Frida-ios-dump

Frida-ios-dump tool is used to pull decrypted IPA of any app which is installed in a jailbroken device. This tool requires frida which needs to be installed in iphone and kali Linux.

Installation:  

Step 1: Install Frida on iphone and in base machine. Refer this blog for installation.

https://www.briskinfosec.com/blogs/blogsdetail/Getting-Started-with-Frida

Step 2: clone the repository.

git clone https://github.com/AloneMonkey/frida-ios-dump.git

Step 3: Install the requirements  

sudo pip install -r requirements.txt --upgrade

Step 4: Install the iproxy using below command in kali Linux.

apt-get install libusbmuxd-tools

Once installed, connect the iphone via USB to kali liunx and start the iproxy.

iproxy 2222 22

Now, your ready to decrypt the IPA file.

Demo

Usage :

Next, Run dump.py -l to Display app name or Bundle identifier and note the name.

Finally Run dump.py

Decrypted IPA file will be saved in the working directory and use it for Reverse engineering with any disassembler tool(Hopper, IDA Pro).