How to use frida-il2cpp-bridge to independently call the encryption algorithms of the libil2cpp.so library without loading the game process?

[hmlyn]

Due to the game's anti-Frida injection protections, I had no choice but to package the libil2cpp.so library file into my own app and call the native layer functions. Although I can call the native encryption functions to return the encrypted values, I don't know how to use frida-il2cpp-bridge to trace the encryption process inside il2cpp since the entire Unity process is not loaded, making it impossible to locate the key encryption function. Could you please provide me with some guidance?

This is a sample of the APK I packaged; you can download it and take a look: https://drive.google.com/file/d/1nk9bLsw2xLC_PTovohZ5HyizkfD6y5Ub/view?usp=drive_link

[UnknownAPI]

So if I understand your game has encrypted metadata and an anti frida protection. If this is the case I'd recommend using zygisk il2cpp dumper to get a csharp file and have a preview of the methods. If you can find which method is responsible for frida protection in there you can disable it and use frida normaly. If you don't mind sharing which game you're working on I'd be happy to take a look

[vfsfitvnm]

I'm moving this issue to "Dicussions" as I think it's a better place for it!