区块链技术博客
www.b2bchain.cn

实战演练通过静态调试修改消息界面求职学习资料

本文介绍了实战演练通过静态调试修改消息界面求职学习资料,有助于帮助完成毕业设计以及求职,是一篇很好的资料。

对技术面试,学习经验等有一些体会,在此分享。

本篇文章的目标是通过静态分析,调试系统消息界面。

实战演练通过静态调试修改消息界面

目标一:修改消息的名称(10010)为eagle

目标二:修改右上角编辑按钮为红色

注入进程

  • 通过USB把手机和MAC连接(具体过程,前面文章有介绍)
  • 通过ps -A找到短信的进程ID

““
eagle6s:~ root# ps -A
PID TTY TIME CMD
1 ?? 0:15.82 /sbin/launchd -s
32 ?? 0:02.68 checkra1nd
33 ?? 0:10.95 /System/Library/PrivateFrameworks/CoreDuetContext.framework/Resources/contextstored
35 ?? 0:03.51 /System/Library/PrivateFrameworks/AssistantServices.framework/assistantd
36 ?? 0:17.25 /usr/libexec/runningboardd
38 ?? 0:03.21 /usr/libexec/fseventsd
40 ?? 0:00.44 /System/Library/PrivateFrameworks/MediaRemote.framework/Support/mediaremoted
41 ?? 0:06.44 /usr/libexec/routined LAUNCHED_BY_LAUNCHD
42 ?? 0:09.20 /usr/libexec/misd
43 ?? 0:33.84 /usr/libexec/configd
45 ?? 0:07.30 /System/Library/CoreServices/powerd.bundle/powerd
46 ?? 0:09.27 /usr/libexec/atc
47 ?? 1:38.38 /usr/sbin/WirelessRadioManagerd
49 ?? 0:00.56 /usr/libexec/keybagd -t 15
51 ?? 0:00.01 /System/Library/PrivateFrameworks/FamilyNotification.framework/familynotificationd
53 ?? 0:27.80 /usr/libexec/logd
56 ?? 0:00.02 /System/Library/PrivateFrameworks/MobileSoftwareUpdate.framework/Support/softwareupdated
58 ?? 0:01.45 /usr/libexec/seld
59 ?? 0:13.72 /System/Library/PrivateFrameworks/IDS.framework/identityservicesd.app/identityservicesd
60 ?? 0:01.51 /usr/libexec/watchdogd
62 ?? 0:00.07 /usr/libexec/wcd
63 ?? 0:19.79 /usr/libexec/thermalmonitord
66 ?? 0:00.54 /System/Library/PrivateFrameworks/AskPermission.framework/Support/askpermissiond
69 ?? 0:00.98 /usr/libexec/timed
70 ?? 1:09.79 /usr/libexec/locationd
71 ?? 0:13.86 /System/Library/PrivateFrameworks/MobileContainerManager.framework/Support/containermanagerd
72 ?? 0:10.91 /System/Library/PrivateFrameworks/IMCore.framework/imagent.app/imagent
74 ?? 0:00.07 /System/Library/PrivateFrameworks/NanoPreferencesSync.framework/nanoprefsyncd -companion
75 ?? 0:46.59 /usr/libexec/UserEventAgent (System)
78 ?? 0:01.35 OTACrashCopier
79 ?? 0:01.19 /usr/libexec/ptpd -t usb
80 ?? 0:00.03 /System/Library/PrivateFrameworks/AppleCredentialManager.framework/AppleCredentialManagerDaemon
83 ?? 0:14.12 /usr/sbin/bluetoothd
85 ?? 0:01.03 /System/Library/PrivateFrameworks/AppleMediaServices.framework/amsaccountsd
86 ?? 0:00.51 /usr/sbin/fairplayd.H2
87 ?? 3:52.39 /System/Library/Frameworks/CoreTelephony.framework/Support/CommCenter
88 ?? 0:06.56 /usr/sbin/notifyd
89 ?? 0:05.62 /usr/sbin/cfprefsd daemon
90 ?? 0:00.62 /usr/libexec/nfcd
92 ?? 0:00.34 /usr/sbin/distnoted daemon
93 ?? 0:00.01 /usr/libexec/pfd
95 ?? 0:37.61 /System/Library/PrivateFrameworks/WirelessDiagnostics.framework/Support/awdd
96 ?? 0:01.27 /System/Library/PrivateFrameworks/CoreAnalytics.framework/Support/analyticsd
97 ?? 0:12.06 /usr/libexec/mobileassetd
98 ?? 0:00.20 /usr/libexec/MobileGestaltHelper
100 ?? 0:04.91 /usr/libexec/securityd
105 ?? 0:01.01 /usr/libexec/biometrickitd –launchd
106 ?? 0:20.22 /usr/libexec/nehelper
107 ?? 0:00.04 /System/Library/Frameworks/CoreTelephony.framework/Support/CommCenterMobileHelper
108 ?? 0:00.09 /usr/libexec/nanoregistryd
110 ?? 0:00.07 /usr/sbin/BlueTool -R
111 ?? 0:01.73 /usr/libexec/nesessionmanager
112 ?? 0:17.79 /System/Library/PrivateFrameworks/ApplePushService.framework/apsd
113 ?? 0:04.48 /usr/libexec/coreduetd
114 ?? 0:00.03 /usr/libexec/MobileStorageMounter
116 ?? 0:00.46 /usr/libexec/mobileactivationd
118 ?? 0:11.49 /usr/libexec/trustd
122 ?? 0:01.11 /System/Library/PrivateFrameworks/CoreSpeech.framework/corespeechd
124 ?? 0:03.69 /usr/libexec/wifianalyticsd
126 ?? 0:19.97 /usr/libexec/symptomsd
127 ?? 0:00.55 /System/Library/PrivateFrameworks/CacheDelete.framework/deleted
131 ?? 0:00.04 /usr/libexec/misagent
133 ?? 0:01.04 /usr/sbin/mDNSResponderHelper
134 ?? 0:02.12 /System/Library/PrivateFrameworks/ContextKit.framework/XPCServices/ContextService.xpc/ContextService
135 ?? 0:00.07 /System/Library/PrivateFrameworks/FontServices.framework/Support/fontservicesd
136 ?? 0:00.28 /System/Library/CoreServices/iconservicesagent
137 ?? 0:23.96 /usr/libexec/dasd
138 ?? 0:00.78 /usr/libexec/pkd
141 ?? 0:00.26 /usr/libexec/rtcreportingd
142 ?? 0:01.35 /System/Library/PrivateFrameworks/CloudKitDaemon.framework/Support/cloudd
143 ?? 0:00.07 /usr/libexec/seserviced
145 ?? 0:00.09 /System/Library/PrivateFrameworks/VoiceServices.framework/Support/voiced
151 ?? 0:03.71 /System/Library/PrivateFrameworks/VisualVoicemail.framework/vmd
152 ?? 0:01.73 /System/Library/PrivateFrameworks/AssistantServices.framework/XPCServices/com.apple.siri.embeddedspeech.xpc/com.apple.siri.embeddedspeech
153 ?? 0:27.82 /usr/libexec/nsurlsessiond
154 ?? 0:04.37 /usr/libexec/networkserviceproxy
155 ?? 0:00.19 /System/Library/PrivateFrameworks/CoreAccessories.framework/Support/accessoryd
160 ?? 0:00.09 /usr/libexec/sensorkitd
161 ?? 0:01.15 /usr/libexec/fmflocatord
162 ?? 0:01.69 /usr/libexec/findmydeviced
163 ?? 0:00.25 /usr/libexec/searchpartyd
164 ?? 0:00.08 /usr/libexec/pipelined
165 ?? 0:00.34 /System/Library/PrivateFrameworks/MapsSupport.framework/mapspushd
167 ?? 0:00.70 /usr/libexec/nsurlstoraged
169 ?? 0:00.01 /usr/libexec/OTATaskingAgent server-init
171 ?? 0:00.06 /System/Library/PrivateFrameworks/MobileSoftwareUpdate.framework/XPCServices/com.apple.MobileSoftwareUpdate.CleanupPreparePathService.xpc/com.apple.MobileSoftwareU
172 ?? 0:00.02 /System/Library/Frameworks/CryptoTokenKit.framework/ctkd -tsw
173 ?? 0:00.03 /System/Library/PrivateFrameworks/MobileInstallation.framework/XPCServices/com.apple.MobileInstallationHelperService.xpc/com.apple.MobileInstallationHelperService
174 ?? 0:00.01 /usr/libexec/nanoregistrylaunchd
178 ?? 0:00.08 /usr/libexec/videosubscriptionsd
179 ?? 0:00.04 /usr/libexec/online-auth-agent
181 ?? 0:00.02 /System/Library/PrivateFrameworks/TVRemoteCore.framework/Support/TVRemoteConnectionService
182 ?? 0:06.20 /System/Library/PrivateFrameworks/HomeSharing.framework/Support/itunescloudd
183 ?? 0:02.16 /usr/libexec/swcd
184 ?? 0:00.13 /System/Library/PrivateFrameworks/VoiceShortcuts.framework/siriactionsd
186 ?? 0:04.03 /System/Library/PrivateFrameworks/iTunesStore.framework/Support/itunesstored
187 ?? 0:02.40 /usr/libexec/splashboardd
188 ?? 0:05.05 /System/Library/PrivateFrameworks/NanoTimeKitCompanion.framework/nanotimekitcompaniond
195 ?? 0:00.02 /System/Library/PrivateFrameworks/CloudServices.framework/Helpers/com.apple.sbd
197 ?? 0:00.13 /System/Library/PrivateFrameworks/BookLibrary.framework/Support/bookassetd
200 ?? 0:00.32 /System/Library/PrivateFrameworks/IMDPersistence.framework/XPCServices/IMDPersistenceAgent.xpc/IMDPersistenceAgent
201 ?? 0:00.15 /System/Library/Frameworks/Contacts.framework/Support/contactsd
203 ?? 0:00.58 /System/Library/PrivateFrameworks/FamilyCircle.framework/familycircled
204 ?? 0:00.04 /System/Library/Frameworks/Security.framework/CloudKeychainProxy.bundle/CloudKeychainProxy
206 ?? 0:00.09 /usr/libexec/adid
207 ?? 0:00.04 /usr/libexec/afcd
209 ?? 0:00.39 /usr/libexec/mobile_installation_proxy
212 ?? 0:03.28 /System/Library/PrivateFrameworks/CoreParsec.framework/parsecd
213 ?? 0:00.06 /usr/sbin/absd
214 ?? 0:00.09 /System/Library/PrivateFrameworks/iCloudNotification.framework/ind
215 ?? 0:00.07 /System/Library/PrivateFrameworks/HearingCore.framework/heard
216 ?? 0:00.01 /System/Library/PrivateFrameworks/CloudKitDaemon.framework/Support/ckdiscretionaryd
217 ?? 0:00.02 /usr/libexec/captiveagent
218 ?? 0:00.02 /usr/sbin/filecoordinationd
222 ?? 0:00.11 /usr/libexec/notification_proxy
223 ?? 0:00.02 /System/Library/PrivateFrameworks/CoreCDP.framework/cdpd
224 ?? 1:06.78 /System/Library/PrivateFrameworks/AggregateDictionary.framework/Support/aggregated
225 ?? 0:00.05 /System/Library/PrivateFrameworks/ProtectedCloudStorage.framework/Helpers/ProtectedCloudKeySyncing
226 ?? 0:00.12 /System/Library/PrivateFrameworks/VoiceMemos.framework/Support/voicememod
287 ?? 0:01.52 /usr/libexec/symptomsd-helper
292 ?? 0:00.20 /System/Library/PrivateFrameworks/Pasteboard.framework/Support/pasted
301 ?? 0:00.65 /usr/libexec/adprivacyd
302 ?? 0:00.03 /usr/libexec/diagnosticextensionsd
315 ?? 0:00.52 /System/Library/PrivateFrameworks/UsageTracking.framework/UsageTrackingAgent
316 ?? 0:00.13 /System/Library/PrivateFrameworks/Categories.framework/XPCServices/CategoriesService.xpc/CategoriesService
317 ?? 0:00.12 /System/Library/PrivateFrameworks/AvatarUI.framework/Support/avatarsd
319 ?? 0:00.08 /usr/libexec/siriknowledged
322 ?? 0:11.54 /usr/libexec/duetexpertd
324 ?? 0:00.07 /System/Library/PrivateFrameworks/Categories.framework/XPCServices/CategoriesService.xpc/CategoriesService
327 ?? 0:11.63 /System/Library/TextInput/kbd
329 ?? 0:00.03 /System/Library/PrivateFrameworks/CommunicationsFilter.framework/CMFSyncAgent
332 ?? 0:00.08 /System/Library/PrivateFrameworks/ContactsDonation.framework/Versions/A/Support/contactsdonationagent
333 ?? 0:01.35 /System/Library/PrivateFrameworks/ActionPredictionHeuristics.framework/XPCServices/HeuristicInterpreter.xpc/HeuristicInterpreter
340 ?? 0:00.03 /System/Library/PrivateFrameworks/CacheDelete.framework/deleted_helper
341 ?? 0:00.04 /usr/libexec/replayd
343 ?? 0:01.48 /System/Library/CoreServices/CacheDeleteAppContainerCaches
344 ?? 0:00.04 /System/Library/Frameworks/QuickLookThumbnailing.framework/Support/com.apple.quicklook.ThumbnailsAgent
345 ?? 0:00.02 /System/Library/PrivateFrameworks/CoreSymbolication.framework/coresymbolicationd
346 ?? 0:03.95 /usr/libexec/webbookmarksd
347 ?? 0:00.01 /System/Library/PrivateFrameworks/MobileBackup.framework/MobileBackupCacheDeleteService
382 ?? 0:07.08 /System/Library/PrivateFrameworks/SafariSafeBrowsing.framework/com.apple.Safari.SafeBrowsing.Service
384 ?? 0:00.03 /System/Library/PrivateFrameworks/AppSSO.framework/Support/AppSSODaemon

本篇文章的目标是通过静态分析,调试系统消息界面。

实战演练通过静态调试修改消息界面

目标一:修改消息的名称(10010)为eagle

目标二:修改右上角编辑按钮为红色

注入进程

  • 通过USB把手机和MAC连接(具体过程,前面文章有介绍)
  • 通过ps -A找到短信的进程ID

““
eagle6s:~ root# ps -A
PID TTY TIME CMD
1 ?? 0:15.82 /sbin/launchd -s
32 ?? 0:02.68 checkra1nd
33 ?? 0:10.95 /System/Library/PrivateFrameworks/CoreDuetContext.framework/Resources/contextstored
35 ?? 0:03.51 /System/Library/PrivateFrameworks/AssistantServices.framework/assistantd
36 ?? 0:17.25 /usr/libexec/runningboardd
38 ?? 0:03.21 /usr/libexec/fseventsd
40 ?? 0:00.44 /System/Library/PrivateFrameworks/MediaRemote.framework/Support/mediaremoted
41 ?? 0:06.44 /usr/libexec/routined LAUNCHED_BY_LAUNCHD
42 ?? 0:09.20 /usr/libexec/misd
43 ?? 0:33.84 /usr/libexec/configd
45 ?? 0:07.30 /System/Library/CoreServices/powerd.bundle/powerd
46 ?? 0:09.27 /usr/libexec/atc
47 ?? 1:38.38 /usr/sbin/WirelessRadioManagerd
49 ?? 0:00.56 /usr/libexec/keybagd -t 15
51 ?? 0:00.01 /System/Library/PrivateFrameworks/FamilyNotification.framework/familynotificationd
53 ?? 0:27.80 /usr/libexec/logd
56 ?? 0:00.02 /System/Library/PrivateFrameworks/MobileSoftwareUpdate.framework/Support/softwareupdated
58 ?? 0:01.45 /usr/libexec/seld
59 ?? 0:13.72 /System/Library/PrivateFrameworks/IDS.framework/identityservicesd.app/identityservicesd
60 ?? 0:01.51 /usr/libexec/watchdogd
62 ?? 0:00.07 /usr/libexec/wcd
63 ?? 0:19.79 /usr/libexec/thermalmonitord
66 ?? 0:00.54 /System/Library/PrivateFrameworks/AskPermission.framework/Support/askpermissiond
69 ?? 0:00.98 /usr/libexec/timed
70 ?? 1:09.79 /usr/libexec/locationd
71 ?? 0:13.86 /System/Library/PrivateFrameworks/MobileContainerManager.framework/Support/containermanagerd
72 ?? 0:10.91 /System/Library/PrivateFrameworks/IMCore.framework/imagent.app/imagent
74 ?? 0:00.07 /System/Library/PrivateFrameworks/NanoPreferencesSync.framework/nanoprefsyncd -companion
75 ?? 0:46.59 /usr/libexec/UserEventAgent (System)
78 ?? 0:01.35 OTACrashCopier
79 ?? 0:01.19 /usr/libexec/ptpd -t usb
80 ?? 0:00.03 /System/Library/PrivateFrameworks/AppleCredentialManager.framework/AppleCredentialManagerDaemon
83 ?? 0:14.12 /usr/sbin/bluetoothd
85 ?? 0:01.03 /System/Library/PrivateFrameworks/AppleMediaServices.framework/amsaccountsd
86 ?? 0:00.51 /usr/sbin/fairplayd.H2
87 ?? 3:52.39 /System/Library/Frameworks/CoreTelephony.framework/Support/CommCenter
88 ?? 0:06.56 /usr/sbin/notifyd
89 ?? 0:05.62 /usr/sbin/cfprefsd daemon
90 ?? 0:00.62 /usr/libexec/nfcd
92 ?? 0:00.34 /usr/sbin/distnoted daemon
93 ?? 0:00.01 /usr/libexec/pfd
95 ?? 0:37.61 /System/Library/PrivateFrameworks/WirelessDiagnostics.framework/Support/awdd
96 ?? 0:01.27 /System/Library/PrivateFrameworks/CoreAnalytics.framework/Support/analyticsd
97 ?? 0:12.06 /usr/libexec/mobileassetd
98 ?? 0:00.20 /usr/libexec/MobileGestaltHelper
100 ?? 0:04.91 /usr/libexec/securityd
105 ?? 0:01.01 /usr/libexec/biometrickitd –launchd
106 ?? 0:20.22 /usr/libexec/nehelper
107 ?? 0:00.04 /System/Library/Frameworks/CoreTelephony.framework/Support/CommCenterMobileHelper
108 ?? 0:00.09 /usr/libexec/nanoregistryd
110 ?? 0:00.07 /usr/sbin/BlueTool -R
111 ?? 0:01.73 /usr/libexec/nesessionmanager
112 ?? 0:17.79 /System/Library/PrivateFrameworks/ApplePushService.framework/apsd
113 ?? 0:04.48 /usr/libexec/coreduetd
114 ?? 0:00.03 /usr/libexec/MobileStorageMounter
116 ?? 0:00.46 /usr/libexec/mobileactivationd
118 ?? 0:11.49 /usr/libexec/trustd
122 ?? 0:01.11 /System/Library/PrivateFrameworks/CoreSpeech.framework/corespeechd
124 ?? 0:03.69 /usr/libexec/wifianalyticsd
126 ?? 0:19.97 /usr/libexec/symptomsd
127 ?? 0:00.55 /System/Library/PrivateFrameworks/CacheDelete.framework/deleted
131 ?? 0:00.04 /usr/libexec/misagent
133 ?? 0:01.04 /usr/sbin/mDNSResponderHelper
134 ?? 0:02.12 /System/Library/PrivateFrameworks/ContextKit.framework/XPCServices/ContextService.xpc/ContextService
135 ?? 0:00.07 /System/Library/PrivateFrameworks/FontServices.framework/Support/fontservicesd
136 ?? 0:00.28 /System/Library/CoreServices/iconservicesagent
137 ?? 0:23.96 /usr/libexec/dasd
138 ?? 0:00.78 /usr/libexec/pkd
141 ?? 0:00.26 /usr/libexec/rtcreportingd
142 ?? 0:01.35 /System/Library/PrivateFrameworks/CloudKitDaemon.framework/Support/cloudd
143 ?? 0:00.07 /usr/libexec/seserviced
145 ?? 0:00.09 /System/Library/PrivateFrameworks/VoiceServices.framework/Support/voiced
151 ?? 0:03.71 /System/Library/PrivateFrameworks/VisualVoicemail.framework/vmd
152 ?? 0:01.73 /System/Library/PrivateFrameworks/AssistantServices.framework/XPCServices/com.apple.siri.embeddedspeech.xpc/com.apple.siri.embeddedspeech
153 ?? 0:27.82 /usr/libexec/nsurlsessiond
154 ?? 0:04.37 /usr/libexec/networkserviceproxy
155 ?? 0:00.19 /System/Library/PrivateFrameworks/CoreAccessories.framework/Support/accessoryd
160 ?? 0:00.09 /usr/libexec/sensorkitd
161 ?? 0:01.15 /usr/libexec/fmflocatord
162 ?? 0:01.69 /usr/libexec/findmydeviced
163 ?? 0:00.25 /usr/libexec/searchpartyd
164 ?? 0:00.08 /usr/libexec/pipelined
165 ?? 0:00.34 /System/Library/PrivateFrameworks/MapsSupport.framework/mapspushd
167 ?? 0:00.70 /usr/libexec/nsurlstoraged
169 ?? 0:00.01 /usr/libexec/OTATaskingAgent server-init
171 ?? 0:00.06 /System/Library/PrivateFrameworks/MobileSoftwareUpdate.framework/XPCServices/com.apple.MobileSoftwareUpdate.CleanupPreparePathService.xpc/com.apple.MobileSoftwareU
172 ?? 0:00.02 /System/Library/Frameworks/CryptoTokenKit.framework/ctkd -tsw
173 ?? 0:00.03 /System/Library/PrivateFrameworks/MobileInstallation.framework/XPCServices/com.apple.MobileInstallationHelperService.xpc/com.apple.MobileInstallationHelperService
174 ?? 0:00.01 /usr/libexec/nanoregistrylaunchd
178 ?? 0:00.08 /usr/libexec/videosubscriptionsd
179 ?? 0:00.04 /usr/libexec/online-auth-agent
181 ?? 0:00.02 /System/Library/PrivateFrameworks/TVRemoteCore.framework/Support/TVRemoteConnectionService
182 ?? 0:06.20 /System/Library/PrivateFrameworks/HomeSharing.framework/Support/itunescloudd
183 ?? 0:02.16 /usr/libexec/swcd
184 ?? 0:00.13 /System/Library/PrivateFrameworks/VoiceShortcuts.framework/siriactionsd
186 ?? 0:04.03 /System/Library/PrivateFrameworks/iTunesStore.framework/Support/itunesstored
187 ?? 0:02.40 /usr/libexec/splashboardd
188 ?? 0:05.05 /System/Library/PrivateFrameworks/NanoTimeKitCompanion.framework/nanotimekitcompaniond
195 ?? 0:00.02 /System/Library/PrivateFrameworks/CloudServices.framework/Helpers/com.apple.sbd
197 ?? 0:00.13 /System/Library/PrivateFrameworks/BookLibrary.framework/Support/bookassetd
200 ?? 0:00.32 /System/Library/PrivateFrameworks/IMDPersistence.framework/XPCServices/IMDPersistenceAgent.xpc/IMDPersistenceAgent
201 ?? 0:00.15 /System/Library/Frameworks/Contacts.framework/Support/contactsd
203 ?? 0:00.58 /System/Library/PrivateFrameworks/FamilyCircle.framework/familycircled
204 ?? 0:00.04 /System/Library/Frameworks/Security.framework/CloudKeychainProxy.bundle/CloudKeychainProxy
206 ?? 0:00.09 /usr/libexec/adid
207 ?? 0:00.04 /usr/libexec/afcd
209 ?? 0:00.39 /usr/libexec/mobile_installation_proxy
212 ?? 0:03.28 /System/Library/PrivateFrameworks/CoreParsec.framework/parsecd
213 ?? 0:00.06 /usr/sbin/absd
214 ?? 0:00.09 /System/Library/PrivateFrameworks/iCloudNotification.framework/ind
215 ?? 0:00.07 /System/Library/PrivateFrameworks/HearingCore.framework/heard
216 ?? 0:00.01 /System/Library/PrivateFrameworks/CloudKitDaemon.framework/Support/ckdiscretionaryd
217 ?? 0:00.02 /usr/libexec/captiveagent
218 ?? 0:00.02 /usr/sbin/filecoordinationd
222 ?? 0:00.11 /usr/libexec/notification_proxy
223 ?? 0:00.02 /System/Library/PrivateFrameworks/CoreCDP.framework/cdpd
224 ?? 1:06.78 /System/Library/PrivateFrameworks/AggregateDictionary.framework/Support/aggregated
225 ?? 0:00.05 /System/Library/PrivateFrameworks/ProtectedCloudStorage.framework/Helpers/ProtectedCloudKeySyncing
226 ?? 0:00.12 /System/Library/PrivateFrameworks/VoiceMemos.framework/Support/voicememod
287 ?? 0:01.52 /usr/libexec/symptomsd-helper
292 ?? 0:00.20 /System/Library/PrivateFrameworks/Pasteboard.framework/Support/pasted
301 ?? 0:00.65 /usr/libexec/adprivacyd
302 ?? 0:00.03 /usr/libexec/diagnosticextensionsd
315 ?? 0:00.52 /System/Library/PrivateFrameworks/UsageTracking.framework/UsageTrackingAgent
316 ?? 0:00.13 /System/Library/PrivateFrameworks/Categories.framework/XPCServices/CategoriesService.xpc/CategoriesService
317 ?? 0:00.12 /System/Library/PrivateFrameworks/AvatarUI.framework/Support/avatarsd
319 ?? 0:00.08 /usr/libexec/siriknowledged
322 ?? 0:11.54 /usr/libexec/duetexpertd
324 ?? 0:00.07 /System/Library/PrivateFrameworks/Categories.framework/XPCServices/CategoriesService.xpc/CategoriesService
327 ?? 0:11.63 /System/Library/TextInput/kbd
329 ?? 0:00.03 /System/Library/PrivateFrameworks/CommunicationsFilter.framework/CMFSyncAgent
332 ?? 0:00.08 /System/Library/PrivateFrameworks/ContactsDonation.framework/Versions/A/Support/contactsdonationagent
333 ?? 0:01.35 /System/Library/PrivateFrameworks/ActionPredictionHeuristics.framework/XPCServices/HeuristicInterpreter.xpc/HeuristicInterpreter
340 ?? 0:00.03 /System/Library/PrivateFrameworks/CacheDelete.framework/deleted_helper
341 ?? 0:00.04 /usr/libexec/replayd
343 ?? 0:01.48 /System/Library/CoreServices/CacheDeleteAppContainerCaches
344 ?? 0:00.04 /System/Library/Frameworks/QuickLookThumbnailing.framework/Support/com.apple.quicklook.ThumbnailsAgent
345 ?? 0:00.02 /System/Library/PrivateFrameworks/CoreSymbolication.framework/coresymbolicationd
346 ?? 0:03.95 /usr/libexec/webbookmarksd
347 ?? 0:00.01 /System/Library/PrivateFrameworks/MobileBackup.framework/MobileBackupCacheDeleteService
382 ?? 0:07.08 /System/Library/PrivateFrameworks/SafariSafeBrowsing.framework/com.apple.Safari.SafeBrowsing.Service
384 ?? 0:00.03 /System/Library/PrivateFrameworks/AppSSO.framework/Support/AppSSODaemon

本篇文章的目标是通过静态分析,调试系统消息界面。

实战演练通过静态调试修改消息界面

目标一:修改消息的名称(10010)为eagle

目标二:修改右上角编辑按钮为红色

注入进程

  • 通过USB把手机和MAC连接(具体过程,前面文章有介绍)
  • 通过ps -A找到短信的进程ID

““
eagle6s:~ root# ps -A
PID TTY TIME CMD
1 ?? 0:15.82 /sbin/launchd -s
32 ?? 0:02.68 checkra1nd
33 ?? 0:10.95 /System/Library/PrivateFrameworks/CoreDuetContext.framework/Resources/contextstored
35 ?? 0:03.51 /System/Library/PrivateFrameworks/AssistantServices.framework/assistantd
36 ?? 0:17.25 /usr/libexec/runningboardd
38 ?? 0:03.21 /usr/libexec/fseventsd
40 ?? 0:00.44 /System/Library/PrivateFrameworks/MediaRemote.framework/Support/mediaremoted
41 ?? 0:06.44 /usr/libexec/routined LAUNCHED_BY_LAUNCHD
42 ?? 0:09.20 /usr/libexec/misd
43 ?? 0:33.84 /usr/libexec/configd
45 ?? 0:07.30 /System/Library/CoreServices/powerd.bundle/powerd
46 ?? 0:09.27 /usr/libexec/atc
47 ?? 1:38.38 /usr/sbin/WirelessRadioManagerd
49 ?? 0:00.56 /usr/libexec/keybagd -t 15
51 ?? 0:00.01 /System/Library/PrivateFrameworks/FamilyNotification.framework/familynotificationd
53 ?? 0:27.80 /usr/libexec/logd
56 ?? 0:00.02 /System/Library/PrivateFrameworks/MobileSoftwareUpdate.framework/Support/softwareupdated
58 ?? 0:01.45 /usr/libexec/seld
59 ?? 0:13.72 /System/Library/PrivateFrameworks/IDS.framework/identityservicesd.app/identityservicesd
60 ?? 0:01.51 /usr/libexec/watchdogd
62 ?? 0:00.07 /usr/libexec/wcd
63 ?? 0:19.79 /usr/libexec/thermalmonitord
66 ?? 0:00.54 /System/Library/PrivateFrameworks/AskPermission.framework/Support/askpermissiond
69 ?? 0:00.98 /usr/libexec/timed
70 ?? 1:09.79 /usr/libexec/locationd
71 ?? 0:13.86 /System/Library/PrivateFrameworks/MobileContainerManager.framework/Support/containermanagerd
72 ?? 0:10.91 /System/Library/PrivateFrameworks/IMCore.framework/imagent.app/imagent
74 ?? 0:00.07 /System/Library/PrivateFrameworks/NanoPreferencesSync.framework/nanoprefsyncd -companion
75 ?? 0:46.59 /usr/libexec/UserEventAgent (System)
78 ?? 0:01.35 OTACrashCopier
79 ?? 0:01.19 /usr/libexec/ptpd -t usb
80 ?? 0:00.03 /System/Library/PrivateFrameworks/AppleCredentialManager.framework/AppleCredentialManagerDaemon
83 ?? 0:14.12 /usr/sbin/bluetoothd
85 ?? 0:01.03 /System/Library/PrivateFrameworks/AppleMediaServices.framework/amsaccountsd
86 ?? 0:00.51 /usr/sbin/fairplayd.H2
87 ?? 3:52.39 /System/Library/Frameworks/CoreTelephony.framework/Support/CommCenter
88 ?? 0:06.56 /usr/sbin/notifyd
89 ?? 0:05.62 /usr/sbin/cfprefsd daemon
90 ?? 0:00.62 /usr/libexec/nfcd
92 ?? 0:00.34 /usr/sbin/distnoted daemon
93 ?? 0:00.01 /usr/libexec/pfd
95 ?? 0:37.61 /System/Library/PrivateFrameworks/WirelessDiagnostics.framework/Support/awdd
96 ?? 0:01.27 /System/Library/PrivateFrameworks/CoreAnalytics.framework/Support/analyticsd
97 ?? 0:12.06 /usr/libexec/mobileassetd
98 ?? 0:00.20 /usr/libexec/MobileGestaltHelper
100 ?? 0:04.91 /usr/libexec/securityd
105 ?? 0:01.01 /usr/libexec/biometrickitd –launchd
106 ?? 0:20.22 /usr/libexec/nehelper
107 ?? 0:00.04 /System/Library/Frameworks/CoreTelephony.framework/Support/CommCenterMobileHelper
108 ?? 0:00.09 /usr/libexec/nanoregistryd
110 ?? 0:00.07 /usr/sbin/BlueTool -R
111 ?? 0:01.73 /usr/libexec/nesessionmanager
112 ?? 0:17.79 /System/Library/PrivateFrameworks/ApplePushService.framework/apsd
113 ?? 0:04.48 /usr/libexec/coreduetd
114 ?? 0:00.03 /usr/libexec/MobileStorageMounter
116 ?? 0:00.46 /usr/libexec/mobileactivationd
118 ?? 0:11.49 /usr/libexec/trustd
122 ?? 0:01.11 /System/Library/PrivateFrameworks/CoreSpeech.framework/corespeechd
124 ?? 0:03.69 /usr/libexec/wifianalyticsd
126 ?? 0:19.97 /usr/libexec/symptomsd
127 ?? 0:00.55 /System/Library/PrivateFrameworks/CacheDelete.framework/deleted
131 ?? 0:00.04 /usr/libexec/misagent
133 ?? 0:01.04 /usr/sbin/mDNSResponderHelper
134 ?? 0:02.12 /System/Library/PrivateFrameworks/ContextKit.framework/XPCServices/ContextService.xpc/ContextService
135 ?? 0:00.07 /System/Library/PrivateFrameworks/FontServices.framework/Support/fontservicesd
136 ?? 0:00.28 /System/Library/CoreServices/iconservicesagent
137 ?? 0:23.96 /usr/libexec/dasd
138 ?? 0:00.78 /usr/libexec/pkd
141 ?? 0:00.26 /usr/libexec/rtcreportingd
142 ?? 0:01.35 /System/Library/PrivateFrameworks/CloudKitDaemon.framework/Support/cloudd
143 ?? 0:00.07 /usr/libexec/seserviced
145 ?? 0:00.09 /System/Library/PrivateFrameworks/VoiceServices.framework/Support/voiced
151 ?? 0:03.71 /System/Library/PrivateFrameworks/VisualVoicemail.framework/vmd
152 ?? 0:01.73 /System/Library/PrivateFrameworks/AssistantServices.framework/XPCServices/com.apple.siri.embeddedspeech.xpc/com.apple.siri.embeddedspeech
153 ?? 0:27.82 /usr/libexec/nsurlsessiond
154 ?? 0:04.37 /usr/libexec/networkserviceproxy
155 ?? 0:00.19 /System/Library/PrivateFrameworks/CoreAccessories.framework/Support/accessoryd
160 ?? 0:00.09 /usr/libexec/sensorkitd
161 ?? 0:01.15 /usr/libexec/fmflocatord
162 ?? 0:01.69 /usr/libexec/findmydeviced
163 ?? 0:00.25 /usr/libexec/searchpartyd
164 ?? 0:00.08 /usr/libexec/pipelined
165 ?? 0:00.34 /System/Library/PrivateFrameworks/MapsSupport.framework/mapspushd
167 ?? 0:00.70 /usr/libexec/nsurlstoraged
169 ?? 0:00.01 /usr/libexec/OTATaskingAgent server-init
171 ?? 0:00.06 /System/Library/PrivateFrameworks/MobileSoftwareUpdate.framework/XPCServices/com.apple.MobileSoftwareUpdate.CleanupPreparePathService.xpc/com.apple.MobileSoftwareU
172 ?? 0:00.02 /System/Library/Frameworks/CryptoTokenKit.framework/ctkd -tsw
173 ?? 0:00.03 /System/Library/PrivateFrameworks/MobileInstallation.framework/XPCServices/com.apple.MobileInstallationHelperService.xpc/com.apple.MobileInstallationHelperService
174 ?? 0:00.01 /usr/libexec/nanoregistrylaunchd
178 ?? 0:00.08 /usr/libexec/videosubscriptionsd
179 ?? 0:00.04 /usr/libexec/online-auth-agent
181 ?? 0:00.02 /System/Library/PrivateFrameworks/TVRemoteCore.framework/Support/TVRemoteConnectionService
182 ?? 0:06.20 /System/Library/PrivateFrameworks/HomeSharing.framework/Support/itunescloudd
183 ?? 0:02.16 /usr/libexec/swcd
184 ?? 0:00.13 /System/Library/PrivateFrameworks/VoiceShortcuts.framework/siriactionsd
186 ?? 0:04.03 /System/Library/PrivateFrameworks/iTunesStore.framework/Support/itunesstored
187 ?? 0:02.40 /usr/libexec/splashboardd
188 ?? 0:05.05 /System/Library/PrivateFrameworks/NanoTimeKitCompanion.framework/nanotimekitcompaniond
195 ?? 0:00.02 /System/Library/PrivateFrameworks/CloudServices.framework/Helpers/com.apple.sbd
197 ?? 0:00.13 /System/Library/PrivateFrameworks/BookLibrary.framework/Support/bookassetd
200 ?? 0:00.32 /System/Library/PrivateFrameworks/IMDPersistence.framework/XPCServices/IMDPersistenceAgent.xpc/IMDPersistenceAgent
201 ?? 0:00.15 /System/Library/Frameworks/Contacts.framework/Support/contactsd
203 ?? 0:00.58 /System/Library/PrivateFrameworks/FamilyCircle.framework/familycircled
204 ?? 0:00.04 /System/Library/Frameworks/Security.framework/CloudKeychainProxy.bundle/CloudKeychainProxy
206 ?? 0:00.09 /usr/libexec/adid
207 ?? 0:00.04 /usr/libexec/afcd
209 ?? 0:00.39 /usr/libexec/mobile_installation_proxy
212 ?? 0:03.28 /System/Library/PrivateFrameworks/CoreParsec.framework/parsecd
213 ?? 0:00.06 /usr/sbin/absd
214 ?? 0:00.09 /System/Library/PrivateFrameworks/iCloudNotification.framework/ind
215 ?? 0:00.07 /System/Library/PrivateFrameworks/HearingCore.framework/heard
216 ?? 0:00.01 /System/Library/PrivateFrameworks/CloudKitDaemon.framework/Support/ckdiscretionaryd
217 ?? 0:00.02 /usr/libexec/captiveagent
218 ?? 0:00.02 /usr/sbin/filecoordinationd
222 ?? 0:00.11 /usr/libexec/notification_proxy
223 ?? 0:00.02 /System/Library/PrivateFrameworks/CoreCDP.framework/cdpd
224 ?? 1:06.78 /System/Library/PrivateFrameworks/AggregateDictionary.framework/Support/aggregated
225 ?? 0:00.05 /System/Library/PrivateFrameworks/ProtectedCloudStorage.framework/Helpers/ProtectedCloudKeySyncing
226 ?? 0:00.12 /System/Library/PrivateFrameworks/VoiceMemos.framework/Support/voicememod
287 ?? 0:01.52 /usr/libexec/symptomsd-helper
292 ?? 0:00.20 /System/Library/PrivateFrameworks/Pasteboard.framework/Support/pasted
301 ?? 0:00.65 /usr/libexec/adprivacyd
302 ?? 0:00.03 /usr/libexec/diagnosticextensionsd
315 ?? 0:00.52 /System/Library/PrivateFrameworks/UsageTracking.framework/UsageTrackingAgent
316 ?? 0:00.13 /System/Library/PrivateFrameworks/Categories.framework/XPCServices/CategoriesService.xpc/CategoriesService
317 ?? 0:00.12 /System/Library/PrivateFrameworks/AvatarUI.framework/Support/avatarsd
319 ?? 0:00.08 /usr/libexec/siriknowledged
322 ?? 0:11.54 /usr/libexec/duetexpertd
324 ?? 0:00.07 /System/Library/PrivateFrameworks/Categories.framework/XPCServices/CategoriesService.xpc/CategoriesService
327 ?? 0:11.63 /System/Library/TextInput/kbd
329 ?? 0:00.03 /System/Library/PrivateFrameworks/CommunicationsFilter.framework/CMFSyncAgent
332 ?? 0:00.08 /System/Library/PrivateFrameworks/ContactsDonation.framework/Versions/A/Support/contactsdonationagent
333 ?? 0:01.35 /System/Library/PrivateFrameworks/ActionPredictionHeuristics.framework/XPCServices/HeuristicInterpreter.xpc/HeuristicInterpreter
340 ?? 0:00.03 /System/Library/PrivateFrameworks/CacheDelete.framework/deleted_helper
341 ?? 0:00.04 /usr/libexec/replayd
343 ?? 0:01.48 /System/Library/CoreServices/CacheDeleteAppContainerCaches
344 ?? 0:00.04 /System/Library/Frameworks/QuickLookThumbnailing.framework/Support/com.apple.quicklook.ThumbnailsAgent
345 ?? 0:00.02 /System/Library/PrivateFrameworks/CoreSymbolication.framework/coresymbolicationd
346 ?? 0:03.95 /usr/libexec/webbookmarksd
347 ?? 0:00.01 /System/Library/PrivateFrameworks/MobileBackup.framework/MobileBackupCacheDeleteService
382 ?? 0:07.08 /System/Library/PrivateFrameworks/SafariSafeBrowsing.framework/com.apple.Safari.SafeBrowsing.Service
384 ?? 0:00.03 /System/Library/PrivateFrameworks/AppSSO.framework/Support/AppSSODaemon

部分转自互联网,侵权删除联系

赞(0) 打赏
部分文章转自网络,侵权联系删除b2bchain区块链学习技术社区 » 实战演练通过静态调试修改消息界面求职学习资料
分享到: 更多 (0)

评论 抢沙发

  • 昵称 (必填)
  • 邮箱 (必填)
  • 网址

b2b链

联系我们联系我们