{"id":2488,"date":"2015-07-13T10:33:43","date_gmt":"2015-07-13T10:33:43","guid":{"rendered":"http:\/\/www.pir8geek.com\/?p=2488"},"modified":"2015-07-13T10:33:43","modified_gmt":"2015-07-13T10:33:43","slug":"damn-vulnerable-ios-application-dvia","status":"publish","type":"post","link":"https:\/\/www.jameseduard.com\/?p=2488","title":{"rendered":"Damn Vulnerable iOS Application (DVIA)"},"content":{"rendered":"<p><strong>Damn Vulnerable iOS Application<\/strong> was born from the need to have a tool where a user can test their iOS penetration testing skills in a safe and legal environment. Also, this application can be used by mobile security enthusiasts and students to learn or review the basics of mobile application security.<br \/>\n<strong><strong>Vulnerabilities and Challenges Include \u2026<\/strong><\/strong><\/p>\n<ul>\n<li>Insecure Data Storage<\/li>\n<li>Extension Vulnerabilities<\/li>\n<li>Attacks on third party libraries<\/li>\n<li>Jailbreak Detection<\/li>\n<li>Runtime Manipulation<\/li>\n<li>Piracy Detection<\/li>\n<li>Sensitive information in memory<\/li>\n<li>Transport Layer Security (http, https, cert pinning)<\/li>\n<li>Client Side Injection<\/li>\n<li>Information Disclosure<\/li>\n<li>Broken Cryptography<\/li>\n<li>Security Decisions via Untrusted input<\/li>\n<li>Side channel data leakage<\/li>\n<li>Application Patching<\/li>\n<\/ul>\n<p>All these vulnerabilities and their solutions have been tested up to iOS 8.2<br \/>\n<em>The app also contains a section on iOS Application Security Tutorials for those who want to learn iOS Application Pentesting. Every challenge\/vulnerability has a link for a tutorial that users can read to learn more on that topic.<\/em><br \/>\nThis app will only run on devices running iOS 7 or later. Users can download the source code and run the application on previous versions of iOS as well.<br \/>\nDownload\u00a0at\u00a0Github project and source code for DVIA can be found <a href=\"https:\/\/github.com\/prateek147\/DVIA\">here<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Damn Vulnerable iOS Application was born from the need to have a tool where a user can test their iOS penetration testing skills in a safe and legal environment. Also, this application can be used by mobile security enthusiasts and students to learn or review the basics of mobile application security. Vulnerabilities and Challenges Include<\/p>\n","protected":false},"author":1,"featured_media":2489,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[524,278],"tags":[525,526,487],"class_list":["post-2488","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-ios-application","category-web-application","tag-mobile-application-security","tag-mobile-security","tag-web-apps"],"_links":{"self":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/2488","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2488"}],"version-history":[{"count":0,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/2488\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2488"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2488"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2488"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}