alonemonkey / frida-ios-dump Goto Github PK

Is it possible to be able to use this tool without having a PC
e.g running this tool directly on iOS using the MTerminal or other clients

Hello, i installed an application from itunes on my iphone, so it should contain arm64 and armv7 arch, only it only pulls out the arm64, could you make an option for that it will dump both? or choose.

(python3) ➜ frida-ios-dump-3.x python dump.py com.quvideo.XiaoYing
Start the target app com.quvideo.XiaoYing
*** Caught exception: <type 'exceptions.UnicodeEncodeError'>: 'ascii' codec can't encode characters in position 0-1: ordinal not in range(128)
Traceback (most recent call last):
File "dump.py", line 315, in
start_dump(session, output_ipa)
File "dump.py", line 270, in start_dump
print('Dumping {} to {}'.format(display_name, TEMP_DIR))
UnicodeEncodeError: 'ascii' codec can't encode characters in position 0-1: ordinal not in range(128)

0.00B [00:00, ?B/s]*** Caught exception: <type 'exceptions.UnicodeEncodeError'>: 'ascii' codec can't encode characters in position 0-1: ordinal not in range(128)
Traceback (most recent call last):
File "dump.py", line 315, in
start_dump(session, output_ipa)
File "dump.py", line 276, in start_dump
generate_ipa(PAYLOAD_PATH, ipa_name)
File "dump.py", line 71, in generate_ipa
print('Generating "{}"'.format(ipa_filename))
UnicodeEncodeError: 'ascii' codec can't encode characters in position 0-1: ordinal not in range(128)

分別為兩個地方出現問題
目前將其註解可以正常運行
# print('Generating "{}"'.format(ipa_filename))
# print('Dumping {} to {}'.format(display_name, TEMP_DIR))

devices = [dev for dev in device_manager.enumerate_devices() if dev.type == 'tether']

dev.type 貌似变成usb了

[Device(id="cb626dc71d1a8e23893830c33cd4d2e861d5ae40", name="iPhone", type='usb')]

guobaomingdeMac:frida-ios-dump guobaoming$ dump.py Traceback (most recent call last): File "/opt/dump/frida-ios-dump/dump.py", line 9, in <module> import frida ImportError: No module named frida

Install frida on device ，
Downloading/unpacking frida
Cannot fetch index base URL https://pypi.python.org/simple/
Could not find any downloads that satisfy the requirement frida
Cleaning up...
No distributions at all found for frida
Storing debug log for failure in /Users/mac/Library/Logs/pip.log

./dump.py 人民同泰
Start the target app 人民同泰
Dumping 人民同泰 to /var/folders/9s/jg1yf4b15p7d2kyxw9s0ccv40000gn/T
start dump /var/containers/Bundle/Application/8B421C03-655F-4375-A06A-B06F40F4DA0F/RMTT.app/RMTT
0.00B [00:00, ?B/s]chmod: /var/folders/9s/jg1yf4b15p7d2kyxw9s0ccv40000gn/T/Payload/RMTT.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/9s/jg1yf4b15p7d2kyxw9s0ccv40000gn/T/Payload/RMTT.fid')' returned non-zero exit status 1

start dump /private/var/containers/Bundle/Application/8B421C03-655F-4375-A06A-B06F40F4DA0F/RMTT.app/Frameworks/AFNetworking.framework/AFNetworking
0.00B [00:00, ?B/s]chmod: /var/folders/9s/jg1yf4b15p7d2kyxw9s0ccv40000gn/T/Payload/AFNetworking.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/9s/jg1yf4b15p7d2kyxw9s0ccv40000gn/T/Payload/AFNetworking.fid')' returned non-zero exit status 1

设备信息

iPod Touch 5,
iOS 9.3.5

详细描述

1. 输入一次./dump.py xx后，打开其他应用直接闪退，只有之前dump的应用可以正常打开。
2. 如果没有事先把需要dump的应用加载到前台，应用会在执行到session = device.attach(target);的时候自动闪退

一直显示；
dump.py com.laiwang.DingTalk
Waiting for USB device...

iOS10.0.2，没有安装scp,（一直没找到，求一个scp）。

端口也设置好了：
iproxy 2235 22
waiting for connection

ssh也能登上去：
CCiPhone:~ root#

I'm having trouble after updating frida from 10.7.x to 11.0.3

Start the target app Confluence Failed to enumerate applications: unable to communicate with remote frida-server; please ensure that major versions match and that the remote Frida has the feature you are trying to use *** Caught exception: <type 'exceptions.TypeError'>: 'NoneType' object is not iterable Traceback (most recent call last): File "./dump.py", line 308, in <module> (session, display_name, bundle_identifier) = open_target_app(device, name_or_bundleid) File "./dump.py", line 251, in open_target_app for application in get_applications(device): TypeError: 'NoneType' object is not iterable

However frida-ps -U works and both client and remote server are the same version.
Tested against a device with a lower version of frida and it works. Unfortunately I need to dump an iOS11 App and all my iOS11 devices are on the higher frida version.

试了下腾讯视频可以顺利砸壳，微信、钉钉报错 unexpected error while resuming process: (os/kern) failure，也没其他错误信息，就这一句，不知道什么原因？

操作前提：
ipod 6 ios8.4 已经越狱，已经安装AppSync Unified的ipa补丁（依赖Cydia Substrate），已安装frida
MAC 10.13.3，已安装frida-ios-dump脚本和全部依赖

操作步骤：
按照教程，输入./dump.py com.tencent.xin，dump出 微信.ipa 文件
卸载ipod官方微信
将dump出的微信.ipa拷入ipod，使用Filza安装
ipod上执行dump的微信

结果：
点开瞬间闪退

期望：
可以正常运行

其他：
Clutch-2.0.4 dump会失败 但是dump出来的中间文件是解密的，中间文件包含WeChat主程序，用Clutch搞出的解密的WeChat主程序替换闪退的主程序，可以正常打开运行。经过对比二者二进制文件是__LINKEDIT段数据有差异，而且ipod 5 32位CPU也是这个症状，也是__LINKEDIT段数据有差异。附件是ipod 6的两个主程序，一个可运行，一个不可运行。

WeChat.z01.zip
WeChat.z02.zip
WeChat.z03.zip
WeChat.zip

Hi
When i try using dump.py in terminal, it show that:

File "/Users/LinhMui/Downloads/frida-ios-dump-master/dump.py", line 58
print 'Waiting for USB device...'
^
SyntaxError: Missing parentheses in call to 'print'. Did you mean print('Waiting for USB device...')?

Although i connect success with iproxy 2222 22 and using ssh root@localhost -p 2222

Please help
Thanks

Most apps can be dumped, while there's one app always shows unable to launch iOS app: The operation couldn’t be completed. (FBSOpenApplicationErrorDomain error 4.).
What does this mean? And how can I fix it? Needs for help, please.

Found another output unexpected error while probing dyld of target process also stops the dumping procedure.

./dump.py com.laiwang.DingTalk
Start the target app com.laiwang.DingTalk
Dumping 钉钉 to /var/folders/66/vj8tq0cx16b5_4cvq8ysg5240000gp/T
start dump /var/containers/Bundle/Application/4E62A975-C915-4DD9-81C4-BD7D1ED718C1/DingTalk.app/DingTalk
0.00B [00:00, ?B/s]chmod: /var/folders/66/vj8tq0cx16b5_4cvq8ysg5240000gp/T/Payload/DingTalk.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/66/vj8tq0cx16b5_4cvq8ysg5240000gp/T/Payload/DingTalk.fid')' returned non-zero exit status 1

start dump /private/var/containers/Bundle/Application/4E62A975-C915-4DD9-81C4-BD7D1ED718C1/DingTalk.app/Frameworks/DTSharedFramework.framework/DTSharedFramework
0.00B [00:00, ?B/s]chmod: /var/folders/66/vj8tq0cx16b5_4cvq8ysg5240000gp/T/Payload/DTSharedFramework.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/66/vj8tq0cx16b5_4cvq8ysg5240000gp/T/Payload/DTSharedFramework.fid')' returned non-zero exit status 1

0.00B [00:00, ?B/s]chmod: /var/folders/66/vj8tq0cx16b5_4cvq8ysg5240000gp/T/Payload/DingTalk.app: No such file or directory
Command '('chmod', '755', u'/var/folders/66/vj8tq0cx16b5_4cvq8ysg5240000gp/T/Payload/DingTalk.app')' returned non-zero exit status 1

0.00B [00:00, ?B/s]Generating "钉钉.ipa"
[Errno 2] No such file or directory: u'/var/folders/66/vj8tq0cx16b5_4cvq8ysg5240000gp/T/Payload/DingTalk.fid'

1 Turn on flying mode
2 Turn on WIFI
3 Start target app
4 dump.py -l
5 Start frida dump on mac (use app id instead)

BEFORE
Toms-Mac-mini:~ lakr$ /Users/lakr/Desktop/frida-ios-dump-master/dump.py com.cmplay.dancingline
Start the target app dancing
the connection is closed

AFTER 👍
Toms-Mac-mini:~ lakr$ /Users/lakr/Desktop/frida-ios-dump-master/dump.py com.cmplay.dancingline
Start the target app com.cmplay.dancingline
Dumping Dancing Line to /var/folders/5l/8c5xl42d3g30_tfn9n9k4z1r0000gn/T
start dump /var/containers/Bundle/Application/4C94D2B0-47E7-40BC-8B2A-6D47104911B5/dancingline.app/dancingline
dancingline.fid: 100%|███████████| 40.5M/40.5M [00:08<00:00, 4.75MB/s]
dancingline.entitlements: 235MB [01:00, 4.08MB/s]
0.00B [00:00, ?B/s]
Generating "Dancing Line.ipa"

有点莫名其妙，之前是好的，看看有没有遇到相同情况的

一运行就报kern错误

frida-ios-dump-master ./dump.py 微信
Start the target app 微信
unexpected error while resuming process: (os/kern) failure

accepted connection, fd = 6
waiting for connection
Number of available devices == 1
Requesting connecion to device handle == 80 (serial: 83aaaaef391884c5ce7034df8131447054ad2841), port 22
run_ctos_loop: fd = 6
run_stoc_loop: fd = 6
recv failed: Resource temporarily unavailable

Hi. It would be great if app extensions from Plugins folder of .ipa be also decrypted.

waiting for connection
然后我更新了Python 3.7
iproxy 2222 22
提示
bind(): @address already in use

请问 我应该怎么修改环境

我尝试在ssh root @127.0.0.1 -p 2222 运行./dump.py，不行，no such file or directory。dump.py是要怎么运行？不好意思我是新手刚开始接触ios，麻烦你了。

ps：我在iphone:~ root# 这个窗口ls只有Library/ 和Media/. 正常来说我越狱iphone ls root 不应该只有两个文件夹啊。谢谢！

https://github.com/Co2333/coreBase/blob/master/OneMonkey.sh

It will auto install following thing:

HomeBrew
wget
ldid
ldid2
dpkg
libimobiledevice
libimobileinstaller
python
THEOS
MonkeyDev
frida-tools
frida-ios-dump

It will auto swip the localhost to user ip and also ios device ssh password

After install, run this py like
username$ fridaDP.py -l

n$ ./dump.py qq
Authentication failed.

File "./dump.py", line 58
print 'Waiting for USB device...'
iproxy 2222 22
waiting for connection
请问这是什么问题啊 是端口映射有问题吗

waiting for connection
然后我更新了Python 3.7
iproxy 2222 22
提示
bind(): @address already in use

请问 我应该怎么修改

/Users/yifang/Desktop/IFunApp/TargetApp/IFunApp.app/Frameworks/SMKit.framework/SMKit
This file is encrypted! please use https://github.com/AloneMonkey/frida-ios-dump to decrypt!
在已经砸过壳的IPA内部,一个.framework提示被加密,请问该怎么做?

I try to use this on ios 11 and i open the app that i want to target and use ./dump.py target
Start the target app target
the connection is closed (and app closes) i run it on python27-x64 (also tried x32) with all the requirments installed (except i updated frida from 10.6.58 to 10.6.59.)

Hi, I have this error when run frida-ios-dump. Please advise

MacBook-Air:frida-ios-dump Admin$ ./dump.py -o iOSAPP.ipa com.will.go
*** Caught exception: <type 'exceptions.ImportError'>: dlopen(/Library/Python/2.7/site-packages/cryptography-2.2.2-py2.7-macosx-10.13-intel.egg/cryptography/hazmat/bindings/_openssl.so, 2): Symbol not found: _d2i_DHxparams
Referenced from: /Library/Python/2.7/site-packages/cryptography-2.2.2-py2.7-macosx-10.13-intel.egg/cryptography/hazmat/bindings/_openssl.so
Expected in: flat namespace
in /Library/Python/2.7/site-packages/cryptography-2.2.2-py2.7-macosx-10.13-intel.egg/cryptography/hazmat/bindings/_openssl.so
Traceback (most recent call last):
File "./dump.py", line 306, in
ssh.connect(Host, port=Port, username=User, password=Password)
File "build/bdist.macosx-10.13-intel/egg/paramiko/client.py", line 392, in connect
t.start_client(timeout=timeout)
File "build/bdist.macosx-10.13-intel/egg/paramiko/transport.py", line 545, in start_client
raise e
ImportError: dlopen(/Library/Python/2.7/site-packages/cryptography-2.2.2-py2.7-macosx-10.13-intel.egg/cryptography/hazmat/bindings/_openssl.so, 2): Symbol not found: _d2i_DHxparams
Referenced from: /Library/Python/2.7/site-packages/cryptography-2.2.2-py2.7-macosx-10.13-intel.egg/cryptography/hazmat/bindings/_openssl.so
Expected in: flat namespace
in /Library/Python/2.7/site-packages/cryptography-2.2.2-py2.7-macosx-10.13-intel.egg/cryptography/hazmat/bindings/_openssl.so
MacBook-Air:frida-ios-dump Admin$

Thank you!

The app is on my iphone5s, and the python on my Mac installed by homebrew.
----------------I comment 2 lines in dump.py as follows.

--------------my python version and encoding setting.
$ python
Python 3.6.4 (default, Mar 1 2018, 18:36:50)
[GCC 4.2.1 Compatible Apple LLVM 9.0.0 (clang-900.0.39.2)] on darwin
Type "help", "copyright", "credits" or "license" for more information.

import sys
sys.stdout.encoding
'UTF-8'
sys.stdin.encoding
'UTF-8'

-------------------when exec the dump.py ........

$> ./dump.py com.tencent.xin
Start the target app com.tencent.xin
Dumping 微信 to /var/folders/bw/dwsmrjcj4q525gncfslc6wc80000gn/T
start dump /var/containers/Bundle/Application/513AFD65-2831-4312-8B48-3DC1D88C4555/WeChat.app/WeChat
0.00B [00:00, ?B/s]Traceback (most recent call last):
File "/usr/local/lib/python3.6/site-packages/frida/core.py", line 403, in _on_message
callback(message, data)
File "./dump.py", line 110, in on_message
scp.get(scp_from, scp_to)
File "/usr/local/lib/python3.6/site-packages/scp.py", line 198, in get
self._recv_all()
File "/usr/local/lib/python3.6/site-packages/scp.py", line 346, in _recv_all
commandcode
File "/usr/local/lib/python3.6/site-packages/scp.py", line 408, in _recv_file
self._progress(path, size, pos)
File "./dump.py", line 97, in progress
t.update(sent - last_sent[0])
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 1073, in update
self.sp(self.repr())
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 906, in repr
self.bar_format, self.postfix, self.unit_divisor)
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 360, in format_meter
l_bar = prefix if bool_prefix_colon_already else prefix + ": "
TypeError: can't concat str to bytes
Exception ignored in: <object repr() failed>
Traceback (most recent call last):
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 897, in del
self.close()
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 1141, in close
self.sp(self.repr())
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 906, in repr
self.bar_format, self.postfix, self.unit_divisor)
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 360, in format_meter
l_bar = prefix if bool_prefix_colon_already else prefix + ": "
TypeError: can't concat str to bytes
0.00B [00:00, ?B/s]Traceback (most recent call last):
File "/usr/local/lib/python3.6/site-packages/frida/core.py", line 403, in _on_message
callback(message, data)
File "./dump.py", line 128, in on_message
scp.get(scp_from, scp_to, recursive=True)
File "/usr/local/lib/python3.6/site-packages/scp.py", line 198, in get
self._recv_all()
File "/usr/local/lib/python3.6/site-packages/scp.py", line 346, in _recv_all
commandcode
File "/usr/local/lib/python3.6/site-packages/scp.py", line 408, in _recv_file
self._progress(path, size, pos)
File "./dump.py", line 97, in progress
t.update(sent - last_sent[0])
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 1073, in update
self.sp(self.repr())
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 906, in repr
self.bar_format, self.postfix, self.unit_divisor)
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 360, in format_meter
l_bar = prefix if bool_prefix_colon_already else prefix + ": "
TypeError: can't concat str to bytes
Exception ignored in: <object repr() failed>
Traceback (most recent call last):
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 897, in del
self.close()
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 1141, in close
self.sp(self.repr())
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 906, in repr
self.bar_format, self.postfix, self.unit_divisor)
File "/usr/local/lib/python3.6/site-packages/tqdm/_tqdm.py", line 360, in format_meter
l_bar = prefix if bool_prefix_colon_already else prefix + ": "
TypeError: can't concat str to bytes
0.00B [00:00, ?B/s]
Generating "微信.ipa"
'app'

Start the target app XXX
the connection is closed
然后就重启了.

大概知道什么原因吗? 看不到任何日志

设备

iPod Touch 5,
iOS 9.3.5

描述

dump使用库比较多的应用，例如即刻。

1. 每一个库都需要输入输入一次ssh密码。这一步是必须的吗，还是有什么优化方案
2. 即刻的ipa到最后都没有成功dump出来。因为到最后几个库的时候，出现了ssh_exchange_identification: read: Connection reset by peer，导致缺少对应的库

最终错误

[Errno 2] No such file or directory: u'/Users/xxx/Documents/frida-ios-dump/Payload/libswiftPhotos.dylib'

[AR]:
While dumping an application from the device, I obtain the following error:

0.00B [00:00, ?B/s]Traceback (most recent call last):
File "C:\Users[user]\AppData\Local\Programs\Python\Python37\lib\site-packages\frida\core.py", line 295, in _on_message
callback(message, data)
File "dump.py", line 127, in on_message
scp.get(scp_from, scp_to, recursive=True)
File "C:\Users[user]\AppData\Local\Programs\Python\Python37\lib\site-packages\scp.py", line 217, in get
self._recv_all()
File "C:\Users[user]\AppData\Local\Programs\Python\Python37\lib\site-packages\scp.py", line 368, in _recv_all
commandcode
File "C:\Users[user]\AppData\Local\Programs\Python\Python37\lib\site-packages\scp.py", line 416, in _recv_file
self._progress(path, size, 0)
File "dump.py", line 94, in progress
t.desc = os.path.basename(filename).decode("utf-8")
AttributeError: 'str' object has no attribute 'decode'

[FIX]
The issue is fixed by removing .decode("utf-8") in line 94 from "t.desc = os.path.basename(filename).decode("utf-8")" in progress procedure.

dump.py出来错误spawn already in progress for the specified identifier
expecting to read a single byte for receiving credentials but read zero bytes
打开app后马上闪退

打开APP之前：
➜ frida-ios-dump ./dump.py XXXX
Start the target app XXXX
unexpected error while probing dyld of target process

打开APP之后：
➜ frida-ios-dump ./dump.py XXXX
Start the target app XXXX
expecting to read a single byte for receiving credentials but read zero bytes

在iPhone6 iOS9.0.1 我将微信运行到前台但是还是会报 the connection is closed的错误

$iproxy 2222 22
waiting for connection
accepted connection, fd = 4
waiting for connection
Number of available devices == 2
Requesting connecion to device handle == 5 (serial: ac3be5085b47fae1e0e99db785b6bb5af8faeb56), port 22
run_ctos_loop: fd = 4
run_stoc_loop: fd = 4
recv failed: Resource temporarily unavailable

$ ./dump.py yueche
Start the target app yueche
the connection is closed

Dumping 驾考宝典 to /var/folders/b7/k_cc6p0s20z1mr758cch1c740000gn/T
start dump /var/containers/Bundle/Application/2203AC5F-DB24-49D3-8FC4-A8635AAF23EE/jiakaobaodianPromise.app/jiakaobaodianPromise
0.00B [00:00, ?B/s]chmod: /var/folders/b7/k_cc6p0s20z1mr758cch1c740000gn/T/Payload/jiakaobaodianPromise.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/b7/k_cc6p0s20z1mr758cch1c740000gn/T/Payload/jiakaobaodianPromise.fid')' returned non-zero exit status 1

0.00B [00:00, ?B/s]chmod: /var/folders/b7/k_cc6p0s20z1mr758cch1c740000gn/T/Payload/jiakaobaodianPromise.app: No such file or directory
Command '('chmod', '755', u'/var/folders/b7/k_cc6p0s20z1mr758cch1c740000gn/T/Payload/jiakaobaodianPromise.app')' returned non-zero exit status 1

0.00B [00:00, ?B/s]Generating "驾考宝典.ipa"
[Errno 2] No such file or directory: u'/var/folders/b7/k_cc6p0s20z1mr758cch1c740000gn/T/Payload/jiakaobaodianPromise.fid'

➜ frida-ios-dump ./dump.py test
Start the target app test
Dumping test to /var/folders/0d/jc6v_dxd4qq766srdv8jbg8w0000gn/T
start dump /var/containers/Bundle/Application/47DF4AEB-F4CF-460D-9CD4-6FC90BB30211/test.app/testHotlivey
testHotlivey.fid: 100%|████████████████████████████████████████████████████████| 63.8M/63.8M [00:09<00:00, 7.23MB/s]
start dump /private/var/containers/Bundle/Application/47DF4AEB-F4CF-460D-9CD4-6FC90BB30211/testHotlivey.app/Frameworks/KMCAgoraVRTC.framework/KMCAgoraVRTC
0.00B [00:00, ?B/s]

然后就一直没反应了。。

I have opend the application before dumping, the console show error "Unable to connect...",
but input ./dump.py command, it can show all installed apps.

This script works perfectly, thanks.
but some apps like Facetune 2 or Memrise crashed and didn't open after reinstalling, would you please check. i'm on jailbroken ios 11 with electra

没有越狱的手机怎么破壳？？

➜  frida-ios-dump-master sudo pip install -r requirements.txt --upgrade
Requirement already up-to-date: asn1crypto in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 1)) (0.24.0)
Requirement already up-to-date: bcrypt in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 2)) (3.1.4)
Requirement already up-to-date: cffi in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 3)) (1.11.5)
Requirement already up-to-date: colorama in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 4)) (0.3.9)
Requirement already up-to-date: cryptography in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 5)) (2.3.1)
Requirement already up-to-date: enum34 in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 6)) (1.1.6)
Requirement already up-to-date: frida in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 7)) (12.2.11)
Requirement already up-to-date: idna in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 8)) (2.7)
Requirement already up-to-date: ipaddress in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 9)) (1.0.22)
Requirement already up-to-date: paramiko in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 10)) (2.4.2)
Requirement already up-to-date: prompt-toolkit in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 11)) (2.0.5)
Requirement already up-to-date: pyasn1 in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 12)) (0.4.4)
Requirement already up-to-date: pycparser in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 13)) (2.19)
Requirement already up-to-date: Pygments in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 14)) (2.2.0)
Requirement already up-to-date: PyNaCl in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 15)) (1.3.0)
Requirement already up-to-date: scp in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 16)) (0.11.0)
Requirement already up-to-date: six in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 17)) (1.11.0)
Requirement already up-to-date: tqdm in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 18)) (4.26.0)
Requirement already up-to-date: wcwidth in /usr/local/lib/python2.7/site-packages (from -r requirements.txt (line 19)) (0.1.7)

➜  frida-ios-dump-master frida-ps -U
 PID  Name
----  --------------------------------------------------------
4298  Cydia
3474  MusicUIService
4224  微信读书
 706  邮件
1405  AppleCredentialManagerDaemon
3460  AssetCacheLocatorService
 843  CacheDeleteAppContainerCaches
 656  CallHistorySyncHelper
 714  CloudKeychainProxy
 540  CommCenter
4058  EscrowSecurityAlert
 668  IMDPersistenceAgent
 713  KeychainSyncingOverIDSProxy
...

It looks very good. but

➜  frida-ios-dump-master python /Users/Star/Downloads/frida-ios-dump-master/dump.py
Traceback (most recent call last):
  File "/Users/Star/Downloads/frida-ios-dump-master/dump.py", line 9, in <module>
    import frida
ImportError: No module named frida
➜  frida-ios-dump-master sudo pip list | grep frida
frida          12.2.11
frida-tools    1.2.2

➜  frida-ios-dump-master pip -V
pip 18.1 from /usr/local/lib/python2.7/site-packages/pip (python 2.7)

according to #38.

Can you Help me 😭😭😭

framework动态库如果没有加载（或在后期某个时刻才加载），则不会dump，有办法解决吗？

please support ios 12 un0cover

提示如下:

sudo ./dump.py 电话
Start the target app 电话
Dumping 电话 to /tmp
start dump /Applications/MobilePhone.app/MobilePhone
0.00B [00:00, ?B/s]chmod: /tmp/Payload/MobilePhone.fid: No such file or directory
Command '('chmod', '655', '/tmp/Payload/MobilePhone.fid')' returned non-zero exit status 1.

0.00B [00:00, ?B/s]chmod: /tmp/Payload/MobilePhone.app: No such file or directory
Command '('chmod', '755', '/tmp/Payload/MobilePhone.app')' returned non-zero exit status 1.

0.00B [00:00, ?B/s]Generating "电话.ipa"
[Errno 2] No such file or directory: '/tmp/Payload/MobilePhone.fid'

Failed to enumerate applications: unable to connect to remote frida-server: Unable to connect (connection refused)
*** Caught exception: <type 'exceptions.TypeError'>: 'NoneType' object is not iterable
Traceback (most recent call last):
File "./dump.py", line 308, in
(session, display_name, bundle_identifier) = open_target_app(device, name_or_bundleid)
File "./dump.py", line 251, in open_target_app
for application in get_applications(device):
TypeError: 'NoneType' object is not iterable

抖音脱壳的ipa在issues中未找到啊。能在分享一下吗？

adeMac:~ a$ frida-ps -U
PID Name

1227 InCallService
2645 SafariViewService
2683 ����
2824 ���迹
2793 ��
2817 AKLocationSignInAlert
2790 CloudKeychainProxy
981 CommCenter

./dump.py com.tencent.xin
Start the target app com.tencent.xin
Dumping 微信 to /var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T
start dump /var/containers/Bundle/Application/FC7574FD-C99D-49DE-8130-AF824051424A/WeChat.app/WeChat
0.00B [00:00, ?B/s]chmod: /var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/WeChat.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/WeChat.fid')' returned non-zero exit status 1

start dump /private/var/containers/Bundle/Application/FC7574FD-C99D-49DE-8130-AF824051424A/WeChat.app/Frameworks/WCDB.framework/WCDB
0.00B [00:00, ?B/s]chmod: /var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/WCDB.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/WCDB.fid')' returned non-zero exit status 1

start dump /private/var/containers/Bundle/Application/FC7574FD-C99D-49DE-8130-AF824051424A/WeChat.app/Frameworks/MMCommon.framework/MMCommon
0.00B [00:00, ?B/s]chmod: /var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/MMCommon.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/MMCommon.fid')' returned non-zero exit status 1

start dump /private/var/containers/Bundle/Application/FC7574FD-C99D-49DE-8130-AF824051424A/WeChat.app/Frameworks/MultiMedia.framework/MultiMedia
0.00B [00:00, ?B/s]chmod: /var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/MultiMedia.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/MultiMedia.fid')' returned non-zero exit status 1

start dump /private/var/containers/Bundle/Application/FC7574FD-C99D-49DE-8130-AF824051424A/WeChat.app/Frameworks/mars.framework/mars
0.00B [00:00, ?B/s]chmod: /var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/mars.fid: No such file or directory
Command '('chmod', '655', u'/var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/mars.fid')' returned non-zero exit status 1

0.00B [00:00, ?B/s]chmod: /var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/WeChat.app: No such file or directory
Command '('chmod', '755', u'/var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/WeChat.app')' returned non-zero exit status 1

0.00B [00:00, ?B/s]
Generating "微信.ipa"
[Errno 2] No such file or directory: u'/var/folders/7b/c3cyxy3j0t7_tgnt0dh5wc240000gn/T/Payload/WeChat.fid'

环境 MBPr macOS:10.13.3, iPhone 5s iOS:10.1.1