Jump to content

[TUTORIAL] How To use GikDbg - LLDB for Windows!


Nini

10 posts in this topic

Recommended Posts

What is GikDbg?
GikDbg is a mobile platform assembly-level debugger, which is an application debugging tool for security researchers.It is based on: OllyDbg (32-bit assembler level analysing debugger for Microsoft? Windows); GDB (GDB, the GNU Project debugger); LLVM (collection of modular and reusable compiler and tool-chain technologies).
 

What features can GikDbg support?

  • ELF / Mach-O executable file static analysis;
  • Android / iOS App dynamic debugging;
  • Android / iOS remote console;
  • ARM assembler;
  • ARM disassembler;
  • Device file uploading and downloading;
  • Built-in GDB and LLDB;
  • Support for memory breakpoint, software breakpoint, conditional breakpoint;
  • Support for multi-threaded debugging;
  • Support for assembly code level file patching.

Download GikDbg

In this tutorial we will describe how to use the debugger gikdbg iOS App, App calculator explain our system as an example to explain the operation and Step by step, as well as some notes here.

 

Step 0. Front Description

 

Mobile client: iPhone 5, iOS 7.0.4, gikir_iserver v1.1.build140520.1;
PC side: ParallelDesktop virtual machine, Windows 8.0, gikdbg v1.1.build140520.1; 

 

Step 1. Connect the device.

Click on the icon for the phone side gikir_iserver run the service program, PC-side execution iDebug / Device / Login (USB) menu, get the following output shows a successful connection:
app-connect-300x9.jpg

If the situation can not connect appears in this step, please check them one by one:

1) Is there a process before lldb.exe left hand to kill and then restart gikdbg connection;
2) whether the 6080 port gikir_iserver used was left before gikir_iserver_root or / bin / sh process takes manually kill or restart the device and then restart gikir_iserver;
3) Are there other programs that use the Apple USB drive services and gikdbg conflicts, such procedures manual to kill and then restart gikdbg connection.

After the connection is successful, we can choose a different debug mode by iDebug / Option / Debugger, their characteristics are as follows:

GDB mode - debugging process equipment on 32 main thread or when debugging is recommended to use the specified function, the process of debugging symbols provided by gikdbg;
LLDB mode - recommended depth debugging process, this model is loaded for a long time, LLDB can analyze the information it needs some symbols, symbolic debugging process by gikdbg and lldb;
LLDB FAST mode - when the confirmatory debugging recommended, this mode load time is short, the process of debugging symbols provided by gikdbg. This mode is increased relative to the GDB mode debugging 32 64 equipment and multi-threaded code debugging features.

 

Step 2. Select the App Process
In iDebug / File / Attach menu pop-up window in the process list to find the calculator process:
app-proclist-300x193.jpg
Double-click or click Attach complete step process of selection;

 

Step 3. determine the patch operation
If this is the first time to debug the App, the confirmation dialog box will pop up as follows:
app-patch-300x173.jpg

Patch App for initial commissioning of conduct are:
1) Delete MH_PIE logo to process each time you load the base is fixed;
2) Record the UUID value of App;
3) If it is FAT formatted App disabled lowest and the highest schema version;
4) If it is then decrypt the encrypted App App;
5) into debugging aids dynamic library gikir_iserver_injecter.dylib;

You can patch above the list of processes and the console menu program list, right-of unpatch removed App restored to its original state before the patch.
If you choose to cancel will not be able to debug App, if you choose determines the implementation of the operation and return the entire patch App folder to the $ (GIKDBG) / iosapp / encrypted directory, decrypted App executable file back to $ (GIKDBG) / iosapp / decrypted directory. At this point can be decrypted executable statically analyzed by ida or gikdbg.
After the patch properly executed will be prompted to restart the App:
app-patch-ok-300x215.jpg
 
After the restart App repeat Step2 enter Step4.

 

Step 4. Mount App Process
app-attaching-300x170.jpg

This step GDB and LLDB FAST mode will be faster, LLDB mode will wait about 2-10 minutes, according to the size and complexity of the App;
If a long time (5 minutes) to wait for the main window yet into the CPU, you can manually cancel the wait.

 

Step 5. The main window into the Cpu

 

All goes as follows CPU will enter the main interface:
app-cpumain-300x190.jpg

 

Step 6. Select the main module
Execution iDebug / View / Module get the following window:
app-modlist-300x147.jpg
Select the main module and then double jump to the main module CPU window.

 

Step 7. Check the main module information
In the main module CPU to perform the disassembly listing window Right View object and View mach-o can be static data analysis:
app-maininfo-300x212.jpg

 

Step 8. breakpoint debugging
F2 function found under the rear break and we are interested in running, hit the breakpoint interface:
app-hitbkpt-300x170.jpg
This time you can debug function that we are interested in, and have the following precautions:
GDB mode - likely F7 F8 will always remain in the breakpoint address, this is the GDB Bug, you can cancel the breakpoint and then F7 F8 resolved;
LLDB mode --F8 can not single step through the function call, this is LLDB the Bug, can be resolved through F4 to the specified address.

 

Step 9. Check objc message call chain
If we want to see the news of the call chain App can be realized by $ detectobjc command:
app-detectobjc-300x189.jpg
This feature is not available in LLDB FAST mode. If you want to customize the output, Hook can be injected into the process of debugging functions in a dynamic library gikir_iserver_injecter.dylib:
int filter_objc_message (const char * cls, const char * sel);
cls is the class name, sel is the message name, return 0 printout, return a representation ignored;

giphy.gif\
THANKS to @Amuyea <3:hug:
 

Introducing the New iOSGods App+
Buy ViP to Support iOSGods. Click Me

=====================================

If my hacks don't work. Feel free to mention me or quote me and tell me the problem so I can fix it :) 

Only report hacks not working with all details (Screenshot / Screen Recorder your problem) instead of saying not working, you'll get blocked for wasting my time

Link to comment
Share on other sites

Wow u r good tut writer .. Good job

He just translated this from Chinese to English via Google Translate and just slammed it on the forum. I did some cleaning up and improved it. -_-

Throughout life people will make you mad, disrespect you and treat you bad. Let God deal with the things they do, cause hate in your heart will consume you too.
iOSGods Administrator
 Guidelines  Support Donate  FAQ 

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

  • Our picks

    • The Secret of Cat Island v1.1.9 +4 Jailed Cheats [ Unlimited Currencies ]
      Modded/Hacked App: The Secret of Cat Island By LikeItGames Co., Ltd.
      Bundle ID: com.likeitgames.iOSAfterRain2
      iTunes Store Link: https://apps.apple.com/us/app/the-secret-of-cat-island/id1599990384


      Hack Features:
      - Unlimited Gold -> Use some. Relaunch the game for it to take effect.
      - Unlimited Rubies -> Use some. Relaunch the game for it to take effect.
      - Unlimited Energy -> Will not decrease.
      -- Jailbreak Detection Bypassed


      Jailbreak required hack(s): [Mod Menu Hack] The Secret of Cat Island v1.1.3 +5 Cheats [ Unlimited Currencies ] - Free Jailbroken Cydia Cheats - iOSGods
      Modded Android APK(s): https://iosgods.com/forum/68-android-section/
      For more fun, check out the Club(s): https://iosgods.com/clubs/
      • 12 replies
    • The Secret of Cat Island v1.1.9 +5 Cheats [ Unlimited Currencies ]
      Modded/Hacked App: The Secret of Cat Island By LikeItGames Co., Ltd.
      Bundle ID: com.likeitgames.iOSAfterRain2
      iTunes Store Link: https://apps.apple.com/us/app/the-secret-of-cat-island/id1599990384


      Hack Features:
      - Unlimited Gold -> Use some. Relaunch the game for it to take effect.
      - Unlimited Rubies -> Use some. Relaunch the game for it to take effect.
      - Unlimited Energy -> Will not decrease.
      - Max Level -> Earn some XP. Relaunch the game for it to take effect.
      -- Jailbreak Detection Bypassed


      Non-Jailbroken & No Jailbreak required hack(s): [Non-Jailbroken Hack] The Secret of Cat Island v1.1.3 +4 Cheats [ Unlimited Currencies ] - Free Non-Jailbroken IPA Cheats - iOSGods
      Modded Android APK(s): https://iosgods.com/forum/68-android-section/
      For more fun, check out the Club(s): https://iosgods.com/clubs/
      • 29 replies
    • My Little Paradise: Island Sim v3.2.0 +11 Cheats [ Unlimited Everything ]
      Modded/Hacked App: My Little Paradise: Island Sim By Bucketplay Inc
      Bundle ID: com.bucketplay.mylittleparadise
      iTunes Store Link: https://apps.apple.com/us/app/my-little-paradise-island-sim/id1453955704?uo=4


      Hack Features:
      - Unlimited Everything -> Earn some currency or resource to get 65k of it. Exit and then relaunch the game for it to take effect.
      - Max Level -> Earn some XP to get max level.


      Non-Jailbroken & No Jailbreak required hack(s): https://iosgods.com/forum/79-no-jailbreak-section/
      Modded Android APK(s): https://iosgods.com/forum/68-android-section/
      For more fun, check out the Club(s): https://iosgods.com/clubs/
      • 53 replies
    • Summoners War Cheats v7.1.4 +7 [Semi Auto Updating]
      Hacked App: Summoners War By Com2uS Corp.
      iTunes Link: https://itunes.apple.com/us/app/summoners-war/id852912420?mt=8&uo=4&at=1010lce4
      Bundle ID: com.com2us.smon.normal.freefull.apple.kr.ios.universal

      Hack Features:
      - Damage Multiplier 
      - Godmode
      - Monster Count Unlink
      - Max Accuracy
      - No Skill Cooldown
      - First Turn
      - Build buildings without having required level
      - Antiban
        • Like
      • 5,887 replies
    • [ARM64] The Battle Cats v11.10.0 Jailed Cheats +2
      Modded/Hacked App: The Battle Cats by ponos corporation
      Bundle ID: jp.co.ponos.battlecatsen
      iTunes Store Link: https://apps.apple.com/us/app/the-battle-cats/id850057092?uo=4&at=1010lce4


      Hack Features:
      - Infinite Cash
      - OHK Linked


      Jailbreak required hack(s): https://iosgods.com/topic/124448-arm64-the-battle-cats-cheats-all-versions-2/


      iOS Hack Download Link: https://iosgods.com/topic/124447-arm64-the-battle-cats-v1070-jailed-cheats-2/
      • 546 replies
    • Minion Rush Cheats v8.8.0 +2 [ Free Store & Infinite Cards ]
      Modded/Hacked App: Minion Rush By Gameloft
      Bundle ID: com.gameloft.despicableme2
      iTunes Store Link: https://apps.apple.com/us/app/minion-rush/id596402997?uo=4


      Hack Features:
      - Free Store ( not Free iAP )
      * Allow purchase stuffs without having enough bananas or tokens


      iOS Hack Download Link: https://iosgods.com/topic/147752-minion-rush-cheats-v791-1/
      • 342 replies
    • BLEACH Brave Souls v14.2.1 [ Solo/Co-Op Mods ]
      Modded/Hacked App: Bleach: Brave Souls Anime Game By KLab Inc.
      Bundle ID: com.klab.bleach
      iTunes Store Link: https://apps.apple.com/us/app/bleach-brave-souls-anime-game/id1003168863?uo=4


      Hack Features:
      - AI/Enemy Doesn't Attack Offline
      - AI/Enemy Doesn't Attack Co-Op/Online
      - God Mode Co-Op/Online
      - God Mode Offline/Story Mode
      - One Hit Kill Co-Op/Online (use with god mode co-op)
      - One Hit Kill Offline/Story Mode
      - No Skill Cooldown Time Offline/Story Mode
      - No Special Skill Cooldown Time Co-Op/Online
      - No Special Skill Cooldown Time Offline/Story Mode
      - No Damage Done by Poison
      - No Swap Cooldown Offline/Story Mode

        • Thanks
        • Like
      • 4,585 replies
    • [ DBL ]ドラゴンボール レジェンズ By BANDAI NAMCO Entertainment Inc. v4.12.0  - [ Instant - Win & More ]
      Modded/Hacked App: ドラゴンボール レジェンズ By BANDAI NAMCO Entertainment Inc.
      Bundle ID: jp.co.bandainamcoent.BNEI0333
      iTunes Store Link: https://itunes.apple.com/jp/app/ドラゴンボール-レジェンズ/id1358232022


      Mod Requirements:
      - Jailbroken iPhone/iPad/iPod Touch.
      - iFile / Filza / iFunBox / iTools or any other file managers for iOS.
      - Cydia Substrate (from Cydia).
      - PreferenceLoader (from Cydia).


      Hack Features:
      - x Player Damage - x1 - 20 
      - x Player Defense - x1 - 20 
      - One Hit Kill
      - God Mode 
      - 1 Enemy Per Quest
      - Instant - Win - Enable It When You In Battle
      - No Swap CoolDown
      - No Vanish CoolDown
      - No KI Cost
      - Auto Complete All Challenges-> Currency/Chrono Crystals Hack!
      - Always Critical
      - Tutorial Bypass
      - All Cards Give DragonBalls

      All functions are unlinked and only for player, you!
      • 1,391 replies
    • [ Dragon Ball Legends Japan ] ドラゴンボール レジェンズ  v4.12.0 - [ Enemies Don't Attack & More]
      Modded/Hacked App: ドラゴンボール レジェンズ By BANDAI NAMCO Entertainment Inc.
      Bundle ID: jp.co.bandainamcoent.BNEI0333
      iTunes Store Link: https://itunes.apple.com/jp/app/ドラゴンボール-レジェンズ/id1358232022?mt=8


      Mod Requirements:
      - Jailbroken or Non-Jailbroken iPhone/iPad/iPod Touch.
      - Cydia Impactor.
      - A Computer Running Windows/Mac/Linux.


      Hack Features:
      - Enemies Don't Attack
      - No Ki Cost
      - Unlimited Ki
      - No Character Swap CoolDown
      - No Vanish CoolDown
      - Auto Complete All Challenges - Currency/Chrono Crystals Hack! 
      - Always Critical
      - All Cards Give DragonBall 

       This hack only works on x64 or ARM64 iDevices: iPhone 5s, 6, 6 Plus, 6s, 6s Plus, 7, 7 Plus, 8, 8 Plus, X, SE, iPod Touch 6G, iPad Air, Air 2, Pro & iPad Mini 2, 3, 4 and later.
      • 2,476 replies
    • [Free] Asphalt 8: Airborne Hack v6.7.0 +4 Cheats
      Modded/Hacked App: Asphalt 8: Airborne by Gameloft
      Bundle ID: com.gameloft.asphalt8
      iTunes Store Link: https://apps.apple.com/us/app/asphalt-8-airborne/id610391947


      Hack Features:
      - Unlimited Nitro Use / Nitro Doesn't Decrease
      - No Car Crash / No Wrecks
      - Anti-Ban -> Does not mean you can abuse the hack.
      - No Rank Required to do Mastery Missions

      This hack only works on x64 or ARM64 iDevices: iPhone 5s, 6, 6 Plus, 6s, 6s Plus, 7, 7 Plus, 8, 8 Plus, X, iPod Touch 6G, iPad Air, Air 2, Pro & iPad Mini 2, 3, 4 and later. This hack is an In-Game Mod Menu (iGMM). In order to activate the Mod Menu, tap on the iOSGods button found inside the app.

      ViP version of this hack with more features: https://iosgods.com/topic/39095-vip-asphalt-8-airborne-v321-13-cheats/
      Non-Jailbroken version of this hack: https://iosgods.com/topic/38140-hack-asphalt-8-airborne-v310-4-cheats-for-jailed-idevices-ios-10/
      For more fun, check out the Club(s): https://iosgods.com/clubs/
        • Like
      • 8,627 replies
    • [iOS 16 Support] Grim Soul: Survival v4.4.0 +6 Jailed Cheats [Free Crafting + More]
      Modded/Hacked App: Grim Soul: Survival By Andrey Pryakhin
      Bundle ID: fantasy.survival.game.rpg
      iTunes Store Link: https://itunes.apple.com/us/app/grim-soul-survival/id1366215798


      Mod Requirements:
      - Jailbroken or Non-Jailbroken iPhone/iPad/iPod Touch.
      - Cydia Impactor.
      - A Computer Running Windows/Mac/Linux.


      Hack Features:
      - Unlimited Storage Items - Taking storage items will increase them.
      - Free Crafting - Will allow you to craft items without the required materials.
      - No Crafting Level Requirement
      - Free Construction
      - Items Duplicate When Split
      - Unlimited Item Durability
      • 3,082 replies
    • Grim Soul: Survival v4.4.0 +19 Cheats [Unlimited Currencies + More]
      Modded/Hacked App: Grim Soul: Survival By Andrey Pryakhin
      Bundle ID: fantasy.survival.game.rpg
      iTunes Store Link: https://itunes.apple.com/us/app/grim-soul-survival/id1366215798


      Mod Requirements:
      - Jailbroken iPhone/iPad/iPod Touch.
      - iFile / Filza / iFunBox / iTools or any other file managers for iOS.
      - Cydia Substrate (from Cydia).
      - PreferenceLoader (from Cydia).


      Hack Features:
      - Unlimited Thalers/Coins & Crafting Points - Once enabled, purchase something using coins & use a craft point so the currencies stick, then disable this feature.
      - Unlimited Storage Items - Taking storage items will increase them.
      - Unlimited Energy / Instant Energy Refills - Will refill your energy once you run to another location.
      - Godmode - Unlinked. Health will still decrease but you won't die.
      - One-Hit Kill - Linked to the enemy. Would recommend enabling 'Godmode'.
      - Increased Attack Range - Allows you to kill enemies from some distance away.
      - Free Crafting - Will allow you to craft items without the required materials.
      - No Crafting Level Requirement
      - Free Construction
      - Items Duplicate When Split
      - Unlimited Item Durability
      - x2 Player Speed
      - x3 Player Speed
      • 4,184 replies
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
  • Create New...

Important Information

We would like to place cookies on your device to help make this website better. The website cannot give you the best possible user experience without cookies. You can accept or decline our non-essential cookies. You may also adjust your cookie settings. Privacy Policy - Guidelines