Reverse Engineering: from Objective-C to Swift

Transcript

1. 逆向⼯程 从 OBJ-C 到 SWIFT @HANKBAO 瀑布IM

2. 什么是逆向⼯程? Ӟᐿದ๞ᬦᑕ҅ܨ੒ӞᶱፓຽԾߝᬰᤈᭋݻړຉ݊Ꮈᑪ҅՗ᘒᄍ ᕩଚ஑ڊᧆԾߝጱ॒ቘၞᑕ̵ᕟᕢᕮ຅̵ۑᚆ௔ᚆᥢ໒ᒵᦡᦇᥝ ᔰ҅զګ֢ڊۑᚆፘᬪ݈҅֕ӧਠقӞ໏ጱԾߝ̶ — ᖌचጯᑀ

3. 逆向⼯程的⽬标 ▸ ਍ԟ ▸ ᦡᦇ ▸ ਫሿ ▸ ᓒဩ ▸

   ᴻᲙ ▸ ಘ઀ ▸ ൊկ

4. APP 插件

5. None

6. DEMO

7. DEMO: NON-FRAGILE LAYOUT

8. X86_64 调⽤约定 ▸ arg1: $rdi ▸ arg2: $rsi ▸ arg3:

   $rdx ▸ arg4: $rcx ▸ arg5: $r8 ▸ arg6: $r9 ▸ ret1: $rax ▸ ret2: $rdx ▸ indirect: $rax (== $rdi)

9. OBJECTIVE-C 调⽤约定 ▸ arg1: $rdi -> self ▸ arg2: $rsi

   -> _cmd ▸ arg3: $rdx ▸ arg4: $rcx ▸ arg5: $r8 ▸ arg6: $r9 ▸ ret: $rax

10. SWIFT REPL

11. DEMO: STRUCT

12. DEMO

13. SWIFT-DEMANGLE $ xcrun swift-demangle _TFV9DictSwift11QueryRecordg4termSS _TFV9DictSwift11QueryRecordg4termSS ---> DictSwift.QueryRecord.term.getter : Swift.String

14. DEMO

15. SWIFT NATIVE 调⽤约定 ▸ arg1: $rdi ▸ arg2: $rsi ▸

    arg3: $rdx ▸ arg4: $rcx ▸ arg5: $r8 ▸ arg6: $r9 ▸ ret1: $rax ▸ ret2: $rdx ▸ ret3: $rcx ▸ indirect: $rax (== $rdi)

16. DEMO

17. DEMO

18. DEMO

19. DEMO

20. DEMO

21. DEMO

22. DEMO

23. DEMO

24. ᕑੰҘѺ

25. DEMO

26. DEMO

27. 逆向⼯程理论基础 ▸ C / C++ / Objective-C / Swift ▸

    Assembly (x86, x86_64, arm / thumb, arm64) ▸ ଘݣ ABI / ᧍᥺ᇙਧ ABI ▸ ᖫᦲ࢏ս۸ ▸ ඙֢ᔮᕹ

28. 逆向⼯程⽅法和⼯具 ▸ ᶉாړຉ ▸ Hopper Disassembler ▸ IDA Pro ▸

    otool ▸ class-dump ▸ ۖா᧣ᦶ ▸ lldb / gdb ▸ F-Script ▸ cycript

29. 参考资料 ▸ Wikipedia ▸ System V Application Binary Interface (AMD64)

    ▸ Procedure Call Standard for the ARM 64-bit Architecture ▸ iOS ABI Function Call Guide ▸ The Swift ABI ▸ The Swift Calling Convention ▸ Friday Q&A

30. 相关资源 ▸ https://github.com/apple/swift ▸ https://github.com/hankbao/DictObjc ▸ https://github.com/hankbao/DictSwift

31. THANKS Q & A