idb 1.3.1

data/lib/lib/rsync_git_manager.rb

@@ -0,0 +1,81 @@
+require 'git'
+require 'pty'
+require 'expect'
+
+module Idb
+  class RsyncGitManager
+    def initialize remote_path, local_path
+      @remote_path = remote_path
+      @local_path = local_path
+      FileUtils.mkdir_p @local_path unless Dir.exist? @local_path
+
+      begin
+        @g = Git.open(local_path, :log => $log)
+      rescue
+        $log.debug "Repository could not be opened. This is likely the first clone. Creating empty repo."
+        Git.init(local_path)
+        @g = Git.open(local_path, :log => $log)
+        FileUtils.touch "#{local_path}/idb_dummy.placeholder"
+        @g.add(:all=>true)
+        $log.debug "Committing placeholder to initialize the repo."
+        begin
+          @g.commit_all("Initial commit. Initializing the repo.")
+        rescue
+          $log.error "Initial commit failed."
+        end
+
+      end
+    end
+
+    def sync_new_revision
+      $log.info "Hard resetting work dir #{@local_path}..."
+      begin
+        @g.reset_hard
+      rescue
+        $log.error "Reset of repo failed. If this is the first time you run rsync+git for this app this may be okay."
+      end
+
+
+
+      if $settings['device_connection_mode'] == "ssh"
+        cmd = "rsync -avz -e 'ssh -oStrictHostKeyChecking=no  -p #{$settings.ssh_port}'  #{$settings.ssh_username}@#{$settings.ssh_host}:#{Shellwords.escape(@remote_path)}/ #{Shellwords.escape(@local_path)}/"
+      else
+        cmd = "rsync -avz -e 'ssh -oStrictHostKeyChecking=no  -p #{$device.tool_port}'  root@localhost:#{Shellwords.escape(@remote_path)}/ #{Shellwords.escape(@local_path)}/"
+      end
+
+
+      $log.info "Executing rsync command #{cmd}"
+      begin
+        PTY.spawn(cmd) { |rsync_out, rsync_in, pid |
+          STDOUT.flush
+          rsync_out.sync = true
+          rsync_in.sync = true
+          $expect_verbose = true
+
+          rsync_out.expect(/assword: /) { |x|
+            begin
+              $log.info "Supplying password for rsync if required..."
+              rsync_in.printf("#{$settings.ssh_password}\n")
+            rescue
+              $log.info "No password required for rsync...."
+            end
+          }
+
+          rsync_out.each { |x|
+            $log.info x
+          }
+          PTY.check
+        }
+      rescue
+        $log.info "Rsync Done. committing to git."
+        @g.add(:all=>true)
+        begin
+          @g.commit_all("Snapshot from #{Time.now.to_s}")
+        rescue
+        end
+      end
+
+    end
+
+  end
+end

data/lib/lib/screen_shot_util.rb

@@ -0,0 +1,59 @@
+require_relative 'ssh_operations'
+
+module Idb
+  class ScreenShotUtil
+
+    def initialize app_path, ops, sim = true
+      @app_path = app_path
+      @snapshot_path = "#{@app_path}/Library/Caches/Snapshots"
+      @ops = ops
+      @sim = sim
+    end
+
+    def mark
+      if @sim
+        #create snapshot dir!
+        if not Dir.exist? @snapshot_path
+          Dir.mkdir_p @snapshot_path
+        end
+      end
+      mark_time
+    end
+
+
+    def check
+      # there should really be only one directory in here which is named
+      # based on the bundle id of the app. lets go through all, just in case.
+
+      snap_dirs = @ops.list_dir("#{@snapshot_path}/").reject {|e| e =~ /^\.\.?$/}
+
+
+      snap_dirs.each { |dir|
+        full_snap_dir = "#{@snapshot_path}/#{dir}"
+        if @ops.directory? full_snap_dir
+
+          # walk through all files in snaphot dir
+          content = @ops.dir_glob(full_snap_dir,"**/*")
+
+          # see if any is younger than mark.
+          content.each { |f|
+  #          full_path = "#{full_snap_dir}/#{f}"
+            full_path = f
+            if @ops.file? full_path and @ops.mtime(full_path) > @time
+              return full_path
+            end
+          }
+        end
+      }
+      return nil
+
+    end
+
+    private
+
+    def mark_time
+      @time = Time.now
+    end
+
+  end
+end

data/lib/lib/settings.rb

@@ -0,0 +1,67 @@
+# encoding: utf-8
+require 'yaml'
+
+YAML::ENGINE.yamler='syck'
+
+module Idb
+  class Settings
+
+    def initialize file_name
+      @file_name = file_name
+      if file_name.nil?
+        @data = Hash.new
+      else
+        if not self.load
+          @data = Hash.new
+        end
+      end
+    end
+
+
+    def load
+      if File.exist? @file_name
+        $log.info "Loading configuration from #{@file_name}"
+        @data = YAML.load(File.open(@file_name).read)
+        @data["idb_utility_port"] = "4711" if @data["idb_utility_port"].nil?
+        true
+      else
+        $log.warn "No configuration found, generating default."
+        @data = Hash.new
+        @data["ssh_host"] = "localhost"
+        @data["ssh_port"] = 22
+        @data["ssh_username"] = "root"
+        @data["ssh_password"] = "alpine"
+        @data["manual_ssh_port"] = "2222"
+        @data["idb_utility_port"] = "4711"
+        @data["device_connection_mode"] = "usb"
+        $log.info "Storing new configuration at #{@file_name}"
+        store
+        load
+      end
+    end
+
+    def store
+      $log.info "Storing new configuration at #{@file_name}."
+      conf_file = File.open(@file_name,"w")
+      conf_file.puts(@data.to_yaml)
+      conf_file.close
+    end
+
+    private
+    def method_missing(method, *args, &block)
+      m = method.to_s
+      if @data.has_key?(m)
+        return @data[m]
+      elsif @data.has_key?(m.to_sym)
+        return @data[m.to_sym]
+      end
+      begin
+        @data.send(method, *args, &block)
+      rescue
+        nil
+      end
+    end
+
+
+  end
+end

data/lib/lib/simulator.rb

@@ -0,0 +1,60 @@
+require_relative 'abstract_device'
+require_relative 'simulator_ca_interface'
+require_relative 'local_operations'
+
+module Idb
+  class Simulator < AbstractDevice
+    attr_accessor :sim_dir
+
+    def initialize sim_dir
+      puts "Initializing simulator with #{sim_dir}"
+      @sim_dir = sim_dir
+      @apps_dir = @sim_dir + "/Applications"
+      @ops = LocalOperations.new
+
+    end
+
+    def open_installed?
+      true
+    end
+
+    def app_launch app
+      cmd = '/Applications/Xcode.app/Contents/Developer/Platforms/iPhoneSimulator.platform/Developer/Applications/iPhone\ Simulator.app/Contents/MacOS/iPhone\ Simulator -SimulateApplication '
+      $log.info "Launching app..."
+      @ops.launch_app cmd, app.binary_path
+    end
+
+
+    def self.get_simulators
+      basedir = ENV['HOME'] + '/Library/Application Support/iPhone Simulator'
+
+      return Array.new unless Dir.exists? basedir
+
+      dirs = Dir.glob("#{basedir}/**")
+      if dirs.length == 0
+        raise "No simulators found in #{basedir}."
+      end
+
+      return dirs
+    end
+
+    def ca_interface
+       SimulatorCAInterface.new @sim_dir
+    end
+
+    def disconnect
+      # nothing to do
+    end
+
+    def device?
+      false
+    end
+
+    def simulator?
+      true
+    end
+
+
+
+  end
+end

data/lib/lib/simulator_ca_interface.rb

@@ -0,0 +1,16 @@
+require 'openssl'
+require 'digest/sha1'
+require 'sqlite3'
+require_relative 'ca_interface'
+
+module Idb
+  class SimulatorCAInterface < CAInterface
+
+    def initialize sim_path
+      @sim_path = sim_path
+      @store_path = "/Library/Keychains/TrustStore.sqlite3"
+      @db_path = @sim_path + @store_path
+    end
+
+  end
+end

data/lib/lib/snoop_it_wrapper.rb

@@ -0,0 +1,80 @@
+require 'awesome_print'
+require 'xmlrpc/client'
+
+module Idb
+  class SnoopItWrapper
+
+    def initialize
+     connection = Hash.new
+     connection[:host] = "127.0.0.1"
+     connection[:port] = "12345"
+     connection[:path] = "/xmlrpc"
+  #    connection[:user] = "snoop-it"
+  #    connection[:password] = "snoop-it"
+
+
+      @rpc = XMLRPC::Client.new3(connection)
+   end
+
+    def fsevents_after start = Time.now
+      start_timestamp = start.to_time.to_i
+  #    result = @rpc.call("filesystemGetAccessListUpdate", {'lastId' => 0})
+      @rpc.call("filesystemGetAccessList", {'from' => start_timestamp})
+    end
+
+    def fsevents_delete
+      exec_rpc do
+        @rpc.call("filesystemDeleteAll")
+      end
+
+    end
+
+    def fsevents_after_id  id
+      exec_rpc do
+        @rpc.call("filesystemGetAccessListUpdate", {'lastId' => id})
+      end
+    end
+
+    def keychain_after_id id
+      exec_rpc do
+        @rpc.call("keychainGetListUpdate", {'lastId' => id})
+      end
+    end
+
+    def keychain_details id
+      exec_rpc do
+        @rpc.call("keychainGetId", {'id' => id})
+      end
+    end
+
+    def sensitiveapi_after_id id
+      exec_rpc do
+        @rpc.call("sensitiveAPIGetListUpdate", {'lastId' => id})
+      end
+    end
+
+    def sensitiveapi_delete
+      exec_rpc do
+        @rpc.call("sensitiveAPIDeleteAll")
+      end
+    end
+
+    def exec_rpc
+      begin
+        yield
+      rescue
+        raise "Connection lost. Make sure the app under assessment is running on the device."
+      end
+
+
+
+    end
+
+    def is_alive?
+      result = @rpc.call("ping")
+      ap result
+
+    end
+
+  end
+end

data/lib/lib/ssh_operations.rb

@@ -0,0 +1,136 @@
+require 'net/ssh'
+require 'net/sftp'
+require 'launchy'
+
+module Idb
+  class SSHOperations
+    attr_accessor :ssh
+
+    def initialize username, password, hostname, port
+      @hostname = hostname
+      @username = username
+      @password = password
+      @port = port
+
+      $log.info "Establishing SSH Session for #{username}@#{hostname}:#{port}"
+
+      begin
+        @ssh = Net::SSH.start hostname, username, :password => password, :port => port
+
+        # initiali:wze sftp connection and wait until it is open
+        $log.info 'Establishing SFTP Session...'
+        @sftp = Net::SFTP::Session.new @ssh
+        @sftp.loop { @sftp.opening? }
+      rescue Exception => ex
+        $log.error ex.message
+        error = Qt::MessageBox.new
+        error.setInformativeText("SSH connection could not be established: #{ex.message}")
+        error.setIcon(Qt::MessageBox::Critical)
+        error.exec
+      end
+    end
+
+    def disconnect
+      puts "[*] Closing SSH Session"
+      @ssh.close
+    end
+
+
+    def execute(command)
+      @ssh.exec! command
+    end
+
+    def chmod file, permissions
+      @sftp.setstat(file, :permissions => permissions)
+    end
+
+    def download_recursive(remote_path, local_path)
+      begin
+        @sftp.download! remote_path, local_path, :recursive => true
+      rescue
+        $log.error "Failed to download #{remote_path}."
+        return false
+      end
+    end
+
+    def download(remote_path, local_path = nil)
+      begin
+        if local_path.nil?
+          @sftp.download! remote_path
+        else
+          @sftp.download! remote_path, local_path
+        end
+      rescue
+        puts "Error downloading file."
+        return false
+      end
+      return true
+
+    end
+
+    def upload(local_path, remote_path)
+      @sftp.upload! local_path, remote_path
+    end
+
+    def list_dir dir
+      @sftp.dir.entries(dir).map {|x| x.name}
+    end
+
+    def list_dir_full dir
+      @sftp.dir.entries(dir)
+    end
+
+
+    def file_exists? path
+      begin
+        @sftp.stat!(path)
+        return true
+      rescue
+        return false
+      end
+
+    end
+
+    def launch path
+      @ssh.exec path
+    end
+
+    def dir_glob path, pattern
+      @sftp.dir.glob(path,pattern).map {|x| "#{path}/#{x.name}"}
+    end
+
+    def mkdir path
+      @sftp.mkdir path
+    end
+
+    def directory? path
+      begin
+        @sftp.stat!(path).directory?
+      rescue
+        nil
+      end
+    end
+
+    def file? path
+      begin
+        @sftp.stat!(path).file?
+      rescue
+        false
+      end
+    end
+
+    def mtime path
+      Time.new @sftp.stat!(path).mtime
+    end
+
+    def open path
+      Launchy.open path
+    end
+
+    def launch_app command, app
+      puts "#{command} \"#{app}\""
+      self.execute("#{command} \"#{app}\"")
+    end
+
+  end
+end