Description: iOS applications downloaded from the AppStore are encrypted. So before reversing it, you must decrypt the apps.
Decyrpting iOS applications
1. On a JailBroken iPhone, go to Cydia and add the repo http://AppAddict.org/repo by navigating to Manage->Sources.
2. Download ClutchPatched, ZIP and IPA Installer from Cydia.
3. Connect to the iPhone over SSH and type the ‘Clutch’ command. It lists out all the applications installed on the iPhone.
4. Supplying the application name to the Clutch will decrypt it and stores the decrypted ipa file under /var/root/Documents/Cracked/ folder.
5. The cracked ipa file can be installed on the iPhone directly from SSH using the below command.
installipa –c [iPAPath]
Class Dump
1. On a JailBroken iPhone, install wget and unzip from Cydia.
2. Connect to the iPhone over ssh and run the below commands.
> wget http://networkpx.googlecode.com/files/class-dump-z_0.2a.tar.gz
> tar zxvf class-dump-z_0.2a.tar.gz
> mv class-dump-z /usr/bin
3. To dump the class information from an iOS application navigate to the application’s .app folder and run the below command.
> class-dump-z ApplicationBinary
Run time analysis with Cycript
With cycript we can hook into the application runtime, access & modify the instance variables, invoke the instance methods and override the existing methods. For more information on run time analysis wth Cycript visit – http://iphonedevwiki.net/index.php/Cycript_Tricks
If you're interested in the full free iOS hacking course, which has over 3 hours of video tutorials, please visit http://www.hackingdemystified.com/ios-course/ and enroll in the course. It is a free course!!
Tags:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.