Frida Trace

frida also comes with a tool called frida-trace which trace function calls in the application.
In frida-trace we need to instrument each functions due to which we have to specifically tell frida-trace the exact function of the classname which we have to trace calls for but the best part is we can use wildcard (*)
the format is classname!methodname
To trace all function all packages under io.hextree.*
- frida-trace -U -j 'io.hextree.*!*' <app_name_or_package_name>
To trace all function all packages under io.hextree.* but remove all things under Annoying class
- frida-trace -U -j 'io.hextree.*!*' -J '*AnnoyingClass*!*' <app_name_or_package_name>

Tracing into JNI

To trace into JNI also frida-trace requires the shared library name proceeded by -I
- frida-trace -U -I 'libhextree.so' -j 'io.hextree.*!*' <app_name_or_package_name>
  - This command not worked as expected. Will look into this later.

Last updated 2 days ago

Was this helpful?

frida also comes with a tool called frida-trace which trace function calls in the application.
In frida-trace we need to instrument each functions due to which we have to specifically tell frida-trace the exact function of the classname which we have to trace calls for but the best part is we can use wildcard (*)
the format is classname!methodname
To trace all function all packages under io.hextree.*
- frida-trace -U -j 'io.hextree.*!*' <app_name_or_package_name>
To trace all function all packages under io.hextree.* but remove all things under Annoying class
- frida-trace -U -j 'io.hextree.*!*' -J '*AnnoyingClass*!*' <app_name_or_package_name>

To trace into JNI also frida-trace requires the shared library name proceeded by -I
- frida-trace -U -I 'libhextree.so' -j 'io.hextree.*!*' <app_name_or_package_name>
  - This command not worked as expected. Will look into this later.

Last updated 2 days ago

Was this helpful?