Bypass FaceID when reading the keychain.

sensepost / objection

📱 objection - runtime mobile exploration

GNU General Public License v3.0

7.46k stars 854 forks source link

Bypass FaceID when reading the keychain. #344

Open leonjza opened 4 years ago

leonjza commented 4 years ago

@chaitin mentioned via Telegram that it is possible to bypass FaceID when reading the keychain here with:

searchDictionary.setObject_forKey_(
      Module.findExportByName('Security', 'kSecUseAuthenticationUIFail')!.readPointer(),
      Module.findExportByName('Security', 'kSecUseAuthenticationUI')!.readPointer())