07.iOS重签名调研

要想保留原APP的bundleId不变,则重签名的证书的bundleId规则如下: 原App的bundleId: com.abc.hell 用于重签名的bundleId:com.abc.hell.xyz 保证原APP的bundleId是重签名的bundleId的前缀

Step 1: 查看App证书情况

执行命令:

codesign -d -vv /Users/RyukieW/Inke/技术相关/重签名调研/sui/Payload/Finance.app

输出:

Executable=/Users/RyukieW/Inke/技术相关/重签名调研/sui/Payload/Finance.app/Finance
Identifier=com.feidee.myfinance
Format=app bundle with Mach-O thin (arm64)
CodeDirectory v=20400 size=67736 flags=0x0(none) hashes=2108+5 location=embedded
Signature size=4820
Authority=iPhone Developer: xiangdong Ren (23Z6TN7Z56)
Authority=Apple Worldwide Developer Relations Certification Authority
Authority=Apple Root CA
Signed Time=Nov 14, 2018 at 10:58:22 AM
Info.plist entries=37
TeamIdentifier=3Q47P4VEX9
Sealed Resources version=2 rules=10 files=446
Internal requirements count=1 size=180

Step 2: 查看是否被加密(是否破解)

其中cryptid为0代表已经砸壳,即解密,为1或者2表示以第1类或者第2类加密方案加密。

Step 4: 查看本地证书并记录需要用到的证书

iPhone Developer: kai chen (8SRJU35B8T)

  • 找一个开发环境配置文件生成entitlements.plist文件,后面签名要用到:

  • 把准备好的开发环境配置文件复制到XX.app文件夹下:

  • 修改包Info.plist中的Bundle Identifier与配置文件中的Bundle Identifier保持一致:

  • 移除之前的签名文件夹:

Step 5: 重签名

  • 重签名framework

  • .app文件重签名

  • 查看App签名信息

Step 6: 打包

参考

iOS逆向微信

https://cloud.tencent.com/developer/article/1445897 https://www.jianshu.com/p/31232eef35c5 https://juejin.im/post/5c7e796351882532cd57adc4#heading-19 iOS应用程序的重签名(打包) https://blog.csdn.net/skylin19840101/article/details/60583893 iOS逆向必备绝技之ipa重签名 https://www.yangshebing.com/2018/01/06/iOS%E9%80%86%E5%90%91%E5%BF%85%E5%A4%87%E7%BB%9D%E6%8A%80%E4%B9%8Bipa%E9%87%8D%E7%AD%BE%E5%90%8D/?utm_source=tuicool&utm_medium=referral 超级签名-原理/机制/技术细节-完全解析 https://juejin.im/post/5cdeb72151882525cc707729

Previous06.源代码到IPANext08.load与-initialize

Last updated

Was this helpful?