RMS-Runtime-Mobile-Security
frida-ios-hook
Our great sponsors
RMS-Runtime-Mobile-Security | frida-ios-hook | |
---|---|---|
3 | 2 | |
2,473 | 813 | |
- | - | |
5.4 | 4.5 | |
about 1 month ago | 4 months ago | |
JavaScript | JavaScript | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
RMS-Runtime-Mobile-Security
-
Prerequisites for reverse engineering?
-rms(runtime mobile security, this shit is a beast)
-
Is this networking knowledge enough ?
Then use runtime tools like Runtime Mobile Security, Grapefruit, and Objection to see stuff in action and practice Frida along with as these tools usually support loading custom Frida scripts.
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime
frida-ios-hook
-
Frida iOS tips
I'm currently working on an iOS app to replicate a signature which looks to be generated with a MD5 hash. I'm currently using Frida, but haven't had any luck replicating it. I've used the script to hook on to general crypto functions, but nothing MD5 related seems to go on here. I've also hooked onto the CC_MD5 function, but it isn't displaying me the correct hash, so I'm guessing the app is using another library. I've had success with Android, as I can 1) see the source code with Jadx 2) Easily hook onto the MD5 class.
-
iOS Reverse Engineering
https://github.com/noobpk/frida-ios-hook <--This one has been the most useful
What are some alternatives?
Mobile-Security-Framework-MobSF - Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
frida-il2cpp-bridge - A Frida module to dump, trace or hijack any Il2Cpp application at runtime, without needing the global-metadata.dat file.
frida-fuzzer - This experimetal fuzzer is meant to be used for API in-memory fuzzing.
frida-scripts - A collection of my Frida.re instrumentation scripts to facilitate reverse engineering of mobile apps.
shadow - A jailbreak detection bypass for modern iOS jailbreaks.
flexdecrypt - Decrypt iOS Apps and Mach-O binaries
grapefruit - (WIP) Runtime Application Instruments for iOS. Previously Passionfruit
awesome-frida - Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)
objection - 📱 objection - runtime mobile exploration
frida - Clone this repo to build Frida
apkleaks - Scanning APK file for URIs, endpoints & secrets.
React Lifecycle Visualizer - Real-time visualizer for React lifecycle methods