You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Evaluate before adding. Can it be listed as an alternative of reflutter? Or is it essentially different?
B(l)utter: Flutter Mobile Application Reverse Engineering Tool by Compiling Dart AOT Runtime. Currently the application supports only Android libapp.so (arm64 only). Also the application is currently work only against recent Dart versions.
I used this blutter tool and reflutter on a dummy app to check their differences. These are things which I noticed:
reflutter does a dynamic runtime analysis by modifying the apk whereas Blutter directly analyzes the libapp.so to extract Dart objects directly from binary and generates frida scripts to dump data in a running Flutter application
Blutter also produces all symbols name in dart snapshot, offsets etc.
As just for reversing engineering of the flutter apps I feel Blutter does a much better job.
This may not be the complete list, but these are major advantages blutter has over reflutter. @cpholguera If we add this tool you can assign it to me, as I already have this tool set.
Evaluate before adding. Can it be listed as an alternative of reflutter? Or is it essentially different?
https://github.com/worawit/blutter
hitbsecconf2023 slides
https://youtu.be/RtKOe8HQy8Q?si=B59P5hQXVrk5J7Sw
The text was updated successfully, but these errors were encountered: