frida-fusion 0.1.24__tar.gz

frida_fusion-0.1.24/LICENSE

@@ -0,0 +1,25 @@
+BSD 2-Clause License
+
+Copyright (c) 2022, Helvio Junior
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+1. Redistributions of source code must retain the above copyright notice, this
+   list of conditions and the following disclaimer.
+
+2. Redistributions in binary form must reproduce the above copyright notice,
+   this list of conditions and the following disclaimer in the documentation
+   and/or other materials provided with the distribution.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

frida_fusion-0.1.24/PKG-INFO

@@ -0,0 +1,192 @@
+Metadata-Version: 2.4
+Name: frida-fusion
+Version: 0.1.24
+Summary: Hook your mobile tests with Frida
+Author-email: "Helvio Junior (M4v3r1ck)" <helvio_junior@hotmail.com>
+Maintainer-email: "Helvio Junior (M4v3r1ck)" <helvio_junior@hotmail.com>
+Project-URL: Documentation, https://github.com/helviojunior/frida-fusion
+Project-URL: Source, https://github.com/helviojunior/frida-fusion
+Project-URL: Tracker, https://github.com/helviojunior/frida-fusion
+Project-URL: Author, https://github.com/helviojunior
+Keywords: Frida Fusion,Frida,Frida Scripts,development,red team
+Classifier: Development Status :: 4 - Beta
+Classifier: Environment :: Console
+Classifier: Intended Audience :: System Administrators
+Classifier: Natural Language :: English
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3 :: Only
+Classifier: Programming Language :: Python :: Implementation :: PyPy
+Classifier: Topic :: Security
+Classifier: Topic :: Utilities
+Requires-Python: <4,>=3.9
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: colorama
+Requires-Dist: requests>=2.23.0
+Requires-Dist: frida>=15.1.17
+Requires-Dist: frida-tools>=10.8.0
+Dynamic: license-file
+
+# Frida Fusion 
+<img src="./fusion_logo.svg" alt="Frida Fusion logo" align="right" width="20%"/>
+
+Hook your mobile tests with Frida.
+
+```bash
+ [ FRIDA ]—o—( FUSION )—o—[ MOBILE TESTS ] // v0.1.0
+     > hook your mobile tests with Frida
+
+
+optional arguments:
+  -h, --help                                    show this help message and exit
+
+Device selector:
+  -D [ID], --device [ID]                        Connect to device with the given ID
+  -U, --usb                                     Connect to USB device
+  -R, --remote                                  Connect to remote frida-server
+  -H [HOST], --host [HOST]                      Connect to remote frida-server on HOS
+
+Application selector:
+  -f [APP ID], --package [APP ID]               Spawn application ID
+  -p [PID], --attach-pid [PID]                  Spawn application ID
+
+General Setting:
+  -s [path], --script-path [path]               JS File path or directory with Frida script
+  --delay-injection                             Delay script injection
+  --show-time                                   Display time
+  -o [output file]                              Save output to disk (default: none)
+  -l [level], --min-level [level]               Minimum log level to be displayed (V,D,I,W,E,F) (default: I)
+
+Modules:
+  --list-modules                                List available modules
+  -m ENABLED_MODULES, --module ENABLED_MODULES  Enabled module by name. You can specify multiple values repeating the flag.
+```
+
+## Install
+
+### Via PIPX
+
+> We recommend install using PIPX 
+
+```bash
+sudo apt install pipx
+
+pipx install frida-fusion 
+pipx inject frida-fusion frida==15.1.17 frida-tools==10.8.0
+```
+
+> Note: If you face the error `unable to communicate with remote frida-server; please ensure that major versions match and that the remote Frida has the feature you are trying to use` try to adjust the frida version
+
+
+### Regular instalation
+
+```
+pip3 install frida-fusion
+```
+
+## Custom Frida script
+
+You must provide a custom Frida script as usual. To do this you must provide `-s/--script-path` parameter.
+
+```bash
+# Just one file
+frida-fusion -f [app_id] -U --script-path mytest.js
+
+# A entire directory
+frida-fusion -f [app_id] -U --script-path /tmp/scripts
+```
+
+### Exposed JavaScript (frida) functions
+
+The Frida Fusion define/expose several functions to be used at frida scripts. Follows the typedef of these functions.
+
+```java
+# Send message/data to Frida-Fusion
+void    fusion_sendMessage(String level, String message);
+void    fusion_sendError(Error error);
+void    fusion_sendMessageWithTrace(String level, String message);
+void    fusion_sendKeyValueData(String module, Object items);
+
+# Print StackTrace
+void    fusion_printStackTrace();
+
+# Print all methods of class 'name'
+void    fusion_printMethods(String name);
+
+# Get value of a field inside an class instance
+Object fusion_getFieldValue(Object obj, String fieldName);
+
+# Wait until the class 'name' exists in memory to execute the callback function
+void    fusion_waitForClass(String name, CallbackFunction onReady)
+
+# Conversions
+String  fusion_stringToBase64(String message);
+String  fusion_bytesToBase64(byte[] byteArray);
+String  fusion_encodeHex(byte[] byteArray);
+```
+
+## Module engine
+
+You can check available modules with `frida-fusion --list-modules` command.
+
+```bash
+frida-fusion --list-modules
+
+ [ FRIDA ]—o—( FUSION )—o—[ MOBILE TESTS ] // v0.1.4
+     > hook your mobile tests with Frida
+
+
+Available modules
+  Module Name     : Description
+  Crypto          : Hook cryptography/hashing functions
+```
+
+### External modules
+
+You can develop or download community modules and load into frida-fusion.
+
+To pass to the Frida Fusion the external module path you can use the environment variable `FUSION_MODULES` with the full path of modules
+
+At linux:
+
+```bash
+export FUSION_MODULES=/tmp/modules
+
+# List all modules
+frida-fusion --list-modules
+
+# Using available module
+frida-fusion -f [app_id] -U --script-path mytest.js -m [module_name]
+```
+
+At windows:
+
+```bash
+$env:FUSION_MODULES = "C:\extra_mods"
+
+# List all modules
+frida-fusion --list-modules
+
+# Using available module
+frida-fusion -f [app_id] -U --script-path mytest.js -m [module_name]
+```
+
+### Community modules
+
+You can also use one of community developed modules
+
+```bash
+cd /opt/
+git clone https://github.com/helviojunior/frida-fusion-community-modules
+export FUSION_MODULES=/opt/frida-fusion-community-modules
+
+# List all modules
+frida-fusion --list-modules
+```
+

frida_fusion-0.1.24/README.md

@@ -0,0 +1,157 @@
+# Frida Fusion 
+<img src="./fusion_logo.svg" alt="Frida Fusion logo" align="right" width="20%"/>
+
+Hook your mobile tests with Frida.
+
+```bash
+ [ FRIDA ]—o—( FUSION )—o—[ MOBILE TESTS ] // v0.1.0
+     > hook your mobile tests with Frida
+
+
+optional arguments:
+  -h, --help                                    show this help message and exit
+
+Device selector:
+  -D [ID], --device [ID]                        Connect to device with the given ID
+  -U, --usb                                     Connect to USB device
+  -R, --remote                                  Connect to remote frida-server
+  -H [HOST], --host [HOST]                      Connect to remote frida-server on HOS
+
+Application selector:
+  -f [APP ID], --package [APP ID]               Spawn application ID
+  -p [PID], --attach-pid [PID]                  Spawn application ID
+
+General Setting:
+  -s [path], --script-path [path]               JS File path or directory with Frida script
+  --delay-injection                             Delay script injection
+  --show-time                                   Display time
+  -o [output file]                              Save output to disk (default: none)
+  -l [level], --min-level [level]               Minimum log level to be displayed (V,D,I,W,E,F) (default: I)
+
+Modules:
+  --list-modules                                List available modules
+  -m ENABLED_MODULES, --module ENABLED_MODULES  Enabled module by name. You can specify multiple values repeating the flag.
+```
+
+## Install
+
+### Via PIPX
+
+> We recommend install using PIPX 
+
+```bash
+sudo apt install pipx
+
+pipx install frida-fusion 
+pipx inject frida-fusion frida==15.1.17 frida-tools==10.8.0
+```
+
+> Note: If you face the error `unable to communicate with remote frida-server; please ensure that major versions match and that the remote Frida has the feature you are trying to use` try to adjust the frida version
+
+
+### Regular instalation
+
+```
+pip3 install frida-fusion
+```
+
+## Custom Frida script
+
+You must provide a custom Frida script as usual. To do this you must provide `-s/--script-path` parameter.
+
+```bash
+# Just one file
+frida-fusion -f [app_id] -U --script-path mytest.js
+
+# A entire directory
+frida-fusion -f [app_id] -U --script-path /tmp/scripts
+```
+
+### Exposed JavaScript (frida) functions
+
+The Frida Fusion define/expose several functions to be used at frida scripts. Follows the typedef of these functions.
+
+```java
+# Send message/data to Frida-Fusion
+void    fusion_sendMessage(String level, String message);
+void    fusion_sendError(Error error);
+void    fusion_sendMessageWithTrace(String level, String message);
+void    fusion_sendKeyValueData(String module, Object items);
+
+# Print StackTrace
+void    fusion_printStackTrace();
+
+# Print all methods of class 'name'
+void    fusion_printMethods(String name);
+
+# Get value of a field inside an class instance
+Object fusion_getFieldValue(Object obj, String fieldName);
+
+# Wait until the class 'name' exists in memory to execute the callback function
+void    fusion_waitForClass(String name, CallbackFunction onReady)
+
+# Conversions
+String  fusion_stringToBase64(String message);
+String  fusion_bytesToBase64(byte[] byteArray);
+String  fusion_encodeHex(byte[] byteArray);
+```
+
+## Module engine
+
+You can check available modules with `frida-fusion --list-modules` command.
+
+```bash
+frida-fusion --list-modules
+
+ [ FRIDA ]—o—( FUSION )—o—[ MOBILE TESTS ] // v0.1.4
+     > hook your mobile tests with Frida
+
+
+Available modules
+  Module Name     : Description
+  Crypto          : Hook cryptography/hashing functions
+```
+
+### External modules
+
+You can develop or download community modules and load into frida-fusion.
+
+To pass to the Frida Fusion the external module path you can use the environment variable `FUSION_MODULES` with the full path of modules
+
+At linux:
+
+```bash
+export FUSION_MODULES=/tmp/modules
+
+# List all modules
+frida-fusion --list-modules
+
+# Using available module
+frida-fusion -f [app_id] -U --script-path mytest.js -m [module_name]
+```
+
+At windows:
+
+```bash
+$env:FUSION_MODULES = "C:\extra_mods"
+
+# List all modules
+frida-fusion --list-modules
+
+# Using available module
+frida-fusion -f [app_id] -U --script-path mytest.js -m [module_name]
+```
+
+### Community modules
+
+You can also use one of community developed modules
+
+```bash
+cd /opt/
+git clone https://github.com/helviojunior/frida-fusion-community-modules
+export FUSION_MODULES=/opt/frida-fusion-community-modules
+
+# List all modules
+frida-fusion --list-modules
+```
+

frida_fusion-0.1.24/frida_fusion/__main__.py

@@ -0,0 +1,7 @@
+#!/usr/bin/python3
+# -*- coding: UTF-8 -*-
+
+from . import fusion
+
+if __name__ == "__main__":
+    fusion.run()

frida_fusion-0.1.24/frida_fusion/__meta__.py

@@ -0,0 +1,9 @@
+__version__ = '0.1.24'
+__title__ = "Frida Fusion"
+__description__ = "📱 frida-fusion - runtime mobile exploration"
+__url__ = "https://github.com/helviojunior/frida-fusion"
+__build__ = 0xf971bfd
+__author__ = "Helvio Junior (M4v3r1ck)"
+__author_email__ = "helvio_junior@hotmail.com"
+__license__ = "GPL-3.0"
+__copyright__ = "Copyright Helvio Junior"

frida_fusion-0.1.24/frida_fusion/args.py

@@ -0,0 +1,186 @@
+#!/usr/bin/python3
+# -*- coding: UTF-8 -*-
+
+import argparse
+import sys
+
+from .libs.color import Color
+from .__meta__ import __description__
+from .module import ModuleManager
+
+
+class Arguments(object):
+    ''' Holds arguments used by the Frida Fusion '''
+    restore = False
+
+    def __init__(self, custom_args=''):
+        self.verbose = any(['-v' in word for word in sys.argv])
+        self.restore = any(['-R' in word for word in sys.argv])
+        self.args = self.get_arguments(custom_args)
+
+    def _verbose(self, msg):
+        if self.verbose:
+            return Color.s(msg)
+        else:
+            return argparse.SUPPRESS
+
+    def get_arguments(self, custom_args=''):
+        ''' Returns parser.args() containing all program arguments '''
+
+        parser = argparse.ArgumentParser(
+            usage=argparse.SUPPRESS,
+            formatter_class=lambda prog: argparse.HelpFormatter(prog, max_help_position=80,
+                                                                width=130)
+        )
+
+        device_group = parser.add_argument_group('Device selector')
+        self._add_device_args(device_group)
+
+        app_group = parser.add_argument_group('Application selector')
+        self._add_app_args(app_group)
+
+        glob = parser.add_argument_group('General Setting')
+        self._add_global_args(glob)
+
+        modules_group = parser.add_argument_group('Modules')
+        self._add_modules_args(modules_group)
+
+        # Add module args
+        for mod in self._get_requested_module_list():
+            flags = parser.add_argument_group(f'{mod.name} Flags')
+            mod.create_instance().add_params(flags)
+
+        return parser.parse_args()
+
+    def _get_requested_module_list(self):
+        mods = ModuleManager.list_modules()
+        parser = argparse.ArgumentParser()
+        parser.add_argument('-m',
+                            '--module',
+                            action='append',
+                            dest='enabled_modules')
+
+        t_args, _ = parser.parse_known_args([
+            word
+            for word in sys.argv
+            if word != "-h" and word != "--list-modules"
+        ])
+        if t_args is None or t_args.enabled_modules is None:
+            return []
+        return [
+            m
+            for md in t_args.enabled_modules
+            for mn in md.split(",")
+            if mn.strip() != ""
+            for _, m in mods.items()
+            if m.safe_name() == mn.lower()
+        ]
+
+    def _add_app_args(self, app):
+        app.add_argument('-f',
+                         '--package',
+                         dest='app_id',
+                         metavar='[APP ID]',
+                         required=False,
+                         default=None,
+                         help='Spawn application ID')
+
+        app.add_argument('-p',
+                         '--attach-pid',
+                         dest='pid',
+                         metavar='[PID]',
+                         default=0,
+                         required=False,
+                         type=int,
+                         help='Spawn application ID')
+
+    def _add_device_args(self, device):
+        device.add_argument('-D',
+                            '--device',
+                            dest='device_id',
+                            metavar='[ID]',
+                            type=str,
+                            required=False,
+                            default=None,
+                            help='Connect to device with the given ID')
+
+        device.add_argument('-U',
+                            '--usb',
+                            action='store_true',
+                            dest='use_usb',
+                            default=False,
+                            required=False,
+                            help='Connect to USB device')
+
+        device.add_argument('-R',
+                            '--remote',
+                            action='store_true',
+                            dest='use_remote',
+                            default=False,
+                            required=False,
+                            help='Connect to remote frida-server')
+
+        device.add_argument('-H',
+                            '--host',
+                            dest='remote_host',
+                            metavar='[HOST]',
+                            type=str,
+                            required=False,
+                            default=None,
+                            help='Connect to remote frida-server on HOS')
+
+    def _add_global_args(self, glob):
+        glob.add_argument('-s',
+                          '--script-path',
+                          dest='frida_scripts',
+                          default=None,
+                          metavar='[path]',
+                          type=str,
+                          help='JS File path or directory with Frida script')
+
+        glob.add_argument('--delay-injection',
+                          action='store_true',
+                          dest='delay',
+                          default=False,
+                          help='Delay script injection')
+
+        glob.add_argument('--show-time',
+                          action='store_true',
+                          dest='show_time',
+                          default=False,
+                          help='Display time')
+
+        glob.add_argument('-o',
+                          action='store',
+                          dest='out_file',
+                          metavar='[output file]',
+                          type=str,
+                          help=Color.s('Save output to disk (default: {G}none{W})'))
+
+        glob.add_argument('-l',
+                          '--min-level',
+                          action='store',
+                          dest='debug_level',
+                          metavar='[level]',
+                          type=str,
+                          default='I',
+                          help=Color.s('Minimum log level to be displayed (V,D,I,W,E,F) (default: {G}I{W})'))
+
+    def _add_modules_args(self, modules):
+        modules.add_argument('--list-modules',
+                             action='store_true',
+                             default=False,
+                             dest='list_modules',
+                             help=Color.s('List available modules'))
+
+        modules.add_argument('-m',
+                             '--module',
+                             action='append',
+                             dest='enabled_modules',
+                             help='Enabled module by name. You can specify multiple values repeating the flag.')
+
+        modules.add_argument('--silence-module-messages',
+                             action='append',
+                             dest='ignore_messages_modules',
+                             help='Silence messages becaming from module by name. You can specify multiple values repeating the flag.')
+