Skip to content

intellisec/ios-snoop

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
header
header
 
 
lib
lib
 
 
.gitignore
.gitignore
 
 
Analyzer.plist
Analyzer.plist
 
 
Broker.h
Broker.h
 
 
Broker.m
Broker.m
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
Tweak.xm
Tweak.xm
 
 
control
control
 
 

Repository files navigation

False Sense of Security: A Study on the Effectivity of Jailbreak Detection in Banking Apps

People increasingly rely on mobile devices for banking transactions or two-factor authentication (2FA) and thus trust in the security provided by the underlying operating system. Simultaneously, jailbreaks gain tremendous popularity among regular users for customizing their devices. In this project, we show that both do not go well together: Jailbreaks remove vital security mechanisms, which are necessary to ensure a trusted environment that allows to protect sensitive data, such as login credentials and transaction numbers (TANs). We find that all but one banking apps, available in the iOS App Store, can be fully compromised by trivial means without reverse-engineering, manipulating the app, or other sophisticated attacks. Our study assesses the current state of security of banking apps and pleads for more advanced defensive measures for protecting user data.

Overview of Banking Apps

The following table summarizes our findings: For all but one of 33 banking apps (one of the test subjects has been discontinued by now) sensitive user data has been successfully intercepted. However, only 18 of these banking apps actually make use of mechanisms for Jailbreak detection.

For details on the specific versions of the apps, please consult the conference publication.

Code

This repository contains a tweak for analyzing jailbreak detection mechanisms of apps installed on a jailbroken iOS device. All results will be send to the DiOS Backend.
The tweak also includes different types of keyloggers (for for standard UI of apps, webviews and one for a custom keyboard of one app).

Dependencies

Install

git clone https://github.com/intellisec/ios-snoop.git
cd ios-snoop
export $THEOS_DEVICE_IP=<your_device_ip>
export $THEOS_DEVICE_PORT=22
make package install

Publication

A detailed description of our work has been presented at the 4th IEEE European Symposium on Security and Privacy (EuroS&P 2019) in June 2019. If you would like to cite our work, please use the reference as provided below:

@InProceedings{KelHorRieWre19,
  author =    {Ansgar Kellner and Micha Horlboge and Konrad Rieck and
               Christian Wressnegger},
  title =     {False Sense of Security: A Study on the Effectivity of
               Jailbreak Detection in Banking Apps},
  booktitle = {Proc. of the {IEEE} European Symposium on Security and
               Privacy ({EuroS\&P})},
  year =      2019,
  month =     jun,
  day =       {17.--19.}
}

A preprint of the paper is available here.

About

A Study on the Effectivity of Jailbreak Detection in Banking Apps (EuroS&P 2019)

intellisec.org/research/ios

Resources

Readme
Activity

Stars

22 stars

Watchers

3 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages