🔨 Break Java Reverse Engineering form Memory World!
Project description
Wallbreaker
馃敤 Break Java Reverse Engineering form Memory World!
WTF?
Wallbreaker is a useful tool to live analyzing Java heap, powered by frida. Provide some commands to search object or class from the memory, and beautifully visualize the real structure of the target.
Want to know real data content? list item? map entries? Want to know about implementation of the interface? Try it! What you see is what you get!
How to start?
1. Install objection
pip3 install objection
2. Download wallbreaker
mkdir -p ~/.objection/plugins/
git clone https://github.com/hluwa/Wallbreaker ~/.objection/plugins/Wallbreaker
3. Loading as objection plugin
objection -g com.app.name explore -P ~/.objection/plugins
or
objection -g com.app.name explore
plugin load ~/.objection/plugins/Wallbreaker
4. Use wallbreaker command
plugin wallbreaker objectsearch java.util.HashMap
plugin wallbreaker objectdump <object-handle>
Commands
Search
wallbreaker classsearch <type-pattern>
[return all matched class]
wallbreaker objectsearch <instance-class-name>
[return all matched object-handle and toString]
Dump
wallbreaker classdump <class-name> [--fullname]
[
pretty print class structure: fields declare, static field value, methods declare.
set --fullname to display package name of type name.
]
wallbreaker objectdump <object-handle> [--fullname] [--as-class class-name]
[
pretty print object structure: fields declare and value, methods declare.
set --fullname to display package name of type name;
set --as-class to cast instance type(super class, not interface).
if instance is a collection or map, dump all entries.
]
Demo
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file wallbreaker-1.0.1.tar.gz.
File metadata
- Download URL: wallbreaker-1.0.1.tar.gz
- Upload date:
- Size: 19.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.4.1 importlib_metadata/4.4.0 pkginfo/1.7.0 requests/2.25.1 requests-toolbelt/0.9.1 tqdm/4.61.0 CPython/3.8.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
2580b0add229d135b2a4ce2d46013c523b3a7dc463ae3fa549701b68023916ab
|
|
| MD5 |
095f32325bdfdbcfd4727ec2f89348fc
|
|
| BLAKE2b-256 |
826e8327b22333b8f9fb1cc638a06e3f349422aedc9d5126dff2b7bf115d8bc9
|
File details
Details for the file wallbreaker-1.0.1-py3-none-any.whl.
File metadata
- Download URL: wallbreaker-1.0.1-py3-none-any.whl
- Upload date:
- Size: 18.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.4.1 importlib_metadata/4.4.0 pkginfo/1.7.0 requests/2.25.1 requests-toolbelt/0.9.1 tqdm/4.61.0 CPython/3.8.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9b3636890253ef0a0e0b5c0d534f8335380fd60208f4822bf75ad0bc36b0e1c7
|
|
| MD5 |
3ddc82ba25e098953d6c794f487fcaac
|
|
| BLAKE2b-256 |
8d61a14190c8e905801eb0c7d6f8a31156b4df3d976c7bca65b0b5efa478189c
|
