Shuciran Pentesting Notes

SQLite Database

SQLite DB To save structured data, such as contact information or to-do lists, we can leverage the iOS Core Data framework. It provides a convenient API for storing data in different store types s...

Realm database

Realm DB Realm DB is an alternative to SQLite for storing structured data in mobile applications. It is object-oriented, which means that the database internally uses objects that map to the mobil...

Plist Files

Plist File Plist files use an XML format and can be stored in plaintext ASCII or as a proprietary packed file format intended to reduce the file size. These binary files require the use of a suppo...

Data Storage Keychain dumper

iOS Keychain Dumper Since the Keychain stores sensitive information, attackers are naturally interested in accessing its contents. We can use the iOS Keychain Dumper tool, to dump the contents of ...

Firebase database

Firebase DB Contrary to SQLite and Realm DB, which store data locally, Firebase is a cloud database. It allows developers to collect data from many application users and store it online in JSON fo...

Binary Cookies

Binary Cookies Some iOS applications display web content inside WebView components. Webpages often require cookies for mechanisms such as automatic reconnection. iOS applications save these WebVie...

Finding GUID with ipainstaller

Ipainstaller can be obtained by installing the BigBoss Recommended tools through Cydia. Installing IPAs files The IPA can be directly installed on the iOS device via the command line with ipa...

Setup for iOS Mobile Assessment

Initial Requirements Apple device with iOS version 14.6 or prior. It is highly recommended to fabric restore the device or at least backup the information if any. Clean USB to flash checkn1x. #WA...

Signing IPA with TrollStore (Non-jailbroken)

TrollStore For some iOS versions, it is possible to permanently install IPAs even on a non-jailbroken device due to a bug in CoreTrust. The vulnerability is a logical flaw in the processing of the...

Signing IPA with Sideloadly (Non-jailbroken)

Sideloadly For non-jailbroken devices, sideloadly can be used to sign and install IPAs. The application runs on Windows and macOS and requires the iOS device to be connected to the host via USB or...