Question 1

How to set up RMS for iOS jailbroken devices?

Accepted Answer

Ensure FRIDA server is running on the iOS device after jailbreak, as RMS attaches to SpringBoard by default. Follow the iOS prerequisites in the README, including the FRIDA installation guide, and launch RMS to connect via the web interface.

Question 2

RMS vs Objection for mobile app testing?

Accepted Answer

RMS offers a web-based GUI for real-time interaction and script injection, while Objection is more command-line focused. RMS is better for visual analysis and custom scripting, but Objection might be preferred for automated or script-heavy workflows without a GUI.

Question 3

Can RMS bypass SSL pinning on Android?

Accepted Answer

Yes, RMS includes pre-built FRIDA scripts for SSL pinning bypass, which can be injected via the custom scripts folder. The API monitor also helps track relevant system calls to identify and manipulate pinning logic.

Question 4

How to inject custom scripts in RMS?

Accepted Answer

Place your .js files in the 'custom_script' folder, and they will automatically load in the web interface. From there, you can select and execute them on the fly, as shown in the demos for extending functionality.

Question 5

Does RMS work on Windows or Linux?

Accepted Answer

RMS should work on Windows and Linux with minor adjustments, but it's primarily tested on MacOS. Ensure NodeJS and FRIDA CLI tools are installed, and check for device connectivity issues specific to those platforms.

Question 6

What to do if RMS fails to detect my device?

Accepted Answer

Verify that FRIDA-server is running on the target device, only one device is connected, and RMS is started after the server. Use the 'frida-ps -U' smoke test from the README to confirm FRIDA functionality before troubleshooting.

Runtime Mobile Security (RMS)

What is Runtime Mobile Security (RMS)?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions