(blog.verichains.io)

88 points quyleanh | 2 comments | 28 Mar 25 07:04 UTC | HN request time: 0.413s | source

Show context

bradyriddle ◴[31 Mar 25 16:27 UTC] No.43536835[source]▶

I'm curious about this. I'm familiar with reversing http api calls using a mitm proxy. But this ain't that.

Are they able to load a .so/dylib file during runtime and just call a method on it as long as they know the name of the method? How does iOS even allow that? How does an iOS even get to load those files? Seems like that would be locked down.

replies(3): >>43537050 #>>43537125 #>>43537564 #

saagarjha ◴[31 Mar 25 16:53 UTC] No.43537125[source]▶

>>43536835 #

There’s not really any way to stop it, considering Apple’s apps need to make these calls.

replies(1): >>43539764 #

Rohansi ◴[31 Mar 25 20:44 UTC] No.43539764[source]▶

>>43537125 #

Surely Apple could just make those libraries inaccessible to third party apps. Why would they be required to make them accessible to all apps?

replies(1): >>43540200 #

1. saagarjha ◴[31 Mar 25 21:30 UTC] No.43540200[source]▶

>>43539764 #

Because their public frameworks depend on it.

replies(1): >>43541698 #

2. ◴[01 Apr 25 00:52 UTC] No.43541698[source]▶

>>43540200 (TP) #

↑

Technical Analysis – Improper Use of Private iOS APIs in Vietnamese Banking Apps