Skip to content
/ Hooking-and-Patching-android-template Public

Hooking and binary patching template using Substrate and KittyMemory respectively.

50 stars 14 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Djngo/Hooking-and-Patching-android-template

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
Smali Files/loadLib
Smali Files/loadLib
 
 
x32/jni
x32/jni
 
 
x64/jni
x64/jni
 
 
Build.bat
Build.bat
 
 
README.md
README.md
 
 
params.txt
params.txt
 
 

Repository files navigation

Hooking-and-Patching-android-template

This is a template for the usage of Cydia Substrate and KittyMemory.

It is based on an already made hooking template by joeyjurjens/Ted2 here https://github.com/joeyjurjens/Android-Hooking-Template

And the KittyMemory repo by MJx0 here https://github.com/MJx0/KittyMemory

NEW Added hook alternative for aarch64 from this repo https://github.com/Rprop/And64InlineHook


Installation


How to use

  • x32/main.cpp This is where you will write your hooks and patches for armeabi-7va.
  • x64/main.cpp This is where you will write your hooks and patches for arm64-v8a (I added an example for the hook alternative but it works exactly like mshook).
  • Utils.h Edit the targeted library here. (In x64 too)

Change the outputed library name:

  • Android.mk Replace the default name by whatever you want at "LOCAL_MODULE :="
  • Android.mk Do the same for the other folder (x64)
  • libLoader$1.smali Change it in this file as well. (line 38)

Loading the lib.so

First we need to compile our project.

  • Edit params.txt & paste your ndk-build path location on the very first line and the project location on the second line like I did.
  • Start Build.bat and follow instructions.
  • Once compiled you'll have 2 new file in x32 and x64 named libs and obj. In order to load your lib.so, you'll need to decompile the apk, you can use Apk Easy Tool for this.
  • Go to Libs and copy the created lib.so in the Lib folder of your game.
  • Navigate to "/smali/com" & copy the loadLib from this git inside of that folder.
  • Open the AndroidManifest.xml file in the decompiled apk and search this
android:name="com.unity3d.player.UnityPlayerActivity"

it will give us the path of the MainActivity so in our case it's at "com/unity3d/player/UnityPlayerActivity"

  • Open that file with Notepad++ or any text editing software and search something like this:
.method protected onCreate(Landroid/os/Bundle;)V
    .locals 2
  • Once found, paste this code under .locals 2:
invoke-static {}, Lcom/loadLib/libLoader;->loadLib()V
  • Step 1: Recompile the apk
  • Step 2: Profit

Useful links

For Cydia Substrate:

If you're here or if you made mod menus before you probably already know how to use KittyMemory.

About

Hooking and binary patching template using Substrate and KittyMemory respectively.

Resources

Readme
Activity

Stars

50 stars

Watchers

2 watching

Forks

14 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages