14,020
edits
Changes
Jump to navigation
Jump to search
Line 1:
Line 1: + + + + + + + + + + + + + + + + + + + + + + − +
→8.9(Le Temps, Watson Actu)
This is a good place for [[User:Haixinshi]] to discuss his progress [[User:Podehaye|Podehaye]] ([[User talk:Podehaye|talk]])
This is a good place for [[User:Haixinshi]] to discuss his progress [[User:Podehaye|Podehaye]] ([[User talk:Podehaye|talk]])
== 8.9([[Item:Q1185|Le Temps]], [[Item:Q5452|Watson Actu]]) ==
=== Progress: ===
# Discuss with Chengyang and Andreas about the plan of App Audit project.
# Write a [https://github.com/hestiaAI/hestialabs-bubble-server/issues/18#issuecomment-1209520952 report] to explain the design of whole App Audit system in details and set up plans this week.
''Thanks for app audit report. Could you also please include the diagram you showed us in signal (TheEyeBalls)''
=== Questions: ===
What should the priority of current plans? Building up a coarse "Manager App" or try to explore Criteo? ''1- a coarse "Manager App"''
=== Plans: ===
# Develop a very coarse mobile app that manages data stored by modified apps, which is named ”Manager App”. It can read the data in public folders and send it to a simple http server.
# Work on the app le Monde to understand how criteo intervenes. but it seems complicated because there is no criteo sdk.
# Work on the app muslim pro which has the sdk of criteo.
== 8.8([[Item:Q1185|Le Temps]], [[Item:Q5452|Watson Actu]]) ==
=== Progress: ===
# Find the target functions of smartadserver.
# Talk to MP and confirm that the focus will be on Criteo.
# Summarize the work of app audit and prepare it for cooperation with Chengyang.
=== Questions: ===
No.
=== Plans: ===
# Work on the app le monde to understand how criteo intervenes. but it seems complicated because there is no criteo sdk.
# Work on the app muslim pro which has the sdk of criteo.
== 8.5([[Item:Q1185|Le Temps]], [[Item:Q5452|Watson Actu]]) ==
== 8.5([[Item:Q1185|Le Temps]], [[Item:Q5452|Watson Actu]]) ==
=== Progress: ===
=== Progress: ===
# Optimize dynamic hooking scripts, now it can hook functions in batch and support filtering. I used Python scripts to retrieve class name(with package names) from path of files in decompile folders. In this case, I can get the class names in batch and hook classes in batch(in specific directories). I believe Frida-Server can support the same competence as the framework I used in ByteDance and my ex-leader told me they also use Frida now :)
# Optimize dynamic hooking scripts, now it can hook functions in batch and support filtering. I used Python scripts to retrieve class name(with package names) from path of files in decompile folders. In this case, I can get the class names in batch and hook classes in batch(in specific directories). I believe Frida-Server can support the same competence as the framework I used in ByteDance and my ex-leader told me they also use Frida now :)
# Google Ad still looks difficult. I hooked ALL functions that involves string related to “bid”, “currency” and “rtb”, but they are not called.
# Google Ad still looks difficult. I hooked ALL functions that involves string related to “bid”, “currency” and “rtb”, but they are not called.
# Analyze the Tencent SDK and VK SDK in Watson Actu, which was proposed by MP. The following functions in Tencent SDK are called. But no function in VK SDK is called.
# Analyze the Tencent SDK and VK SDK in Watson Actu, which was proposed by MP. The following functions in Tencent SDK are called. But no function in VK SDK is called. I explored Tencent SDK and found that [https://github.com/Kainanchen/Sangokushi/blob/80fdb55c92776690b9b02aa0a6fba3dc7790025e/com/tencent/wxop/stat/StatServiceImpl.java StatServiceImpl] tries to track events.
* com.tencent.wxop.stat.common.StatLogger@7f01327----#setDebugEnable is called, and the parameters are:
* com.tencent.wxop.stat.common.StatLogger@7f01327----#setDebugEnable is called, and the parameters are:
false
false