Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/ChiChou/bagbak
Yet another frida based iOS dumpdecrypted. Also decrypts app extensions
https://github.com/ChiChou/bagbak
Last synced: 10 days ago
JSON representation
Yet another frida based iOS dumpdecrypted. Also decrypts app extensions
- Host: GitHub
- URL: https://github.com/ChiChou/bagbak
- Owner: ChiChou
- License: mit
- Created: 2018-05-27T09:40:26.000Z (over 6 years ago)
- Default Branch: main
- Last Pushed: 2024-09-28T18:23:11.000Z (about 1 month ago)
- Last Synced: 2024-10-15T22:42:27.821Z (20 days ago)
- Language: JavaScript
- Homepage:
- Size: 1.99 MB
- Stars: 1,211
- Watchers: 35
- Forks: 194
- Open Issues: 2
-
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE
Awesome Lists containing this project
- awesome-ios-security - bagbak - Yet another frida based App decryptor. Requires jailbroken iOS device and frida.re. (Tools / Reverse Engineering Tools)
- awesome-apple-security - bagbak - Yet another frida based App decryptor. Requires jailbroken iOS device and frida.re. (Tools / Reverse Engineering Tools)
- awesome-hacking-lists - ChiChou/bagbak - Yet another frida based iOS dumpdecrypted. Also decrypts app extensions (JavaScript)
README
# bagbak
[]((https://www.npmjs.com/package/bagbak))
[](https://www.npmjs.com/package/bagbak)
[](https://github.com/chichou/bagbak/issues)
[](https://github.com/sponsors/chichou)
[](LICENSE)
Yet another frida based App decryptor. Requires jailbroken iOS device and [frida.re](https://www.frida.re/)
Tested on iOS 15 (Domapine) and iOS 16 (palera1n).
[](https://github.com/user-attachments/assets/87695cbe-08cc-4f0e-9242-e6c251ccac1d)
*The name of this project doesn't have any meaning. I was just listening to that song while typing.*
[FAQ](https://github.com/ChiChou/bagbak/wiki#faq)
## Prerequisites
### On device
With Cydia or Sileo:
* [frida.re](https://www.frida.re/docs/ios/)
### On desktop
* [node.js](https://nodejs.org/). If you have issues on `npm install`, your node.js might be either too new or too old. Try to use `nvm` to install a compatible version or download the correct installer.
* `zip` or `7z` command is needed to create zip archive. On most of the distros, you don't need to install them manually.
### Windows Compatibility
* Filesystem of iOS differs from Windows. If you are running bagbak on Windows, **some of the file attributes (e.g., executable bit) will be lost**, thus the repacked ipa may not be able to reinstall on your phone. But it does not matter if you only indend to do static analysis.
## Install
```
npm install -g bagbak
```
## Usage
bagbak [bundle id or name]
```
Options:
-l, --list list apps
-U, --usb connect to USB device (default)
-R, --remote connect to remote frida-server
-D, --device connect to device with the given ID
-H, --host connect to remote frida-server on HOST
-f, --force override existing files
-d, --debug enable debug output
-r, --raw dump raw app bundle to directory (no ipa)
-o, --output ipa filename or directory to dump to
-h, --help display help for command
```
Environments variables:
* `DEBUG=1` enable debug output for troubleshooting
* `DEBUG_SCP=1` debug SCP protocol
* `SSH_USERNAME` username for iPhone SSH, default to `root`
* `SSH_PASSWORD` password for iPhone SSH, default to `alpine`
* `SSH_PORT` port for iPhone SSH. If not given, bagbak will scan port 22 (OpenSSH) and port 44 (Dropbear)
Example:
* `bagbak -l` to list all apps
* `bagbak --raw Chrome` to dump the app to current directory
* `bagbak com.google.chrome.ios` to dump app to `com.google.chrome.ios-[version].ipa`
## 国内用户 frida 安装失败问题
[使用国内镜像加速安装](https://github.com/chaitin/passionfruit/wiki/%E4%BD%BF%E7%94%A8%E5%9B%BD%E5%86%85%E9%95%9C%E5%83%8F%E5%8A%A0%E9%80%9F%E5%AE%89%E8%A3%85#%E9%A2%84%E7%BC%96%E8%AF%91%E5%8C%85%E5%A4%B1%E8%B4%A5)
想看更多中文技术分享?欢迎关注我的公众号