Project is out of active development, please consider other solutions
Yet another frida based App decryptor. Requires jailbroken iOS device and frida.re
Tested on iOS 15 (Domapine) and iOS 16 (palera1n).
demo.mp4
The name of this project doesn't have any meaning. I was just listening to that song while typing.
With Cydia or Sileo:
- node.js. If you have issues on
npm install, your node.js might be either too new or too old. Try to usenvmto install a compatible version or download the correct installer. zipor7zcommand is needed to create zip archive. On most of the distros, you don't need to install them manually.
- Filesystem of iOS differs from Windows. If you are running bagbak on Windows, some of the file attributes (e.g., executable bit) will be lost, thus the repacked ipa may not be able to reinstall on your phone. But it does not matter if you only indend to do static analysis.
npm install -g bagbak
bagbak [bundle id or name]
Options:
-l, --list list apps
-U, --usb connect to USB device (default)
-R, --remote connect to remote frida-server
-D, --device <uuid> connect to device with the given ID
-H, --host <host> connect to remote frida-server on HOST
-f, --force override existing files
-d, --debug enable debug output
-r, --raw dump raw app bundle to directory (no ipa)
-o, --output <output> ipa filename or directory to dump to
-h, --help display help for command
Environments variables:
DEBUG=1enable debug output for troubleshootingDEBUG_SCP=1debug SCP protocolSSH_USERNAMEusername for iPhone SSH, default torootSSH_PASSWORDpassword for iPhone SSH, default toalpineSSH_PORTport for iPhone SSH. If not given, bagbak will scan port 22 (OpenSSH) and port 44 (Dropbear)
Example:
bagbak -lto list all appsbagbak --raw Chrometo dump the app to current directorybagbak com.google.chrome.iosto dump app tocom.google.chrome.ios-[version].ipa
想看更多中文技术分享?欢迎关注我的公众号