📱 objection - runtime mobile exploration
GPL-3.0 License
Bot releases are hidden (Show)
Published by leonjza over 6 years ago
v1.2.6
throw
statement.Published by leonjza over 6 years ago
v1.2.5
-r
flag to apktool
by default to skip resource decoding.Published by leonjza over 6 years ago
v1.2.4
--gadget-version
flag to the mobile patchers to specify the version of the Frida gadget to use.Published by leonjza almost 7 years ago
v1.2.3
android hooking watch class
command to watch all methods within a class.--json
flag to the ios cookies get
command to output cookies as a JSON structure.ios ui screenshot
command that caused screenshots to fail to write to disk.env
command to improve Android 4x compatibility.Published by leonjza almost 7 years ago
v1.2.2
zipalign
command to the Android APK patcher.jarsigner
by adding the -tsa
flag.SecTrustEvaluate
hook as this was breaking other SSL related calls.Published by leonjza almost 7 years ago
v1.2.1
--quiet
flag to the Android and iOS sslpinning disable commands to reduce terminal output during usage.SecTrustEvaluate
, -[AFSecurityPolicy setSSLPinningMode:]
and -[AFSecurityPolicy setAllowInvalidCertificates:]
.--ignore-ios10-tls-helper
flag to the ios sslpinning disable
command as there were some cases where tls_helper_create_peer_trust
would break TLS connections in general.Published by leonjza almost 7 years ago
v1.2.0
--enable-debug
flag for the Android patcher that will set the android:debuggable
property in the resultant AndroidManifest.xml
file to true
after patching an APK.--file-commands / -c
flag to the explore
command to read objection commands from a file and run them on start up.commands history
, commands save
and commands clear
commands to work with the current sessions command history. Saved commands can be loaded using the previously mentioned -c
flag.--dump-args
), stack traces (--dump-backtrace
) and return values (--dump-return
) to the screen. The older dump_args
commands for both platforms have been removed in favour of the new flags.-s
flag.jobs list
command to make it easier to distinguish commands of the same type.Published by leonjza about 7 years ago
This release only contains minor bug fixes and typo corrections. Test coverage is also up to 77% now! 🤖
Published by leonjza about 7 years ago
v1.1.14
--host
and --port
flags for network based Frida connections.Published by leonjza about 7 years ago
v1.1.12
--skip-cleanup
flag and the iOS IPA patcher.frida-gadget
download URL could not be determined.objection.utils.patchers
.Published by leonjza about 7 years ago
v1.1.11
--hook-debug
flag on the explore
command which will now dump compiled hooks and their responses.--skip-cleanup
flag to the package patchers which will cause the patcher to not delete temporary files created.--pause
flag to the patchapk
command to allow for manual Android resource fixes when apktool
fails to repackage patches apks.loadLibrary
call for a frida-gadget
.JSON.stringify()
in hook send()
calls.Published by leonjza about 7 years ago
v1.1.10
android ui screenshot
.Published by leonjza about 7 years ago
v1.1.9
.mobileprovision
file could not be found.ios sslpinning disable
command to support iOS versions older than iOS 10.Published by leonjza about 7 years ago
v1.1.8
--include-backtrace
flag for android hooking watch class_method
.android hooking set return_value
command when an overloaded method is specified.Published by leonjza about 7 years ago
v1.1.7
--gadget
argument. (Only applies when running with a jailbroken/rooted device).Published by leonjza about 7 years ago
v1.1.6
android intent launch_service
commandPublished by leonjza about 7 years ago
v1.1.5
android ui FLAG_SECURE
command to toggle the flag on activities.objection run
subcommand to single run objection commands without the REPL.Published by leonjza about 7 years ago
v1.1.4
Add HTTPOnly flag in ios cookies get
command output.
Published by leonjza about 7 years ago
v1.1.3
Fix an IPA naming bug when patching iOS applications.