osakaboy

On this board does @ notify him/her of this thread? Also, while I'm at it, I want to know if we can access the watch.app that's on the iPhone. i.e. get the IPA / binary and flex/clutch it.

I was thinking of buying an iPad instead of using my spare iPhone 5 but then I thought about it and realized that I use MBP Terminal anyway so I might as well continue using the iPhone 5. We use the device only to access installed apps anyway right. It's not like I'm on the road wifi hacking so. Is there any benefit to using a large device?

For example. I want to study Obj-C code methods in workout apps. Is there a way to get that binary? People are installing Cydia on watches so I thought maybe there's a way to access a binary / IPA.

Found it lol. I had to switch into watchOS SDK. But it looks like this. /Applications/Xcode.app/Contents/Developer/Platforms/WatchOS.platform/Developer/SDKs/WatchOS.sdk/System/Library/PrivateFrameworks http://imgur.com/4T1b2Wz How do I dump the headers for HealthLite/framework? There is only a tbd file. Apple says Btw, I'm wondering. Apple said devs now have access to the sensor but why is HealthLite still a private framework? .

Sorry, I'm new to this. You mean inside of Xcode Packages? I've looked in all the folders but didn't see anything related to WatchKit.

You mean the WatchKit SDK? GM was just released today right?

So you're saying that the frameworks in the firmware are not the same as the frameworks in the OS? So how do I dump the headers of the OS like he did on Git?

How do you get to the headers? Do I have to dump some files within the firmware download folder? Do I need an actual IPSW? How would have have gotten to the headers? ISPWs aren't available so I'm wondering how people are doing this? Thanks

I see. OK Are Flex2 and Clutch 1.4.7 on Cydia? I saw class-dump-dyld on Cydia. Same one? So just use clutch appName? Or clutch 4FF33914-8FFE-473E-A9D2-E397441117RV? You sure? What do you mean "more"? Like what?

So to clarify we CAN read the .m source code by using clutch then using IDA? Are the ARM instructions the same as the method definitions? i.e. the code the programmer wrote? But how do you clutch the executable if its number value i.e. 1-23 isn't listed in clutch? i.e. "clutch 2". And are you saying I should use classdump-dyld instead of the older class-dump tools? Classdump-dyld is specifically written for iOS 8?

HaHa and make billions$. I guess no one on iOS Gods is actually a god then No one is going to teach me how to clutch stock apps?

Ok well IDC/IDA is all new to me. I don't want to do any hacking per se. I just want to view the original code that was created with the IDE. Is the closest we can get the header files with class-dump? Also how do we clutch stock Apple apps?

Hi Wow what an amazing forum this is. I am relatively new to pen-testing and stumbled upon this forum via googling clutch/class-dump-z etc. I have been successful with clutch, class-dump, gdb, etc but some details elude me. 1. Clutch doesn't list stock Apple apps so how are we supposed to clutch them? Via grep PID? 2a. All of this pen-testing produces only class header methods and property names etc? What about the REAL data that's in the methods defined in the .m files such as domain addresses, beacon UIDs, method definitions etc? 2b. So gdb gives us @selector names which are the names of the functions/methods but how are we supposed to work with the function names if we don't have the method definition? I was sort of disappointed with the results of my first days of pen-testing because I thought I could learn more about coding via dumped .m files where all the valuable syntax is located. It was the whole point of starting to learn pen-testing. Are there any tools to view the actual code of a binary? Btw, all this stuff is fine for Obj-C but what about Swift binaries? Cycript is the way to go? I've been reading tons of tutorials on iOS security but a lot of them seem to pre-date iOS 8. Some say use class-dump, some say use class-dump-z etc. Are there any current tutorials that are super thorough from basic of clutch all the way up to hooking into runtime? Thanks