《iOS应用逆向工程》唯一指定QQ群号


#1

《iOS应用逆向工程》的唯一指定QQ群号可以通过逆向此dylib获取:QQGroupNo.dylib (65.1 KB)

入群请从以下问题中任选一题作答,否则将不予通过:

  1. 如何利用汇编指令实现__RESTRICTED的等价功能
  2. 请简要描述一种iOS内核用于防御内核信息泄漏的保护措施
  3. Darwin平台上进行CS验证时所用的结构体叫做什么
  4. LLVM框架中当目标后端不支持异常处理时会运行哪个Pass
  5. 请简要描述一种自动脱虚拟机类壳的学术思路

Q群主要用于聊天吹水,技术问题请发至论坛。黑灰产/找人外包等都guna


#14

能不能给点思路啊?大神


#15

已经提交了答案申请进群,但是没有人搭理我^-^…


#16

麻烦管理看下我回答的对还是不对.不对的话给个回复


#18

QQ 号已经逆向出来了,问题有点难


#21

怎么计算扣扣号 ,求指导


#22

251453530 是这个吗?


#23

很明显不是,兄弟,进去干嘛,有问题在论坛问不好吗,问了大家都能看到,都能学习到


#24

你这个是直接16进制编辑器打开看到的吧:joy:


#27

大佬 麻烦看一下这个错误是怎么解决?困扰好久,试了好多方法了

wenqing:tingtweak chenjinxi$ make package

Making all for tweak tingtweak…
make[2]: Nothing to be done for internal-library-compile'. Making stage for tweak tingtweak… dm.pl: building packagecom.yy.tingtweak:iphoneos-arm’ in ./packages/com.yy.tingtweak_0.0.1-1+debug_iphoneos-arm.deb' gzip: invalid option -- 0 Apple gzip 272.220.1 usage: gzip [-123456789acdfhklLNnqrtVv] [-S .suffix] [<file> [<file> ...]] -1 --fast fastest (worst) compression -2 .. -8 set compression level -9 --best best (slowest) compression -c --stdout write to stdout, keep original files --to-stdout -d --decompress uncompress files --uncompress -f --force force overwriting & compress links -h --help display this help -k --keep don't delete input files during operation -l --list list compressed file contents -N --name save or restore original file name and time stamp -n --no-name don't save original file name or time stamp -q --quiet output no warnings -r --recursive recursively compress files in directories -S .suf use suffix .suf instead of .gz --suffix .suf -t --test test compressed file -V --version display program version -v --verbose print extra statistics make: *** [internal-package] Error 141 wenqing:tingtweak chenjinxi$ make package messages=yes Making all for tweak tingtweak… /Applications/Xcode.app/Contents/Developer/usr/bin/make -f Makefile --no-keep-going COLOR=1 \ internal-library-compile \ _THEOS_CURRENT_TYPE=tweak THEOS_CURRENT_INSTANCE=tingtweak _THEOS_CURRENT_OPERATION=compile \ THEOS_BUILD_DIR="." _THEOS_MAKE_PARALLEL=yes make[2]: Nothing to be done forinternal-library-compile’.
set -o pipefail; (rm -rf “/Users/chenjinxi/Desktop/ting/tingtweak/.theos/")
set -o pipefail; (/Users/chenjinxi/theos/bin/fakeroot.sh -p “/Users/chenjinxi/Desktop/ting/tingtweak/.theos/fakeroot” -c)
set -o pipefail; (mkdir -p "/Users/chenjinxi/Desktop/ting/tingtweak/.theos/
”)
set -o pipefail; ([ -d layout ] && rsync -a “layout/” “/Users/chenjinxi/Desktop/ting/tingtweak/.theos/" --exclude “DEBIAN” --exclude “MTN" --exclude “.git” --exclude “.svn” --exclude “.DS_Store” --exclude ".*” || true)
Making stage for tweak tingtweak…
set -o pipefail; (mkdir -p "/Users/chenjinxi/Desktop/ting/tingtweak/.theos/
/Library/MobileSubstrate/DynamicLibraries/”)
set -o pipefail; (cp /Users/chenjinxi/Desktop/ting/tingtweak/.theos/obj/debug/tingtweak.dylib “/Users/chenjinxi/Desktop/ting/tingtweak/.theos//Library/MobileSubstrate/DynamicLibraries/")
set -o pipefail; (cp tingtweak.plist "/Users/chenjinxi/Desktop/ting/tingtweak/.theos/
/Library/MobileSubstrate/DynamicLibraries/”)
set -o pipefail; (mkdir -p “/Users/chenjinxi/Desktop/ting/tingtweak/.theos//DEBIAN")
set -o pipefail; (sed -e ‘s/${LIBSWIFT}/com.modmyi.libswift4 (>= 4.2.1)/g; s/${LIBSWIFT_VERSION}/4.2.1/g; /^[Vv]ersion:/d; /^$/d; $a’ “/Users/chenjinxi/Desktop/ting/tingtweak/control” > "/Users/chenjinxi/Desktop/ting/tingtweak/.theos/
/DEBIAN/control”)
set -o pipefail; (echo “Version: 0.0.1-2+debug” >> “/Users/chenjinxi/Desktop/ting/tingtweak/.theos//DEBIAN/control")
set -o pipefail; (echo “Installed-Size: 104” >> "/Users/chenjinxi/Desktop/ting/tingtweak/.theos/
/DEBIAN/control”)
set -o pipefail; (COPYFILE_DISABLE=1 /Users/chenjinxi/theos/bin/fakeroot.sh -p “/Users/chenjinxi/Desktop/ting/tingtweak/.theos/fakeroot” -r dm.pl -Zgzip -z0 -b “/Users/chenjinxi/Desktop/ting/tingtweak/.theos/_” “./packages/com.yy.tingtweak_0.0.1-2+debug_iphoneos-arm.deb”)
dm.pl: building package com.yy.tingtweak:iphoneos-arm' in./packages/com.yy.tingtweak_0.0.1-2+debug_iphoneos-arm.deb’
gzip: invalid option – 0
Apple gzip 272.220.1
usage: gzip [-123456789acdfhklLNnqrtVv] [-S .suffix] [ [ …]]
-1 --fast fastest (worst) compression
-2 … -8 set compression level
-9 --best best (slowest) compression
-c --stdout write to stdout, keep original files
–to-stdout
-d --decompress uncompress files
–uncompress
-f --force force overwriting & compress links
-h --help display this help
-k --keep don’t delete input files during operation
-l --list list compressed file contents
-N --name save or restore original file name and time stamp
-n --no-name don’t save original file name or time stamp
-q --quiet output no warnings
-r --recursive recursively compress files in directories
-S .suf use suffix .suf instead of .gz
–suffix .suf
-t --test test compressed file
-V --version display program version
-v --verbose print extra statistics
make: *** [internal-package] Error 141


#28

那个请教一下,我把这个二进制文件用ida打开了,然后分析里面的汇编指令,按照之前自学的汇编语言和《ios应用逆向工程》大概能看懂寄存器的操作,书上的教程是分析运行时对应的对象,并打印出来,但有个疑惑就是仅通过这个静态分析如何知道方法的最初参数,并求得长整型的群号?


#29

懂了。。。


#31

你能不要瞎Google答案往里填了吗,拒绝了一次还没完没了继续Spam,大半夜的你在搞啥


#32


都不止我一个人骂你


#33

行,知道了,谢谢,给一个解释就行,还有个问题是,如果我弄懂问题了,回答答案一定是控制在8个字以内的吧?


#34

字数是QQ限制的,8个字肯定不太够用啊:joy:


#35

不用弄懂了,由于你没完没了的spam我们已经设置了不再接受这个用户的加群请求


#36

嗯嗯,没事,双向选择,表示理解。