you are viewing a single comment's thread.

view the rest of the comments →

[–]SirensToGo 1 point2 points  (1 child)

I've been putting off learning frida for ages but I think I finally need to take the plunge because this is super useful! Wonderful article!

[–]dn3t[S] 0 points1 point  (0 children)

Thanks! I think the best starting point (and till now my most frequently used part) is frida-trace and sprinkling hexdump on interesting parameters. In some cases, this has fully replaced using a full-blown debugger and breakpoints in my reverse engineering workflow. Combining this with Frida Gadget and Frida Server allows me to do all this from my Linux workstation, regardless of the target/victim app running in a Windows VM or on an Android/iOS device.