DVIA-v2 written in Swift along with additional vulnerabilities
Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penetration testing skills in a legal environment. This project is developed and maintained by @prateekg147. The vulnerabilities and solutions covered in this app are tested up to iOS 11. The current version is writen in Swift and has the following vulnerabilities.
- Local Data Storage
- Jailbreak Detection
- Excessive Permissions
- Runtime Manipulation
- Anti Anti Hooking/Debugging
- Binary Protection
- Touch/Face ID Bypass
- Side Channel Data Leakage
- IPC Issues
- Broken Cryptography
- Webview Issues
- Network Layer Security
- Application Patching
- Sensitive Information in Memory
Installing DVIA on any iOS device
The best way to install DVIA is using Cydia Impactor
- Create an Apple ID https://appleid.apple.com/account
- Download Impactor, make sure the device you want to install the app on is connected to your computer. Now drag and drop the IPA file to Impactor.
- Enter your Apple ID credentials. App will install on the device
- Go to your device, Settings -> General -> Device Management. Select the Apple ID you used to install the app. Click on Verify App under DVIAv2.
Compiling DVIA using Xcode
- Clone the DVIA repo , git clone https://github.com/prateek147/DVIA-v2
- cd to the project root directory where the Podfile is present (/DVIA-v2/DVIA-v2). Then run pod install
- Open the DVIA-v2.xcworkspace file with Xcode. You can now directly run the app on a simulator.
- For running on the device, go under Project settings in Xcode on the top left, head over to the General tab and under Signing, enter credentials for your Apple ID.
- Now you can build and run the project on the device. You will have to trust the app again by going under Settings -> General -> Device Management.
Mobile \ Read more \ 07.12
iOS Finding Memory Leaks in Mobile Apps Pass data using NSNotification in Swift Using ImageRenderer to Convert SwiftUI Views into...
Lottie 4.0 for iOS released with Core Animation support
This major new release brings significant performance improvements to all animations with an all-new rendering engine powered by Core Animation.
VLC for Android
This is the official Android port of VLC. VLC on Android plays all the same files as the classical version of VLC, and...
Mobile \ Read more \ 06.12
iOS Implementing address autocomplete using SwiftUI and MapKit Customize iOS Simulator for Test Automation My personal (opinionated) iOS Interview Questions...
TLDR explains what makes a fragment of code
TLDR is a plugin for popular IDE Jetbrains, which explains what makes a fragment of code in natural English. TLDR...
CodeScanner – A SwiftUI view to scan QR & barcodes
CodeScanner is a SwiftUI framework that makes it easy to scan codes such as QR codes and barcodes. It provides...