1. Install required software on the MAC

  1. Install frida
brew install python3
pip3 install frida
pip3 install frida-tools
Copy the code
  1. Install frida – ios – dump

Download frida-ios-dump, go to the file directory and run the following command to install it

sudo pip3 install -r requirements.txt --upgrade
Copy the code
Possible problems
  1. Stuck inRunning setup.py install for frida
    1. Download the corresponding Python version of Frida and install frida.egg
    2. Install the egg using easy_install
Install easy_install 1. Go to download setuptools pypi website, extract the https://pypi.org/project/frida/#files 2. Run python3 setup.py install from the decompression pathCopy the code

2. Install Frida on jailbroken phones

  1. Enter the Cydia

  2. Add the software source build.frida.re/

  3. Add Frida (the new version will automatically determine the installation path according to the mobile system version)

3. Test the connection

The terminal executionfrida-ps -U
PID Name -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- - 3111 App Store Cydia Safari 3035 2315 7153 Siri search 2544 iTunes 6925 WeChat 7518 screenshots 7520 photo 3114 purse 2423 music 2313 ACCHWComponentAuthService 2402 AKLocationSignInAlert...Copy the code
Possible problems
zsh: command not found: frida-ps
Copy the code

The solution

  1. Check whether Frida-Tools is installed using pip3 list
  2. throughpip3 show frida-toolsFinding the installation path/ Users/XXX/Library/Python / 3.8 / lib/Python/site - packages
  3. Find the bin directory corresponding to lib/ Users/XXX/Library/Python / 3.8 / bin
  4. Add to ~/.zshrc or ~/.bash_profile (depending on which one you use)
  5. Run source ~/.zshrc or source ~/.bash_profile

4. Modify the configuration information

  1. Go to the frida-ios-dump folder and change itdump.py
User = 'root'
Password = 'alpine'
Host = 'localhost'
Port = 2222
Copy the code
  1. performpython3 ./dump.py -l
PID Name Identifier ---- ------------ --------------------------------------- 3111 App Store com.apple.AppStore 7138 BOSS hired straight com. HPBR. Bosszhipin 7153 Cydia com. Saurik. Cydia 6925 WeChat com. Tencent. Xin 7520 photos com. Apple. Mobileslideshow 2423 music  com.apple.MusicCopy the code
  1. performpython3 dump.py Identifier IdentifierIs the ID of the one above for examplecom.apple.AppStore

4. Change the suffix to zip. Open the executable file and drag it into MachOview

The python command line pip3 show 'listName' shows where the installation package whereis python3 python3 is locatedCopy the code