An introduction to how Xposed framework functions and how to go about writing Xposed modules. session presented during Null / Garage4Hackers / OWASP combined meet on 12 Dec 2015 @Bangalore
3. Std. Android Boot-up
• DADDY SPACE
# include Boot
Rom
ROM
# include Boot
Loader
Boot Media
# load kernel
# init h/w, drivers
# mount /
Memory
USER SPACE
4. Zygote Time !
• BETA SPACE
# load init.rc
Kernel
# run /system/bin/app_process (C++ exe)
# name the process ZYGOTE
init.rc
# start the DALVIK VM
# start the SYSTEM SERVER
# register SOCKET for Zygote to start apps
# run in Select Loop Mode to actually start
other apps
Zygote