Python QT ADB Qt Super version

Storm Shadow

Administrator
Staff member
Developer
Ida Pro Expert
Elite Cracker
This is the extended Version of my other plugin ADB Helper. https://github.com/techbliss/ADB_Helper_For_ida_Pro/blob/master/ADB.py



Changelog!!!

New PyQt GUI
This version have both support for native arm debugging via usb and sdk ADV manager.
Pids Direct to Ida Pro console.
Cheatsheet.
I added support for X64 targets via gdbserver.
either via pids or narmal file run.
targets like Genymotion https://www.genymotion.com/#!/
Misc
install busybox.
Rebbot phone.

Howto

have android sdk installed and added platformtools to %PATH.
Or take the minimalistic version i provided and put example c:\sdk-tool\ and add those to %PATH
Copy other folder plugins to ida and overwrite.
it will copy the ida plugin to ida\plugin folder.
And make a New folder called QtApps in ida\QtApps
start plugin from edit plugins.
after its started run it from same.
android
Follow the steps. :)
gdb follow the steps :)
you can either attach to pids or have file then just aattch to target. :)


IMPORTANT!!!.
REMEMBER to Put Your legit android_server from Hexray in the platform tools folder and the QtApps\SuperADB folder also.


https://github.com/techbliss/ADB_Helper_QT_Super_version
 

Storm Shadow

Administrator
Staff member
Developer
Ida Pro Expert
Elite Cracker
if anyone would like some stuff added to the plugin let me knpw got some time this week.
Also there have been som questions setting up ida correct maybe ill do a small tut on that also.
 

leetone

New member
Can we get a better guide on installation? I have set up Python 2.7.9, I set up IDA 6.6, IDAPython for 2.7, PyQT4, and it still gives me an error :(
 

Storm Shadow

Administrator
Staff member
Developer
Ida Pro Expert
Elite Cracker
Yes i can do that today, Remember to have also adb.exe to PATH, normally the android sdk dont do this auto.
Also you installed the spesiial version og PyQt4 ?.officiall from riverbank wont work.
 
Last edited:

Storm Shadow

Administrator
Staff member
Developer
Ida Pro Expert
Elite Cracker
First make sure you have PyQt installed correct for ida pro.
download here and paste it to your Pyhone folder.
https://mega.co.nz/#confirm3_aC8am_...WtlQGNvcmlnby5ubwlzdG9ybSBzaGFkb3c2StS-Y5plew

then we set up system varible

run this code to open the windows then open environment variables dialog box
Code:
control.exe sysdm.cpl,System,3

then in environment variables dialog boxthere are two options local varible or system varibles, we want system varibles.
TVIX2rP.jpg


Make new system varible called IDADIR like so.
M7UzN15.jpg


We make sure Python is setup correct also.

make system varibles

Code:
PYTHONHOME
 
C:\Python27


Code:
PYTHONSCRIPT
 
C:\Python27\Scripts


Code:
LIB
 
C:\Python27\lib


Code:
INCLUDE
 
C:\Python27\include

Then one for adb.exe that we need for the tool , you can use the minimalistic version that its the plugin bundle.Or install android sdk
https://developer.android.com/sdk/index.html (android studio)
Code:
ANDROID_TOOLS
 
C:\Android\sdk\platform-tools;C:\Android\sdk\tools


We then open the PATH varible and add to the end of the line(remember each name semicolon between ; )

we add
Code:
;%IDADIR%;%PYTHONHOME%;%PYTHONSCRIPT%;%LIB%;%INCLUDE%;%ANDROID_TOOLS%

We open CMD.exe in windows (command prompt)

type

Code:
adb.exe

to see if it works.and can be found any where.

We also type
Code:
python
in Python shell type
import PyQt4
from PyQt4 import QtGui

to see if python is found and PyQt4
Ctrl+C to exit python shell.

then we type
Code:
idaq.exe
to see if idag opens

if all the above works we continue

fire up ida pro

in python shell
type

Code:
GetIdaDirectory()
it should turn back same folder as ida.
this is very important since plugin uses this code.so double check.

then in ida python shell type to see if PyQt4 is Found
Code:
help('PyQt4.QtCore')
and
Code:
help('PyQt4.QtGui')

All done, everything should run smooth.
The system varibles should be the first thing that one does, when installing python.


IMPORTANT!
there is a small problem with andorid_server and gdb_server, and not always found via plugin.
So put a copy of thoose in the folder of C:\Android\sdk\platform-tools Remember we did that system varible.Same folder as adb.exe

And to be sure you can also put the 2 files in the folder of the files you are debugging.Shouldent be nessesary though, so only as last case.


follow the small tut where to put the plugin on the github page, and how to load it.
 
Last edited:

Accezz

Member
I'm not sure what to make of it but, if I put the plugin in my IDA-dir I get a an error saying that the import doesn't exist.
2015-05-25_23-58-26-png.353
 

Attachments

  • 2015-05-25_23-58-26.png
    2015-05-25_23-58-26.png
    31.5 KB · Views: 146

Storm Shadow

Administrator
Staff member
Developer
Ida Pro Expert
Elite Cracker
yes this is a PyQt4 error
You need to extract the PyQt4 package to C:\Python27\Lib\site-packages so its C:\Python27\Lib\site-packages\PyQt4

and in this thread did you do the commands(cmd windows also) to see if its installed correct

then in ida python shell type to see if PyQt4 is Found
Code (Text):
help('PyQt4.QtCore')
and
Code (Text):
help('PyQt4.QtGui')

if your really stuck you can add me on skype zadow28
 
Last edited:

daner

New member
yes this is a PyQt4 error
You need to extract the PyQt4 package to C:\Python27\Lib\site-packages so its C:\Python27\Lib\site-packages\PyQt4

and in this thread did you do the commands(cmd windows also) to see if its installed correct



if your really stuck you can add me on skype zadow28
In python shell is ok:
99b87634gw1et0etb8lnpj205m01ydfr.jpg

in ida error !
99b87634gw1et0eugr7mgj20ia047zl7.jpg


but my folder is
99b87634gw1et0ev3yohtj20e1060jsm.jpg
 

Storm Shadow

Administrator
Staff member
Developer
Ida Pro Expert
Elite Cracker
no
You have to try

Code:
help("PyQt4.QtCore")

and

Code:
help("PyQt4.QtGui")

also do a
Code:
import sys
 
sys.path

Code:
Python>import sys
Python>sys.path
['C:\\Python27\\lib\\site-packages\\distribute-0.7.3-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\pygments-1.6-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\pyqode.core-2.1.0-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\pyqode.qt-1.0.1-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\flufl.enum-4.0.1-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\pydee-1.0.0beta1-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\atom-0.3.9-py2.7-win32.egg', 'C:\\Python27\\lib\\site-packages\\simplegui-0.1.0-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\ordered_set-1.1-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\simpleguitk-1.1.3-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\pygdb2-0.1-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\pyinstaller-2.1-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\uncompyle2-1.1-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\pyqtdeploy-0.0.0-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\requests-2.5.3-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\frida-3.0.1-py2.7-win32.egg', 'C:\\Python27\\lib\\site-packages\\colorama-0.3.3-py2.7.egg', 'C:\\Windows\\system32\\python27.zip', 'C:\\Python27\\Lib', 'C:\\Python27\\DLLs', 'C:\\Python27\\Lib\\lib-tk', 'C:\\Python27', 'C:\\Python27\\lib\\site-packages', 'C:\\Python27\\lib\\site-packages\\PIL', 'C:\\Python27\\lib\\site-packages\\win32', 'C:\\Python27\\lib\\site-packages\\win32\\lib', 'C:\\Python27\\lib\\site-packages\\Pythonwin', 'C:\\Python27\\lib\\site-packages\\wx-3.0-msw', 'C:\\Program Files (x86)\\IDA 6.6\\python', 'C:/Program Files (x86)/IDA 6.6/plugins']


Also you PyQt4 foder looks wrong use this one


http://www.techbliss.org/threads/id...ro_pyqt5-regular-python-2-7x86.683/#post-2179
 

daner

New member
Thanks! it‘s ok:). my PyQt4 foder error. but, command"sys.path",not have ['C:\\Python27\\lib\\site-packages\\distribute-0.7.3-py2.7.egg', 'C:\\Python27\\lib\\site-packages\\pygments-1.6-py2.7.egg'.....] only ['', 'C:\\Python27\\Lib\\idlelib', 'C:\\Windows\\system32\\python27.zip', 'C:\\Python27\\DLLs', 'C:\\Python27\\lib', 'C:\\Python27\\lib\\plat-win', 'C:\\Python27\\lib\\lib-tk', 'C:\\Python27', 'C:\\Python27\\lib\\site-packages']
 

Storm Shadow

Administrator
Staff member
Developer
Ida Pro Expert
Elite Cracker
So all is working now ?

the path thing is just a command to check where python looks, i have other python modules than you, so the line would never be the same.
 
Top