Andreas Kurtz - Pentesting iOS Apps, Runtime Analysis and Manipulation

Watch on YouTube

后半部分介绍snoop-it.

NIN: 可惜snoop-it 不支持64bit.

objc fundermental




Runtime Injection的原理

两种方式

Example - Mobile Substrate

Example - cycript

# cycript -p <pid>
cy# [[UIDevice currentDevice] uniqueIdentifier];
@"xxxxxxxxxxxxx"
cy# UIDevice.messages['uniqueIdentifier'] = function(){ return @"RUB"; }
cy# [[UIDevice currentDevice] uniqueIdentifier];
@"RUB"


Evaluate Encryption Schemes

Bonus - the gdb way



Show Comments