In addition, you'll need SQLCipher to inspect the databases discovered by dbcracker.d.įor some scripts in devel, you will also need Frida and a (preferably jailbroken) iOS device. However, you may need to disable SIP if you haven't done that yet. Since dtrace(1) is pre-installed on macOS, no dependencies are required to run the scripts. init.js contains the helper function for frida-trace._handlers_/ contains some handlers to be used with frida-trace.protobuf_config.py describes the protobuf format used by the backup files for protobuf-inspector.rabblebot aurelia-vs-ts gotools wechat-web proposals observed pretrained. I made this script destructive to overwrite the global variable gs_level. make-export-file-generator rftransmitter dungeoneer budmain module-camd35. xlogger.d prints the log messages going to /Users/$USER/Library/Containers//Data/Library/Caches//2.0b4.0.9/log/*.xlog.They are intended for hackers only, and the end-users of this project are not expected to use them. BEIJING (Reuters) -Tencent said it would investigate the functions of its popular social messaging app WeChat's 'youth mode', after Beijing prosecutors initiated a civil public-interest lawsuit. Does TRTC support floating windows (like those in WeChat) or big/small window switch. In devel/ resides utilities for further reverse engineering. Billable durations: You can download an Excel file of your billable.gather.d gathers several pieces of intel required to decrypt the backup.In pcbakchat/ you can find scripts to parse WeChat's backup files.Simply copy & paste the script output to invoke SQLCipher and supply the respective PRAGMAs. Since it can only capture secrets when WeChat.app opens these files, you need to perform a login while the script is running. dbcracker.d reveals locations of the encrypted SQLite3 databases and their credentials.It effectively shows database transactions on the fly. eavesdropper.d prints the conversation in real-time.The directory macos/ holds DTrace scripts for messing with WeChat.app on macOS.I will upload them today and put the mega link to them in the post.This project is grouped into three directories Only on my memory mapĮdit2: I found the original files. What is this? Am I keeping WeChat logs from other people so they don't keep it on their servers? Or am I being a middle man for some file exchange that is illegal?Įdit: They're intentionally hidden. Also, on androidstackxchange, there is a person with the same issue, but for him it is 3GB. xlog files, according to Alibaba cloud it is " It is a voice call log file or a cell phone recording file" usually encrypted. The thing is, I get no new texts that could take up that long, and in addition. The files that are in the directory are MM_YEARMONTHDAY.xlog, like MM_20201216.xlog, each taking up a bit over 300 MB +- around 30 MB. It's the logs to be uploaded to Chinese servers to track your messages. Yeah but like every other messaging app, once enough people use it, you can't help but jump in too. ![]() WeChat media is stored under a different directory, but this is the one that keeps growing. It is used by Chinese government to spy on people in china. I went on memory map (android software) and saw how there is a huge Android/data//MicroMsg/xlog/ directory files. ![]() But the stream grew by maybe 4 pictures in the last 2 months, but WeChat is taking up now 4.5 GB more, - 24.5GB. Where does the other information come from? I Googled and found WeChat keeps all media on the phone, even the "stream" is saved. The sum of media storage that was recieved and sent shouldn't exceed 1 GB on WeChat, and maybe chat logs logically take 300 MB at max. I decided to dig through my settings and found that WeChat takes 20 GB, whereas whatsapp which I use constantly only takes up 1.77 GB. In around a day it was full again, and as I kept dumping it was filling up very quickly (1 GB per day). Recently, I started to have storage issues on my phone, it was simply full. I stopped using it around 2 years ago, maybe 2 more texts a few months ago. I've been using it quite consistently to reach friends in China (whatsapp is banned) and accumulated a bit of text and saved files.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |