[Tool] Add blutter?

[cpholguera]

Evaluate before adding. Can it be listed as an alternative of reflutter? Or is it essentially different?

B(l)utter: Flutter Mobile Application Reverse Engineering Tool by Compiling Dart AOT Runtime. Currently the application supports only Android libapp.so (arm64 only). Also the application is currently work only against recent Dart versions.

https://github.com/worawit/blutter

hitbsecconf2023 slides

https://youtu.be/RtKOe8HQy8Q?si=B59P5hQXVrk5J7Sw

[artembark]

I think this video is also useful in addition to slides: B(l)utter – Reversing Flutter Applications

[ScreaMy7]

I used this blutter tool and reflutter on a dummy app to check their differences. These are things which I noticed:

• reflutter does a dynamic runtime analysis by modifying the apk whereas Blutter directly analyzes the libapp.so to extract Dart objects directly from binary and generates frida scripts to dump data in a running Flutter application
• Blutter also produces all symbols name in dart snapshot, offsets etc.
• As just for reversing engineering of the flutter apps I feel Blutter does a much better job.

This may not be the complete list, but these are major advantages blutter has over reflutter. @cpholguera If we add this tool you can assign it to me, as I already have this tool set.

[cpholguera]

@ScreaMy7 it's yours, thank you so much!