Observe file system accesses by hooking some java.io.File* classes and methods, libc open/read functions and try to resolve associtation between file descriptor and path. Optionally, it can dumps the data.
Frida script to perform static security analysis of an iOS app. Works on both Objective-C and Swift based iOS apps.
Bypass certificate pinning on a Flutter-based iOS app
[Android] Create Alert Dialog In MainActivity
Trace the JNI API in Android apps.
Hook all the methods of all the classes owned by the iOS app
iOS Jailbreak Detection Bypass tested on iOS 13
Another universal ssl certificate pinning bypass script for Android (https://gist.github.com/akabe1/ac6029bf2315c6d95ff2ad00fb7be1fc)
有用的函数:包括模拟点击,keychain数据查看,界面结构分析,获取OC类信息等 several useful iOS utils,including keychain dumper, view dumper, perform click
Bypasses debugging mode checks when USB Debugging mode is activated
[Android] Dynamic Hooks (Creating Function Hooks Was Never Easier)
Dumps bytes of DEX provided to InMemoryDexClassLoader on Android
Check for native library calls and return a stacktrace
Sockets general hooking
Dump useful information for an iOS app
This is a simple handler I have created to extract the body and request type (GET/POST) for each request made by the target iOS application. I'm @J_Duffy01 on Twitter if any q's!