该博客介绍了如何使用Python脚本通过SSH连接到越狱的iOS设备,解密应用程序并将其转移到本地计算机。依赖于Paramiko库和USB网络隧道工具,该脚本适用于已安装Clutch或BFInject的设备。用户可以指定本地SSH端口、设备root密码和要解密的应用程序名称。提供了不同选项,如使用Clutch或BFInject进行解密,或打开交互式shell。
Decrypt iOS Apps
Python script to SSH into your jailbroken device via USB, decrypt an iOS App and transfer it to your local machine
Dependencies
Description: Paramiko is a Python (2.7, 3.4+) implementation of the SSHv2 protocol
Install: pip install paramiko
Description: A simple command line tool which provides network tunnelling over the USB cable to a jailbroken iDevice
Install: Download the latest and copy to /usr/local/bin
Assumptions
You have either clutch or bfinject setup on your device.
If you use clutch, it should be executable from any path.
If you use bfinject the scripts and libraries should be in the /jb/bfinject directory. Here's how to setup bfinject this way.
This script was only tested on devices jailbroken with LiberiOS and Electra, but it might work with other jailbreaks.
Usage
ios_ssh.py -l [-p ] -a [-c|-b] [-i]
-l [--lport]: Local SSH port forwarding (has to be an Int)
-p [--password]: (optional) Device's root password (default is `alpine`)
-a [--app]: iOS Application name
-c : Use Clutch to decrypt
-b : Use BFInject to decrypt (default)
-i : Opens a SSH connection with the device and gives an interactive shell, ignoring the decryption task
-f [--full]: Performs the decryption, decrypted app transfer, unpacking and file organization tasks.
Examples
This will decrypt the Instagram app and transfer it from your device to your ~/Desktop:
python ios_ssh.py --lport 2222 -p s3cr37 --app "Instagram"
This will give you an interactive shell to communicate with your device over USB:
python ios_ssh.py --lport 2222 -p s3cr37 -i
扫一扫
661
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
