UNPKG

rms-runtime-mobile-security

Version:

Runtime Mobile Security (RMS), powered by FRIDA, is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

github.com/m0bilesecurity/RMS-Runtime-Mobile-Security

m0bilesecurity/RMS-Runtime-Mobile-Security

76 lines (63 loc) 2.43 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
/******************************************************************************** * Name: Dump iOS Data Protection Keys * OS: iOS * Author: @ay-kay * Source: https://codeshare.frida.re/@ay-kay/ios-dataprotection/ * Info: List iOS file data protection classes (NSFileProtectionKey) of an app *********************************************************************************/ function listDirectoryContentsAtPath(path) { var fileManager = ObjC.classes.NSFileManager.defaultManager(); var enumerator = fileManager.enumeratorAtPath_(path); var file; var paths = []; while ((file = enumerator.nextObject()) !== null) { paths.push(path + '/' + file); } return paths; } function listHomeDirectoryContents() { var homePath = ObjC.classes.NSProcessInfo.processInfo().environment().objectForKey_("HOME").toString(); var paths = listDirectoryContentsAtPath(homePath); return paths; } function getDataProtectionKeyForPath(path) { var fileManager = ObjC.classes.NSFileManager.defaultManager(); var urlPath = ObjC.classes.NSURL.fileURLWithPath_(path); var attributeDict = dictFromNSDictionary(fileManager.attributesOfItemAtPath_error_(urlPath.path(), NULL)); return attributeDict.NSFileProtectionKey; } // helper function available at https://codeshare.frida.re/@dki/ios-app-info/ function dictFromNSDictionary(nsDict) { var jsDict = {}; var keys = nsDict.allKeys(); var count = keys.count(); for (var i = 0; i < count; i++) { var key = keys.objectAtIndex_(i); var value = nsDict.objectForKey_(key); jsDict[key.toString()] = value.toString(); } return jsDict; } var fileManager = ObjC.classes.NSFileManager.defaultManager(); var dict = []; var paths = listHomeDirectoryContents(); var isDir = Memory.alloc(Process.pointerSize); Memory.writePointer(isDir, NULL); for (var i = 0; i < paths.length; i++) { fileManager.fileExistsAtPath_isDirectory_(paths[i], isDir); if (Memory.readPointer(isDir) == 0) { dict.push({ path: paths[i], fileProtectionKey: getDataProtectionKeyForPath(paths[i]) }); } } send("**** Files with Data Protection ****"); var k; for (k in dict) { send("\tFile " + k); send("\tPath: " + dict[k]['path']); send("\tFile protection key: " + dict[k]['fileProtectionKey']); send(""); } send("**** END Files with Data Protection ****");