Snoop-it tool to assist security assessments and dynamic analysis of iOS Apps

iOS

iOS applications may contain security risk that expose user’s sensitive information to attackers. Auditing programs used on mobile devices is important to make sure that they are safe and do not contain security vulnerabilities. Snoop-it is a tool that you can consider for analyzing mobile applications and debugging the software packages. Some of the features are:

 

  1. Application monitoring looking at the file system access.
  2. Verify that the application is using encrypted connection with HTTPS.
  3. Verify if the tool have access to sensitive API on phone devices.
  4. Debugging the outputs.
  5. Tracing the analyzed application.
  6. Identify fake hardware (UDID, Wireless MAC, etc.)
  7. Identify fake location/GPS data
  8. Explore and force display of available ViewController
  9. List custom URL schemes
  10. List available Objective-C classes, objects and methods
  11. Invoke arbitrary methods at runtime
  12. Bypass basic jailbreak detection mechanisms

Snoop-it can be installed on iOS 6 and MobileSubstrate from Cydia. Full installation instruction is available over this link: https://code.google.com/p/snoop-it/wiki/GettingStarted

Share