-
Notifications
You must be signed in to change notification settings - Fork 1
Tools
Vali Ghita edited this page Dec 17, 2016
·
9 revisions
Useful tools for investigating iOS. Document build process if required.
These are ideas for tools that would be nice to build:
- General backtracing IDA Script similar to the one made for the PiOS paper, but able to allow IDA to cross reference objcMsgsends as if they were normal function calls.
- Binary diffing of system programs from different versions of iOS. Could compare the functions in each executable to see which are same/changed/added/removed.
- App scraper / app repository / iOS malware repository; Egele told us that he uses an instrumented windows VM running iTunes to download his apps.
- Fully automated iOracle data collection; runs on jailbroken device and/or iOS firmware image
- Get Valgrind for iOS working
Compiled using this tutorial and uploaded to drive.
There were some problems caused by missing headers, but they can be found in other locations and added to the incldue path.
To run on the iPhone, the binary must be signed using the command ldid -S lsof.
Download the binary from here and copy it on the iphone.
Run:
- Mach services of a process: ./sbtool mach
- Sandbox info: ./sbtool inspect
- Check file access: ./sbtool file