-
Notifications
You must be signed in to change notification settings - Fork 850
Running On A Jailbroken Device
Leon Jacobs edited this page Sep 22, 2017
·
7 revisions
If you have a jailbroken device, you can start frida-server
after installing it on your device as well as the client tools on your laptop. There is no need to patch applications to embed the Frida gadget as Frida can simply inject into a target process.
With everything installed, run frida-ps -U
to list all of the processes on the device.
~ » frida-ps -U
PID Name
---- ----------------
3202 App Store
3004 Cydia
3165 IPA Installer
371 Mail
2844 Settings
3167 AGXCompilerServi
Great. That is all the information you need. Each of those "name"'s are what we refer to as Gadgets in objection. So, to "connect" to one of those apps, specify the name with the --gadget
flag.
~ » objection --gadget "App Store" explore
_ _ _ _
___| |_ |_|___ ___| |_|_|___ ___
| . | . | | | -_| _| _| | . | |
|___|___|_| |___|___|_| |_|___|_|_|
|___|(object)inject(ion)
Runtime Mobile Exploration
by: @leonjza from @sensepost
[tab] for command suggestions
com.apple.AppStore on (iPad: 8.1) [usb] #