Instagram signs every request with a hmac sha hash.
A request looks like as an example.
nc8e1774526bf84b58bb4ffebb357bddb822a5183e0355db1effc2dad47107a29 is generated by a hmac function with a key.
Without this key I cannot generate the signature and requests won’t get accepted.
Basically I checked the App with IDA and followed your iOSAppReverseEngineering.pdf
I think I know where the key gets generated and I’m trying to gett it with LLDB and a breakpoint but I’m having many issues where I could need help.
For example I used the ASLR offset + the pointer from IDA to get the address
Then I set a breakpoint which worked but as soon as the breakpoint hits I get
`(lldb) Process 21538 stopped
- thread #13: tid = 0x6538, 0xff76545e, stop reason = EXC_BAD_ACCESS (code=1, address=0xff76545e)
frame #0: 0xff76545e
error: memory read failed for 0xff765400`
and the app continues to run but not fully. I can see the loading circle spinning but nothing else works.
For such issues which are very time consuming to resolve on my own, I’d like to have somebody in chat/skype to talk to and help me resolve these issues.
I’d pay for the time this takes.