Vault7: CIA Hacking Tools Revealed
Navigation: » Latest version
iOS Triage Process
This describes the process need to been done when a new iOS version is updated.
List of tools new needed
- Xcode Developer Disk Image (DMG)
- Install Xcode
- find DMG in xcode directory
- put with other DMG ( redux/res/dmg )
Saline
- get saline_manifest
- compile saline
- get testdylib_manifest
- compile test testdylib
- run saline
- ../Dist/Release-MacOSX/saline ../test_dylib/Build/Release-iPhoneOS/testdylib/testmain
Adderall
- Get adderall_manifest
- in nightversion/python/nv_kern_read_command.py
- update kern start
- in get_ios_type, verify correct version number is in there
- update early.mk add new prefix to new to list
- early-bokken
- early-close
- early-persist
- early-remote
- update saline and rana
- update match function in rana/ranas/<proper>_rana.py\
- adderall.py
- Hopefully have execution
Symdra / Elsym
- python symdra/ -h
- python symdra/ full -k /tmp/> -a <results folder> -g <ghidra_dir> -b <min_build_version>
- /tmp should have IPSW from adderall
- a copy should be up on the share
- ghidra must be at least 6
- build version is your target
- When done symbol.db in the analysis directory
- This will be feed into Elsym
Nightvision
El_utils
El_ssh
El_unit
Remote
Persistence
Related articles
('contentbylabel' missing)
('details' missing)