NyaMisty/XX_ida_with_struct_py3.py

## XX_ida_with_struct_py3.py
# -*- coding: utf-8 -*-
import json
import idaapi
import idc

processFields = [
    "ScriptMethod",
    "ScriptString",
    "ScriptMetadata",
    "ScriptMetadataMethod",
    "Addresses",
]

imageBase = idaapi.get_imagebase()

def get_addr(addr):
    return imageBase + addr

def set_name(addr, name):
    ret = idc.set_name(addr, name, SN_NOWARN | SN_NOCHECK)
    if ret == 0:
        new_name = name + '_' + str(addr)
        ret = idc.set_name(addr, new_name, SN_NOWARN | SN_NOCHECK)

def make_function(start, end):
    next_func = idc.get_next_func(start)
    if next_func < end:
        end = next_func
    if idc.get_func_attr(start, FUNCATTR_START) == start:
        ida_funcs.del_func(start)
    ida_funcs.add_func(start, end)

path = idaapi.ask_file(False, '*.json', 'script.json from Il2cppdumper')
hpath = idaapi.ask_file(False, '*.h', 'il2cpp.h from Il2cppdumper')

idaapi.show_wait_box("Il2CppDumper: Starting...")

try:

    idaapi.replace_wait_box("Il2CppDumper: Parsing il2cpp.h")

    parse_decls(open(hpath, 'r').read(), 0)

    idaapi.replace_wait_box("Il2CppDumper: Loading script.json")

    data = json.loads(open(path, 'rb').read().decode('utf-8'))

    if "Addresses" in data and "Addresses" in processFields:
        addresses = data["Addresses"]
        total = len(addresses)
        for index in range(len(addresses) - 1):
            if index % 50 == 0 or total - index < 50:
                idaapi.replace_wait_box("Il2CppDumper: Parsing Addresses (%d/%d)" % (index + 1, total))
            start = get_addr(addresses[index])
            end = get_addr(addresses[index + 1])
            make_function(start, end)

    if "ScriptMethod" in data and "ScriptMethod" in processFields:
        scriptMethods = data["ScriptMethod"]
        total = len(scriptMethods)
        for index, scriptMethod in enumerate(scriptMethods):
            index = index + 1
            if index % 50 == 1 or total - index < 50:
                idaapi.replace_wait_box("Il2CppDumper: Parsing ScriptMethod (%d/%d)" % (index, total))
            addr = get_addr(scriptMethod["Address"])
            name = scriptMethod["Name"]
            set_name(addr, name)
            signature = scriptMethod["Signature"]
            if apply_type(addr, parse_decl(signature, 0), 1) == False:
                print("apply_type failed:", hex(addr), signature)

    if "ScriptString" in data and "ScriptString" in processFields:
        index = 1
        scriptStrings = data["ScriptString"]
        total = len(scriptStrings)
        for scriptString in scriptStrings:
            if index % 50 == 1 or total - index < 50:
                idaapi.replace_wait_box("Il2CppDumper: Parsing ScriptString (%d/%d)" % (index, total))
            addr = get_addr(scriptString["Address"])
            value = scriptString["Value"]
            name = "StringLiteral_" + str(index)
            idc.set_name(addr, name, SN_NOWARN)
            idc.set_cmt(addr, value, 1)
            index += 1

    if "ScriptMetadata" in data and "ScriptMetadata" in processFields:
        scriptMetadatas = data["ScriptMetadata"]
        total = len(scriptMetadatas)
        for index, scriptMetadata in enumerate(scriptMetadatas):
            index = index + 1
            if index % 50 == 1 or total - index < 50:
                idaapi.replace_wait_box("Il2CppDumper: Parsing ScriptMetadata (%d/%d)" % (index, total))
            addr = get_addr(scriptMetadata["Address"])
            name = scriptMetadata["Name"]
            set_name(addr, name)
            idc.set_cmt(addr, name, 1)
            if scriptMetadata["Signature"] is not None:
                signature = scriptMetadata["Signature"]
                if apply_type(addr, parse_decl(signature, 0), 1) == False:
                    print("apply_type failed:", hex(addr), signature)

    if "ScriptMetadataMethod" in data and "ScriptMetadataMethod" in processFields:
        scriptMetadataMethods = data["ScriptMetadataMethod"]
        total = len(scriptMetadataMethods)
        for index, scriptMetadataMethod in enumerate(scriptMetadataMethods):
            index = index + 1
            if index % 50 == 1 or total - index < 50:
                idaapi.replace_wait_box("Il2CppDumper: Parsing ScriptMetadataMethod (%d/%d)" % (index, total))
            addr = get_addr(scriptMetadataMethod["Address"])
            name = scriptMetadataMethod["Name"]
            methodAddr = get_addr(scriptMetadataMethod["MethodAddress"])
            set_name(addr, name)
            idc.set_cmt(addr, name, 1)
            idc.set_cmt(addr, '{0:X}'.format(methodAddr), 0)

except:
    idaapi.hide_wait_box()
    raise

idaapi.hide_wait_box()


print('Script finished!')
	# -- coding: utf-8 --
	import json
	import idaapi
	import idc

	processFields = [
	"ScriptMethod",
	"ScriptString",
	"ScriptMetadata",
	"ScriptMetadataMethod",
	"Addresses",
	]

	imageBase = idaapi.get_imagebase()

	def get_addr(addr):
	return imageBase + addr

	def set_name(addr, name):
	ret = idc.set_name(addr, name, SN_NOWARN \| SN_NOCHECK)
	if ret == 0:
	new_name = name + '_' + str(addr)
	ret = idc.set_name(addr, new_name, SN_NOWARN \| SN_NOCHECK)

	def make_function(start, end):
	next_func = idc.get_next_func(start)
	if next_func < end:
	end = next_func
	if idc.get_func_attr(start, FUNCATTR_START) == start:
	ida_funcs.del_func(start)
	ida_funcs.add_func(start, end)

	path = idaapi.ask_file(False, '*.json', 'script.json from Il2cppdumper')
	hpath = idaapi.ask_file(False, '*.h', 'il2cpp.h from Il2cppdumper')

	idaapi.show_wait_box("Il2CppDumper: Starting...")

	try:

	idaapi.replace_wait_box("Il2CppDumper: Parsing il2cpp.h")

	parse_decls(open(hpath, 'r').read(), 0)

	idaapi.replace_wait_box("Il2CppDumper: Loading script.json")

	data = json.loads(open(path, 'rb').read().decode('utf-8'))

	if "Addresses" in data and "Addresses" in processFields:
	addresses = data["Addresses"]
	total = len(addresses)
	for index in range(len(addresses) - 1):
	if index % 50 == 0 or total - index < 50:
	idaapi.replace_wait_box("Il2CppDumper: Parsing Addresses (%d/%d)" % (index + 1, total))
	start = get_addr(addresses[index])
	end = get_addr(addresses[index + 1])
	make_function(start, end)

	if "ScriptMethod" in data and "ScriptMethod" in processFields:
	scriptMethods = data["ScriptMethod"]
	total = len(scriptMethods)
	for index, scriptMethod in enumerate(scriptMethods):
	index = index + 1
	if index % 50 == 1 or total - index < 50:
	idaapi.replace_wait_box("Il2CppDumper: Parsing ScriptMethod (%d/%d)" % (index, total))
	addr = get_addr(scriptMethod["Address"])
	name = scriptMethod["Name"]
	set_name(addr, name)
	signature = scriptMethod["Signature"]
	if apply_type(addr, parse_decl(signature, 0), 1) == False:
	print("apply_type failed:", hex(addr), signature)

	if "ScriptString" in data and "ScriptString" in processFields:
	index = 1
	scriptStrings = data["ScriptString"]
	total = len(scriptStrings)
	for scriptString in scriptStrings:
	if index % 50 == 1 or total - index < 50:
	idaapi.replace_wait_box("Il2CppDumper: Parsing ScriptString (%d/%d)" % (index, total))
	addr = get_addr(scriptString["Address"])
	value = scriptString["Value"]
	name = "StringLiteral_" + str(index)
	idc.set_name(addr, name, SN_NOWARN)
	idc.set_cmt(addr, value, 1)
	index += 1

	if "ScriptMetadata" in data and "ScriptMetadata" in processFields:
	scriptMetadatas = data["ScriptMetadata"]
	total = len(scriptMetadatas)
	for index, scriptMetadata in enumerate(scriptMetadatas):
	index = index + 1
	if index % 50 == 1 or total - index < 50:
	idaapi.replace_wait_box("Il2CppDumper: Parsing ScriptMetadata (%d/%d)" % (index, total))
	addr = get_addr(scriptMetadata["Address"])
	name = scriptMetadata["Name"]
	set_name(addr, name)
	idc.set_cmt(addr, name, 1)
	if scriptMetadata["Signature"] is not None:
	signature = scriptMetadata["Signature"]
	if apply_type(addr, parse_decl(signature, 0), 1) == False:
	print("apply_type failed:", hex(addr), signature)

	if "ScriptMetadataMethod" in data and "ScriptMetadataMethod" in processFields:
	scriptMetadataMethods = data["ScriptMetadataMethod"]
	total = len(scriptMetadataMethods)
	for index, scriptMetadataMethod in enumerate(scriptMetadataMethods):
	index = index + 1
	if index % 50 == 1 or total - index < 50:
	idaapi.replace_wait_box("Il2CppDumper: Parsing ScriptMetadataMethod (%d/%d)" % (index, total))
	addr = get_addr(scriptMetadataMethod["Address"])
	name = scriptMetadataMethod["Name"]
	methodAddr = get_addr(scriptMetadataMethod["MethodAddress"])
	set_name(addr, name)
	idc.set_cmt(addr, name, 1)
	idc.set_cmt(addr, '{0:X}'.format(methodAddr), 0)

	except:
	idaapi.hide_wait_box()
	raise

	idaapi.hide_wait_box()


	print('Script finished!')