高级会员逆向分析
程式名称: Vault_Hide_Pro_6.9.08.22私密空间使用工具: AndrodiKiller、Jadx修改内容: 高级会员逆向分析
1.预设进入界面是显示免费版本。https://yl.qiyikt.com/data/attachment/forum/202001/21/134443dbmdkeqllvss0veo.png
2.JADX打开apk,在resource.arsc\res\values-zh-rCN\string.xml搜寻 "免费版本",得知对应代码为member_area_free_userhttps://yl.qiyikt.com/data/attachment/forum/202001/21/134443itisi75xsibacdns.png
3.JADX再搜寻member_area_free_userhttps://yl.qiyikt.com/data/attachment/forum/202001/21/134443g8nss1itwt61i7zz.png
4.观察程式逻辑,当com.netqin.ps.b.d.b()==true,会显示免费版本。当com.netqin.ps.b.d.c()==true,会执行红色框处,再string.xml查询得知member_area_premuim_user对应文字为"高级版本",所以只要让com.netqin.ps.b.d.c()==true就会显示高级版本。https://yl.qiyikt.com/data/attachment/forum/202001/21/134444qisd11h1hjdti2dz.png
5.观察com.netqin.ps.b.d.c()方法,只要让getNewUserLevel() == 4就能返回true。再观察getNewUserLevel()方法,只要让return值固定返回4即可。https://yl.qiyikt.com/data/attachment/forum/202001/21/134444w6jd6vxo6rrxrrri.pnghttps://yl.qiyikt.com/data/attachment/forum/202001/21/134444jzrursirlvurccln.png
6.打开AndroidKiller修改getNewUserLevel()方法,此方法在包名= com.netqin.ps.config,类名=Preferences。插入const/4v2,0x4与const/4 v0,0x4,让return值固定为4。https://yl.qiyikt.com/data/attachment/forum/202001/21/134444eayeyfuy6pffw8zo.pnghttps://yl.qiyikt.com/data/attachment/forum/202001/21/134444o5a9agwgc7tzpwgh.png
7.测试,已显示高级版本,会员高级功能可以正常使用。https://yl.qiyikt.com/data/attachment/forum/202001/21/134445v0zzea74xa002u4t.pnghttps://yl.qiyikt.com/data/attachment/forum/202001/21/134446uryfxyrztdyxrt6f.png
陈刀仔 发表于 2020-3-26 14:00
领个海币
头像才是大佬 领个海币{:smile:}{:smile:}
页:
[1]