-
Notifications
You must be signed in to change notification settings - Fork 285
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[iOS11] list_apps fails #242
Comments
Cant reproduce. Works fine for me on iOS 11.0.3.
EDIT: Uhm... stupid question since you are using iOS 11.2: I dont think your device is jailbroken, isn´t it? |
Got the same problem, no Apps found, running Python 2.7.14 Jailbreak with Electra, and all the stuff APT Strict installed. Some idea? |
On iOS 11.1 (with Electra 1.0.4 jailbreak) |
Update: Enabling tweaks in Electra 1.0.4 results in |
Close and resolved? |
Worked out a fix for iOS 11. This needs to be added to the entitlements for the NeedleAgent my fix was to resign the application with that entitlement
Steps to fix
|
I'm having the exact same issue; /device/list_apps module returns an empty list, but still asks for a number to input. manually setting APP to com.publisher.appname results in a KeyError (to be expected as you're trying to access an index in an empty list). Enabling Tweaks in Electra does not solve the issue as it did for @klmitchell2. Version info in my setup: on iPhone 6+ On Kali 2018.2 Any suggestions besides using the jtool workaround? In any event if the transition from iOS 10 to 11 would be the culprit, it seems strange that some people on iOS 11 can get the list without resigning? @peterfillmore : I'd like to get your input on this as why this is an issue for some iOS11 users but not all. I started researching into the jtool workaround, but seem to run into a dead end there as well. "1. Install jtool onto the device" is already causing more questions than I can answer atm. |
@peterfillmore: resigning manually is not a viable option to consider. If that entitlement is really needed, we will have to release a new version of the Agent. @peterfillmore, @meetinthemiddle-be: have you tried what proposed by @klmitchell2?
|
Yes - tried to disable tweaks in electron jailbreak and that didn’t fix the issue.
Checking the error logs indicated it was an entitlements issue with my particular device at least (iOS 11.0 - electron jailbreak)
My understanding is that at some stage iOS added an entitlement to be able to read SQLite databases outside of an apps container (i think - I can’t seem to locate much info on this)
Since in iOS 10 the app list lives in one of these dbs it needs that entitlement to then read that SQLite dB.
Signing The needle agent with the appropriate entitlement seemed to fix the issue for me at least.
Can anyone give us a root cause as to why disabling tweaks fixes the issue? As it’d make sense to see what clashes with needle in the tweaks.
Thanks!
Peter
… On 27 Jul 2018, at 2:34 am, Marco Lancini ***@***.***> wrote:
@peterfillmore: resigning manually is not a viable option to consider. If that entitlement is really needed, we will have to release a new version of the Agent.
@peterfillmore, @meetinthemiddle-be: have you tried what proposed by @klmitchell2?
Update: Enabling tweaks in Electra 1.0.4 results in list_apps working as expected.
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or mute the thread.
|
@Yogehi: are you able to reproduce the issue/fix? |
Like @peterfillmore , for me toggling Electra "tweaks" didn't produce different results for Needle. Aside from this issue, it might be an idea to catch this condition (zero length app list). Also, if one knows the UUID of the app, which one could figure out manually through SSH, would there be a way of using that string in the APP variable directly if the app list is unavailable, rather than using it as a key for that list that might not be there? Above there also seems to be some confusion about whether it's the enabling or disabling of the tweaks feature that would fix the issue; for me it's neither. |
Update on this. I'm still looking into how to resolve this. I agree that the additional entitlement should work. My issue right now is getting Xcode to allow me to compile Needle with the new entitlement. I'll update this when I can. |
Sooooooooo more bad news. The ‘com.apple.private.coreservices.canmaplsdatabase‘ entitlement does work on iOS 11.0-11.2. It does NOT work on iOS 11.3.1. |
If this is a limitation of Needle and it's documented, that's the way it is. Is there still a possibility of just using the UUID in the APP variable directly without using the app list as a mapper between the two? This would be a workaround for the problem as this can be found out through SSH. We're already working with a rooted device to begin with so getting that value manually as a "plan B" seems acceptable to me. |
HI this is an issue for me as well, I have electra jailbreak on iOS 11.3.1 and list apps returns nothing when I attempt to run modules. |
Cheers.
So can anyone throw a debug log here for 11.3.?
Would have a look myself but don’t have one that fits the profile.
…Sent from my iPhone
On 17 Aug 2018, at 10:16 pm, poldenais ***@***.***> wrote:
HI this is an issue for me as well, I have electra jailbreak on iOS 11.3.1 and list apps returns nothing when I attempt to run modules.
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or mute the thread.
|
Device iOS Version with Electra JB 11.3.1 Expected behaviour Target app wizard returns apps to be targeted Actual behaviour Target app wizard returns nothing. Steps to reproduce Run a module, and allow the target app wizard to run.
Needle Version Framework (on MacBook): 1.3.2 Python Version 2.7 |
Hi Is anything else needed above? thanks, |
hi everyone, i had time to look into this today and i discovered that my ios 11.3.1 device randomly started using the i took some other ios 11 devices i had around me, played with them with different configurations, and came up with the following workaround to get needle working on ios:
i can confirm this worked for the following:
could other people who are still having issues try this for me please? |
Hi @Yogehi, Device iOS Version with Electra JB 11.3.1
|
@poldenais, from your error I can say that |
@marco-lancini thanks Marco, I got that sorted now and installed Darwin CC again. My jailbreak wasn't right. still getting [!] sh: open: command not found on some commands though |
I'm having the same issue with list_apps coming back blank on IOS 11.2.1 with Electra, I've tried disabling / re-enabling tweaks on Electra but still not working. Can get a shell through needle but can't run many modules at all |
Issue
Expected behaviour
Target app wizard returns apps to be targeted
Actual behaviour
Target app wizard returns nothing.
Steps to reproduce
needle error logs
Environment
Needle Version
Workstation Operating System
Kali 2018.1
Python Version
2.7.14+
Python Packages (
pip freeze
)see https://gist.github.com/GrahamM/2738a6f312380fefef1d38f3596737bc
Device iOS Version
11.2
The text was updated successfully, but these errors were encountered: