MOB-FRIDA-HOOKExecution

Frida Runtime Hooking

Inject JS into the app process to intercept Java / native function calls — dump arguments, modify return values, bypass auth.

§ Where this technique fits

MOB-FRIDA-HOOK is catalogued under the Execution tactic of the offensive-security kill-chain. It appears in 1 approved dossier in the registry, typically at step 3 on average.

§ Dossiers chaining this technique

Jailbreak detection bypass → keychain dump
Test on a jailbroken device. Hook jailbreak-detection routines, run objection to dump the entire app keychain — recovers session tokens, refresh tokens, biometric keys.
step 3 / 5

§ What commonly comes next

01
iOS Keychain Dump (jailbroken)
MOB-IOS-KEYCHAIN · Credential Access
seen 1×

§ Where this technique fits

§ Dossiers chaining this technique

Jailbreak detection bypass → keychain dump

§ What commonly comes next