iOS SandBox Dumper: exact locations of the application sandbox, application bundle

by do son · Published · Updated

ios SandBox Dumper

iOS SandBox Dumper

SandBox-Dumper makes use of multiple private libraries to provide exact locations of the application sandbox, application bundle, and some other interesting information.

During an iOS pentesting gig you’ll need to:

  • Take a look at the data that is being stored in the application sandbox
  • Analyze the application binary

The location of the application binary is /private/var/mobile/containers/Bundle/Application/<Bundle-GUID>/

The location of the application data directory is /private/var/containers/Data/Application/<App-GUID>/

These GUID values bear no indication of which application they belong to. You’ll end up spending quite some time trying to figure out these GUID values every time you reinstall the application.

SandBox-Dumper makes use of multiple private libraries to provide exact locations of the application sandbox, application bundle, and some other interesting information. It should support iOS devices (jailbroken/non-jailbroken) running iOS version lower than iOS 11.

Download

git clone https://github.com/dineshshetty/iOS-SandBox-Dumper.git

Source: https://github.com/dineshshetty/

Tags: ios SandBox DumperSandBox-Dumper