Observe file system accesses by hooking some java.io.File* classes and methods, libc open/read functions and try to resolve associtation between file descriptor and path. Optionally, it can dumps the data.
Hooks libboringssl.dylib to extract TLS keys and enables decryption of network traffic from iOS apps to be decrypted. Tested on iPhone 5s running iOS 12.4.2 jailbroken with Checkrain.
Logging tool that send Frida log to Mac NSLoggerViewer
How to read an std::string
See https://github.com/overtake/TelegramSwift/pull/22
Show info about methods and classes loaded via reflection on Android application
Universal Android SSL Pinning Bypass
Frida script to perform static security analysis of an iOS app. Works on both Objective-C and Swift based iOS apps.
Totally inefficient, client-side toy parser for Stalker events. It's mostly useful for exploring and debugging the Stalker.
Look up the location of an iOS app on the device using the name displayed under the icon.
Boilerplate for a CLI tool using frida-python
Automatic Magic Code Locating 010 Editor App for macOS Loader(Bypass License Patcher) Created by B.S. Usage: frida --codeshare iDone/automatic-magic-code-locating-loader -f /Applications/010\ Editor.app/Contents/MacOS/010\ Editor --no-pause
Bypass SSL certificate pinning for okhttp3
有用的函数:包括模拟点击,keychain数据查看,界面结构分析,获取OC类信息等 several useful iOS utils,including keychain dumper, view dumper, perform click
Backtrace HTTP request.
This is a simple handler I have created to extract the body and request type (GET/POST) for each request made by the target iOS application. I'm @J_Duffy01 on Twitter if any q's!