JNI encrypted Parameters

Open Green10026 opened this issue 1 year ago • 1 comments

how do i hook into this before the encryption takes place, even after following the stack trace, the cleartext data is nowhere to be found, my concern is Arg4 which seems to be the request body and is already encrypted, what to do in this case, i appreciate any help i can get Screenshot (68) Screenshot (69) Screenshot (70)

Jul 30 '24 18:07 Green10026

the key point is who generate Arg4. it looks like Arg4 is not generated in the sendrequest thread.

you can try mass monitoring, hook all related method, and input some unique text like "123456", and ctrl+f to find which method have "123456" as input argument while hava encrypted output result.

Nov 01 '24 02:11 monkeylord