frida-ios-hook
RMS-Runtime-Mobile-Security
Our great sponsors
frida-ios-hook | RMS-Runtime-Mobile-Security | |
---|---|---|
2 | 3 | |
809 | 2,473 | |
- | - | |
4.5 | 5.4 | |
4 months ago | 28 days ago | |
JavaScript | JavaScript | |
MIT License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
frida-ios-hook
-
Frida iOS tips
I'm currently working on an iOS app to replicate a signature which looks to be generated with a MD5 hash. I'm currently using Frida, but haven't had any luck replicating it. I've used the script to hook on to general crypto functions, but nothing MD5 related seems to go on here. I've also hooked onto the CC_MD5 function, but it isn't displaying me the correct hash, so I'm guessing the app is using another library. I've had success with Android, as I can 1) see the source code with Jadx 2) Easily hook onto the MD5 class.
-
iOS Reverse Engineering
https://github.com/noobpk/frida-ios-hook <--This one has been the most useful
RMS-Runtime-Mobile-Security
-
Prerequisites for reverse engineering?
-rms(runtime mobile security, this shit is a beast)
-
Is this networking knowledge enough ?
Then use runtime tools like Runtime Mobile Security, Grapefruit, and Objection to see stuff in action and practice Frida along with as these tools usually support loading custom Frida scripts.
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime
What are some alternatives?
frida-il2cpp-bridge - A Frida module to dump, trace or hijack any Il2Cpp application at runtime, without needing the global-metadata.dat file.
Mobile-Security-Framework-MobSF - Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
frida-scripts - A collection of my Frida.re instrumentation scripts to facilitate reverse engineering of mobile apps.
frida-fuzzer - This experimetal fuzzer is meant to be used for API in-memory fuzzing.
flexdecrypt - Decrypt iOS Apps and Mach-O binaries
shadow - A jailbreak detection bypass for modern iOS jailbreaks.
awesome-frida - Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)
grapefruit - (WIP) Runtime Application Instruments for iOS. Previously Passionfruit
frida - Clone this repo to build Frida
objection - 📱 objection - runtime mobile exploration
React Lifecycle Visualizer - Real-time visualizer for React lifecycle methods
apkleaks - Scanning APK file for URIs, endpoints & secrets.