Skip to content

Latest commit

 

History

History
128 lines (75 loc) · 3.34 KB

README.md

File metadata and controls

128 lines (75 loc) · 3.34 KB

NexDbg

Next Generation Browser-based Process Memory Analyser.
All data is bundled in one binary.

Usage

iOS

Run

with a Jailbroken iPhone

Place your PC and iphone in the same network.
Place memory-server and Entitlements.plist in /usr/bin.

Connect to the iphone via ssh.

cd /usr/bin
ldid -SEntitlements.plist memory-server
./memory-server

The httpserver starts at port 3030.

without a Jailbroken iPhone

Set up the same way as FridaGadget to force loading of libmemory_server.dylib.
Connect to the network from Browser as usual.
Log output is written to NSLog.

Connect from browser

Connect to memory-server from a browser on your PC.

http://{iPhone's ip}:3030/index.html

The following top page will be displayed.

img1

Setting

Enter the ip of the iPhone in the 「IP Address」 field and press the 「Connect」 button.

Next, select a process and press the 「Open Process」 button.

img2

Memory Scan

img3

Debugger

Only watchpoints are supported in the iOS environment.

img4

File Explorer

The feature allows viewing and downloading files on the device

img4

Android

Run

with a Rooted Android

Network connection is identical to iphone.

cd /data/local/tmp
su
./memory-server

without a Rooted Android

Set up the same way as FridaGadget to force loading of libmemory_server.so.
This method allows the android device to operate on its own.

img4

Build

Running the GitHub Actions Workflow Manually

To build the project using GitHub Actions, follow these steps:

  1. Fork this repo

  2. Go to the "Actions" tab in your forked repository.

  3. In the left sidebar, click on the "Build" workflow.

  4. Above the list of workflow runs, click on "Run workflow".

  5. In the dialog box that appears:

    • Select the branch you want to run the workflow on (usually "main").
    • Enter a version tag for this build (e.g., "v1.0.0").
  6. Click "Run workflow" to start the build process.

  7. The workflow will start running, and you can monitor its progress in the Actions tab.

  8. Once the workflow completes successfully, you can download the built artifacts:

    • Go to the completed workflow run.
    • Scroll down to the "Artifacts" section.
    • Click on the artifact names to download:
      • memory-server-ios-arm64-[version]
      • memory-server-android-arm64-[version]

Note: Make sure you have the necessary permissions in your forked repository to run workflows and access artifacts.

Manual build

For more information, please visit Wiki

Credits

frida-ios-dump