├── .vscode
    └── settings.json
├── README.md
├── STACK1.pdf
├── STACK1.png
├── STACK2.pdf
├── STACK2.png
├── arm64hook.pdf
├── arm64hook.png
├── arm64hook.vsdx
├── arm64hook4.png
├── jni
    ├── .DS_Store
    ├── Android.mk
    ├── Application.mk
    ├── InlineHook
    │   ├── .DS_Store
    │   ├── Android.mk
    │   ├── Ihook.c
    │   ├── Ihook.h
    │   ├── fixPCOpcode.c
    │   ├── fixPCOpcode.h
    │   └── ihookstub.s
    └── Interface
    │   ├── .DS_Store
    │   ├── Android.mk
    │   └── InlineHook.cpp
├── libs
    └── arm64-v8a
    │   └── libInlineHook.so
├── obj
    └── local
    │   ├── arm64-v8a
    │       ├── libIHook.a
    │       ├── libInlineHook.so
    │       └── objs
    │       │   ├── IHook
    │       │       ├── IHook.o
    │       │       ├── IHook.o.d
    │       │       ├── fixPCOpcode.o
    │       │       ├── fixPCOpcode.o.d
    │       │       └── ihookstub.o
    │       │   └── InlineHook
    │       │       ├── InlineHook.o
    │       │       └── InlineHook.o.d
    │   └── armeabi-v7a
    │       ├── libIHook.a
    │       ├── libInlineArmHook.so
    │       ├── libInlineHook.so
    │       └── objs
    │           ├── IHook
    │               ├── IHook.o
    │               ├── IHook.o.d
    │               ├── fixPCOpcode.o
    │               ├── fixPCOpcode.o.d
    │               ├── ihookstub.o
    │               └── ihookstubthumb.o
    │           ├── InlineArmHook
    │               ├── InlineHook.o
    │               └── InlineHook.o.d
    │           └── InlineHook
    │               ├── InlineHook.o
    │               └── InlineHook.o.d
├── stack.pdf
├── stack.vsdx
└── stack.xlsx


/.vscode/settings.json:
--------------------------------------------------------------------------------
1 | {
2 |     "files.associations": {
3 |         "xtr1common": "c",
4 |         "type_traits": "c",
5 |         "utility": "c",
6 |         "xmemory0": "c",
7 |         "xutility": "c"
8 |     }
9 | }


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # Android Inline Hook ARM64
 2 | 
 3 | This is the ARM64 version of [Android Inline Hook](https://github.com/GToad/Android_Inline_Hook.git). I highly recommend you to view [Android Inline Hook](https://github.com/GToad/Android_Inline_Hook.git) first.
 4 | 
 5 | `This arm64-version is almost finished. But I still need some time on the docs and code-fix work. Thank you for your patience!`
 6 | 
 7 | # Android Inline Hook
 8 | 
 9 | This project make an Android .so file that can automatically do some native hook works.
10 | 
11 | It mainly use Android Inline Hook, not PLT Hook.
12 | 
13 | If you can read Chinese or wanna see more picture, I've wrote some articles about this repo and the first one is the main article. `I highly recommend you to read the articles before reading the code.` These article will save you a lot of time, I promise.
14 | 
15 | 1. [Android Inline Hook Practice](https://gtoad.github.io/2018/07/06/Android-Native-Hook-Practice/)
16 | 2. [Opcode Fix In Android Inline Hook](https://gtoad.github.io/2018/07/13/Android-Inline-Hook-Fix/)
17 | 3. [An Introduction to Android Native Hook](https://gtoad.github.io/2018/07/05/Android-Native-Hook/)
18 | 4. [Android Inline Hook ARM64 Practice](https://gtoad.github.io/2018/09/20/Android-Native-Hook-Practice-Arm64/)
19 | 
20 | # Articles in English
21 | 
22 | I've received several e-mails and all the questions in them have been written in the Chinese articles. So i think it's necessary translate some part of the articles in English. I will try my best to tanslate more part and the parts metioned by the questions in issue will have high priority.
23 | 
24 | 1. [Android Inline Hook Practice EN](https://gtoad.github.io/2018/08/03/Android-Native-Hook-Practice-EN/)
25 | 
26 | # Features
27 | 
28 | 1. No ptrace -- So the anti-debug tech won't affect on this tool.
29 | 2. Auto run -- Just use Xposed or other tools to load it into the memory and it will do the native hook work.
30 | 3. Pure inline hook -- No other imprint left so it's hard to anti.
31 | 4. Flexible -- Fine docs for users to understand the code and change it on your own perpose.
32 | 5. Active support -- Brand new so I'm still keen on fix the bugs and arm32/thumb-2/arm64 has been finished one by one.
33 | 
34 | # How To Use
35 | 
36 | The only thing you have to change is the code in `InlineHook.cpp`.
37 | 
38 | You can name the `__attribute__((constructor)) ModifyIBored()` function at your will and change the follow arg in it:
39 | 
40 | 1. `pModuleBaseAddr` is the address of your target so.
41 | 2. `target_offset` is the offset of your hook point in the target so.
42 | 
43 | `EvilHookStubFunctionForIBored` function is the thing you really wanna do when the hook works. You can name at your will, but keep the arg `(pt_regs *regs)`. It brings you the power to control the registers, like set r0 to 0x333 : `regs->uregs[0]=0x333;`.
44 | 
45 | After you finish the args above, just `ndk-build` and you will get your .so file.
46 | 
47 | # ARM64 Design
48 | 
49 | ![](https://gtoad.github.io/img/in-post/post-android-native-hook-practice-ARM64/arm64hook.png)
50 | 
51 | # Example
52 | 
53 | I've make some examples in other repo, it includes code and the target APK file.
54 | 
55 | 1. [thumb-2 example](https://github.com/GToad/Android_Inline_Hook_Thumb_Example.git)
56 | 2. [arm32 example](https://github.com/GToad/Android_Inline_Hook_Arm_Example.git)
57 | 
58 | # Contact
59 | 
60 | I believe that this project still has some problems. If you find some bugs or have some problems, you can send e-mail to `gtoad1994@aliyun.com`. I wish we can fix it together!
61 | 
62 | # Reference
63 | 
64 | [Game Security Lab of Tencent](http://gslab.qq.com/portal.php?mod=view&aid=168)
65 | 
66 | [Ele7enxxh's Blog](http://ele7enxxh.com/Android-Arm-Inline-Hook.html)
67 | 
68 | 
69 | 
70 | 
71 | 


--------------------------------------------------------------------------------
/STACK1.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/STACK1.pdf


--------------------------------------------------------------------------------
/STACK1.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/STACK1.png


--------------------------------------------------------------------------------
/STACK2.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/STACK2.pdf


--------------------------------------------------------------------------------
/STACK2.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/STACK2.png


--------------------------------------------------------------------------------
/arm64hook.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/arm64hook.pdf


--------------------------------------------------------------------------------
/arm64hook.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/arm64hook.png


--------------------------------------------------------------------------------
/arm64hook.vsdx:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/arm64hook.vsdx


--------------------------------------------------------------------------------
/arm64hook4.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/arm64hook4.png


--------------------------------------------------------------------------------
/jni/.DS_Store:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/jni/.DS_Store


--------------------------------------------------------------------------------
/jni/Android.mk:
--------------------------------------------------------------------------------
1 | include $(call all-subdir-makefiles)


--------------------------------------------------------------------------------
/jni/Application.mk:
--------------------------------------------------------------------------------
1 | APP_ABI := arm64-v8a
2 | APP_STL := gnustl_static
3 | APP_CPPFLAGS += -fexceptions


--------------------------------------------------------------------------------
/jni/InlineHook/.DS_Store:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/jni/InlineHook/.DS_Store


--------------------------------------------------------------------------------
/jni/InlineHook/Android.mk:
--------------------------------------------------------------------------------
 1 | LOCAL_PATH := $(call my-dir)  
 2 | 
 3 | 
 4 | include $(CLEAR_VARS)
 5 | 
 6 | LOCAL_CXXFLAGS +=  -g -O0
 7 | LOCAL_ARM_MODE := arm
 8 | LOCAL_MODULE    := IHook
 9 | LOCAL_SRC_FILES := IHook.c ihookstub.s fixPCOpcode.c
10 | LOCAL_LDLIBS += -L$(SYSROOT)/usr/lib -llog
11 | 
12 | include $(BUILD_STATIC_LIBRARY)
13 | 


--------------------------------------------------------------------------------
/jni/InlineHook/Ihook.c:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/jni/InlineHook/Ihook.c


--------------------------------------------------------------------------------
/jni/InlineHook/Ihook.h:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/jni/InlineHook/Ihook.h


--------------------------------------------------------------------------------
/jni/InlineHook/fixPCOpcode.c:
--------------------------------------------------------------------------------
  1 | #include "fixPCOpcode.h"
  2 | 
  3 | //这里的代码建议看文章：《Android Inline Hook中的指令修复详解》（https://gtoad.github.io/2018/07/13/Android-Inline-Hook-Fix/）
  4 | 
  5 | enum INSTRUCTION_TYPE {
  6 | 
  7 | 
  8 | 	// BLX <label>
  9 | 	BLX_ARM,
 10 | 	// BL <label>
 11 | 	BL_ARM,
 12 | 	// B <label>
 13 | 	B_ARM,
 14 | 
 15 |     // <Add by GToad>
 16 |     // B <label>
 17 | 	BEQ_ARM,
 18 |     // B <label>
 19 | 	BNE_ARM,
 20 |     // B <label>
 21 | 	BCS_ARM,
 22 |     // B <label>
 23 | 	BCC_ARM,
 24 |     // B <label>
 25 | 	BMI_ARM,
 26 |     // B <label>
 27 | 	BPL_ARM,
 28 |     // B <label>
 29 | 	BVS_ARM,
 30 |     // B <label>
 31 | 	BVC_ARM,
 32 |     // B <label>
 33 | 	BHI_ARM,
 34 |     // B <label>
 35 | 	BLS_ARM,
 36 |     // B <label>
 37 | 	BGE_ARM,
 38 |     // B <label>
 39 | 	BLT_ARM,
 40 |     // B <label>
 41 | 	BGT_ARM,
 42 |     // B <label>
 43 | 	BLE_ARM,
 44 |     // </Add by GToad>
 45 | 
 46 | 	// BX PC
 47 | 	BX_ARM,
 48 | 	// ADD Rd, PC, Rm (Rd != PC, Rm != PC) 在对ADD进行修正时，采用了替换PC为Rr的方法，当Rd也为PC时，由于之前更改了Rr的值，可能会影响跳转后的正常功能;实际汇编中没有发现Rm也为PC的情况，故未做处理。
 49 | 	ADD_ARM,
 50 | 	// ADR Rd, <label>
 51 | 	ADR1_ARM,
 52 | 	// ADR Rd, <label>
 53 | 	ADR2_ARM,
 54 | 	// MOV Rd, PC
 55 | 	MOV_ARM,
 56 | 	// LDR Rt, <label>
 57 | 	LDR_ARM,
 58 | 
 59 | 
 60 | 	ADR_ARM64,
 61 | 
 62 | 	ADRP_ARM64,
 63 | 
 64 | 	LDR_ARM64,
 65 | 
 66 | 	B_ARM64,
 67 | 
 68 | 	B_COND_ARM64,
 69 | 
 70 | 	BR_ARM64,
 71 | 
 72 | 	BL_ARM64,
 73 | 
 74 | 	BLR_ARM64,
 75 | 
 76 | 	CBNZ_ARM64,
 77 | 
 78 | 	CBZ_ARM64,
 79 | 
 80 | 	TBNZ_ARM64,
 81 | 
 82 | 	TBZ_ARM64,
 83 | 
 84 | 	LDR_ARM64_32,
 85 | 
 86 | 	UNDEFINE,
 87 | };
 88 | 
 89 | int lengthFixArm64(uint32_t opcode)
 90 | {
 91 |     int type;
 92 |     type = getTypeInArm64(opcode);
 93 |     switch(type)
 94 |     {
 95 |         case B_COND_ARM64:return 32;break;
 96 |         case BNE_ARM:
 97 |         case BCS_ARM:
 98 |         case BCC_ARM:
 99 |         case BMI_ARM:
100 |         case BPL_ARM:
101 |         case BVS_ARM:
102 |         case BVC_ARM:
103 |         case BHI_ARM:
104 |         case BLS_ARM:
105 |         case BGE_ARM:
106 |         case BLT_ARM:
107 |         case BGT_ARM:
108 |         case BLE_ARM:return 12;break;
109 |         case BLX_ARM:
110 |         case BL_ARM:return 12;break;
111 |         case B_ARM:
112 |         case BX_ARM:return 8;break;
113 |         case ADD_ARM:return 24;break;
114 |         case ADR1_ARM:
115 |         case ADR2_ARM:
116 |         case LDR_ARM:
117 |         case MOV_ARM:return 12;break;
118 |         case UNDEFINE:return 4;
119 |     }    
120 | }
121 | 
122 | 
123 | int lengthFixArm32(uint32_t opcode)
124 | {
125 |     int type;
126 |     type = getTypeInArm32(opcode);
127 |     switch(type)
128 |     {
129 |         case BEQ_ARM:
130 |         case BNE_ARM:
131 |         case BCS_ARM:
132 |         case BCC_ARM:
133 |         case BMI_ARM:
134 |         case BPL_ARM:
135 |         case BVS_ARM:
136 |         case BVC_ARM:
137 |         case BHI_ARM:
138 |         case BLS_ARM:
139 |         case BGE_ARM:
140 |         case BLT_ARM:
141 |         case BGT_ARM:
142 |         case BLE_ARM:return 12;break;
143 |         case BLX_ARM:
144 |         case BL_ARM:return 12;break;
145 |         case B_ARM:
146 |         case BX_ARM:return 8;break;
147 |         case ADD_ARM:return 24;break;
148 |         case ADR1_ARM:
149 |         case ADR2_ARM:
150 |         case LDR_ARM:
151 |         case MOV_ARM:return 12;break;
152 |         case UNDEFINE:return 4;
153 |     }    
154 | }
155 | 
156 | 
157 | 
158 | static int getTypeInArm64(uint32_t instruction)
159 | {
160 |     LOGI("getTypeInArm64 : %x", instruction);
161 | 	if ((instruction & 0x9F000000) == 0x10000000) {
162 | 		return ADR_ARM64;
163 | 	}
164 | 	if ((instruction & 0x9F000000) == 0x90000000) {
165 | 		return ADRP_ARM64;
166 | 	}
167 |     if ((instruction & 0xFC000000) == 0x14000000) {
168 | 		return B_ARM64;
169 | 	}
170 |     if ((instruction & 0xFF000010) == 0x54000010) {
171 | 		return B_COND_ARM64;
172 | 	}
173 |     if ((instruction & 0xFC000000) == 0x94000000) {
174 | 		return BL_ARM64;
175 | 	}
176 | 
177 | 
178 |     if ((instruction & 0xFF000000) == 0x58000000) {//LDR Lliteral need to learn
179 | 		return LDR_ARM64;
180 | 	}
181 | 	if ((instruction & 0x7F000000) == 0x35000000) {
182 | 		return CBNZ_ARM64;
183 | 	}
184 | 	if ((instruction & 0x7F000000) == 0x34000000) {
185 | 		return CBZ_ARM64;
186 | 	}
187 | 	if ((instruction & 0x7F000000) == 0x37000000) {
188 | 		return TBNZ_ARM64;
189 | 	}
190 | 	if ((instruction & 0x7F000000) == 0x36000000) {
191 | 		return TBZ_ARM64;
192 | 	}
193 | 
194 | 	if ((instruction & 0xFF000000) == 0x18000000) {//LDR Lliteral 32 need to learn
195 | 		return LDR_ARM64_32;
196 | 	}
197 | 	
198 | 	return UNDEFINE;
199 | }
200 | 
201 | static int getTypeInArm32(uint32_t instruction)
202 | {
203 |     LOGI("getTypeInArm : %x", instruction);
204 | 	if ((instruction & 0xFE000000) == 0xFA000000) {
205 | 		return BLX_ARM;
206 | 	}
207 | 	if ((instruction & 0xF000000) == 0xB000000) {
208 | 		return BL_ARM;
209 | 	}
210 | 	if ((instruction & 0xFE000000) == 0x0A000000) {
211 | 		return BEQ_ARM;
212 | 	}
213 |     if ((instruction & 0xFE000000) == 0x1A000000) {
214 | 		return BNE_ARM;
215 | 	}
216 |     if ((instruction & 0xFE000000) == 0x2A000000) {
217 | 		return BCS_ARM;
218 | 	}
219 |     if ((instruction & 0xFE000000) == 0x3A000000) {
220 | 		return BCC_ARM;
221 | 	}
222 |     if ((instruction & 0xFE000000) == 0x4A000000) {
223 | 		return BMI_ARM;
224 | 	}
225 |     if ((instruction & 0xFE000000) == 0x5A000000) {
226 | 		return BPL_ARM;
227 | 	}
228 |     if ((instruction & 0xFE000000) == 0x6A000000) {
229 | 		return BVS_ARM;
230 | 	}
231 |     if ((instruction & 0xFE000000) == 0x7A000000) {
232 | 		return BVC_ARM;
233 | 	}
234 |     if ((instruction & 0xFE000000) == 0x8A000000) {
235 | 		return BHI_ARM;
236 | 	}
237 |     if ((instruction & 0xFE000000) == 0x9A000000) {
238 | 		return BLS_ARM;
239 | 	}
240 |     if ((instruction & 0xFE000000) == 0xAA000000) {
241 | 		return BGE_ARM;
242 | 	}
243 |     if ((instruction & 0xFE000000) == 0xBA000000) {
244 | 		return BLT_ARM;
245 | 	}
246 |     if ((instruction & 0xFE000000) == 0xCA000000) {
247 | 		return BGT_ARM;
248 | 	}
249 |     if ((instruction & 0xFE000000) == 0xDA000000) {
250 | 		return BLE_ARM;
251 | 	}
252 |     if ((instruction & 0xFE000000) == 0xEA000000) {
253 | 		return B_ARM;
254 | 	}
255 |     
256 |     /*
257 |     if ((instruction & 0xFF000000) == 0xFA000000) {
258 | 		return BLX_ARM;
259 | 	} *//*
260 |     if ((instruction & 0xF000000) == 0xA000000) {
261 | 		return B_ARM;
262 | 	}*/
263 |     
264 | 	if ((instruction & 0xFF000FF) == 0x120001F) {
265 | 		return BX_ARM;
266 | 	}
267 | 	if ((instruction & 0xFEF0010) == 0x8F0000) {
268 | 		return ADD_ARM;
269 | 	}
270 | 	if ((instruction & 0xFFF0000) == 0x28F0000) {
271 | 		return ADR1_ARM;
272 | 	}
273 | 	if ((instruction & 0xFFF0000) == 0x24F0000) {
274 | 		return ADR2_ARM;		
275 | 	}
276 | 	if ((instruction & 0xE5F0000) == 0x41F0000) {
277 | 		return LDR_ARM;
278 | 	}
279 | 	if ((instruction & 0xFE00FFF) == 0x1A0000F) {
280 | 		return MOV_ARM;
281 | 	}
282 | 	return UNDEFINE;
283 | }
284 | 
285 | 
286 | 
287 | bool isTargetAddrInBackup(uint64_t target_addr, uint64_t hook_addr, int backup_length)
288 | {
289 |     if((target_addr<=hook_addr+backup_length)&&(target_addr>=hook_addr))
290 |         return true;
291 |     return false;
292 | }
293 | 
294 | int fixPCOpcodeArm(void *fixOpcodes , INLINE_HOOK_INFO* pstInlineHook)
295 | {
296 |     uint64_t pc;
297 |     uint64_t lr;
298 |     int backUpPos = 0;
299 |     int fixPos = 0;
300 |     int offset = 0;
301 |     //int isConditionBcode = 0;
302 |     uint32_t *currentOpcode;
303 |     uint32_t tmpFixOpcodes[40]; //对于每条PC命令的修复指令都将暂时保存在这里。
304 |     //uint32_t tmpBcodeFix;
305 |     //uint32_t tmpBcodeX = 0;
306 | 	//trampoline_instructions[trampoline_pos++] == 0xf85f83e0; // ldr x0, [sp, #-0x8] recover the x0 register
307 | 
308 |     LOGI("Fixing Arm !!!!!!!");
309 | 
310 |     currentOpcode = pstInlineHook->szbyBackupOpcodes + sizeof(uint8_t)*backUpPos;
311 |     LOGI("sizeof(uint8_t) : %D", sizeof(uint8_t));
312 | 
313 |     pc = pstInlineHook->pHookAddr; //pc变量用于保存原本指令执行时的pc值
314 |     lr = pstInlineHook->pHookAddr + pstInlineHook->backUpLength;
315 | 
316 |     if(pstInlineHook == NULL)
317 |     {
318 |         LOGI("pstInlineHook is null");
319 |     }
320 | 
321 | 	tmpFixOpcodes[0] = 0xf85f83e0; // ldr x0, [sp, #-0x8] recover the x0 register
322 | 	offset = 4;
323 | 	memcpy(fixOpcodes+fixPos, tmpFixOpcodes, offset);
324 | 	fixPos=+offset;
325 | 
326 |     while(1) // 在这个循环中，每次都处理一个arm64命令
327 |     {
328 |         //LOGI("-------------START----------------");
329 |         LOGI("currentOpcode is %x",*currentOpcode);
330 |         
331 |         offset = fixPCOpcodeArm64(pc, lr, *currentOpcode, tmpFixOpcodes, pstInlineHook);
332 |         //LOGI("isConditionBcode : %d", isConditionBcode);
333 |         //LOGI("offset : %d", offset);
334 |         memcpy(fixOpcodes+fixPos, tmpFixOpcodes, offset);
335 |         /*
336 |         if (isConditionBcode==1) { // the first code is B??
337 |             if (backUpPos == 4) { // the second has just been processed
338 |                 LOGI("Fix the first b_code.");
339 |                 LOGI("offset : %d",offset);
340 |                 tmpBcodeFix += (offset/4 +1);
341 |                 memcpy(fixOpcodes, &tmpBcodeFix, 4);
342 |                 LOGI("Fix the first b_code 1.");
343 | 
344 |                 tmpBcodeFix = 0xE51FF004;
345 |                 LOGI("Fix the first b_code 1.5");
346 |                 memcpy(fixOpcodes+fixPos+offset, &tmpBcodeFix, 4);
347 |                 LOGI("Fix the first b_code 2.");
348 | 
349 |                 tmpBcodeFix = pstInlineHook->pHookAddr + 8;
350 |                 memcpy(fixOpcodes+fixPos+offset+4, &tmpBcodeFix, 4);
351 |                 LOGI("Fix the first b_code 3.");
352 | 
353 |                 tmpBcodeFix = 0xE51FF004;
354 |                 memcpy(fixOpcodes+fixPos+offset+8, &tmpBcodeFix, 4);
355 |                 LOGI("Fix the first b_code 4.");
356 | 
357 |                 tmpBcodeFix = tmpBcodeX;
358 |                 memcpy(fixOpcodes+fixPos+offset+12, &tmpBcodeFix, 4);
359 |                 LOGI("Fix the first b_code 5.");
360 | 
361 |                 offset += 4*4;
362 |             }
363 |             else if (backUpPos == 0) { //save the first B code
364 |                 tmpBcodeFix = (*currentOpcode & 0xFE000000);
365 |                 tmpBcodeX = (*currentOpcode & 0xFFFFFF) << 2; // x*4
366 |                 LOGI("tmpBcodeX : %x", tmpBcodeX);
367 |                 tmpBcodeX = tmpBcodeX + 8 + pstInlineHook->pHookAddr;
368 |             }
369 |         }*/
370 |         
371 |         backUpPos += 4; //arm32的话下一次取后面4 byte偏移的指令
372 |         pc += sizeof(uint32_t);
373 | 
374 |         fixPos += offset;
375 |         //LOGI("fixPos : %d", fixPos);
376 |         //LOGI("--------------END-----------------");
377 | 
378 |         if (backUpPos < pstInlineHook->backUpLength)
379 |         {
380 | 			LOGI("ONE FINISH");
381 |             currentOpcode = pstInlineHook->szbyBackupOpcodes + sizeof(uint8_t)*backUpPos;
382 |         }
383 |         else{
384 |             LOGI("pstInlineHook->backUpLength : %d", pstInlineHook->backUpLength);
385 |             LOGI("backUpPos : %d",backUpPos);
386 |             LOGI("fixPos : %d", fixPos);
387 |             LOGI("Fix finish !");
388 |             return fixPos;
389 |         }
390 |     }
391 | 
392 |     LOGI("Something wrong in arm64 fixing...");
393 | 
394 |     return 0;
395 | }
396 | 
397 | int fixBcond(uint64_t pc, uint64_t lr, uint32_t instruction, uint32_t *trampoline_instructions, INLINE_HOOK_INFO* pstInlineHook)
398 | {
399 | 	
400 | }
401 | 
402 | int fixPCOpcodeArm64(uint64_t pc, uint64_t lr, uint32_t instruction, uint32_t *trampoline_instructions, INLINE_HOOK_INFO* pstInlineHook)
403 | {
404 |     int type;
405 | 	//int offset;
406 |     int trampoline_pos;
407 |     uint32_t new_entry_addr = (uint32_t)pstInlineHook->pNewEntryForOldFunction;
408 |     LOGI("new_entry_addr : %x",new_entry_addr);
409 | 
410 |     trampoline_pos = 0;
411 | 	//trampoline_instructions[trampoline_pos++] == 0xf85f83e0; // ldr x0, [sp, #-0x8] recover the x0 register
412 |     LOGI("THE ARM64 OPCODE IS %x",instruction);
413 |     type = getTypeInArm64(instruction);
414 |     //type = getTypeInArm(instruction); //判断该arm指令的种类
415 | 	
416 | 	if (type == B_COND_ARM64) {
417 | 		//STP X_tmp1, X_tmp2, [SP, -0x10]
418 | 		//LDR X_tmp2, ?
419 | 		//[target instruction fix code] if you want
420 | 		//BR X_tmp2
421 | 		//B 8
422 | 		//PC+imm*4
423 |         LOGI("B_COND_ARM64");
424 | 		uint32_t target_ins;
425 | 		uint32_t imm19;
426 | 		uint64_t value;
427 | 
428 | 		imm19 = (instruction & 0xFFFFE0) >> 5;
429 | 		value = pc + imm19*4;
430 | 		if((imm19>>18)==1){
431 | 			value = pc - 4*(0x7ffff-imm19+1);
432 | 		}
433 | 		if(isTargetAddrInBackup(value, (uint64_t)pstInlineHook->pHookAddr, pstInlineHook->backUpLength)){
434 | 			//backup to backup
435 | 			//B.COND ???
436 | 			//B 28
437 | 			int target_idx = (int)((value - (uint64_t)pstInlineHook->pHookAddr)/4);
438 | 			int bc_ins_idx = (int)((pc - (uint64_t)pstInlineHook->pHookAddr)/4);
439 | 			int idx = 0;
440 | 			int gap = 0;
441 | 			for(idx=bc_ins_idx+1;idx<target_idx;idx++){
442 | 				gap += pstInlineHook->backUpFixLengthList[idx];
443 | 			}
444 | 			trampoline_instructions[trampoline_pos++] = (instruction & 0xff00000f) + ((gap+32)<<3); // B.XX 32+gap
445 | 			trampoline_instructions[trampoline_pos++] = 0x14000007; //B 28
446 | 		}
447 | 		else{
448 | 			//backup to outside
449 | 			target_ins = *((uint32_t *)value);
450 | 			trampoline_instructions[trampoline_pos++] = ((instruction & 0xff00000f) + (32<<3)) ^ 0x1; // B.anti_cond 32
451 | 			trampoline_instructions[trampoline_pos++] = target_ins; //target_ins (of cource the target ins maybe need to fix, do it by yourself if you need)
452 | 			trampoline_instructions[trampoline_pos++] = 0xa93f03e0; //STP X0, X0, [SP, -0x10] default
453 | 			trampoline_instructions[trampoline_pos++] = 0x58000080; //LDR X0, 12
454 | 			trampoline_instructions[trampoline_pos++] = 0xd61f0000; //BR X0
455 | 			trampoline_instructions[trampoline_pos++] = 0x14000002; //B 8
456 | 			trampoline_instructions[trampoline_pos++] = (uint32_t)(value >> 32);
457 | 			trampoline_instructions[trampoline_pos++] = (uint32_t)(value & 0xffffffff);
458 | 		}
459 | 		
460 |         return 4*trampoline_pos;
461 |     }
462 | 	if (type == ADR_ARM64) {
463 | 		//LDR Rn, 4
464 | 		//PC+imm*4
465 |         LOGI("ADR_ARM64");
466 | 		uint32_t imm21;
467 | 		uint64_t value;
468 | 		uint32_t rd;
469 | 		imm21 = ((instruction & 0xFFFFE0)>>3) + ((instruction & 0x60000000)>>29);
470 | 		value = pc + 4*imm21;
471 | 		if((imm21 & 0x100000)==0x100000)
472 | 		{
473 | 			LOGI("NEG");
474 | 			value = pc - 4 * (0x1fffff - imm21 + 1);
475 | 		}
476 | 		LOGI("value : %x",value);
477 | 		
478 | 		rd = instruction & 0x1f;
479 | 		trampoline_instructions[trampoline_pos++] = 0x58000020+rd; // ldr rd, 4
480 | 		trampoline_instructions[trampoline_pos++] = (uint32_t)(value >> 32);
481 | 		trampoline_instructions[trampoline_pos++] = (uint32_t)(value & 0xffffffff);
482 | 
483 |         return 4*trampoline_pos;
484 |     }
485 |     if (type == ADRP_ARM64) {
486 | 		//LDR Rn, 8
487 | 		//B 12
488 | 		//PC+imm*4096
489 |         LOGI("ADRP_ARM64");
490 | 		uint32_t imm21;
491 | 		uint64_t value;
492 | 		uint32_t rd;
493 | 		imm21 = ((instruction & 0xFFFFE0)>>3) + ((instruction & 0x60000000)>>29);
494 | 		value = (pc & 0xfffffffffffff000) + 4096*imm21;
495 | 		if((imm21 & 0x100000)==0x100000)
496 | 		{
497 | 			LOGI("NEG");
498 | 			value = (pc & 0xfff) - 4096 * (0x1fffff - imm21 + 1);
499 | 		}
500 | 		LOGI("pc    : %lx",pc);
501 | 		LOGI("imm21 : %x",imm21);
502 | 		LOGI("value : %lx",value);
503 | 		LOGI("valueh : %x",(uint32_t)(value >> 32));
504 | 		LOGI("valuel : %x",(uint32_t)(value & 0xffffffff));
505 | 		
506 | 		rd = instruction & 0x1f;
507 | 		trampoline_instructions[trampoline_pos++] = 0x58000040+rd; // ldr rd, 8
508 | 		trampoline_instructions[trampoline_pos++] = 0x14000003; // b 12
509 | 		trampoline_instructions[trampoline_pos++] = (uint32_t)(value & 0xffffffff);
510 | 		trampoline_instructions[trampoline_pos++] = (uint32_t)(value >> 32);
511 | 		
512 | 
513 |         return 4*trampoline_pos;
514 |     }
515 |     if (type == LDR_ARM64) {
516 | 		//STP Xt, Xn, [SP, #-0x10]
517 | 		//LDR Xn, 16
518 | 		//LDR Xt, [Xn, 0]
519 | 		//LDR Xn, [sp, #-0x8]
520 | 		//B 8
521 | 		//PC+imm*4
522 |         LOGI("LDR_ARM64");
523 | 		uint32_t imm19;
524 | 		uint64_t value;
525 | 		uint32_t rt;
526 | 		uint32_t rn;
527 | 		rt = instruction & 0x1f;
528 | 		int i;
529 | 		for(i=0;i<31;i++)
530 | 		{
531 | 			if(i!=rt){
532 | 				rn = i;
533 | 				break;
534 | 			}
535 | 		}
536 | 		LOGI("Rn : %d",rn);
537 | 		imm19 = ((instruction & 0xFFFFE0)>>5);
538 | 		trampoline_instructions[trampoline_pos++] = 0xa93f03e0 + rt + (rn << 10); //STP Xt, Xn, [SP, #-0x10]
539 | 		trampoline_instructions[trampoline_pos++] = 0x58000080 + rn; //LDR Xn, 16
540 | 		trampoline_instructions[trampoline_pos++] = 0xf9400000 + (rn << 5); //LDR Xt, [Xn, 0]
541 | 		trampoline_instructions[trampoline_pos++] = 0xf85f83e0 + rn; //LDR Xn, [sp, #-0x8]
542 | 		trampoline_instructions[trampoline_pos++] = 0x14000002; //B 8
543 | 
544 | 		value = pc + 4*imm19;
545 | 		if((imm19 & 0x40000)==0x40000){
546 | 			value = pc - 4*(0x7ffff-imm19+1);
547 | 		}
548 | 		trampoline_instructions[trampoline_pos++] = (uint32_t)(value >> 32);
549 | 		trampoline_instructions[trampoline_pos++] = (uint32_t)(value & 0xffffffff);
550 | 
551 |         return 4*trampoline_pos;
552 |     }
553 | 	if (type == B_ARM64) {
554 | 		//STP X_tmp1, X_tmp2, [SP, -0x10]
555 | 		//LDR X_tmp2, ?
556 | 		//[target instruction fix code] if you want
557 | 		//BR X_tmp2
558 | 		//B 8
559 | 		//PC+imm*4
560 |         LOGI("B_ARM64");
561 | 		uint32_t target_ins;
562 | 		uint32_t imm26;
563 | 		uint64_t value;
564 | 
565 | 		imm26 = instruction & 0x3FFFFFF;
566 | 		value = pc + imm26*4;
567 | 		if((imm26>>25)==1){
568 | 			value = pc - 4*(0x3ffffff-imm26+1);
569 | 		}
570 | 		target_ins = *((uint32_t *)value);
571 | 		LOGI("target_ins : %x",target_ins);
572 | 
573 | 		trampoline_instructions[trampoline_pos++] = 0xa93f03e0; //STP X0, X0, [SP, -0x10] default
574 | 		trampoline_instructions[trampoline_pos++] = 0x58000080; //LDR X0, 16
575 | 		trampoline_instructions[trampoline_pos++] = target_ins; //[target instruction fix code] if you want
576 | 		trampoline_instructions[trampoline_pos++] = 0xd61f0000; //BR X0
577 | 		trampoline_instructions[trampoline_pos++] = 0x14000002; //B 8
578 | 		trampoline_instructions[trampoline_pos++] = (uint32_t)(value >> 32);
579 | 		trampoline_instructions[trampoline_pos++] = (uint32_t)(value & 0xffffffff);
580 | 
581 |         return 4*trampoline_pos;
582 |     }
583 | 	else {
584 |         LOGI("OTHER_ARM");
585 | 		trampoline_instructions[trampoline_pos++] = instruction;
586 |         return 4*trampoline_pos;
587 | 	}
588 | 	//pc += sizeof(uint32_t);
589 | 	
590 | 	//trampoline_instructions[trampoline_pos++] = 0xe51ff004;	// LDR PC, [PC, #-4]
591 | 	//trampoline_instructions[trampoline_pos++] = lr;
592 |     return 4*trampoline_pos;
593 | }
594 | 
595 | 


--------------------------------------------------------------------------------
/jni/InlineHook/fixPCOpcode.h:
--------------------------------------------------------------------------------
 1 | #ifndef _FIXOPCODE_H
 2 | #define _FIXOPCODE_H
 3 | 
 4 | #include <stdio.h>
 5 | #include "Ihook.h"
 6 | 
 7 | #define ALIGN_PC(pc)	(pc & 0xFFFFFFFC)
 8 | 
 9 | bool isTargetAddrInBackup(uint64_t target_addr, uint64_t hook_addr, int backup_length);
10 | 
11 | int lengthFixArm64(uint32_t opcode);
12 | 
13 | static int getTypeInArm64(uint32_t instruction);
14 | static int getTypeInArm32(uint32_t instruction);
15 | 
16 | int fixPCOpcodeArm(void *fixOpcodes , INLINE_HOOK_INFO* pstInlineHook);
17 | 
18 | int fixPCOpcodeArm64(uint64_t pc, uint64_t lr, uint32_t instruction, uint32_t *trampoline_instructions, INLINE_HOOK_INFO* pstInlineHook);
19 | 
20 | 
21 | #endif


--------------------------------------------------------------------------------
/jni/InlineHook/ihookstub.s:
--------------------------------------------------------------------------------
 1 | .global _shellcode_start_s
 2 | .global _shellcode_end_s
 3 | .global _hookstub_function_addr_s
 4 | .global _old_function_addr_s
 5 | 
 6 | .data
 7 | 
 8 | _shellcode_start_s:
 9 | 
10 |     sub     sp, sp, #0x20
11 | 
12 |     mrs     x0, NZCV
13 |     str     x0, [sp, #0x10]
14 |     str     x30, [sp]   
15 |     add     x30, sp, #0x20
16 |     str     x30, [sp, #0x8]    
17 |     ldr     x0, [sp, #0x18]
18 | 
19 |     sub     sp, sp, #0xf0
20 |     stp     X0, X1, [SP]
21 |     stp     X2, X3, [SP,#0x10]
22 |     stp     X4, X5, [SP,#0x20]
23 |     stp     X6, X7, [SP,#0x30]
24 |     stp     X8, X9, [SP,#0x40]
25 |     stp     X10, X11, [SP,#0x50]
26 |     stp     X12, X13, [SP,#0x60]
27 |     stp     X14, X15, [SP,#0x70]
28 |     stp     X16, X17, [SP,#0x80]
29 |     stp     X18, X19, [SP,#0x90]
30 |     stp     X20, X21, [SP,#0xa0]
31 |     stp     X22, X23, [SP,#0xb0]
32 |     stp     X24, X25, [SP,#0xc0]
33 |     stp     X26, X27, [SP,#0xd0]
34 |     stp     X28, X29, [SP,#0xe0]
35 |           
36 |     mov     x0, sp
37 |     ldr     x3, 8
38 |     b       12
39 | 
40 | _hookstub_function_addr_s:
41 | .double 0xffffffffffffffff
42 | 
43 |     blr     x3
44 |     ldr     x0, [sp, #0x100]
45 |     msr     NZCV, x0
46 | 
47 |     ldp     X0, X1, [SP]
48 |     ldp     X2, X3, [SP,#0x10]
49 |     ldp     X4, X5, [SP,#0x20]
50 |     ldp     X6, X7, [SP,#0x30]
51 |     ldp     X8, X9, [SP,#0x40]
52 |     ldp     X10, X11, [SP,#0x50]
53 |     ldp     X12, X13, [SP,#0x60]
54 |     ldp     X14, X15, [SP,#0x70]
55 |     ldp     X16, X17, [SP,#0x80]
56 |     ldp     X18, X19, [SP,#0x90]
57 |     ldp     X20, X21, [SP,#0xa0]
58 |     ldp     X22, X23, [SP,#0xb0]
59 |     ldp     X24, X25, [SP,#0xc0]
60 |     ldp     X26, X27, [SP,#0xd0]
61 |     ldp     X28, X29, [SP,#0xe0]
62 |     add     sp, sp, #0xf0
63 |      
64 |     ldr     x30, [sp]
65 |     add     sp, sp, #0x20
66 | 
67 |     stp     X1, X0, [SP, #-0x10]
68 |     ldr     x0, 8
69 |     b       12
70 | 
71 | _old_function_addr_s:
72 | .double 0xffffffffffffffff
73 | 
74 |     br      x0
75 | 
76 | 
77 |     
78 | 
79 | 
80 | _shellcode_end_s:
81 | 
82 | .end
83 | 


--------------------------------------------------------------------------------
/jni/Interface/.DS_Store:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/jni/Interface/.DS_Store


--------------------------------------------------------------------------------
/jni/Interface/Android.mk:
--------------------------------------------------------------------------------
 1 | LOCAL_PATH := $(call my-dir)  
 2 | 
 3 | 
 4 | include $(CLEAR_VARS)
 5 | 
 6 | LOCAL_CXXFLAGS +=  -g -O0
 7 | LOCAL_ARM_MODE := arm
 8 | LOCAL_MODULE    := InlineHook
 9 | LOCAL_STATIC_LIBRARIES:= IHook
10 | LOCAL_C_INCLUDES := $(LOCAL_PATH)/../InlineHook
11 | LOCAL_SRC_FILES := InlineHook.cpp
12 | LOCAL_LDLIBS += -L$(SYSROOT)/usr/lib -llog
13 | 
14 | include $(BUILD_SHARED_LIBRARY)


--------------------------------------------------------------------------------
/jni/Interface/InlineHook.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/jni/Interface/InlineHook.cpp


--------------------------------------------------------------------------------
/libs/arm64-v8a/libInlineHook.so:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/libs/arm64-v8a/libInlineHook.so


--------------------------------------------------------------------------------
/obj/local/arm64-v8a/libIHook.a:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/arm64-v8a/libIHook.a


--------------------------------------------------------------------------------
/obj/local/arm64-v8a/libInlineHook.so:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/arm64-v8a/libInlineHook.so


--------------------------------------------------------------------------------
/obj/local/arm64-v8a/objs/IHook/IHook.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/arm64-v8a/objs/IHook/IHook.o


--------------------------------------------------------------------------------
/obj/local/arm64-v8a/objs/IHook/IHook.o.d:
--------------------------------------------------------------------------------
1 | ./obj/local/arm64-v8a/objs/IHook/IHook.o: jni/InlineHook/IHook.c \
2 |   jni/InlineHook/Ihook.h jni/InlineHook/fixPCOpcode.h
3 | 
4 | jni/InlineHook/Ihook.h:
5 | 
6 | jni/InlineHook/fixPCOpcode.h:
7 | 


--------------------------------------------------------------------------------
/obj/local/arm64-v8a/objs/IHook/fixPCOpcode.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/arm64-v8a/objs/IHook/fixPCOpcode.o


--------------------------------------------------------------------------------
/obj/local/arm64-v8a/objs/IHook/fixPCOpcode.o.d:
--------------------------------------------------------------------------------
1 | ./obj/local/arm64-v8a/objs/IHook/fixPCOpcode.o: \
2 |   jni/InlineHook/fixPCOpcode.c jni/InlineHook/fixPCOpcode.h \
3 |   jni/InlineHook/Ihook.h
4 | 
5 | jni/InlineHook/fixPCOpcode.h:
6 | 
7 | jni/InlineHook/Ihook.h:
8 | 


--------------------------------------------------------------------------------
/obj/local/arm64-v8a/objs/IHook/ihookstub.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/arm64-v8a/objs/IHook/ihookstub.o


--------------------------------------------------------------------------------
/obj/local/arm64-v8a/objs/InlineHook/InlineHook.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/arm64-v8a/objs/InlineHook/InlineHook.o


--------------------------------------------------------------------------------
/obj/local/arm64-v8a/objs/InlineHook/InlineHook.o.d:
--------------------------------------------------------------------------------
1 | ./obj/local/arm64-v8a/objs/InlineHook/InlineHook.o: \
2 |   jni/Interface/InlineHook.cpp \
3 |   C:/Users/GToad/AppData/Local/Android/Sdk/ndk-bundle/build//../sources/cxx-stl/gnu-libstdc++/4.9/include\vector \
4 |   jni/Interface/../InlineHook\Ihook.h
5 | 
6 | C:/Users/GToad/AppData/Local/Android/Sdk/ndk-bundle/build//../sources/cxx-stl/gnu-libstdc++/4.9/include\vector:
7 | 
8 | jni/Interface/../InlineHook\Ihook.h:
9 | 


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/libIHook.a:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/armeabi-v7a/libIHook.a


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/libInlineArmHook.so:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/armeabi-v7a/libInlineArmHook.so


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/libInlineHook.so:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/armeabi-v7a/libInlineHook.so


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/IHook/IHook.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/armeabi-v7a/objs/IHook/IHook.o


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/IHook/IHook.o.d:
--------------------------------------------------------------------------------
1 | ./obj/local/armeabi-v7a/objs/IHook/IHook.o: jni/InlineHook/IHook.c \
2 |   jni/InlineHook/Ihook.h jni/InlineHook/fixPCOpcode.h
3 | 
4 | jni/InlineHook/Ihook.h:
5 | 
6 | jni/InlineHook/fixPCOpcode.h:
7 | 


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/IHook/fixPCOpcode.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/armeabi-v7a/objs/IHook/fixPCOpcode.o


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/IHook/fixPCOpcode.o.d:
--------------------------------------------------------------------------------
1 | ./obj/local/armeabi-v7a/objs/IHook/fixPCOpcode.o: \
2 |   jni/InlineHook/fixPCOpcode.c jni/InlineHook/fixPCOpcode.h \
3 |   jni/InlineHook/Ihook.h
4 | 
5 | jni/InlineHook/fixPCOpcode.h:
6 | 
7 | jni/InlineHook/Ihook.h:
8 | 


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/IHook/ihookstub.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/armeabi-v7a/objs/IHook/ihookstub.o


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/IHook/ihookstubthumb.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/armeabi-v7a/objs/IHook/ihookstubthumb.o


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/InlineArmHook/InlineHook.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/armeabi-v7a/objs/InlineArmHook/InlineHook.o


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/InlineArmHook/InlineHook.o.d:
--------------------------------------------------------------------------------
1 | ./obj/local/armeabi-v7a/objs/InlineArmHook/InlineHook.o: \
2 |   jni/Interface/InlineHook.cpp \
3 |   C:/Users/GToad/AppData/Local/Android/Sdk/ndk-bundle/build//../sources/cxx-stl/gnu-libstdc++/4.9/include\vector \
4 |   jni/Interface/../InlineHook\Ihook.h
5 | 
6 | C:/Users/GToad/AppData/Local/Android/Sdk/ndk-bundle/build//../sources/cxx-stl/gnu-libstdc++/4.9/include\vector:
7 | 
8 | jni/Interface/../InlineHook\Ihook.h:
9 | 


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/InlineHook/InlineHook.o:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/obj/local/armeabi-v7a/objs/InlineHook/InlineHook.o


--------------------------------------------------------------------------------
/obj/local/armeabi-v7a/objs/InlineHook/InlineHook.o.d:
--------------------------------------------------------------------------------
1 | ./obj/local/armeabi-v7a/objs/InlineHook/InlineHook.o: \
2 |   jni/Interface/InlineHook.cpp \
3 |   C:/Users/GToad/AppData/Local/Android/Sdk/ndk-bundle/build//../sources/cxx-stl/gnu-libstdc++/4.9/include\vector \
4 |   jni/Interface/../InlineHook\Ihook.h
5 | 
6 | C:/Users/GToad/AppData/Local/Android/Sdk/ndk-bundle/build//../sources/cxx-stl/gnu-libstdc++/4.9/include\vector:
7 | 
8 | jni/Interface/../InlineHook\Ihook.h:
9 | 


--------------------------------------------------------------------------------
/stack.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/stack.pdf


--------------------------------------------------------------------------------
/stack.vsdx:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/stack.vsdx


--------------------------------------------------------------------------------
/stack.xlsx:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/GToad/Android_Inline_Hook_ARM64/8d0d661d3d7f1718c2ed089c52930bcdba982159/stack.xlsx


--------------------------------------------------------------------------------