profile
viewpoint

mrmacete/r2-ios-kernelcache 28

Radare2 plugin to parse modern iOS 64-bit kernel caches

mrmacete/r2-ggpack 18

Suite of radare2 plugins to read and manipulate the ggpack data files used by Thimbleweed Park game

mrmacete/Morte 5

Sample iOS game using SpriteKit, featuring dynamic 2D city generation with custom GLSL shader and simple character physics.

mrmacete/appium-xcuitest-driver 0

Appium iOS driver, backed by Apple XCUITest

mrmacete/avr-emu 0

An AVR emulator

mrmacete/blog 0

The radare2 blog, available on radare.today

mrmacete/capstone 0

Capstone disassembly/disassembler framework: Core (Arm, Arm64, M68K, Mips, PPC, Sparc, SystemZ, X86, X86_64, XCore) + bindings (Python, Java, Ocaml)

mrmacete/cidr-js 0

Node module for for expanding cidr blocks in a list of IP (a-z) or just the range (start & end)

mrmacete/DefinitelyTyped 0

The repository for high quality TypeScript type definitions.

mrmacete/frida 0

Clone this repo to build Frida

PR opened frida/frida-core

fruity: Fix spawn on dyld v4 case (jailed iOS 15.x)

Walk the frame pointer once more, in order to get to the actual caller of libSystem_initializer instead of stopping in the middle of it.

+1 -0

0 comment

1 changed file

pr created time in 2 days

create barnchmrmacete/frida-core

branch : fix/fruity-spawn-v4

created branch time in 2 days

push eventmrmacete/frida-gum

Francesco Tamagni

commit sha 15ef3cf9e358e0794e33157d6f697864cef45245

Handle dispose vs finalize semantics

view details

Francesco Tamagni

commit sha 38198bbf6ee8e61f57209c8eb23c467814e26ec9

Use g_new to allocate class list

view details

push time in 5 days

push eventmrmacete/frida-gum

Francesco Tamagni

commit sha 1ce263d74e0e4995208c7bcb47cfcb0a74ec1464

Apply suggestions from code review Co-authored-by: Ole André Vadla Ravnås <oleavr@gmail.com>

view details

push time in 5 days

pull request commentDefinitelyTyped/DefinitelyTyped

Sync frida-gum typings with Frida 15.1.11

Ready to merge

oleavr

comment created time in 6 days

PullRequestReviewEvent

push eventmrmacete/frida-gum

Francesco Tamagni

commit sha 6733fdee38221361ee43104a6dcb6b7eacdd5cc1

Fix typo

view details

push time in 9 days

push eventmrmacete/frida-gum

Francesco Tamagni

commit sha 7beb4971c6b22b96e1e2b1d1ace4909fd14e1412

Fix function args indentation

view details

push time in 9 days

PR opened frida/frida-gum

objc-api-resolver: Protect against objc_disposeClassPair via mutex

GumObjcDisposeClassPairMonitor uses the Interceptor to attach to objc_disposeClassPair so that on enter it locks a mutex, releasing it on leave.

This mutex is then used to protect the creation of the initial snapshot of Objective-C classes, and a cache-less reimplementation ofgum_objc_api_resolver_find_method_by_address.

The monitor instance is shared across all concurrent usages, via the "obtain" semantics.

+230 -14

0 comment

4 changed files

pr created time in 9 days

create barnchmrmacete/frida-gum

branch : feature/objc-dispose-classpair-monitor

created branch time in 9 days

push eventmrmacete/frida-uiwebview

Francesco Tamagni

commit sha bd21ae7a12eee4e191b0ac20d001d6076e526e09

Check if WKWebView is loading before running JS And retry 3 times with some delay before giving up. Trying to execute Javascript while WKWebView is loading can lead to indefinite hang because the evaluation request can get lost / cancelled without feedback: the completion handler just never gets called.

view details

push time in 10 days

PR opened nowsecure/frida-uiwebview

Check is WKWebView is loading before running JS

And retry 3 times with some delay before giving up.

Trying to execute Javascript while WKWebView is loading can lead to indefinite hang because the evaluation request can get lost / cancelled without feedback: the completion handler just never gets called.

+14 -1

0 comment

1 changed file

pr created time in 10 days

created tagmrmacete/frida-uiwebview

tagv3.0.1

Inspect and manipulate UIWebView-hosted GUIs through Frida.

created time in 10 days

create barnchmrmacete/frida-uiwebview

branch : fix/handle-wkwebview-not-ready

created branch time in 10 days

push eventmrmacete/frida-gum

Francesco Tamagni

commit sha 8e365e8d79914057c2f43fbf61f9b01665c72380

Make header self-contained and add license

view details

Francesco Tamagni

commit sha 715c477843af8eea0bd6e226e230feb07c90b4f8

Move include to the right group

view details

push time in 11 days

push eventmrmacete/frida-gum

Francesco Tamagni

commit sha b82b95914e092942afbcec41629ce2fbec3d2349

Use C-style comments Co-authored-by: Ole André Vadla Ravnås <oleavr@gmail.com>

view details

push time in 11 days

PR opened frida/frida-gum

kernel: Get base from all_image_info where supported

Jailbreaks like Unc0ver and checkra1n store the kernel slide in all_image_info_size, obtainable via a call to task_info on the kernel task port. This change adds support for reconstructing the kernel base address from it.

+84 -40

0 comment

3 changed files

pr created time in 20 days

create barnchmrmacete/frida-gum

branch : feature/kernel-base-from-all-image-info

created branch time in 20 days

push eventmrmacete/frida-gum

Francesco Tamagni

commit sha c9780710a3f8beceabee1b49b983cf9d4accc2c3

Check if superclass is indexed

view details

push time in 25 days

PR opened frida/frida-gum

objc-api-resolver: Guard against disposed objc classes

This change reduces the chances of crashing when any Objective-C class gets disposed during the lifetime of an ApiResolver instance of the objc type, by detecting and removing dangling class references.

+72 -44

0 comment

1 changed file

pr created time in 25 days

create barnchmrmacete/frida-gum

branch : fix/objc-apiresolver-disposed-classes

created branch time in 25 days

Pull request review commentfrida/frida-core

portal-service: Always remove ClusterNode and ControlChannel sessions

 namespace Frida {  		private void on_agent_session_expired (AgentSessionEntry entry) { 			sessions.unset (entry.id);++			ClusterNode? node = entry.node;+			if (node != null)+				node.sessions.remove (entry.id);++			ControlChannel? controller = entry.controller;+			if (controller != null)+				controller.sessions.remove (entry.id);

Not super sure this is needed, though.

mrmacete

comment created time in a month

PullRequestReviewEvent

PR closed frida/frida-core

portal-service: Check NULL session entry in teardown_cluster_node()

Apparently sessions[id] can be NULL under certain conditions, the check avoids crashing in that case.

+3 -1

1 comment

1 changed file

mrmacete

pr closed time in a month

pull request commentfrida/frida-core

portal-service: Check NULL session entry in teardown_cluster_node()

Closing in favour of https://github.com/frida/frida-core/pull/402

mrmacete

comment created time in a month

PR opened frida/frida-core

portal-service: Always remove ClusterNode and ControlChannel sessions

Whenever a session id is unset from PortalService. This avoids both NULL derefereces and leaks.

+12 -0

0 comment

1 changed file

pr created time in a month

create barnchmrmacete/frida-core

branch : fix/ensure-sessions-aligned

created branch time in a month

PR opened frida/frida-core

portal-service: Check NULL session entry in teardown_cluster_node()

Apparently sessions[id] can be NULL under certain conditions, the check avoids crashing in that case.

+3 -1

0 comment

1 changed file

pr created time in a month

push eventmrmacete/frida-core

Francesco Tamagni

commit sha aaae8aa682bb4becb58909a2da792c4495de2f8f

portal-service: Check NULL session entry in teardown_cluster_node() Apparently `sessions[id]` can be NULL under certain conditions, the check avoids crashing in that case.

view details

push time in a month

create barnchmrmacete/frida-core

branch : fix/check-null-session-entry

created branch time in a month

more