UNPKG

bagbak

Version:

Dump iOS app from a jailbroken device, based on frida.re

github.com/ChiChou/bagbak

ChiChou/bagbak

125 lines (103 loc) 2.97 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
import { Client } from 'ssh2'; /** * @type {Map<string, number>} */ const __port_cache = new Map(); /** * * @param {import("frida").Device} device * @returns {Promise<number>} */ export async function scan(device) { if (process.env['SSH_PORT']) return parseInt(process.env['SSH_PORT']); const cached = __port_cache.get(device.id); if (cached) return cached; const canidates = [22, 44] for (const port of canidates) { const ok = await device.openChannel(`tcp:${port}`) .then((channel) => new Promise((resolve) => { channel .once('data', data => { resolve(data.readUInt32BE() === 0x5353482d); // SSH- channel.destroy(); }) .once('error', () => { resolve(false); }); })) .catch(() => false); if (ok) { __port_cache.set(device.id, port); return port; } } throw Error('Port not found. Target device must be jailbroken and with sshd running.'); } /** * * @param {import("frida").Device} device * @param {import('ssh2').ConnectConfig} config * @returns {Promise<Client>} */ export async function connect(device, config) { const port = await scan(device); const channel = await device.openChannel(`tcp:${port}`); const client = new Client(); return new Promise((resolve, reject) => { client .on('error', reject) .once('ready', () => resolve(client)) .connect(Object.assign({ sock: channel }, config)); }); } /** * * @param {Client} client * @param {string} [initialCommand] * @returns {Promise<void>} */ export async function interactive(client, initialCommand) { const { stdin, stdout, stderr } = process; const { isTTY } = stdout; return new Promise((resolve, reject) => { client.shell({ term: process.env.TERM || 'vt100' }, (err, stream) => { if (err) { return reject(err); } if (isTTY && stdin.setRawMode) { stdin.setRawMode(true); } stream.pipe(stdout); stream.stderr.pipe(stderr); stdin.pipe(stream); if (initialCommand) stream.write(initialCommand + '\n'); const onResize = () => { const [w, h] = process.stdout.getWindowSize(); stream.setWindow(`${stdout.rows}`, `${stdout.columns}`, `${w}`, `${h}`) }; const cleanup = () => { if (isTTY) { stdout.removeListener('resize', onResize); if (stdin.setRawMode) stdin.setRawMode(false); } stream.unpipe(); stream.stderr.unpipe(); stdin.unpipe(); } const onError = (err) => { cleanup(); reject(err); } if (isTTY) { stream.once('data', onResize); process.stdout.on('resize', onResize); } client.once('end', () => onError(new Error('Connection closed'))); stream.on('error', onError).on('end', () => { resolve(); cleanup(); }) }); }); }