Insecure storage in Core Data
Core Data is an object-relational mapping (ORM) that creates a layer between user interface and database. The developers prefer Core Data as it is faster in terms of record creation than the traditional SQLite format.
From security point of view, these files are similar to SQLite, with the only difference being that the tables are prefixed with Z
.
In this exercise, let's follow the steps to find out the sensitive data that is stored in Core Data:
- We will use the
Core Data.ipa
iOS app for this exercise. Once you open the application, you will observe the following view: - Let's insert a Username and Password and select the ...
Get Learning iOS Penetration Testing now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.