Objection

Latest version: v1.11.0

Safety actively analyzes 714973 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 3 of 5

1.8.3

fixes
- Improve Kotlin app repackaging support (thanks dnet via 299)
- Improve iOS 13 SSL pinning bypass support (thanks tmm1 via 301)

other
- Bump agent dependencies

[Code Changes Since v1.8.2](https://github.com/sensepost/objection/compare/1.8.2%E2%80%A61.8.3)

1.8.2

fixes
- Fix Android overload filter (thanks jpacg via 293)

[Code Changes Since v1.8.1](https://github.com/sensepost/objection/compare/1.8.1%E2%80%A61.8.2)

1.8.1

fixes
- Improve plugin loading when specifying a folder with multiple plugins

[Code Changes Since v1.8.0](https://github.com/sensepost/objection/compare/1.8.0%E2%80%A61.8.1)

1.8.0

new
- Add a libboringssl SSL pinning bypass for iOS 11+ (thanks NickstaDB via 281)
- Multiple Android APK patcher improvements which include better support for Kotlin coroutines, a flag to use `aapt2` with `apktool` and better error handling. (thanks dnet via 282, 283 and 284)
- Add the ability to watch a specific Java method overload, or set a return value for a specific method overload (thanks aph3rson via 239)
- Add a new iOS command to dump raw, unparsed and unformatted data from the keychain. This is available as the `ios keychain dump_raw` command and should be used in conjunction with the original `dump` command to make sure no parsing errors have occurred.
- Add a new `file cat` command that will perform `cat`-like activities, added for convenience. Only ASCII printable characters in the target file will be echoed to screen. For any other processing, files should still be downloaded and processed locally.
- Add new Frida hook generator commands to quickly get ready to use, boilerplate code for your own Frida hooks. Two flavours are available; a `simple` and `class` version. The version you choose will depend on your use case, so feel free to experiment!
- Completely refactor SQLite database interactions, removing the old implementation and replacing it with [LiteCli](https://github.com/dbcli/litecli). Running the `sqlite connect database.sqlite` command will now automatically drop you into a litecli REPL. If you want to make changed to the target database, add the `--sync` flag. This way, once you `quit` from the litecli REPL, the modified database will be synchronized back to the device.

fixes
- Improve RPC messaging from the JavaScript agent to the Python environment.

other
- Update the Frida agent's dependencies, bumping `types/frida-gum` to version 14.

[Code Changes Since v1.7.5](https://github.com/sensepost/objection/compare/1.7.5%E2%80%A61.8.0)

1.7.5

new
- Add the plugins directory with some sample plugins.

fixes
- Improve the iOS keychain dumper to handle entries with empty data.

other
- Update the Frida agent's dependencies.

[Code Changes Since v1.7.4](https://github.com/sensepost/objection/compare/1.7.4%E2%80%A61.7.5)

1.7.4

fixes
- Change the iOS patcher shorthand flag used when specifying a provisioning profile to an upper case `P`. Lower case was conflicting with the `--pause` / `-p` flag.

[Code Changes Since v1.7.3](https://github.com/sensepost/objection/compare/1.7.3%E2%80%A61.7.4)

Page 3 of 5

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.