How to analyze a Function in a Dumped DLL in Ghidra #768
Comments
That's the neat part, you don't. This tool doesn't dump functions. It dumps only signatures from global-metadata.dat, for example to be applied to executable in disassembler or AssetStudio. |
|
Thanks for the quick answer. its clarifying alot. Any tips for this like dumping the memory at runtime? |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hello Community,
i have an understanding problem with the following situation:
I need to analyze the source code of a Function in a dumped DLL from a IL2CPP Unity Android Game.
From my unterstanding Il2CPPDumper is only extracting the header of an function like what i see in DnSpy.
When i try to disassemble the DLL File in Ghidra its not showing any Code of the Function, its like the same in DnSpy.
So how im able to analyze the Code of an Function in an Dumped DLL?
Im quite confused because from my unterstanding the dumped DLL only has the Header of an Function and not the Code at all?
Is anyone out here to point me into the right direction?
The text was updated successfully, but these errors were encountered: