Insecure storage in Core Data

Core Data is an object-relational mapping (ORM) that creates a layer between user interface and database. The developers prefer Core Data as it is faster in terms of record creation than the traditional SQLite format.

From security point of view, these files are similar to SQLite, with the only difference being that the tables are prefixed with Z.

In this exercise, let's follow the steps to find out the sensitive data that is stored in Core Data:

We will use the Core Data.ipa iOS app for this exercise. Once you open the application, you will observe the following view:
Let's insert a Username and Password and select the ...

Get Learning iOS Penetration Testing now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Learning iOS Penetration Testing by Swaroop Yermalkar

Insecure storage in Core Data

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly