Dynamic Mode
On the dynamic mode the tool allows to be run on the material phone or on an emulator.
Warning
Be careful if you use a material phone the binary frida-server on bin/frida-server should be replaced by an arm version https://github.com/frida/frida/releases
Launch your first dynamic analysis
On emulator
Options needed to works are:
phone: is the name given by the avdmanager when you create the virtual phone to list your available phone:
<sdktools>/emulator/emulator -list-avds
sdktools: the path you should specify is the same where you install the sdktools during the setup
Note
When an emulator is already launching. His beahvior is as a material devices
Warning
Be careful when you create your virtual phone I advise choosing a phone without google API to have a phone already rooted.
Warning
If the device exists but the error no device found appear:
I advise you to active verbose info: The following line can be displayed:
emulator: ERROR: Running multiple emulators with the same AVD is an experimental feature.
- To fix it you should probably:
check if an other instance is running
remove the lock file in ~/.android/avd/<avd_name>.avd/
On material
Options needed to works are:
phone: is the name of your phone you can obtain it with
adb devices
no-emulation: no parameter only specify to not used the emulator
Keep your environment safe
If your environment is already setup, you can avoid to reinstall the apk with option –noinstall and if you use an emultor option –no_erase avoid the default processing which clean environment of the phone when you launch it.
asthook --config config.yaml --no_erase --noinstall
Intercep https traffic with a proxy
To intercept the https traffic you can pass the parameters:
–proxy <address>:<port> with address of proxy
–proxy_cert <cert.der> with the CA certificate of the proxy with DER format
For instance if you want to download your certificate and you used Burp:
On your computer with Burp running, visit http://burpsuite and click the “CA Certificate” link. Save the certificate file on your computer.
Analyse an apk and its environment
Multi apk
If you have for an analysis an apk which can’t works without some other apk you can setup this environment automatically thanks to –env_apks
Plugins
To use plugins available each plugin should have documentation you can find all plugins available here: