Closed harshitDewan closed 2 years ago
levibuzolic
commented
3 years ago @harshitDewan would you be able to test with https://github.com/avltree9798/isJailbroken to see if that can successfully detect when using Liberty -- if that works we could try implementing some of the methods used there.
tradebulls
commented
3 years ago Jailmonkey is getting ByPassed with Cydia in IOS and Magisk Hide in Android. @levibuzolic Any help?
tradebulls
commented
3 years ago Jailmonkey is getting ByPassed with Cydia in IOS and Magisk Hide in Android. @levibuzolic Any help? With the latest update, its not getting bypassed in IOS, however still facing issue in Android via Magisk Hide. Any help?
harshitDewan
commented
3 years ago Solution provided @anupamhore here
This worked for me for bow but keeping issue open as looking solution from Jail-Monkey. Sharing solution as follows:
Put JB.m & JB.h in your iOS xcode project. Then in the AppDelegate.m file include the header file from the two files as attached.
Then in the AppDelegate.m file search for the function
- (BOOL)application:(UIApplication *)application didFinishLaunchingWithOptions:(NSDictionary *)launchOptions
In that function at the end of the file before return statement add the following code
// Jailbreak detection, if it is true, show alert, then exit app
if (!isSecurityCheckPassed()) {
UIAlertController *alertController = [UIAlertController
alertControllerWithTitle:@"Jailbroken Device is Detected"
message:@"Your device might have been modified. In order to protect your privacy, we will not run the application on this device. It is recommended to have your device checked by the device manufacturer."
preferredStyle:UIAlertControllerStyleAlert];
UIAlertAction *cancelAction = [UIAlertAction actionWithTitle:@"Ok"
style:UIAlertActionStyleDefault
handler:^(UIAlertAction *action) {
exit(1);
}];
[alertController addAction:cancelAction];
[self.window.rootViewController presentViewController:alertController animated:YES completion:nil];
}With the latest update, its not getting bypassed in IOS, however still facing issue in Android via Magisk Hide. Any help?
We'd need somebody to find a way to detect this particular exploit. There may be some prior art in https://github.com/darvincisec/DetectMagiskHide if anybody wanted to test and verify it can accurate detect it.
The issue with exploits like this is that with every update they patch out the ability to be detected, so it's going to be a recurring issue. It's impossible to have 100% accuracy with Jailbreak/root detection.
Peelz
commented
3 years ago With the latest update, its not getting bypassed in IOS, however still facing issue in Android via Magisk Hide. Any help?
We'd need somebody to find a way to detect this particular exploit. There may be some prior art in https://github.com/darvincisec/DetectMagiskHide if anybody wanted to test and verify it can accurate detect it.
The issue with exploits like this is that with every update they patch out the ability to be detected, so it's going to be a recurring issue. It's impossible to have 100% accuracy with Jailbreak/root detection.
I was test this project, and it's not detect magisk hide mode also.
levibuzolic
commented
3 years ago Thanks for testing it @Peelz -- we'll need somebody to find a way to detect it and contribute a PR. However it'll only be a matter of time before it's bypassed again.
hdsenevi
commented
2 years ago Not sure if you all have seen this. There is a company (appdome) thats claiming they can successfully block Magisk hide https://www.appdome.com/how-to/mobile-fraud-prevention/prevent-android-ios-malware/block-magisk-hide/
So it seems, there is a way. We just need to find it
roxas-tan
commented
2 years ago Check out this project. As far as I know, it's the only open source project that can detect MagiskHide / Zygisk DenyList. https://github.com/vvb2060/MagiskDetector
You can download and install the MagiskDetector_v2.3.apk in its GitHub releases for testing.
Jailmoneky is getting Bypassed using Liberty in iOS and Magisk hide in Android. Any possible solution for it ?