frida-ios-dump - pull decrypted ipa from jailbreak device

  •        111

For SSH/SCP make sure you have your public key added to the target device's ~/.ssh/authorized_keys file. Congratulations!!! You've got a decrypted IPA file.

https://github.com/AloneMonkey/frida-ios-dump

Tags
Implementation
License
Platform

   




Related Projects

appmon - Documentation:

  •    Javascript

AppMon is an automated framework for monitoring and tampering system API calls of native macOS, iOS and android apps. It is based on Frida. This project exists thanks to all the people who contribute.

IPAPatch - Patch iOS Apps, The Easy Way, Without Jailbreak.

  •    Objective-C

IPAPatch provide a simple way to patch iOS Apps, without needing to jailbreak. You can run your own code inside ipa file as a dynamic library. So you can change behavior of that app by utilizing Objective-C runtime.

awesome-frida - Awesome Frida - A curated list of Frida resources http://www

  •    

A curated list of awesome projects, libraries, and tools powered by Frida. Frida is Greasemonkey for native apps, or, put in more technical terms, it’s a dynamic code instrumentation toolkit. It lets you inject snippets of JavaScript into native apps that run on Windows, Mac, Linux, iOS and Android.

iOSRE - iOS Reverse Engineering

  •    Shell

The aim of this project is to provide useful and updated tools and knowledge on iOS reverse engineering and exploitation. This is an ongoing effort, and still in a very new stage. You may contribute actual files by adding it to the "resources" folder. Please note that these files are mostly user-contributed and may be malicious, so do your own homework before running them. If you see something bad we haven't noticed, please open an issue.


iOSAppReverseEngineering - The world’s 1st book of very detailed iOS App reverse engineering skills :)

  •    

The world’s 1st book of very detailed iOS App reverse engineering skills :)

iSpy - A reverse engineering framework for iOS

  •    Logos

v2.0 will be released shortly and contains many, many enhancements. iSpy aims to be your one-stop-shop for reverse engineering and dynamic analysis of iOS applications.

ssl-kill-switch2 - Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and OS X Apps

  •    C

Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and OS X Apps. Second iteration of https://github.com/iSECPartners/ios-ssl-kill-switch . Once loaded into an iOS or OS X App, SSL Kill Switch 2 patches specific low-level SSL functions within the Secure Transport API in order to override, and disable the system's default certificate validation as well as any kind of custom certificate validation (such as certificate pinning).

Mobile-Security-Framework-MobSF - Mobile Security Framework is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing framework capable of performing static analysis, dynamic analysis, malware analysis and web API testing

  •    Python

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing framework capable of performing static, dynamic and malware analysis. It can be used for effective and fast security analysis of Android, iOS and Windows mobile applications and support both binaries (APK, IPA & APPX ) and zipped source code. MobSF can do dynamic application testing at runtime for Android apps and has Web API fuzzing capabilities powered by CapFuzz, a Web API specific security scanner. MobSF is designed to make your CI/CD or DevSecOps pipeline integration seamless. Your generous donations will keep us motivated.

ios-app-signer - This is an app for OS X that can (re)sign apps and bundle them into ipa files that are ready to be installed on an iOS device

  •    Objective-C

This is an app for OS X that can (re)sign apps and bundle them into ipa files that are ready to be installed on an iOS device. This app requires Xcode to be installed, it has only been successfully tested on OS X 10.11 at this time.

dumpdecrypted - Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk

  •    C

Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk. This tool is necessary for security researchers to be able to look under the hood of encryption.

FCCurrentLocationGeocoder - iOS Geocoder for forward geocode and reverse geocode user's current location using a block-based syntax

  •    Objective-C

iOS Geocoder on top of LocationManager and CLGeocoder for forward geocode and reverse geocode user's current location using a block-based syntax. It can also be used to geocode the user's approximate location (always country, almost always city) without asking for permission (using a free GeoIP service).

objection - 📱 objection - runtime mobile exploration

  •    Python

objection is a runtime mobile exploration toolkit, powered by Frida. It was built with the aim of helping assess mobile applications and their security posture without the need for a jailbroken or rooted mobile device. The project's name quite literally explains the approach as well, whereby runtime specific objects are injected into a running process and executed using Frida.

Brida - The new bridge between Burp Suite and Frida!

  •    Java

Brida is a Burp Suite Extension that, working as a bridge between Burp Suite and Frida, lets you use and manipulate applications’ own methods while tampering the traffic exchanged between the applications and their back-end services/servers. It supports all platforms supported by Frida (Windows, macOS, Linux, iOS, Android, and QNX).

react-native-config - Bring some 12 factor love to your mobile apps!

  •    Objective-C

Module to expose config variables to your javascript code in React Native, supporting both iOS and Android. Keep in mind this module doesn't obfuscate or encrypt secrets for packaging, so do not store sensitive keys in .env. It's basically impossible to prevent users from reverse engineering mobile app secrets, so design your app (and APIs) with that in mind.

shenzhen - CLI for Building & Distributing iOS Apps (.ipa Files)

  •    Ruby

CLI for Building & Distributing iOS Apps (.ipa Files)

ProvisionQL - Quick Look plugin for apps and provisioning profile files

  •    Objective-C

Inspired by a number of existing alternatives, the goal of this project is to provide clean, reliable, current and open source Quick Look plugin for iOS & macOS developers. Thumbnails will show app icon for .ipa/ .xcarchive or expiring status and device count for .mobileprovision. Quick Look preview will give a lot of information, including devices UUIDs, certificates, entitlements and much more.

passionfruit - [WIP] Crappy iOS app analyzer

  •    Javascript

Simple iOS app blackbox assessment tool. Powered by frida.re and vuejs. Please check out Wiki for more information.