otool: check binary encryption

ΠŸΡ€ΠΎΠ²Π΅Ρ€ΠΈΡ‚ΡŒ, Π·Π°ΡˆΠΈΡ„Ρ€ΠΎΠ²Π°Π½ Π»ΠΈ Π±ΠΈΠ½Π°Ρ€ΡŒ (ΠΏΠΎ ΡƒΠΌΠΎΠ»Ρ‡Π°Π½ΠΈΡŽ, ΠΎΠ½ΠΈ ΠΏΠΎΡˆΠΈΡ„Ρ€ΠΎΠ²Π°Π½Ρ‹ Π½Π° устройствС)

  • Π—Π°ΡˆΠΈΡ„Ρ€ΠΎΠ²Π°Π½:

$ cd /var/containers/Bundle/Application/GUID/FB.app/
// Π—Π΄Π΅ΡΡŒ Π±ΡƒΠ΄Π΅Ρ‚ Π±ΠΈΠ½Π°Ρ€ΡŒ Facebook Π½Π° Ρ‚Π΅Π»Π΅Ρ„ΠΎΠ½Π΅
$ otool -l Facebook | grep LC_ENCRYPTION_INFO -A5
      cmd LC_ENCRYPTION_INFO_64
      cmdsize 24
      cryptoff 20480
      cryptsize 4096
      cryptid 1
      pad 0

  • НС Π·Π°ΡˆΠΈΡ„Ρ€ΠΎΠ²Π°Π½:

// ΠŸΠΎΠ»ΡƒΡ‡ΠΈΠ»ΠΈ Facebook.ipa Ρ‡Π΅Ρ€Π΅Π· frida-ios-dump
$ unzip Facebook.ipa
$ cd Payload/Facebook.app/
$ otool -l Facebook | grep LC_ENCRYPTION_INFO -A5
    cryptid 0
PreviousxcrunNextΠŸΠ°Ρ‚Ρ‡ΠΈΠ½Π³

Last updated

Was this helpful?