/v1.2.1
|
|
|
+java -jar uber-apk-signer.jar --allowResign -a release.RE.apk
|
|
|
+
|
|
|
+# 查看dart
|
|
|
+adb logcat -e reflutter | sed 's/.*DartVM//' >> reflutter.txt
|
|
|
+
|
|
|
+```
|
|
|
+
|
|
|
+
|
|
|
+配合burp suite抓包
|
