📲
Android Reversing with Frida for Examiners
Authors:M. WilliamsonC. Atha
  • Android Reversing for Examiners
  • Setting Up
    • Prerequisites
    • Our Target: Private Photo Vault
  • Lab
    • [1] Lab setup and initial app exploration
      • [1.1] Upload frida-server to the emulator or device and run using nohup
      • [1.2] Review files in the app data directory
    • [2] Perform static analysis to locate some functions of interest
    • [3] Deploy method hooks using frida REPL
    • [4a] Moar Static Analysis
    • [4b] Cast a wide net with DBI
    • [4c] PIN bruteforce
      • [4c.1] PIN bruteforce (in depth)
  • Bonus Labs
  • Ready for more?
  • Frida-tools Reference
    • Installation & Common Flags
    • frida
    • frida-ps
    • frida-trace
  • Other Processes Reference
    • Extracting an APK specimen from the device
    • Troubleshooting frida connectivity
  • What's Next
    • Recommended Toolkits and Scripts
    • Additional Resources / Questions
  • Contact Us
Powered by GitBook
On this page

Was this helpful?

  1. Lab
  2. [1] Lab setup and initial app exploration

[1.1] Upload frida-server to the emulator or device and run using nohup

Previous[1] Lab setup and initial app explorationNext[1.2] Review files in the app data directory

Last updated 5 years ago

Was this helpful?

Upload frida-server

First, let's test to make sure that we have working connectivity over ADB (Android Debug Bridge).

This lab is also covered off in the Environment Setup video walkthrough.

Open a commandline and type adb devices

In order for frida to work, we need it's companion frida-server, to be running on the device. You can download it from the frida releases page on Github - make sure you get the one ending in "android-x86".

Push it to /data/local/tmp with adb push frida-server-12.8.20-android-x86 /data/local/tmp

Obtain root with adb root, then connect to your device with adb shell. Navigate to the /data/local/tmp directory with cd /data/local/tmp .

At this point I prefer to rename frida-server to something a little less annoying to type: mv frida-server-12.8.20-android-x86 frida-server

Make the server executable with chmod 777 frida-server

Run frida-server persistently using nohup

Start the server with nohup ./frida-server &

The reason we are using nohup is to keep the process running even if we close our ADB terminal. You can absolutely just run ./frida-server but then you must be mindful not to close the window.

To recap:

If you see any other devices listed, disconnect or power them off.