I’ve been trying to dump memory of a 64-bit application (at least it seems to be so). Looking at many of the tutorials (this, this and this) what I did was:
- Installed gdb.
- SSH into device.
- Cracked application using Clutch and installed it again using ipainstaller command-line tool.
- Started application and found its PID from
ps -ax. gdb -p %PID%
What I get however is a Segmentation fault: 11 when trying to attach. Some applications like Chess.com or TinyRails are OK to getting attached but ten I see bunch of errors:
warning: error on line 221 of “/Volumes/Builds2/BuildRoot/SourceCache/gdb/gdb-1708/src/gdb/macosx/macosx-nat-infthread.c” in function “kern_return_t modify_trace_bit(thread_t, int)”: (os/kern) invalid argument (0x4x)
warning: error on line 395 of “/Volumes/Builds2/BuildRoot/SourceCache/gdb/gdb-1708/src/gdb/macosx/macosx-nat-infthread.c” in function “void prepare_threads_after_stop(struct macosx_inferior_status *)”: (os/kern) invalid argument (0x4x)
Is there a way to dump memory from 64-bit applications? Ideally I want to be able to do that on device only, without Xcode or other specific PC tools.
