Creating iOS backdoor

In the previous section, we studied about creating a shell bind and shell reverse TCP access for iDevice but the problem is that this will not work if the device gets rebooted.

So, we can have a persistent connection with the iDevice by creating a backdoor for it. We will create a shell backdoor as a service that will be started automatically with each boot of device.

Let's follow the given steps to create a backdoor for iOS:

Refer to the system's LaunchDaemons. We will need SSH daemon that we used for OpenSSH installed via Cydia:
Navigate to LaunchDaemons from Library and you will observe a plist file as openssh.sshd:
Check the ...

Get Learning iOS Penetration Testing now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Learning iOS Penetration Testing by Swaroop Yermalkar

Creating iOS backdoor

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly