
idb – iOS App Security Assessment Tool.
idb is a tool to simplify some common tasks for iOS app security assessments and research. idb had the ability to dump the keychain of a jailbroken iDevice. So far, idb has been using the keychain_dump utility which is part of the iphone-dataprotection forensics tools to accomplish this. However, this tool has some major limitations in that it does not support the new data protection classes introduced in recent iOS versions, lacks support for Keychain ACLs, and is a pure ‘dump’ utility without editing capabilities.
keep it up For Learn right?
Idb has been tested on Kali 2.0, Rolling 2016.1, Ubuntu 14.04 & Mac OSX
Features:
* Assessment Setup
++ SSH port forwarding
++ Installation of helper utilities
* App Information
++ Bundle information
++ Registered URL Schemes
++ Platform and SDK Versions
++ Data folder location
++ Entitlements
* Data Storage
++ List plist files and data protection class
++ List sqlite files and data protection class
++ List Cache.db files and data protection class
++ Full app file system browser
+-+ Browse files
+-+ Download/view files
+-+ Check data protection
+-+ Rsync folders and keep git revisions
++ Dump iOS keychain
* Binary Analysis
++ Check for encryption
++ Check for protections (ASLR/PIE, DEP, ARC)
++ List shared libraries
++ Extract strings in app binary
++ Dump class and method signatures
* IPC
++ List URL handlers
++ Invoke and fuzz URL handlers
* Other Tools
++ Check for iOS backgrounding screenshot
++ Install certificates
++ Edit /etc/hosts file
Usage & Download:
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 |
First Install dependencies: For OSX: brew install qt cmake usbmuxd libimobiledevice For Debian/Ubuntu & Kali: sudo apt-get install cmake libqt4-dev git-core libimobiledevice-utils libplist-utils usbmuxd libxml2-dev libsqlite3-dev -y idb requires a valid ruby 1.9.3 or 2.1 installation and it is recommended to install the used ruby using https://rvm.io/ rvm install 2.1 --enable-shared git clone https://github.com/dmayer/idb && cd idb bundle install For production Machine: gem install idb idb To update to the newest version: gem update idb |
Source: http://www.idbtool.com/ | https://github.com/dmayer | Download: v2.8.5.zip | v2.8.5.tar.gz