This document discusses iOS security and tools for analyzing iOS apps. It lists several iOS security features like TouchID, App Sandboxing, and App Store review. It also mentions tools like Frida and Needle that can be used to dynamically instrument and analyze iOS apps. Finally, it provides some safety tips and resources for working with jailbroken iOS devices.

1. @clement_prem
iOS Engineer @Lifesum
Clement Prem

3. Terminal & root access

4. AwarenessIt is fun

5. SEP
Secure Boot
App Sandboxing
TouchID
ATS
AppStore

7. Made in China
Xcode
First large-scale attack on Apple's App Store
Ghost

8. Security Vulnerabilities Published In 2016

10. Dynamic code instrumentation toolkit
Modular framework to streamline the process of conducting security
assessments of iOS apps.
https://www.frida.re
https://github.com/mwrlabs/needle

11. Tools
Jailbroken device with Cydia
OpenSSH
APT 0.7 strict
Needle Agent
Frida

12. View Meta data
File storage
Keychain Dump
Class dump & Method dump
Installation
Analysing Network Traffic

13. Monitor method calls
Modify run time behaviour
Installation

14. Safety Measures

15. Check the Device is Jailbroken!
Run static/code_checks from Needle
Use latest security features provided by Apple
Client can not be trusted
Double check network calls
Respect user’s privacy at the core
Encrypt sensitive data
……

16. Resources
Jailbreak (OpenSSH, APT 0.7 Strict)
Needle
Frida
http://yalujailbreak.org/ios-10-2-1/
https://github.com/mwrlabs/needle
https://www.frida.re

17. Thank You