Frida实战：枚举模块、导入表、导出表与符号表

• 枚举进程中已加载的模块

var modules = Process.enumerateModules();
for (var i = 0; i < modules.length; i++) {var mod = modules[i];console.log("Name: " + mod.name);console.log("Base Address: " + mod.base);console.log("Size: " + mod.size);console.log("Path: " + mod.path);console.log("-------------------------------");
}

• 枚举特定模块的导入表

var moduleName = "libencryptlib.so";
var module = Process.findModuleByName(moduleName);if (module) {var imports = Module.enumerateImports(moduleName);for (var i = 0; i < imports.length; i++) {var imp = imports[i];console.log("Name: " + imp.name);console.log("Address: " + imp.address);console.log("Module: " + imp.module);console.log("Type: " + imp.type);console.log("-------------------------------");}
} else {console.log("Module not found: " + moduleName);
}

• 枚举特定模块的导出表

var moduleName = "libencryptlib.so";
var module = Process.findModuleByName(moduleName);if (module) {var exports = Module.enumerateExports(moduleName);for (var i = 0; i < exports.length; i++) {var exp = exports[i];console.log("Name: " + exp.name);console.log("Address: " + exp.address);console.log("Type: " + exp.type);console.log("-------------------------------");}
} else {console.log("Module not found: " + moduleName);
}

• 枚举特定模块的符号表

var moduleName = "libencryptlib.so";
var module = Process.findModuleByName(moduleName);if (module) {var symbols = Module.enumerateSymbols(moduleName);for (var i = 0; i < symbols.length; i++) {var sym = symbols[i];console.log("Name: " + sym.name);console.log("Address: " + sym.address);console.log("Type: " + sym.type);console.log("-------------------------------");}
} else {console.log("Module not found: " + moduleName);
}