- DBI frameworks help with automated analysis
- Install frida import
pip3 install frida-tools
- friday.py needs to be fed an executable and optionally a dll and optionally a javascript with your choosing of detection
- example:
python friday.py something.exe <dll> <-s virtual.js>- Great starting point to dump anything that's allocated or written to allocate space and has an MZ header.
- In the javascript, you can change what header you want to look, and modify it to show the hex dump to screen
- Great starting point to dump anything that's allocated or written to allocate space and has an MZ header.
- example:
-
Notifications
You must be signed in to change notification settings - Fork 0
johtoleague/Friday
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
Process Hooking Implementation with Frida-Tools in Python
Topics
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published