SDT Cleaner

The SDT Cleaner allows you to clean hooks installed by Anti-Virus and Firewalls.
    iPhoneDbg Toolkit

A set of tools to delve into iPhone Binary Debugging.
    HeapDraw

HeapDraw/HeapTracer is a tool to visualize the evolution of the heap during the life of an application. We internally use this tool when writing exploits for heap corruption vulnerabilities.
    PSH Toolkit

This toolkit contains tools to list and modify windows logon sessions stored by the LSA (Local Security Authority) component. These tools allow you to list the current logon sessions with its corresponding NTLM credentials (e.g.: users remotely logged in thru Remote Desktop/Terminal Services), and also to change in runtime the current username, domain name, and NTLM hashes (YES, PASS-THE-HASH ON Windows!).
    UHooker

A tool to intercept and manipulate execution of programs. It enables the user to insert hooks in function calls and arbitrary addresses within the executable file in memory. The hooks handlers are written in Python and can be changed at runtime without the need to restart the inspected process.
    Pcapy

Capture network packets from your Python programs on UNIX and Windows platforms.
    Impacket

Easily dissect and build network protocols in object-oriented Python.
    InlineEgg

A platform independent toolbox for writing assembly code in Python.
    MSyslog

A replacement for the traditional syslog daemon featuring cryptographic log protection, database backends.

Subscribe me to the announce mailing list!

 



What is the iPhoneDbg Toolkit?

 

This set of tools will enable you to delve into iPhone Binary Reversing.

  • The iPhone Debugger allows you to debug running or newly-created native processes inside iPhone.
  • The Library Loader Patcher will allow to debug iPhone libraries.
  • You can also build a tunnel from your PC to your iPhone through USB.

Requirements

  • iPhone firmware v1.1.4, should work on earlier firmware versions (drop a line if positive).
  • Some iPhone Console application (local Term-vt100, remote OpenSSH via WiFi or remote OpenSSH via USB).
  • (for the tunnel only) iTunes on a Windows XP installed and service Apple Mobile Device ( AppleMobileDeviceService.exe ) running. DLL iTunesMobileDevice.dll must be on the same folder that iphone_tunnel.exe.

Binaries and Source Code

Documentation

Licensing

  • iphonedbg is distributed under GPL v2.
  • dyld_patcher and iphone_tunnel are provided under a slightly modified version of the Apache Software License. Feel free to review it here and here and compare it to the official Apache Software License.

Known Issues


The following debugger features are not working yet.

  • Set CPU registers value.
  • Real single step.
  • Flush CPU code cache.

Contact Us

Whether you want to report a bug, send a patch or give some suggestions on this package, drop us a few lines at oss@. To contact me, Nicolas Economou, the author, you can reach me at neconomou@ .

 

Core Security Technologies © 1998-2008  |  All rights reserved