Reverse Engineering an IPhone Applications using Dynamic Analysis

Philippe Dugerdil, Roland Sako

Abstract

Mobile applications are becoming very complex since business applications increasingly move to the mobile. Hence the same problem of code maintenance and comprehension of poorly documented apps, as in the desktop world, happen to the mobile today. One technique to help with code comprehension is to reverse engineer the application. Specifically, we are interested in the functional structure of the app i.e. how the classes that implement the use cases interact. Then we adapted, to the iPhone, the code analysis technique we developed for the desktop applications. In this paper we present the reverse engineering process and tool we used to reverse engineer the code of an iPhone app and show, in a case study, how these tools are used.

References

  1. ANTLR 2014. ANother Tool for Language Recognition. http://www.antlr.org/ Accessed on Oct 12, 2014.
  2. Apple iOS 2014. File System Programming Guide https:// developer.apple.com/library/mac/documentation/File Management/Conceptual/FileSystemProgrammingGui de/FileSystemOverview/FileSystemOverview.html. [Accessed on Oct 12, 2014].
  3. Appcelerator/IDC 2013. Mobile Developer report. www. appcelerator.com.s3.amazonaws.com/pdf/developersurvey-Q2-2013.pdf. [Accessed on March 5, 2015].
  4. Apple UITableView 2014. UITableView Class Reference, https://developer.apple.com/library/ios/documentation/ UIKit/Reference/UITableView_Class/. [Accessed on Oct 12, 2014].
  5. Clements P., Kazman R., Klein M. 2002. Evaluating Software Architecture. Addison-Wesley.
  6. Dugerdil Ph. 2007 - Using trace sampling techniques to identify dynamic clusters of classes. IBM CAS Software and Systems Engineering Symposium (CASCON) October 2007.
  7. Dugerdil Ph., Sennhauser D. 2013. Dynamic Decision Tree for Legacy Use-Case Recovery. 28th ACM Symposium On Applied Computing (SAC 2013) Coimbra, Portugal, March 18-22, 2013.
  8. Dugerdil Ph., Niculescu M. 2014. Visualizing Software Structure Understandability. 23rd Australasian Software Engineering Conference (ASWEC) 2014. Sydney, 2014. IEEE Digital Library.
  9. Gamma E., Helm R., Johnson R., Vlissides J. 1995 Design Patterns. Elements of Reusable Object Oriented Software. Addison-Wesley.
  10. Gianchandani P. 2014. Damn Vulnerable iOS Application (DVIA). http://damnvulnerableiosapp.com/#learn [Accessed on Oct 12, 2014].
  11. GDB. 2014. GNU Debugger http://www.gnu.org/software /gdb/ [Accessed on Oct 12, 2014].
  12. Graphviz 2015. http://www.graphviz.org/Home.php. [Accessed on April 17, 2015].
  13. Hammond J.S. 2013. Development Landscape: 2013, Forrester Research.
  14. Hamou-Lhadj A., Lethbridge T.C. 2004. A Survey of Trace Exploration Tools and Techniques. Proc. of the IBM Conference of the Centre for Advanced Studies on Collaborative Research.
  15. IBM 2014. IBM Mobile First initiative. www.03. ibm.com/press/us/en/presskit/39172.wss. [Accessed on Oct 12, 2014].
  16. IDC 2013. IDC Predictions 2013 Competing on the 3rd Platform. www.idc.com/getdoc.jsp?containerId= WC20121129 [Accessed on March 5, 2015].
  17. iExplorer 2014. http://www.macroplant.com/iexplorer/
  18. [Accessed on Oct 12, 2014].
  19. Introspy-iOS 2014. https://github.com/iSECPartners/Intro spy-iOS. [Accessed on Oct 12, 2014].
  20. iOS Simulator, 2014. https://developer.apple.com/library/ ios/documentation/IDEs/Conceptual/iOS_Simulator_ Guide/GettingStartedwithiOSStimulator/GettingStarte dwithiOSStimulator.html. [Accessed on Oct 12, 2014].
  21. JavaCC 2014. Java Compiler Compiler - The Java Parser Generator. https://javacc.java.net/ [Accessed on Oct 12, 2014].
  22. JTB 2014. Java TreeBuilder.http://compilers.cs.ucla.edu/ jtb/ [Accessed on Oct 12, 2014].
  23. LLDB 2014. LLDB Debugger, http://lldb.llvm.org/. [Accessed on Oct 12, 2014].
  24. Objective C 2014. Runtime Reference. https://developer .apple.com/library/mac/documentation/Cocoa/Referen ce/ObjCRuntimeRef/Reference/reference.html. [Accessed on Oct 12, 2014].
  25. Parada A.G., de Brisolara L.B. 2012. A model driven approach for An-droid applications development. Proc. Brazilian Symposium on Computing System Engineering (SBESC).
  26. Snoop-it 2014. https://code.google.com/p/snoop-it/ [Accessed on Oct 12, 2014].
  27. Szydlowski et al. 2011. Challenges for Dynamic Analysis of iOS Applications. Proc. of the IFIP WG 11.4 international conference on Open Problems in Network Security.
  28. Tilley S.R., Santanu P., Smith D.B. 1996. Toward a Framework for Program Understanding. Proc. IEEE Int. Workshop on Program Comprehension.
  29. Wasserman A.I. 2011. Software Engineering Issues for Mobile Application Development. Proc. 2nd Workshop on Software Engineering for Mobile Application Development MobiCase'11.
  30. YaCC 2014. Yet Another Compiler-Compiler. http:// dinosaur.compilertools.net/yacc/. [Accessed on Oct 12, 2014].
  31. Zend 2013. Developer Pulse Survey - Second Quarter 2013. http://static.zend.com/topics/Zend-DeveloperPulse-report-Q2-2013-0523-EN.pdf [Accessed on March 5, 2015].
Download


Paper Citation


in Harvard Style

Dugerdil P. and Sako R. (2015). Reverse Engineering an IPhone Applications using Dynamic Analysis . In Proceedings of the 10th International Conference on Software Engineering and Applications - Volume 1: ICSOFT-EA, (ICSOFT 2015) ISBN 978-989-758-114-4, pages 261-268. DOI: 10.5220/0005498002610268


in Bibtex Style

@conference{icsoft-ea15,
author={Philippe Dugerdil and Roland Sako},
title={Reverse Engineering an IPhone Applications using Dynamic Analysis},
booktitle={Proceedings of the 10th International Conference on Software Engineering and Applications - Volume 1: ICSOFT-EA, (ICSOFT 2015)},
year={2015},
pages={261-268},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005498002610268},
isbn={978-989-758-114-4},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 10th International Conference on Software Engineering and Applications - Volume 1: ICSOFT-EA, (ICSOFT 2015)
TI - Reverse Engineering an IPhone Applications using Dynamic Analysis
SN - 978-989-758-114-4
AU - Dugerdil P.
AU - Sako R.
PY - 2015
SP - 261
EP - 268
DO - 10.5220/0005498002610268