MASTG-TOOL-0070: Xcode

Xcode is an Integrated Development Environment (IDE) for macOS that contains a suite of tools for developing software for macOS, iOS, watchOS, and tvOS. You can download Xcode for free from the official Apple website. Xcode will offer you different tools and functions to interact with an iOS device that can be helpful during a penetration test, such as analyzing logs or sideloading of apps.

Techniques

MASTG-TECH-0079: Obtaining a Developer Provisioning Profile MASTG-TECH-0060: Monitoring System Logs

Demos

MASTG-DEMO-0076: Keyboard Caching Not Prevented for Sensitive Data with r2 MASTG-DEMO-0041: Uses of LAContext.evaluatePolicy with r2