Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

blutter tool added (by @appknox) #2881

Merged
merged 14 commits into from
Nov 7, 2024
Merged

blutter tool added (by @appknox) #2881

Changes from 5 commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
f067380
blutter tool added
ScreaMy7 Aug 20, 2024
2a72e40
blutter tool
ScreaMy7 Aug 21, 2024
6aa43b4
fixes
ScreaMy7 Aug 21, 2024
4bc0957
Merge branch 'OWASP:master' into blutter
ScreaMy7 Sep 30, 2024
630b08c
Update tools/android/MASTG-TOOL-0111.md
cpholguera Oct 1, 2024
6e7473d
Merge branch 'OWASP:master' into blutter
ScreaMy7 Oct 18, 2024
9f4e2df
minor changes,changed tool number and added dockerfile
ScreaMy7 Oct 18, 2024
6ceb90a
added code block language
ScreaMy7 Oct 18, 2024
0692c56
Remove docker script
TheDauntless Nov 4, 2024
3cc7639
Remove docker file, process suggestion from Carlos
TheDauntless Nov 4, 2024
78467bd
Typo
TheDauntless Nov 4, 2024
fe0dab0
Grammar
TheDauntless Nov 4, 2024
dee0e72
typo and fix
TheDauntless Nov 4, 2024
b7899cb
Update tools/android/MASTG-TOOL-0116.md
cpholguera Nov 4, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
18 changes: 18 additions & 0 deletions tools/android/MASTG-TOOL-0111.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
---
title: Blutter
platform: android
source: https://github.com/worawit/blutter
---

[Blutter](https://github.com/worawit/blutter) is an open-source tool created to support the reverse engineering of Flutter applications. Unlike other Flutter tools, Blutter parses the libapp.so file locally, without requiring you to run the app on a device. The tool is compatible Linux, Windows, and macOS, but can only analyse Android ARM64 apps. Blutter is capable of extracting and analyzing Dart objects and it can generate Frida scripts for further analysis.
ScreaMy7 marked this conversation as resolved.
Show resolved Hide resolved

This tool does require a specific environment to work, which can be found [here](https://github.com/worawit/blutter?tab=readme-ov-file#environment-setup).If you don’t want to setup the environment here is the docker support for the blutter tool.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Where is the docker support?

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

it's not supported yet: worawit/blutter#50

pancake has one currently: https://github.com/trufae/blutter-docker

Copy link
Collaborator Author

@ScreaMy7 ScreaMy7 Sep 30, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There is no official docker support as of now, so I have not added it here. But, docker is necessary to work with this tool as it is difficult to get the right dependency. So @cpholguera should we include links to these in the guide?

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, please update the paragraph accordingly (you can include both links)

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I have added the docker file itself, as it is a short file, and this will prevent any broken links while providing ease of usage for this tool.


Use the apktool to Extract "lib" directory from apk file.
cpholguera marked this conversation as resolved.
Show resolved Hide resolved

```bash
python3 blutter.py path/to/app/lib/arm64-v8a out_dir
```

Reference:
[B(l)utter – Reversing Flutter Applications](https://www.youtube.com/watch?v=EU3KOzNkCdI)