MASTG-TEST-0261: Debuggable Entitlement Enabled in the entitlements.plist

Overview

The test evaluates whether an iOS application is configured to allow debugging. If an app is debuggable, attackers can leverage debugging tools (see Debugging) to analyse the runtime behaviour of the app, and potentially compromise sensitive data or functionality.

Steps

1. Use Exploring the App Package to unzip the app package.
2. Use Extracting Entitlements from MachO Binaries to extract entitlements from the main binary.

Observation

The output should contain the entitlements embedded in the app.

Evaluation

The test case fails if the get-task-allow entitlement is present and set to true.

Demos

MASTG-DEMO-0036: Debuggable Entitlement Enabled in the entitlements.plist with rabin2