🚀 To be released at Blackhat Asia 2025 Arsenal!!!

Check Out On BlackHat Website

Ultimate Mobile Security Toolkit

MobXplore is an open-source tool built on Frida, specifically crafted to empower security researchers, developers, and penetration testers in conducting thorough mobile application security assessments.

Created By

Key Features

Device Information Retrieval

Retrieve detailed device information, including device name, model, iOS version, UDID, serial number, etc.

Device Information Screenshot

App Explorer

List all the installed application on device with basic metadata, select any app to explore detailed information like Info.plist, files, storage(keychain,NSUserDefaults, etc), Classes, etc.

App Management Screenshot

IPA Extraction

Extract Decrypted IPA files from installed applications for further analysis and reverse engineering (powered by frida-ios-dump).

IPA Extraction Screenshot

Quick Scan

A simple rule-based scanner powered by frida to scan any installed application on the device to identify vulnerabilities and misconfigurations.

Quick Scan Screenshot

Setup MobXplore

Get started with MobXplore in just a few simple steps

  • A computer with root privileges.
  • A Jailbroken iOS device with frida installed and SSH access.
  • Python 3, Frida and libimobiledevice installed on system.
  • Docker (if running using docker).

Follow these steps to run mobxplore on your system:

  • Create and active virtual environment
    • python3 -m venv mobxplore_venv
    source mobxplore_venv/bin/activate
  • Clone the repository
    • git clone https://github.com/enciphers-team/mobXplore
    cd mobXplore
  • Install the requirements
    • pip3 install -r requirements.txt
  • Run mobxplore
    • streamlit run main.py

Now you can access the application at http://localhost:8501

Note: This method works on Linux and MacOS only, if you are on windows use a linux VM with access to USB port.

You can connect your device in the following ways:

  • Using USB cable:
    • Just connect you device via any of the USB cable that your device supports, ideally the cable used for charging should always work.
  • Remote Connection (Wireless):

    • Make sure your device is connected to same wifi network.
    • Run the command on your systems terminal(on Docker container shell, if using docker):
      • ssh -L 27042:localhost:27042 root@<mobile_IP> -o ServerAliveInterval=60
    • Run mobXplore tool and click on Connect Remote Device button.