Damn Vulnerable iOS Application (DVIA) v1.1 Released
Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penetration testing skills in a legal environment.
Changelog v1.1
- Security Decisions via Untrusted input.
- Side Channel Data Leakage.
- Some bug fixes include.
- Optimizations for iPad
- Grammatical errors.
- Also, this app comes with a new app icon and launch image.
This application covers all the common vulnerabilities found in iOS applications (following OWASP top 10 mobile risks) and contains several challenges that the user can try.
Vulnerabilities and Challenges Included
- Insecure Data Storage
- Jailbreak Detection
- Runtime Manipulation
- Transport Layer Security
- Client Side Injection
- Information Disclosure
- Broken Cryptography
- Application Patching
All these vulnerabilities and their solutions have been tested upto IOS 7.0.4.
Every challenge/vulnerability has a link for a tutorial that users can read to learn more on that topic.
Document Related:
