Add Frida support
confuciussayuhm opened this issue · 2 comments
Hello there,
I stumbled across this project last night and it's such a great idea. From a security testing perspective, we utilize Frida to perform security assessments. A frida-server component is copied across to the phone and a client-side firda component connects to frida-server to issue commands and load scripts.
Adding frida (server and client) support to this project would be mind-blowingly amazing.
I'm not familiar with Frida, and the documentation looks confusing. Can you explain what features should it support?
As I understand, I need to use the official frida-server, but I can create a custom frida client using Tango to do things like
- Pushing
frida-serverto device and start it - Connect to
frida-serverand run commands on it like querying process list - Send a payload to
frida-serverand forward console output.
The basic idea would be to get frida-server onto the device and run it as a superuser or normal user. Once frida-server is up, a client-side frida library (Frida github has something you might find interesting) connects and runs pre-built custom JavaScript files in hope of tracing, modifying, or "messing" with the fundamental application functions. There is deliberate emphasis here as this is the point of requesting this feature.
In using this project, in the background I've copied across the latest frida-server to my Android test device. I run this as root and then from my frida client I run a command that spawns a particular app whilst running a pre-built JavaScript file against the app during its startup.
It makes sense to abstract this out into a web app (this project). If you would like to see what a working implementation of this looks like, head over to Corellium. Spin up an Android device. You will find how they have implemented Frida. If you could do this with the use of ones own physical device, again, this would be mind-blowingly amazing.