Welcome to my 6th blog post on “iOS Application Security Testing Series”. You can find Part five here. In this article, we will look at application Re-sign and patching. In a previous blog post, we have looked at how we can hijack method implementations during runtime using Cycript or Frida. The idea… Read more »
Flawless App is an app built with a specific purpose in mind… To help you make the design of your app pixel perfect. In this short review we’ll go over the features of Flawless App and see what it can do for you. Designers vs. Developers Most developers are a… Read more »
You probably know what Google Drive is, just in case you don’t… it’s a cloud bases storage. In this article we’ll walk you through the setup procedure and cover some basic scenarios on how to use Google Drive in your apps. Let’s get started. Pre-flight Before you can use Google… Read more »
Welcome to my very first article on “ iOS Forensics Series” . In this series I will provide information on mobile forensics, starting from the three main categories: seizure, acquisition, examination, and all the way to analysis. In this part, we shall cover seizure, and in the future parts of this series… Read more »
URLSession has a great feature where you can download files while your app is in the background. In this article we’ll go over setting up your app to use this great little feature. We’ll focus on downloading files, but you can use the same principles for uploading files as well…. Read more »
Welcome to part five of “iOS Application Security Testing Series” You can find the Part 4 here. In this article, I like to go over App Transport Security (ATS) from pen tester’s perspective. What does that mean exactly? First, I like to walk you through basic testing-related archaeology and help you set up the… Read more »
Last week we talked about Realm Database and how to get started with it. This week we’ll dive in a bit deeper in Realm. Realm has a nice feature called ‘Synced Realms’. It’s a database that’s hosted in the cloud and in this article we’ll see how to set it… Read more »
Realm is an alternative to Core Data on iOS and it’s also cross-platform. In this blog post we’ll setup Realm Database for our little demo project and we’ll check out some basic features that you’ll end up using. Realm Database Sooner or later you’ll find yourself in a position where… Read more »
You might be wondering what are throwable optionals. It’s simply an optional that will throw when force unwrapping. Throwable optionals don’t exist in the swift standard library. In this blog article we’ll create them and we’ll create a custom operator for them as well. This article has been inspired by… Read more »
Welcome to my 4th blog post on “iOS Application Security Testing Series”. You can find Part Three here. In this article, we will look at applications Runtime analysis using Objection runtime Mobile Exploration toolkit, powered by Frida. We will look at how we can obtain information about a class (methods, instance variables) and modify them… Read more »