Skip to main content

🔨 Break Java Reverse Engineering form Memory World!

Project description

Wallbreaker

🔨 Break Java Reverse Engineering form Memory World!

WTF?

Wallbreaker is a useful tool to live analyzing Java heap, powered by frida. Provide some commands to search object or class from the memory, and beautifully visualize the real structure of the target.

Want to know real data content? list item? map entries? Want to know about implementation of the interface? Try it! What you see is what you get!

How to start?

1. Install objection

pip3 install objection

2. Download wallbreaker

mkdir -p ~/.objection/plugins/
git clone https://github.com/hluwa/Wallbreaker ~/.objection/plugins/Wallbreaker

3. Loading as objection plugin

objection -g com.app.name explore -P ~/.objection/plugins

or

objection -g com.app.name explore
plugin load ~/.objection/plugins/Wallbreaker

4. Use wallbreaker command

plugin wallbreaker objectsearch java.util.HashMap
plugin wallbreaker objectdump <object-handle>

Commands

Search

wallbreaker classsearch <type-pattern>
[return all matched class]
wallbreaker objectsearch <instance-class-name>
[return all matched object-handle and toString]

Dump

wallbreaker classdump <class-name> [--fullname]
[
   pretty print class structure: fields declare, static field value, methods declare.
      set --fullname to display package name of type name.
]
wallbreaker objectdump <object-handle> [--fullname] [--as-class class-name]
[
   pretty print object structure: fields declare and value, methods declare.
      set --fullname to display package name of type name;
      set --as-class to cast instance type(super class, not interface).
   if instance is a collection or map, dump all entries.
]

Demo

asciicast

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

wallbreaker-1.0.3.tar.gz (18.5 kB view details)

Uploaded Source

Built Distribution

wallbreaker-1.0.3-py3-none-any.whl (18.5 kB view details)

Uploaded Python 3

File details

Details for the file wallbreaker-1.0.3.tar.gz.

File metadata

  • Download URL: wallbreaker-1.0.3.tar.gz
  • Upload date:
  • Size: 18.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.0 CPython/3.10.4

File hashes

Hashes for wallbreaker-1.0.3.tar.gz
Algorithm Hash digest
SHA256 72013491d24b081de56b743b717742aea826bf0a4ee0f7b5c859cb257cf4f83c
MD5 3532d47c56e3dcb7db4b9f2c0a0a78fd
BLAKE2b-256 b3985f67bce968b157ee3cbe9183508cecd8e721acc804b7a330b0ad252b369c

See more details on using hashes here.

File details

Details for the file wallbreaker-1.0.3-py3-none-any.whl.

File metadata

  • Download URL: wallbreaker-1.0.3-py3-none-any.whl
  • Upload date:
  • Size: 18.5 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.0 CPython/3.10.4

File hashes

Hashes for wallbreaker-1.0.3-py3-none-any.whl
Algorithm Hash digest
SHA256 cf164096ae716e1aa211a854037edf1977bf05d067ee7d74cfedc4bf690ce6a3
MD5 a602e8fa945b3895459b783e80d8ab62
BLAKE2b-256 6dcba0ee8efc21dc461065620c62489084b4d85cd58613e102f702a4aff45cfd

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page