Merge pull request #2 from CYRUS-STUDIO/main

同步更新

Author: 123456789zws

.idea/deploymentTargetSelector.xml

@@ -18,11 +18,26 @@
 - [Android 自定义变形 MD5 算法](https://cyrus-studio.github.io/blog/posts/android-%E8%87%AA%E5%AE%9A%E4%B9%89%E5%8F%98%E5%BD%A2-md5-%E7%AE%97%E6%B3%95/)
 - [Android 自定义变形 SHA1 算法](https://cyrus-studio.github.io/blog/posts/android-%E8%87%AA%E5%AE%9A%E4%B9%89%E5%8F%98%E5%BD%A2-sha1-%E7%AE%97%E6%B3%95/)
 - [Android 自定义变形 HMAC 算法](https://cyrus-studio.github.io/blog/posts/android-%E8%87%AA%E5%AE%9A%E4%B9%89%E5%8F%98%E5%BD%A2-hmac-%E7%AE%97%E6%B3%95/)
+- [Android 中实现一个自定义的 AES 算法](https://cyrus-studio.github.io/blog/posts/android-%E4%B8%AD%E5%AE%9E%E7%8E%B0%E4%B8%80%E4%B8%AA%E8%87%AA%E5%AE%9A%E4%B9%89%E7%9A%84-aes-%E7%AE%97%E6%B3%95/)
+- [Android NDK 编译 so 文件 抹除导出符号 反逆向](https://cyrus-studio.github.io/blog/posts/android-ndk-%E7%BC%96%E8%AF%91-so-%E6%96%87%E4%BB%B6-%E6%8A%B9%E9%99%A4%E5%AF%BC%E5%87%BA%E7%AC%A6%E5%8F%B7-%E5%8F%8D%E9%80%86%E5%90%91/)
+- [Android 下的 ClassLoader 与 双亲委派机制](https://cyrus-studio.github.io/blog/posts/android-%E4%B8%8B%E7%9A%84-classloader-%E4%B8%8E-%E5%8F%8C%E4%BA%B2%E5%A7%94%E6%B4%BE%E6%9C%BA%E5%88%B6/)
+- [详解 Android APP 启动流程](https://cyrus-studio.github.io/blog/posts/%E8%AF%A6%E8%A7%A3-android-app-%E5%90%AF%E5%8A%A8%E6%B5%81%E7%A8%8B/)
+- [Android 加壳应用运行流程 与 生命周期类处理方案](https://cyrus-studio.github.io/blog/posts/android-%E5%8A%A0%E5%A3%B3%E5%BA%94%E7%94%A8%E8%BF%90%E8%A1%8C%E6%B5%81%E7%A8%8B-%E4%B8%8E-%E7%94%9F%E5%91%BD%E5%91%A8%E6%9C%9F%E7%B1%BB%E5%A4%84%E7%90%86%E6%96%B9%E6%A1%88/)
+- [Android APP 热修复原理](https://cyrus-studio.github.io/blog/posts/android-app-%E7%83%AD%E4%BF%AE%E5%A4%8D%E5%8E%9F%E7%90%86/)
+- [使用 Dex2C 加壳保护 Android APK 代码](https://cyrus-studio.github.io/blog/posts/%E4%BD%BF%E7%94%A8-dex2c-%E5%8A%A0%E5%A3%B3%E4%BF%9D%E6%8A%A4-android-apk-%E4%BB%A3%E7%A0%81/)
+- [ART 下 Dex 加载流程源码分析 和 通用脱壳点](https://cyrus-studio.github.io/blog/posts/art-%E4%B8%8B-dex-%E5%8A%A0%E8%BD%BD%E6%B5%81%E7%A8%8B%E6%BA%90%E7%A0%81%E5%88%86%E6%9E%90-%E5%92%8C-%E9%80%9A%E7%94%A8%E8%84%B1%E5%A3%B3%E7%82%B9/)
+- [Android Native 函数 Hook 技术介绍](https://cyrus-studio.github.io/blog/posts/android-native-%E5%87%BD%E6%95%B0-hook-%E6%8A%80%E6%9C%AF%E4%BB%8B%E7%BB%8D/)
 
 
 # [cyrus.jks](cyrus.jks)
 
-密钥 [cyrus.jks](cyrus.jks) 密码 cyrus_studio
+keystore 文件：[cyrus.jks](cyrus.jks)
+
+alias：cyrus_studio
+
+store password：cyrus_studio
+
+key password：cyrus_studio
 
 # 公众号
 

.idea/gradle.xml

@@ -8,6 +8,15 @@ android {
     namespace = "com.cyrus.example"
     compileSdk = 34
 
+    signingConfigs {
+        create("cyrus") {
+            storeFile = rootProject.file("cyrus.jks")
+            storePassword = "cyrus_studio"
+            keyAlias = "cyrus_studio"
+            keyPassword = "cyrus_studio"
+        }
+    }
+
     defaultConfig {
         applicationId = "com.cyrus.example"
         minSdk = 26
@@ -38,7 +47,11 @@ android {
     }
 
     buildTypes {
+        debug {
+            signingConfig = signingConfigs.getByName("cyrus")
+        }
         release {
+            signingConfig = signingConfigs.getByName("cyrus")
             isMinifyEnabled = false
             proguardFiles(
                 getDefaultProguardFile("proguard-android-optimize.txt"),
@@ -55,12 +68,17 @@ android {
     }
     buildFeatures {
         compose = true
+        prefab = true
     }
     ndkVersion = "27.1.12297006"
 }
 
 dependencies {
     implementation(project(":vmp"))
+    implementation(libs.libsu.core)
+    implementation(libs.libsu.service)
+    implementation(libs.libsu.nio)
+    implementation(libs.shadowhook)
     implementation(libs.androidx.core.ktx)
     implementation(libs.androidx.lifecycle.runtime.ktx)
     implementation(libs.androidx.activity.compose)

README.md

@@ -4,8 +4,10 @@
 
     <uses-permission android:name="android.permission.INTERNET" />
     <uses-permission android:name="android.permission.READ_EXTERNAL_STORAGE" />
+    <uses-permission android:name="android.permission.WRITE_EXTERNAL_STORAGE" />
 
     <application
+        android:name=".CyrusStudioApplication"
         android:allowBackup="true"
         android:dataExtractionRules="@xml/data_extraction_rules"
         android:debuggable="true"
@@ -16,6 +18,24 @@
         android:theme="@style/Theme.AndroidExample"
         tools:ignore="HardcodedDebugMode"
         tools:targetApi="31">
+        <activity
+            android:name=".root.RootActivity"
+            android:exported="false" />
+        <activity
+            android:name=".hook.HookActivity"
+            android:exported="false" />
+        <activity
+            android:name=".hotfix.HotFixActivity"
+            android:exported="false" />
+        <activity
+            android:name=".plugin.PluginActivity"
+            android:exported="true" />
+        <activity
+            android:name=".classloader.ClassLoaderActivity"
+            android:exported="false" />
+        <activity
+            android:name=".aes.AESActivity"
+            android:exported="false" />
         <activity
             android:name=".hmac.HMACActivity"
             android:exported="false" />

app/build.gradle.kts

@@ -6,8 +6,8 @@ find_library( # Sets the name of the path variable.
         # Specifies the NDK library that you want CMake to locate.
         log)
 
-# 全局启用指令替换、字符串加密
-add_definitions("-mllvm -sub -mllvm -sobf")
+# 全局启用指令替换
+add_definitions("-mllvm -sub")
 
 ## JNI示例 ##########################################################################################
 
@@ -294,3 +294,82 @@ target_link_libraries(
         md5
         # 链接 sha256 库
         sha256)
+
+## LibTomCrypt ##########################################################################################
+
+# 添加 libtomcrypt 头文件路径
+include_directories(libtomcrypt/src/headers)
+
+# 查找 libtomcrypt 所有的 C 文件
+file(GLOB LIBTOMCRYPT_SOURCES
+        libtomcrypt/src/*.c
+        libtomcrypt/src/misc/*.c
+        libtomcrypt/src/misc/crypt/*.c
+        libtomcrypt/src/ciphers/aes/*.c
+        libtomcrypt/src/modes/cbc/*.c
+        libtomcrypt/src/modes/cfb/*.c
+        libtomcrypt/src/modes/ctr/*.c
+        libtomcrypt/src/modes/ecb/*.c
+)
+
+# 编译 LibTomCrypt
+add_library(libtomcrypt STATIC ${LIBTOMCRYPT_SOURCES})
+
+## AES ##########################################################################################
+add_library( # 设置库的名称
+        aes
+
+        # 设置库的类型
+        SHARED
+
+        # 设置源文件路径
+        aes_jni.cpp
+)
+
+# 为 aes 动态库启用字符串加密
+target_compile_options(
+        aes
+        PRIVATE
+        -mllvm -sobf)
+
+# 抹除符号
+set_target_properties(aes PROPERTIES LINK_FLAGS "-Wl,--version-script=${CMAKE_SOURCE_DIR}/hide.map")
+
+target_link_libraries(
+        aes
+        # 链接 log 库
+        ${log-lib}
+        # 链接 LibTomCrypt
+        libtomcrypt
+)
+
+## CyrusStudioHook ##########################################################################################
+
+find_package(shadowhook REQUIRED CONFIG)
+
+add_library( # 设置库的名称
+        cyrus_studio_hook
+
+        # 设置库的类型
+        SHARED
+
+        # 设置源文件路径
+        cyrus_studio_hook.cpp
+)
+
+# 为 cyrus_studio_hook 动态库启用字符串加密
+target_compile_options(
+        cyrus_studio_hook
+        PRIVATE
+        -mllvm -sobf)
+
+# 抹除符号
+set_target_properties(aes PROPERTIES LINK_FLAGS "-Wl,--version-script=${CMAKE_SOURCE_DIR}/hide.map")
+
+target_link_libraries(
+        cyrus_studio_hook
+        # 链接 log 库
+        ${log-lib}
+        # 链接 shadowhook
+        shadowhook::shadowhook
+)