├── README.md ├── README_en.md ├── note └── 000.md ├── pic ├── 01.png └── 02.png └── rebuild_flutter ├── apktool.jar ├── app-release.apk ├── new_apk-aligned-debugSigned.apk ├── new_apk.apk └── uber-apk-signer.jar /README.md: -------------------------------------------------------------------------------- 1 | [English document](https://github.com/HuRuWo/HowToReserveFlutter/blob/main/README_en.md) 2 | ## ReFlutterNote(逆向flutter笔记 恢复更新中) 3 | 4 | ### 前言 5 | 6 | 鉴于目前越来越多软件采用flutter进行开发,导致逆向安全难度增大。 7 | 所以在连续分析了一些颜色APP软件之后,我准备分享一些相关的逆向知识。做抛砖引玉之用。 8 | 9 | 10 | >所有内容都是以release版本为逆向对象,debug版本没啥看的。没有人会发布debug版本的软件到应用市场。 11 | >业务繁忙,工程笔记慢速施工当中。 12 | 13 | ### 章节目录 14 | 15 | 16 | 17 | 18 | 19 | 20 | #### 文字 21 | 22 | 23 | 24 | ## 最后 25 | 26 | 如有有需求的可以帮忙点点start让我知道有人在看。我会更快的抽出时间来更新教程。 27 | 28 | 如果有帮助,各位手动点点start即可。有问题直接issue讨论或者邮件联系我。 29 | 30 | 31 | -------------------------------------------------------------------------------- /README_en.md: -------------------------------------------------------------------------------- 1 | [The following content is from Google Translate] 2 | 3 | ## ReFlutterNote (reverse flutter notes) 4 | 5 | ### Preface 6 | 7 | All the time, we have used flutter, leading to reverse safety application of multiple software. 8 | So after continuously analyzing some color APP software, I am ready to share some related reverse knowledge. Used for throwing bricks to attract jade. 9 | 10 | 11 | >All content is reversed to the release version, the debug version is nothing to see. No one is going to release debug versions of software to the app market. 12 | > Good performance, good performance, good performance. 13 | 14 | ### Chapter Table of Contents--Reset 15 | 16 | > Remastered Instructions 17 | 18 | 's version talks about a variety of different things, and some classmates added me q to express that they want to start directly from the actual combat. Before that, we put aside the theory and went straight to work. 19 | 20 | Article directory 21 | 22 | - Find a target flutter app 23 | - To capture flutter data packets, everything starts with capturing packets 24 | - String parsing to find URL entry 25 | - Dynamic code debugging, master method code blocks 26 | - DART virtual machine ARM parsing 1 27 | - DART virtual machine ARM combination analysis 2 28 | - DART virtual machine ARM parsing 3 29 | - Algorithm restoration and call 1-xposed 30 | - Algorithm reduction and call 2-frida 31 | - Algorithm reduction and calling 3-ida python 32 | - Algorithm restoration and calling 4-unicorn 33 | - Summarize 34 | 35 | 36 | 37 | ##finally 38 | 39 | You can take a look at it when you need it, click Start and let me have someone there. I'll take the time to update the tutorial. 40 | 41 | If it helps, everyone can manually tap the discussion to start. Questions or contact me directly. -------------------------------------------------------------------------------- /note/000.md: -------------------------------------------------------------------------------- 1 | ## flutter基本开发流程 2 | 3 | ### 前言 4 | 5 | 在进入逆向之前,我们先做一点正向的开发。方便我们理解和思考后续的进入。 6 | 7 | 这里我们进行简单的crackme程序开发。 8 | 9 | ### 环境搭建 10 | 11 | [flutter逆向从自信入门到精通跑路系列1-flutter编程环境搭建](https://www.huruwo.top/flutter%e9%80%86%e5%90%91%e4%bb%8e%e8%87%aa%e4%bf%a1%e5%85%a5%e9%97%a8%e5%88%b0%e7%b2%be%e9%80%9a%e8%b7%91%e8%b7%af%e7%b3%bb%e5%88%971-flutter%e7%bc%96%e7%a8%8b%e7%8e%af%e5%a2%83%e6%90%ad%e5%bb%ba/) 12 | 13 | ### 新建项目和编写crackme 14 | 15 | 16 | [flutterdart逆向从自信入门到精通跑路系列2-编写crackme](https://www.huruwo.top/flutterdart%e9%80%86%e5%90%91%e4%bb%8e%e8%87%aa%e4%bf%a1%e5%85%a5%e9%97%a8%e5%88%b0%e7%b2%be%e9%80%9a%e8%b7%91%e8%b7%af%e7%b3%bb%e5%88%972-%e7%bc%96%e5%86%99crackme/) 17 | 18 | 19 | ### 总结 20 | 21 | 进入基本的开发之后 进入后续的逆向过程 -------------------------------------------------------------------------------- /pic/01.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/HuRuWo/HowToReserveFlutter/2fe9f362e1bed196330a562b138ed8b293aa766b/pic/01.png -------------------------------------------------------------------------------- /pic/02.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/HuRuWo/HowToReserveFlutter/2fe9f362e1bed196330a562b138ed8b293aa766b/pic/02.png -------------------------------------------------------------------------------- /rebuild_flutter/apktool.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/HuRuWo/HowToReserveFlutter/2fe9f362e1bed196330a562b138ed8b293aa766b/rebuild_flutter/apktool.jar -------------------------------------------------------------------------------- /rebuild_flutter/app-release.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/HuRuWo/HowToReserveFlutter/2fe9f362e1bed196330a562b138ed8b293aa766b/rebuild_flutter/app-release.apk -------------------------------------------------------------------------------- /rebuild_flutter/new_apk-aligned-debugSigned.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/HuRuWo/HowToReserveFlutter/2fe9f362e1bed196330a562b138ed8b293aa766b/rebuild_flutter/new_apk-aligned-debugSigned.apk -------------------------------------------------------------------------------- /rebuild_flutter/new_apk.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/HuRuWo/HowToReserveFlutter/2fe9f362e1bed196330a562b138ed8b293aa766b/rebuild_flutter/new_apk.apk -------------------------------------------------------------------------------- /rebuild_flutter/uber-apk-signer.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/HuRuWo/HowToReserveFlutter/2fe9f362e1bed196330a562b138ed8b293aa766b/rebuild_flutter/uber-apk-signer.jar --------------------------------------------------------------------------------