ApkUnpacker apkunpacker

## permissions.py
#!/usr/bin/env python3
import json

import frida
from frida.core import Device, Session, Script, ScriptExportsSync

compiler: frida.Compiler = frida.Compiler()
compiler.on("diagnostics", lambda diag: print(f"on_diagnostics: {diag}"))
bundle: str = compiler.build('permissions.ts', compression='terser')

## How-to-build-frida-server-for-ios.md

      
              3 files
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                apkunpacker
                / How-to-build-frida-server-for-ios.md
            
            
              Created
              March 30, 2023 04:16
                — forked from miticollo/How-to-build-frida-server-for-ios.md
            
              
                How to build frida server for iOS jailbroken devices
              
          
    Here, I'll show you how to compile Frida for both rootfull and rootless jailbreaks.
Requirements


Make sure you have:

Python 3 in your PATH
Node.js in your PATH
ldid in your PATH


macOS


## How to use O-MVLL with WSL for Android projects.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              1 star
            
          
                apkunpacker
                / How to use O-MVLL with WSL for Android projects.md
            
            
              Created
              March 11, 2023 17:39
                — forked from SirionRazzer/How to use O-MVLL with WSL for Android projects.md
            
          
    How to use O-MVLL with WSL for Android projects


Use this guide to integrate the O-MVLL obfuscator using WSL and command line
The guide has two parts, the first one explains the installation of Android build tools, the second part presents all the adjustments I needed to make to standard O-MVLL integration process (https://obfuscator.re/omvll/introduction/getting-started/). Read that 'Getting started' guide first.

Preparing the WSL for commandline Android development

Based on this article https://dev.to/halimsamy/wsl-for-developers-installing-the-android-sdk-53n9
Installing OpenJDK and Gradle

sudo apt-get update

  
## sslkeylogger.js
/**
 * Sleep
 */
async function sleep(seconds = 0) {
 await new Promise(r => setTimeout(r, seconds * 1000))
}


/**
 * Logging function, reads null terminated string from address in line.

## monitorMemory.js
function monitorMemory(base, length, interceptedInstructions = new Set()) {
    const baseAddress = ptr(base.toString());
    MemoryAccessMonitor.enable({base: baseAddress, size: length}, {
        onAccess: function(details) {
            let baseOffset = details.address.sub(baseAddress);
            console.log(`${details.address} (offset in range ${baseAddress} = ${baseOffset}) accessed for ${details.operation} from address ${DebugSymbol.fromAddress(details.from)}. Page ${details.pageIndex + 1} of ${details.pagesTotal}`);
            let instruction = Instruction.parse(details.from);
            const nextInstr = ptr(instruction.next.toString());
            if (interceptedInstructions.has(nextInstr.toString())) {
                return;

## Github Dorks


echo ""
echo "************ Github Dork Links (must be logged in) *******************"
echo ""
echo "  password"
echo "https://github.com/search?q="hackertarget.site"+password&type=Code"
echo "https://github.com/search?q=""hackertarget""+password&type=Code"
echo ""
echo " npmrc _auth"

## funtime.js

const typeMap = {
    "c": "char",
    "i": "int",
    "s": "short",
    "l": "long",
    "q": "long long",
    "C": "unsigned char",
    "I": "unsigned int",
    "S": "unsigned short",

## mixunpin.js
console.log("[*] SSL Pinning Bypasses");
console.log(`[*] Your frida version: ${Frida.version}`);
console.log(`[*] Your script runtime: ${Script.runtime}`);

/**
 * by incogbyte
 * Common functions
 * thx apkunpacker, NVISOsecurity, TheDauntless
 * Remember that sslpinning can be custom, and sometimes u need to reversing using ghidra,IDA or something like that.
 * !!! THIS SCRIPT IS NOT A SILVER BULLET !!

## bin2c.py
"""
Transform a binary file into a C header file.
The binary file is splitted into 16 char strings and rebuild at execution time.

The function buildsc() must be called in your main to rebuild the binary file into the sc C variable.
The length is set in the sc_length variable.

Be carefull, try to avoid compiler code optimization as it will remove all these modifications in the final binary.
"""

## auto_unpacker.py
#!/usr/bin/python3

# /*
# *  ----------------------------------------------------------------------------
# *  "THE BEER-WARE LICENSE" (Revision 42):
# *  n4sm wrote this file. As long as you retain this notice you
# *  can do whatever you want with this stuff. If we meet some day, and you think
# *  this stuff is worth it, you can buy me a beer in return Poul-Henning Kamp
# *  ----------------------------------------------------------------------------
# * /
	#!/usr/bin/env python3
	import json

	import frida
	from frida.core import Device, Session, Script, ScriptExportsSync

	compiler: frida.Compiler = frida.Compiler()
	compiler.on("diagnostics", lambda diag: print(f"on_diagnostics: {diag}"))
	bundle: str = compiler.build('permissions.ts', compression='terser')
	/**
	* Sleep
	*/
	async function sleep(seconds = 0) {
	await new Promise(r => setTimeout(r, seconds * 1000))
	}


	/**
	* Logging function, reads null terminated string from address in line.
	function monitorMemory(base, length, interceptedInstructions = new Set()) {
	const baseAddress = ptr(base.toString());
	MemoryAccessMonitor.enable({base: baseAddress, size: length}, {
	onAccess: function(details) {
	let baseOffset = details.address.sub(baseAddress);
	console.log(`${details.address} (offset in range ${baseAddress} = ${baseOffset}) accessed for ${details.operation} from address ${DebugSymbol.fromAddress(details.from)}. Page ${details.pageIndex + 1} of ${details.pagesTotal}`);
	let instruction = Instruction.parse(details.from);
	const nextInstr = ptr(instruction.next.toString());
	if (interceptedInstructions.has(nextInstr.toString())) {
	return;


	echo ""
	echo "********** Github Dork Links (must be logged in) *****************"
	echo ""
	echo " password"
	echo "https://github.com/search?q="hackertarget.site"+password&type=Code"
	echo "https://github.com/search?q=""hackertarget""+password&type=Code"
	echo ""
	echo " npmrc _auth"

	const typeMap = {
	"c": "char",
	"i": "int",
	"s": "short",
	"l": "long",
	"q": "long long",
	"C": "unsigned char",
	"I": "unsigned int",
	"S": "unsigned short",
	console.log("[*] SSL Pinning Bypasses");
	console.log(`[*] Your frida version: ${Frida.version}`);
	console.log(`[*] Your script runtime: ${Script.runtime}`);

	/**
	* by incogbyte
	* Common functions
	* thx apkunpacker, NVISOsecurity, TheDauntless
	* Remember that sslpinning can be custom, and sometimes u need to reversing using ghidra,IDA or something like that.
	* !!! THIS SCRIPT IS NOT A SILVER BULLET !!
	"""
	Transform a binary file into a C header file.
	The binary file is splitted into 16 char strings and rebuild at execution time.

	The function buildsc() must be called in your main to rebuild the binary file into the sc C variable.
	The length is set in the sc_length variable.

	Be carefull, try to avoid compiler code optimization as it will remove all these modifications in the final binary.
	"""
	#!/usr/bin/python3

	# /*
	# * ----------------------------------------------------------------------------
	# * "THE BEER-WARE LICENSE" (Revision 42):
	# * n4sm wrote this file. As long as you retain this notice you
	# * can do whatever you want with this stuff. If we meet some day, and you think
	# * this stuff is worth it, you can buy me a beer in return Poul-Henning Kamp
	# * ----------------------------------------------------------------------------
	# * /