frida

v16.4.7

Inject JavaScript to explore native apps on Windows, Mac, Linux, iOS and Android For more information about how to use this package see README

Latest version published 4 days ago

License: LGPL-2.0 WITH WxWindows-excep…

NPM

GitHub

Package Health Score

75 / 100

security
No known security issues
popularity
Small
maintenance
Healthy
community
Sustainable

Explore Similar Packages

Security

No known security issues

All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security and license risk for significant versions

All Versions

Version				Vulnerabilities	License Risk
16.4.7	\|	07/2024		0 C 0 H 0 M 0 L	0 H 0 M 0 L
16.4.5	\|	07/2024	Popular	0 C 0 H 0 M 0 L	0 H 0 M 0 L
16.3.3	\|	06/2024		0 C 0 H 0 M 0 L	0 H 0 M 0 L
15.2.2	\|	07/2022		0 C 0 H 0 M 0 L	0 H 0 M 0 L
14.2.18	\|	05/2021		0 C 0 H 0 M 0 L	0 H 0 M 0 L

License

LGPL-2.0 WITH WxWindows-exception-3.1

Security Policy

Is your project affected by vulnerabilities?

Scan your projects for vulnerabilities. Fix quickly with automated fixes. Get started with Snyk for free.

Get started free

Popularity

Small

Weekly Downloads (1,445)

GitHub Stars: 276
Forks: 62
Contributors: 20

Direct Usage Popularity

The npm package frida receives a total of 1,445 downloads a week. As such, we scored frida popularity level to be Small.

Based on project statistics from the GitHub repository for the npm package frida, we found that it has been starred 276 times.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Community

Sustainable

Readme.md: Yes
Contributing.md: No
Code of Conduct: No
Contributors: 20
Funding: No

With more than 10 contributors for the frida repository, this is possibly a sign for a growing and inviting community.

We found a way for you to contribute to the project! Looks like frida is missing a Code of Conduct.

Embed Package Health Score Badge

Maintenance

Healthy

Commit Frequency

Open Issues: 12
Open PR: 1
Last Release: 4 days ago
Last Commit: 9 days ago

Further analysis of the maintenance status of frida based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Healthy.

We found that frida demonstrates a positive version release cadence with at least one new version released in the past 3 months.

As a healthy sign for on-going project maintenance, we found that the GitHub repository had at least 1 pull request or issue interacted with by the community.

Keep your project healthy

Check your package.json

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Node.js Compatibility: >=16 || 14 >=14.17

Age: 10 years
Dependencies: 4 Direct
Versions: 645
Install Size: 4.47 MB
Dist-tags: 1
# of Files: 438
Maintainers: 1
TS Typings: No

frida has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.

Not sure how to use frida?

To help you get started, we've collected the most common ways that frida is being used within popular public projects.

chaitin / passionfruit / lib / channelsv2.js View on Github

agent.message.connect((message, data) => {
    if (message.type === 'error') {
      console.error('error message from frida'.red)
      console.error((message.stack || message).red)
    } else if (message.type === 'send') {
      // todo
    }
  })

  await agent.load()
  socket.emit('ready')
})


const mgr = frida.getDeviceManager()
const connected = new Map()

export function attach(server) {
  socket.attach(server)

  const wrap = tag => device =>
    devices.emit(tag, new Device(device).valueOf())

  const added = wrap('DEVICE_ADD')
  const removed = wrap('DEVICE_REMOVE')
  mgr.added.connect(added)
  mgr.removed.connect(removed)
  connected.set(server, [added, removed])
}

export function detach(server) {

View more ways to use frida

frida-node

Node.js bindings for Frida.

Depends

Node.js 8.x or newer

Install

Install from binary:

$ npm install frida

Install from source:

$ make
$ npm install

Build for Electron:

$ ./configure --with-runtime=electron --with-target=27.0.0
$ make
$ npm install

Examples

Follow Setting up the experiment to produce a binary.
Run the binary.
Take note of the memory address the binary gives you when run.
Run any of the examples, passing the name of the binary as a parameter, and the memory address as another.

(Note: only some examples use the memory address)

Developing

To recompile only the C++ files that have changed, first run the "Install from source" step above, then simply run make again.

Packaging

$ ./configure --with-runtime=electron --with-target=27.0.0
$ make prebuild

frida dependencies

bindings minimatch nan prebuild-install

frida development dependencies

@types/chai @types/mocha @types/node chai mocha ts-node typescript

FAQs

What is frida?

Inject JavaScript to explore native apps on Windows, Mac, Linux, iOS and Android. Visit Snyk Advisor to see a full health score report for frida, including popularity, security, maintenance & community analysis.

Is frida popular?

The npm package frida receives a total of 1,445 weekly downloads. As such, frida popularity was classified as small. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is frida well maintained?

We found that frida demonstrated a healthy version release cadence and project activity. It has a community of 20 open source contributors collaborating on the project. See the full package health analysis to learn more about the package maintenance status.

Is frida safe to use?

The npm package frida was scanned for known vulnerabilities and missing license, and no issues were found. Thus the package was deemed as safe to use. See the full health analysis review.

Last updated on 25 July-2024, at 21:05 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP