cycript的一些简单用法
iMac:Downloads $ ssh root@10.70.149.138root@10.70.149.138's password: Administratorde-iPad:~ root# cycript -p SpringBoardcy# var alert = [[UIAlertView alloc] initWithTitle:@"Title" message:@"Cycript"...
View ArticleClik here to view.
IOS安全–使用Keychain Dumper导出Keychain中的数据
iOS的keychain服务提供了一种安全的保存私密信息(密码,序列号,证书等)的方式。每个ios程序都有一个独立的keychain存储。从Keychain中导出数据的最流行工具是Keychain...
View ArticleClik here to view.
IOS安全–使用Snoop-it分析iOS应用
Snoop-it允许我们进行运行时分析和对iOS应用进行黑盒安全评估。官网:https://code.google.com/p/snoop-it/...
View ArticleClik here to view.
一步一步用debugserver + lldb代替gdb进行动态调试
转自:http://bbs.iosre.com/t/debugserver-lldb-gdb/65*** 以下部分内容摘自《iOS应用逆向工程》第二版,以iOS 8为环境编写,应该也支持iOS 7,请大家注意。...
View ArticleiOS Anti-Debugging Protections #1
转自:https://www.coredump.gr/articles/ios-anti-debugging-protections-part-1/Many iOS applications use anti-debugging techniques to prevent malicious users from using a debugger to analyze or modify their...
View ArticleiOS Anti-Debugging Protections #2
转自:https://coredump.gr/articles/ios-anti-debugging-protections-part-2/In the previous part (iOS Anti-Debugging Protections: Part 1) we discussed about ptrace and how it can be used to prevent a...
View ArticleDownload AppSync for iOS 9
So if you have made up your mind to get started with AppSync for iOS 9 installation on your jailbroken iPhone 6S, 6, 5S, 5, 4S, iPad Air, iPad Mini or iPod Touch, then follow some simple steps we have...
View Articleinstall snoop-it for ios
In order to install and run Snoop-it, please perform the following steps (please make sure, that MobileSubstrate has been installed from Cydia):Add the Cydia repository repo.nesolabs.de and install the...
View ArticleThe LLDB Debugger
链接:http://lldb.llvm.org/lldb-gdb.htmlGDB TO LLDB COMMAND MAPBelow is a table of GDB commands with the LLDB counterparts. The built in GDB-compatibility aliases in LLDB are also listed. The full lldb...
View ArticleWhen dyld_decache fails on dyld_shared_cache_arm64, dsc_extractor saves our days
链接:http://iosre.com/t/when-dyld-decache-fails-on-dyld-shared-cache-arm64-dsc-extractor-saves-our-days/1974As you may have already known, dyld_decache by kennyTM fails on arm64 caches. Since arm64...
View Article用dumpdecrypted给App砸壳
链接:http://bbs.iosre.com/t/dumpdecrypted-app/22*** 以下部分内容摘自《iOS应用逆向工程》第二版,以iOS 8为环境编写,应该也支持iOS 7,请大家注意。 ***在《iOS应用逆向工程》4.6.2节中,我们曾推荐使用iPhoneCake源的AppCrackr...
View ArticleClik here to view.
AppMinder jailbreak detection analysis
转自:http://www.codepwn.com/posts/appminder-jailbreak-detection-analysis/Neso Lab's AppMinder project is another attempt at providing jailbreak detection for enterprise iOS applications (and perhaps...
View ArticleClik here to view.
IOS反调试ptrace
参考链接:http://bbs.iosre.com/t/hook-ida-sub-xxx/720http://www.blogfshare.com/ioss-check-debug.html唉,说起来这就是一个坑,Cydia...
View ArticleClik here to view.
muymacho - exploiting DYLD_ROOT_PATH
转自:http://luismiras.github.io/muymacho-exploiting_DYLD_ROOT_PATH/muymacho is an exploit for a dyld bug present in Mac OS X 10.10.5 allowing local privilege escalation to root. It has been patched in El...
View ArticleClik here to view.
Here Are Six Ways to Find Your iPhone Serial Number
By Jim Tanous on August 24, 2015 at 1:52 AM ? @mggjimWhether you need to send your iPhone in to Apple for service, prep it for sale, or simply document it for inventory or insurance records, you’ll...
View Article去除iOS应用的ASLR功能(即PIE flag)
转自:http://blog.sina.com.cn/s/blog_45e2b66c0101cseh.html方法-:转自:http://danqingdani.blog.163.com/blog/static/186094195201343081726861/碳基体(看雪有精贴,还是一mm?,没事多关注)曾在《ASLR》中介绍了address space layout...
View Article解决Mac OS X 10.11 El Capitan 上 openssl/aes.h file not found 的问题
转自:http://blog.bbzhh.com/index.php/archives/108.html现象:安装pyOpenSSL时报错:build/temp.macosx-10.10-x86_64-2.7/_openssl.c:400:10: fatal error: 'openssl/aes.h' file not found 尝试解决方案:首先brew install openssl...
View ArticleiOS8下代码安装/卸载APP
转载:https://blog.0xbbc.com/2014/12/ios8%E4%B8%8B%E4%BB%A3%E7%A0%81%E5%AE%89%E8%A3%85%E5%8D%B8%E8%BD%BDapp/iOS8下安装/卸载APP的代码,好久之前的了,还是贴出来吧,顺便把注释写上了。 #import <Foundation/Foundation.h>#import...
View ArticleClik here to view.
Mobile Security Certificate Pinning
转自:http://blog.dewhurstsecurity.com/2015/11/10/mobile-security-certificate-pining.htmlCertificate Pinning is an extra layer of security that is used by applications to ensure that the certificate...
View Article