hook dynamic loaded api ok.

linjun · linjun · commit 97c2817e79f4 · 2017-12-22T20:36:11.000+08:00
diff --git a/.idea/workspace.xml b/.idea/workspace.xml
diff --git a/MW.py b/MW.py
@@ -15,23 +15,28 @@ def _process_message(self, message, data):
         """
             Frida COMMS
         """
-        if message['type'] == 'send':
-            stanza = message['payload']
-            if stanza['name'] == '+log':
-                msg=str(stanza["payload"])
-                logl("["+str(self.pid)+"]\t"+msg)
-                try:
-                    self.extract.post({ 'type': '+log-ack' })
-                except Exception as e:
-                    pass
-
-            elif stanza['name'] == '+pkill':
-                logl( "Kill Sub-Process: " + str(stanza['payload']))
-
-        else:
-            logl( "==========ERROR==========")
-            logl(message)
-            logl("=========================")
+        try:
+            if message['type'] == 'send':
+                stanza = message['payload']
+                if stanza['name'] == '+log':
+                    msg = str(stanza["payload"])
+                    logl("[" + str(self.pid) + "]\t" + msg)
+                    try:
+                        self.extract.post({'type': '+log-ack'})
+                    except Exception as e:
+                        pass
+
+                elif stanza['name'] == '+pkill':
+                    logl("Kill Sub-Process: " + str(stanza['payload']))
+
+            else:
+                logl("==========ERROR==========")
+                logl(message)
+                logl("=========================")
+        except Exception as ae:
+            logl("exception on _process_message")
+            pass
+
 
     def inject_script(self,jsfile):
         # TODO: upgade to use frida-compile
diff --git a/mw.js b/mw.js
@@ -15,7 +15,7 @@ var ptrMessageBoxA = Module.findExportByName("user32.dll","MessageBoxA");
 var MessageBoxA=new NativeFunction(ptrMessageBoxA,'int',['int','pointer','pointer','int'],'stdcall');
 log("ptrMessageBoxA :"+ptrMessageBoxA);
 Interceptor.replace(ptrMessageBoxA,new NativeCallback(function (hwnd,pText,pTitle,type) {
-    strText=Memory.readnsiString(pText);
+    strText=Memory.readAnsiString(pText);
     strTitle=Memory.readAnsiString(pTitle);
     log("MessageBoxA "+strText+" with title "+strTitle);
     strHook=Memory.allocAnsiString("hooked!");
