idb 1.3.1

data/lib/gui/snoop_it_tab_widget.rb

@@ -0,0 +1,27 @@
+require_relative 'snoop_it_fs_events_widget'
+require_relative 'snoop_it_keychain_widget'
+require_relative 'snoop_it_sensitive_api_widget'
+
+
+module Idb
+  class SnoopItTabWidget < Qt::TabWidget
+
+    def initialize *args
+      super *args
+
+      @tabs = Hash.new
+
+      @fsevents = SnoopItFSEventsWidget.new self
+      @tabs[:fsevents] = addTab(@fsevents, "File System Events")
+
+      @keychain = SnoopItKeychainWidget.new self
+      @tabs[:keychain] = addTab(@keychain, "Keychain Access")
+
+      @sensitiveapi = SnooptItSensitiveAPIWidget.new self
+      @tabs[:sensitiveapi] = addTab(@sensitiveapi, "Sensitive APIs")
+    end
+
+
+
+  end
+end

data/lib/gui/snoop_it_update_thread.rb

@@ -0,0 +1,48 @@
+module Idb
+  class SnoopItUpdateThread < Qt::Object
+    signals "new_events(QVariant)"
+    attr_accessor :thread
+
+    def initialize *args
+      super *args
+      STDOUT.sync = true
+
+      @snoop = SnoopItWrapper.new
+    end
+
+    def delete_all
+      begin
+        @snoop.fsevents_delete
+      rescue
+        puts "Connection lost"
+      end
+    end
+
+    def stream function
+      puts "Starting"
+      @id = 0
+
+
+      puts @id
+      t = Qt::Timer.new self
+      t.connect(SIGNAL(:timeout)) {
+        puts "triggered"
+        thread = Thread.new do
+          begin
+            events = @snoop.send(function, @id)
+          rescue
+            puts "Connection lost"
+            t.stop
+            thread.kill
+          end
+          @id = events.last["id"] unless events.last.nil?
+          puts @id
+          emit new_events(events.to_variant) unless events.nil?
+        end
+        thread.join
+      }
+      t.start(1000)
+    end
+
+  end
+end

data/lib/gui/sqlite_widget.rb

@@ -0,0 +1,73 @@
+require_relative '../lib/console_launcher'
+
+module Idb
+  class SqliteWidget  < Qt::Widget
+
+    def initialize *args
+      super *args
+
+      @refresh = Qt::PushButton.new "Refresh"
+      @refresh.connect(SIGNAL :released) {
+        refresh
+      }
+
+      @list = Qt::ListWidget.new self
+      @list.connect(SIGNAL('itemDoubleClicked(QListWidgetItem*)')) { |item|
+        if $settings['sqlite_editor'].nil? or $settings['sqlite_editor'] == ""
+          error = Qt::MessageBox.new
+          error.setInformativeText("Please configure a SQLite editor in the idb preferences.")
+          error.setIcon(Qt::MessageBox::Critical)
+          error.exec
+        else
+          cache_name = $selected_app.cache_file item.full_path
+          if cache_name.nil?
+            $log.error "File #{item.full_path} could not be downloaded. Either the file does not exist (e.g., dead symlink) or there is a permission problem."
+          else
+            if RbConfig::CONFIG['host_os'] =~ /linux/
+              Process.spawn "'#{$settings['sqlite_editor']}' '#{Dir.getwd}/#{cache_name}'"
+            else
+              Process.spawn "open -a '#{$settings['sqlite_editor']}' '#{Dir.getwd}/#{cache_name}'"
+            end
+          end
+
+          x = ConsoleLauncher.new
+          #TODO: find sqlite binary
+          #http://www.ruby-doc.org/stdlib-2.0.0/libdoc/mkmf/rdoc/MakeMakefile.html#method-i-find_executable
+          #x.run "/usr/bin/sqlite3 #{Dir.getwd}/#{$selected_app.cache_file item.full_path}"
+        end
+
+
+
+      }
+     # "Launch app"
+
+      layout = Qt::VBoxLayout.new do |v|
+        v.add_widget(@list)
+        v.add_widget(@refresh)
+      end
+      setLayout(layout)
+    end
+
+    def clear
+      @list.clear
+    end
+
+
+    def refresh
+      @list.clear
+      sqlite_dbs = $selected_app.find_sqlite_dbs
+      sqlite_dbs.each { |full_path|
+        item = PathListWidgetItem.new
+        if $device.simulator?
+          item.setText full_path.sub($selected_app.app_dir,'')
+        else
+          pc = $device.protection_class full_path
+          item.setText full_path.sub($selected_app.app_dir,'') + " => " + pc.strip
+        end
+
+        item.full_path = full_path
+        @list.addItem item
+      }
+    end
+  end
+end

data/lib/gui/ssh_port_forward_tab_widget.rb

@@ -0,0 +1,209 @@
+module Idb
+  class SSHPortForwardTabWidget < Qt::TabWidget
+
+
+    def initialize *args
+      super *args
+      setup_remote_port_forward
+      setup_local_port_forward
+      @forwarders_changed = false
+    end
+
+
+    def add_remote_forward_to_list remote_port, local_port, local_host
+      @remote_forward_list.addItem Qt::ListWidgetItem.new "remote:#{remote_port} -> #{local_host}:#{local_port}"
+    end
+
+    def add_local_forward_to_list local_port, remote_port, remote_host
+      @local_forward_list.addItem Qt::ListWidgetItem.new "local:#{local_port} -> #{remote_host}:#{remote_port}"
+    end
+
+
+    def setup_local_port_forward
+      @local_forward_tab = Qt::Widget.new self
+      forward_config_layout = Qt::GridLayout.new
+      @local_forward_tab.setLayout forward_config_layout
+      addTab(@local_forward_tab,"Local")
+
+      @local_forward_tab.setLayout(forward_config_layout)
+
+      @local_forward_list = Qt::ListWidget.new @local_forward_tab
+      forward_config_layout.addWidget @local_forward_list, 0, 0, 2, 2
+
+
+      if $settings['local_forwards'].nil?
+        $settings['local_forwards'] = Array.new
+      end
+
+      $settings['local_forwards'].each {|x|
+        add_local_forward_to_list x['local_port'], x['remote_port'], x['remote_host']
+      }
+
+
+      add_forward_button = Qt::PushButton.new "Add"
+      add_forward_button.connect(SIGNAL(:released)) {
+        local_port = @local_local_port_text.text
+        remote_port = @local_remote_port_text.text
+        remote_host = @local_remote_host_text.text
+
+        if is_valid_port(remote_port) and is_valid_port(local_port)
+          @forwarders_changed = true
+          add_local_forward_to_list local_port, remote_port, remote_host
+
+          item = Hash.new
+          item['local_port'] = @local_local_port_text.text
+          item['remote_port'] = @local_remote_port_text.text
+          item['remote_host'] = @local_remote_host_text.text
+          $settings['local_forwards'] << item
+          $settings.store
+
+
+          @local_local_port_text.text = ""
+          @local_remote_port_text.text = ""
+          @local_remote_host_text.text = ""
+        end
+      }
+      remove_forward_button = Qt::PushButton.new "Remove"
+      remove_forward_button.connect(SIGNAL(:released)) {
+        unless @local_forward_list.current_row.nil?
+          @forwarders_changed = true
+          row = @local_forward_list.current_row
+          @local_forward_list.takeItem  row
+          $settings['local_forwards'].delete_at(row)
+          $settings.store
+        end
+
+      }
+
+      forward_config_layout.addWidget add_forward_button, 0, 3
+      forward_config_layout.addWidget remove_forward_button, 1, 3
+
+      local_port_label = Qt::Label.new "Local Port"
+      @local_local_port_text = Qt::LineEdit.new
+
+
+      remote_host_label = Qt::Label.new "Remote Host"
+      @local_remote_host_text = Qt::LineEdit.new
+
+
+      remote_port_label = Qt::Label.new "Remote Port"
+      @local_remote_port_text = Qt::LineEdit.new
+
+      forward_config_layout.addWidget local_port_label, 2, 0
+      forward_config_layout.addWidget @local_local_port_text, 2, 1
+
+
+      forward_config_layout.addWidget remote_host_label, 3, 0
+      forward_config_layout.addWidget @local_remote_host_text, 3, 1
+
+
+      forward_config_layout.addWidget remote_port_label, 4, 0
+      forward_config_layout.addWidget @local_remote_port_text, 4, 1
+
+    end
+
+
+
+    def setup_remote_port_forward
+      @remote_forward_tab = Qt::Widget.new self
+      forward_config_layout = Qt::GridLayout.new
+      @remote_forward_tab.setLayout forward_config_layout
+      addTab(@remote_forward_tab,"Remote")
+
+      @remote_forward_tab.setLayout(forward_config_layout)
+
+
+      @remote_forward_list = Qt::ListWidget.new @forward_config
+      forward_config_layout.addWidget @remote_forward_list, 0, 0, 2, 2
+
+
+      if $settings['remote_forwards'].nil?
+        $settings['remote_forwards'] = Array.new
+      end
+
+      $settings['remote_forwards'].each {|x|
+        add_remote_forward_to_list x['remote_port'], x['local_port'], x['local_host']
+      }
+
+
+      add_forward_button = Qt::PushButton.new "Add"
+      add_forward_button.connect(SIGNAL(:released)) {
+        remote_port = @remote_remote_port_text.text
+        local_port = @remote_local_port_text.text
+        local_host = @remote_local_host_text.text
+
+        if is_valid_port(remote_port) and is_valid_port(local_port)
+          add_remote_forward_to_list remote_port, local_port, local_host
+          @forwarders_changed = true
+
+          item = Hash.new
+          item['remote_port'] = @remote_remote_port_text.text
+          item['local_port'] = @remote_local_port_text.text
+          item['local_host'] = @remote_local_host_text.text
+          $settings['remote_forwards'] << item
+          $settings.store
+
+
+          @remote_remote_port_text.text = ""
+          @remote_local_port_text.text = ""
+          @remote_local_host_text.text = ""
+        end
+      }
+      remove_forward_button = Qt::PushButton.new "Remove"
+      remove_forward_button.connect(SIGNAL(:released)) {
+        if not @remote_forward_list.current_row.nil?
+          @forwarders_changed = true
+          row = @remote_forward_list.current_row
+          @remote_forward_list.takeItem  row
+          $settings['remote_forwards'].delete_at(row)
+          $settings.store
+        end
+
+      }
+
+      forward_config_layout.addWidget add_forward_button, 0, 3
+      forward_config_layout.addWidget remove_forward_button, 1, 3
+
+      remote_port_label = Qt::Label.new "Remote Port"
+      @remote_remote_port_text = Qt::LineEdit.new
+
+
+      local_host_label = Qt::Label.new "Local Host"
+      @remote_local_host_text = Qt::LineEdit.new
+
+
+      local_port_label = Qt::Label.new "Local Port"
+      @remote_local_port_text = Qt::LineEdit.new
+
+      forward_config_layout.addWidget remote_port_label, 2, 0
+      forward_config_layout.addWidget @remote_remote_port_text, 2, 1
+
+
+      forward_config_layout.addWidget local_host_label, 3, 0
+      forward_config_layout.addWidget @remote_local_host_text, 3, 1
+
+
+      forward_config_layout.addWidget local_port_label, 4, 0
+      forward_config_layout.addWidget @remote_local_port_text, 4, 1
+
+    end
+
+
+    def is_valid_port port
+      begin
+        if not Integer(port) or Integer(port) > 2**16 or Integer(port) < 1
+          return false
+        else
+          return true
+        end
+      rescue
+        false
+      end
+    end
+
+    def forwarders_changed?
+      @forwarders_changed
+    end
+  end
+
+end

data/lib/gui/tool_widget.rb

@@ -0,0 +1,94 @@
+require_relative 'screenshot_wizard'
+require_relative '../lib/host_file_wrapper'
+
+module Idb
+  class ToolWidget < Qt::Widget
+
+    def initialize *args
+      super *args
+
+      layout = Qt::VBoxLayout.new
+      setLayout(layout)
+
+
+      @screen_shot_box = Qt::GroupBox.new "Screenshot Tool"
+      @screen_shot_description = Qt::Label.new "iOS takes an automatic screenshot whenever an app is placed into the background. This Wizard walks you through the steps that are required verify that the assessed app properly protects sensitive data before backgrounding."
+      @screen_shot_description.setWordWrap true
+
+      @screen_shot_button = Qt::PushButton.new "Check for Automatic Background Screenshot"
+      @screen_shot_button.connect(SIGNAL :released) {
+        tool = ScreenShotWizard::ScreenShotWizard.new_with_app $selected_app
+      }
+
+      screen_shot_layout = Qt::GridLayout.new
+      @screen_shot_box.setLayout(screen_shot_layout)
+      screen_shot_layout.addWidget @screen_shot_description, 0, 0
+      screen_shot_layout.addWidget @screen_shot_button, 1, 0
+
+      layout.addWidget @screen_shot_box
+
+
+      @cert_box = Qt::GroupBox.new "Certificate Manager"
+      @cert_description = Qt::Label.new "This tool allows you to manage SSL CA certificates both on iOS devices and the iOS simulator. For devices, the certificates are installed via Safari and a private web server run by idb. For the simulator they are directly stored in the simulator's truststore. Please report any problems with either system on github."
+      @cert_description.setWordWrap true
+
+      @cert_button = Qt::PushButton.new "Launch Certificate Manager"
+      @cert_button.connect(SIGNAL :released) {
+        ca = CAManagerDialog.new self
+        ca.exec
+      }
+
+      @burp_description = Qt::Label.new "Running the iDevice through burp? Click below to install the Portswigger CA certificate on the device by opening the  http://burp/cert URL handler."
+      @burp_description.setWordWrap true
+      @burp_button = Qt::PushButton.new "Install Burp Cert"
+      @burp_button.connect(SIGNAL :released) {
+        $device.open_url "http://burp/cert"
+      }
+
+      cert_layout = Qt::GridLayout.new
+      @cert_box.setLayout(cert_layout)
+      cert_layout.addWidget @cert_description, 0, 0, 1, 2
+      cert_layout.addWidget @cert_button, 1, 0
+      cert_layout.addWidget @burp_button, 1, 1
+
+      layout.addWidget @cert_box
+
+
+      @host_editor_box = Qt::GroupBox.new "/etc/hosts File Editor"
+
+      @host_file_text = Qt::PlainTextEdit.new
+      @host_wrapper = HostFileWrapper.new
+
+      @host_editor_save_button = Qt::PushButton.new "Save"
+      @host_editor_save_button.connect(SIGNAL :released) {
+        @host_wrapper.save @host_file_text.plainText
+      }
+
+      @host_editor_reset_button = Qt::PushButton.new "Load"
+      @host_editor_reset_button.connect(SIGNAL :released) {
+        @host_file_text.clear
+        @host_file_text.appendPlainText @host_wrapper.content
+      }
+
+      host_editor_layout = Qt::GridLayout.new
+      @host_editor_box.setLayout(host_editor_layout)
+      host_editor_layout.addWidget @host_file_text, 0, 0, 1, 2
+      host_editor_layout.addWidget @host_editor_reset_button, 1, 0
+      host_editor_layout.addWidget @host_editor_save_button, 1, 1
+
+      layout.addWidget @host_editor_box
+
+
+
+
+      @spacer = Qt::SpacerItem.new 0,1, Qt::SizePolicy::Fixed, Qt::SizePolicy::Expanding
+      layout.addItem @spacer
+    end
+
+    def enable_screenshot
+      @screen_shot_button.setEnabled(true)
+
+    end
+
+  end
+end