1. iOS Application Pentesting Blog By Sunil Kande

-

    iOS Application Pentesting Blog


1. What is iOS
2. iOS Architecture
3. What is Jailbreak 
4. How to Jailbreak
5. How to set-up a pentesting Environment  
6. Local Storage Vulnerabilities
    a. Plist file 
    b. Nsuserdefault Storage 
    c. Keychain 
    d. Core Data 
    e. Webkit Caching 
    f. SQLite Database

7. What is SSL pinning in Mobile
8. How to bypass SSL pinning
9. What is Hooking in iOS
10. Fun with Frida
11. Fun with Objection
12. SSL pinning bypass with Frida & Objection 
13. Jailbreak Detection Bypass using Frida
14. Runtime manipulation
15. Binary Protection 
16. How to decrypt IPA using Frida Script
17. Automation with Objection
18. Side Channel Data Leakage
     a. Device Log
     b. App Screenshot
     c. Pastboard
     d. Keystroke Logging 
     e. Cookies(Binary)

19. Broken Cryptography 
20. Webview issues
21. SSL pinning Bypass Challenges 
22. Network Layer Challanges
23. Sensitive Data in Memory 
24. Data Leakage on third parties
25. My Bounty POCs  (will add if get permission)
26. Reverse Engineering
27. How to use IDA Pro for Binary Analysis
28. appinst, Sftp, keychainDump, plutil tool use

Reference - https://twitter.com/prateekg147 

Comments

  1. Akshay bhandariFebruary 13, 2020 at 6:43 PM

    Good

    ReplyDelete
  2. SunilFebruary 13, 2020 at 8:33 PM

    Thank you :)

    ReplyDelete
  3. AyashiApril 20, 2020 at 3:33 AM

    This comment has been removed by the author.

    ReplyDelete
  4. AyashiApril 20, 2020 at 3:33 AM

    Where is url of tutorials?

    ReplyDelete
  5. IwantacarOctober 13, 2020 at 12:38 AM

    very nice blog post

    https://appvalley.fr/telecharger-instagram/

    ReplyDelete
  6. Habib Around WorldFebruary 27, 2021 at 6:50 AM

    There is a one more site like this website. It helps me to grow my knowlegde and my website traffic. I think it is very helpful for use. You can check it out Ipa file free download

    ReplyDelete
  7. Hijabi GirlApril 26, 2021 at 8:34 AM

    We have sell some products of different custom boxes.it is very useful and very low price please visits this site thanks and please share this post with your friends. Pentesting Services

    ReplyDelete
  8. Web Development ServicesMay 27, 2021 at 4:16 AM

    Thanks for the great information in this post. I hope you’ll keep sharing these types of blogs. taxi booking app development company

    ReplyDelete

Post a Comment

Popular posts from this blog

2. What is iOS and its Structure

-
Image
1. Introduction to Jailbreaking and Tools A. What is iOS ? Reference -  https://en.wikipedia.org/wiki/IOS iOS is a mobile operating system created and developed by Apple Inc. exclusively for iPhone, iPod,iPad & Apple TV Provides multi-tasking (allowing a user to perform more than one computer task) It only allows to run Apple signed applications. B. What is Jailbreaking ? Jailbreak gives full access to the device We Can say it is the privilege escalation from a normal user to root. Allows to install Apps which are not authorized Install Application from Cydia which is AppStore for jailbreak Devices. Types of jailbreak Tethered Users need to reconnect to their computer every time the device is restarted  Untethered its one-time activity. no need to reconnect.  We will see how to jailbreak in an upcoming blog post.                             D. iOS Archite...
Read more