AgentSkillsCN

mobile-security

对移动应用程序进行逆向工程和漏洞利用。适用于处理 Android APK 文件、iOS IPA 文件、移动应用逆向工程、Frida 挂钩或应用安全分析挑战时使用。

SKILL.md
--- frontmatter
name: mobile-security
description: Reverses and exploits mobile applications. Use when working with Android APK files, iOS IPA files, mobile app reversing, Frida hooking, or app security analysis challenges.
allowed-tools: Bash, Read, Write, Grep, Glob

Mobile Security Skill

Quick Workflow

code
Progress:
- [ ] Extract APK/IPA
- [ ] Decompile (jadx for Android)
- [ ] Search for hardcoded secrets
- [ ] Check native libraries
- [ ] Dynamic analysis with Frida if needed
- [ ] Extract flag

Quick Analysis Pipeline

bash
# Android APK
file app.apk
apktool d app.apk -o extracted/
jadx app.apk -d output/
grep -r "flag\|secret" output/

# iOS IPA
unzip app.ipa -d extracted/
strings Payload/App.app/App | grep -i flag

Reference Files

TopicReference
Android APK Analysisreference/android.md
iOS IPA Analysisreference/ios.md
Frida & objectionreference/frida.md

Tools Summary

ToolPurposeInstall
jadxJava decompilergithub.com/skylot/jadx
apktoolAPK decode/rebuildapktool.org
FridaDynamic instrumentationpip install frida-tools
objectionRuntime explorationpip install objection
GhidraNative lib reversingghidra-sre.org
dex2jarDEX to JARgithub.com/pxb1988/dex2jar

CTF Quick Patterns

bash
# Flag in resources
grep -r "flag\|ctf\|secret" extracted/res/

# Flag in native library
strings extracted/lib/*/*.so | grep -i flag

# Hardcoded secrets
grep -r "api_key\|secret\|password" output/