Wormhole is a frida wrapper for iOS penetration tester and reverse engineers.
It lets you dynamically analyze iOS applications and extract as much information as possible in an easy way, without the need of knowing and launching several frida's commands.
- SSL Pinning bypass
- Jailbreak detection bypass
- Unencrypted IPA extraction
- Hooks by class of functions
- Customizable hooks
- IPA static information (entitlements, Info.plist...)
- Keychain dump
- Opened files descriptors (vnode and socket)
- Objective-C in-memory object dump
- ...
Some functionalities could not give precise and complete results (for example, network or sqlite hooking modules).
The main componets of Wormhole are a GUI (TODO), wormhole-core, which is the main controller of the system, and wormhole-agent, which is a JS frida agent injected inside processes to be explored.
Build the project with make.
Run web server with make run-web.
Execute scripts with make run-trace or make run-dump.
- Web GUI
Certain parts of the wormhole-agent are taken from here.