idb – iOS App Security Assessment Tool

idb is a tool to simplify some common tasks for iOS app security assessments and research. To illustrate the features of idb, the screenshots are based on the analysis of either iGoat or the Damn Vulnerable iOS Application (DVIA) which are both great resources to familiarize yourself with iOS app vulnerabilities.

idb - iOS App Security Assessment Tool
idb – iOS App Security Assessment Tool

Some of the features with this tool are:

  • Assessment Setup
    • SSH port forwarding
    • Installation of helper utilities
  • App Information
    • Bundle information
    • Registered URL Schemes
    • Platform and SDK Versions
    • Data folder location
    • Entitlements
  • Data Storage
    • List plist files and data protection class
    • List sqlite files and data protection class
    • List Cache.db files and data protection class
    • Full app file system browser
      • Browse files
      • Download/view files
      • Check data protection
      • Rsync folders and keep git revisions
    • Dump iOS keychain
  • Binary Analysis
    • Check for encryption
    • Check for protections (ASLR/PIE, DEP, ARC)
    • List shared libraries
    • Extract strings in app binary
    • Dump class and method signatures
  • IPC
    • List URL handlers
    • Invoke and fuzz URL handlers
    • Monitor the iOS pasteboardA
  • Other Tools
    • Check for iOS backgrounding screenshot. The screen shot utility is a simple wizard that can be used to test whether an app is disclosing sensitive data in the automatic backgrounding screenshots taken by iOS.
    • Install certificates
    • Edit /etc/hosts file

You can read more and download this tool over here: http://www.idbtool.com/

Share
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments