Skip to content

MASTG-TEST-0261: Debuggable Entitlement Enabled in the entitlements.plist

Overview

The test evaluates whether an iOS application is configured to allow debugging. If an app is debuggable, attackers can leverage debugging tools (see Debugging) to analyse the runtime behaviour of the app, and potentially compromise sensitive data or functionality.

Steps

  1. Use Extracting Entitlements from MachO Binaries to extract entitlements from the binary.
  2. Search for the get-task-allow key.

Observation

The output contains the value of the get-task-allow entitlement.

Evaluation

The test fails if the get-task-allow entitlement is true.

Demos

MASTG-DEMO-0036: Debuggable Entitlement Enabled in the entitlements.plist with rabin2