Dataset and scripts for our paper.
Automatic the state-of-art tool ideviceinstaller and frida-dump for comparison.
Dynamic analysis module for analyzing the network service in iOS app on the fly.
Result of dynamic analysis for top 1300 apps.
IDA plugins, static analysis module for building call hierarchy and object reference graph.
Objective-C peculiarities, including Blocks, Category, Delegate, etc.
Query for official/thrid-party network serivce provider library in our iOS app collection.
Static analysis result of network service library in iOS app.
Weighted edit distance script based on result of dynamic analysis result.
Static script for analyzing the third-party network service library GCDWebServer.
A survey on iOS app obfuscation.
Script for attacking waze, qqbrowser, now, etc.
- We mitigate original framework to Ubuntu.
- We supplement the new ARM instructions to the LLVM based disassembler module Dagger. Moreover, as the IR of a moderate app will always consume gigabytes of memory, some instructions are simplified to shrink the memory usage, such as removing vector, float-point operations.
- We model complex objects (eg, NSDictionary) and perform analysis on them.
- We convert inter-procedural data-flow analysis to on-demand inter-procedural since the inter-procedural analysis always takes days to analyze a moderate binary. We only analyze the function enclosing the reference to the expected class object name or method name of a third-party library.
Access the framework via: https://github.com/pwnzen-mobile