With HOOK
IDA_Pro, PE were studied a string, or not, a great god provides thoughts!
Business in a small space, need to read the micro xin information
CodePudding user response:
The old way of thinking is associated with OD analysis CALL, such as network to receive the CALL, and then write a DLL just like the CALL of the parameters, and then injected DLL, change the original CALL entry to you this, after the execution back to it,CodePudding user response:
PC WeChat extension, is the most direct HOOK, write their code into WeChat process, but to say a word to be clear, it should not only stable, and easy extension, then it's not easy, wetool I also used, he has a fatal problem is that you use the interface to send all messages to server once it! Note that is all! It's too scary, they built a WeChat server out of the other, you are they see bare! Hooks on the market do now good are numbered, I now have a software called micro timely, measurement and their data is local, use is very stable, at present is support for the latest version of the WeChat, feel very good,CodePudding user response:
Upstairs is a way, the micro also provides local wrapper API in time, very stable, feel more stable than wetool injection processCodePudding user response:
https://bbs.pediy.com/thread-252735.htm: is this a lot of? To do this thing and what's the use of no profit