Comments (9)
Thank you for your help! This resolved the
libFugu14Krw.dylib
loading issue, unfortunately themremap_encrypted: Operation not permitted
persists and the binary remains encrypted.
This is how you fix it:
first, run the path of the app’s binary path alone in terminal (you’re gonna get a Trace: BPT Trap
error, which is expected), then run fouldecrypt normally on the binary, it should decrypt it after that because you’ve forced the app to map itself by executing it directly.
so rehash, say I want to decrypt Discord:
$ /var/containers/Bundle/Application/5C4DC9B2-9056-4717-935E-71CB3C74E9DC/Discord.app/Discord
it should return Abort Trap: 6
or whatever. Then run:
$ fouldecrypt /var/containers/Bundle/Application/5C4DC9B2-9056-4717-935E-71CB3C74E9DC/Discord.app/Discord
Unless it’s a special case, the app should decrypt fine now, this also works on plugins.
from fouldecrypt.
CC: LinusHenze/Fugu14#200
Place the files in libFugu14Krw.zip according to the path.
from fouldecrypt.
Thank you for your help! This resolved the libFugu14Krw.dylib
loading issue, unfortunately the mremap_encrypted: Operation not permitted
persists and the binary remains encrypted.
from fouldecrypt.
Hi @dlevi309 , how about the dylib decryption? dylib can't be executed and if I directly run fouldecrypt, I will get mremap_encrypted: Operation not permitted
again.
from fouldecrypt.
Hi @dlevi309 , how about the dylib decryption? dylib can't be executed and if I directly run fouldecrypt, I will get
mremap_encrypted: Operation not permitted
again.
I’ve run into this too. The issue is that on iOS 14, an execute bit set is needed to decrypt dylib / frameworks, this is my own goofy solution:
Let’s pretend that the path of the dylib you’re trying to decrypt is Argo.app/Frameworks/Something.framework/Something
- run
chmod +x
onArgo.app/Frameworks/Something.framework/Something
- Then attempt to RUN
Argo.app/Frameworks/Something.framework/Something
from the command line (this will obviously fail with a message likeabort trap
, but it’s enough to load the dylib into memory) - NOW run
decrypt Argo.app/Frameworks/Something.framework/Something
This isn’t a sure fire for everything, but I’ve noticed that it works most of the time
from fouldecrypt.
@dlevi309 thanks for the reply.
in step 2, I still got cannot execute binary file: Exec format error
, seems step 1 didn't work for me.
iPhone-7:~/workspace root# chmod +x ./tmp/Payload/xxx.app/Frameworks/yyy.framework/yyy
iPhone-7:~/workspace root# ./tmp/Payload/xxx.app/Frameworks/yyy.framework/yyy
-sh: ./tmp/Payload/xxx.app/Frameworks/yyy.framework/yyy: cannot execute binary file: Exec format error
from fouldecrypt.
@0x5e no prob, and the app can’t be in a ./tmp environment, chmod +x
has to be performed on the original binary within the installed app’s bundle directory. Although, even after doing all the steps correctly, you may still get that cannot execute binary file: Exec format error
, and that’s usually an indication that it won’t work on that particular binary. Framework / dylibs sometime definitely work, but can also fail. If you wanna test an example of this that works almost 100% of the time, you can run the steps on app plugins that fail to decrypt (because they may be built for a newer iOS version, etc.)
from fouldecrypt.
@dlevi309 I just unzip the ipa to somewhere else, but I keep the app bundle structure, did you mean the app has to be installed to /var/containers/Bundle/Application/xxxxxxxxxxx
by some tools before decrypt the dynamic frameworks?
And I miss the step3 log before, after Exec format error
, I still got mremap_encrypted: Operation not permitted
. So maybe the binary I tested didn't work for this solution?
from fouldecrypt.
@dlevi309 omg i love you ty, and ty nyamisty
from fouldecrypt.
Related Issues (12)
- iOS 13 arm64e support is broken HOT 12
- Not working properly on iOS 14.8.1 with checkra1n
- mremap_encrypted: Operation not permitted
- Support for iOS 15
- Palera1n, 16.2, mmap: Operation not permitted HOT 2
- failed patchfinder dimentio's init! Failed to init kerninfra!! HOT 2
- Decrypting fails with mmap: Operation not permitted HOT 2
- Will Taurine libkernrw0 be supported ?
- How to add support for iOS 13 (< 13.4) HOT 4
- How to run it from PC? HOT 2
- Is there a theoretical possibility to decrypt IPA files without device? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from fouldecrypt.