• Journal of Internet Computing and Services
    ISSN 2287 - 1136 (Online) / ISSN 1598 - 0170 (Print)
    https://jics.or.kr/

Development of LLDB module for potential vulnerability analysis in iOS Application


Min-jeong Kim, Jae-cheol Ryou, Journal of Internet Computing and Services, Vol. 20, No. 4, pp. 13-19, Aug. 2019
10.7472/jksii.2019.20.4.13, Full Text:
Keywords: iOS, vulnerability Analysis, debugger, LLDB

Abstract

In order to register an application with Apple's App Store, it must pass a rigorous verification process through the Apple verification center. That's why spyware applications are difficult to get into the App Store. However, malicious code can also be executed through normal application vulnerabilities. To prevent such attacks, research is needed to detect and analyze early to patch potential vulnerabilities in applications. To prove a potential vulnerability, it is necessary to identify the root cause of the vulnerability and analyze the exploitability. A tool for analyzing iOS applications is the debugger named LLDB, which is built into Xcode, the development tool. There are various functions in the LLDB, and these functions are also available as APIs and are also available in Python. Therefore, in this paper, we propose a method to efficiently analyze potential vulnerabilities of iOS application by using LLDB API.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from November 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[APA Style]
Kim, M. & Ryou, J. (2019). Development of LLDB module for potential vulnerability analysis in iOS Application. Journal of Internet Computing and Services, 20(4), 13-19. DOI: 10.7472/jksii.2019.20.4.13.

[IEEE Style]
M. Kim and J. Ryou, "Development of LLDB module for potential vulnerability analysis in iOS Application," Journal of Internet Computing and Services, vol. 20, no. 4, pp. 13-19, 2019. DOI: 10.7472/jksii.2019.20.4.13.

[ACM Style]
Min-jeong Kim and Jae-cheol Ryou. 2019. Development of LLDB module for potential vulnerability analysis in iOS Application. Journal of Internet Computing and Services, 20, 4, (2019), 13-19. DOI: 10.7472/jksii.2019.20.4.13.