Ole André Vadla Ravnås oleavr

## example.js
'use strict';

Module.enumerateExports('libssl.so', {
  onMatch(e) {
    if (e.type === 'function')
      Interceptor.attach(e.address, createHook(e.name, e.address));
  },
  onComplete() {
  }
});

## _gvariant-leak-tracker.md

      
              2 files
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                oleavr
                / _gvariant-leak-tracker.md
            
            
              Last active
              August 6, 2016 19:41
            
              
                GVariant leak tracker in 78 lines of code
              
          
    GVariant leak tracker in 78 lines of code

To use it on a running process, first pip install frida to grab Frida's python bindings and CLI tools, then:
$ frida FooApp -l gvariant-leak-tracker.js
Then in the REPL you can call count() and list() to inspect the values currently alive:

  
## load-cycript.js
'use strict';

/*
 * Usage:
 * $ frida -U -n Twitter -l load-cycript.js
 */

var PORT = 27060;

dlopen('/usr/lib/libcycript.dylib');

## _gobject-leak-tracker.md

      
              2 files
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                oleavr
                / _gobject-leak-tracker.md
            
            
              Last active
              November 18, 2019 18:52
            
              
                GObject leak tracker in 46 lines of code
              
          
    GObject leak tracker

To use it on a running process, first pip install frida to grab Frida's python bindings and CLI tools, then:
$ frida FooApp -l gobject-leak-tracker.js
Then in the REPL you can call count() and list() to inspect the instances currently alive:

  
## hello.js
/*
 * Try it on a running process like this:
 *
 *   $ frida gimp-2.10 -l hello.js
 *
 * This uses the Frida REPL, which supports live-reload.
 */

Interceptor.attach(Module.getExportByName(null, 'open'), {
  onEnter: function (args) {

## scapy.js
setImmediate(function () {
  var NSAutoreleasePool = ObjC.classes.NSAutoreleasePool;
  var NSSpeechSynthesizer = ObjC.classes.NSSpeechSynthesizer;

  var pool = NSAutoreleasePool.alloc().init();
  try {
    var synth = NSSpeechSynthesizer.alloc().init();

    var voices = NSSpeechSynthesizer.availableVoices();

## example.js
const pendingBlocks = new Set();

Interceptor.attach(..., {
  onEnter(args) {
    const block = new ObjC.Block(args[4]);
    pendingBlocks.add(block); // Keep it alive
    const appCallback = block.implementation;
    block.implementation = (success, error) => {
      // Do your logging here
      appCallback(success, error);

## QuakeRESTAPIDemo.md

      
              3 files
            
          
              0 forks
            
          
              0 comments
            
          
              4 stars
            
          
                oleavr
                / QuakeRESTAPIDemo.md
            
            
              Last active
              July 6, 2021 19:04
            
              
                Quake REST API demo
              
          
    Build

npm install

Run

$ frida QuakeSpasm --enable-jit -l _agent.js
$ curl -s http://localhost:1337/stats | jq
$ curl -s -X POST http://localhost:1337/attack | jq


## frida-node-example.js
var frida = require('frida');

frida.attach('cat')
.then(function (session) {
  console.log('attached:', session);
  return session.createScript(
      'function onMessage(message) {' +
        'send({ name: "pong", payload: message });' +
        'recv(onMessage);' +
      '}' +

## vice.js
const vice = Process.getModuleByName('/usr/lib/c64emu.rgl');
const mainloopOuterLoop = vice.getExportByName('maincpu_mainloop').add(0xf4);
const memStore = new NativeFunction(vice.getExportByName('mem_store'), 'void', ['uint16', 'uint8'], { exceptions: 'propagate' });

const ioPending = Memory.alloc(4);
const ioCallbacks = [];

function poke(address, value) {
  schedule(() => { memStore(address, value); });
}
	'use strict';

	Module.enumerateExports('libssl.so', {
	onMatch(e) {
	if (e.type === 'function')
	Interceptor.attach(e.address, createHook(e.name, e.address));
	},
	onComplete() {
	}
	});
	'use strict';

	/*
	* Usage:
	* $ frida -U -n Twitter -l load-cycript.js
	*/

	var PORT = 27060;

	dlopen('/usr/lib/libcycript.dylib');
	/*
	* Try it on a running process like this:
	*
	* $ frida gimp-2.10 -l hello.js
	*
	* This uses the Frida REPL, which supports live-reload.
	*/

	Interceptor.attach(Module.getExportByName(null, 'open'), {
	onEnter: function (args) {
	setImmediate(function () {
	var NSAutoreleasePool = ObjC.classes.NSAutoreleasePool;
	var NSSpeechSynthesizer = ObjC.classes.NSSpeechSynthesizer;

	var pool = NSAutoreleasePool.alloc().init();
	try {
	var synth = NSSpeechSynthesizer.alloc().init();

	var voices = NSSpeechSynthesizer.availableVoices();
	const pendingBlocks = new Set();

	Interceptor.attach(..., {
	onEnter(args) {
	const block = new ObjC.Block(args[4]);
	pendingBlocks.add(block); // Keep it alive
	const appCallback = block.implementation;
	block.implementation = (success, error) => {
	// Do your logging here
	appCallback(success, error);
	var frida = require('frida');

	frida.attach('cat')
	.then(function (session) {
	console.log('attached:', session);
	return session.createScript(
	'function onMessage(message) {' +
	'send({ name: "pong", payload: message });' +
	'recv(onMessage);' +
	'}' +
	const vice = Process.getModuleByName('/usr/lib/c64emu.rgl');
	const mainloopOuterLoop = vice.getExportByName('maincpu_mainloop').add(0xf4);
	const memStore = new NativeFunction(vice.getExportByName('mem_store'), 'void', ['uint16', 'uint8'], { exceptions: 'propagate' });

	const ioPending = Memory.alloc(4);
	const ioCallbacks = [];

	function poke(address, value) {
	schedule(() => { memStore(address, value); });
	}