iOS Reverse Engineering

Question

iOS Reverse Engineering

crylonblue opened this issue 3 years ago · comments

Hey, i am currently trying to do your thing in python and for iOS.

I am trying to use frida for the ssl unpinning and mitmproxy for getting the traffic. But mitmproxy is unable to show the data properly. Any tips on reverse engineering the ig mqtt api on iOS?

Thanks in advance

nerix · Answer 1 · Fri Jul 30 2021 01:25:54 GMT+0800 (China Standard Time)

I haven't looked at ios.

Till Kemper · Answer 2 · Fri Jul 30 2021 06:40:44 GMT+0800 (China Standard Time)

Should be the same, the only difference i saw so far, that on android, the session gets saved in a cookie. In ios the Bearer-Token is present in the request header.

nerix · Answer 3 · Fri Jul 30 2021 15:04:27 GMT+0800 (China Standard Time)

In ios the Bearer-Token is present in the request header.

Android uses the token as well.

Till Kemper · Answer 4 · Sat Aug 07 2021 00:33:10 GMT+0800 (China Standard Time)

I think for the most part, it should be the same.
Any tipps on reverse engineering in ios? My current setup is wireshark, with mitm proxy transparent, and frida for ssl unpin. Anything I have to lookout for and maybe some resources where i can find something about mqttot?

nerix · Answer 5 · Sat Aug 07 2021 00:36:42 GMT+0800 (China Standard Time)

Any tipps on reverse engineering in ios?

I have never done iOS RE.

Anything I have to lookout for and maybe some resources where i can find something about mqttot?

MQTToT isn't a standard. You can look here on how it's different from regular MQTT 3/3.1.