ios-pentesting-tricks

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This playbook contains explicit, ready-to-run techniques (Frida/Objection scripts, keychain dumpers, URL-scheme hijacking, Universal Link breaking, SSL-pinning and jailbreak bypasses, token substitution and filesystem/cookie/pasteboard extraction) that directly enable credential theft, covert data exfiltration, and runtime backdoors, making it highly prone to malicious abuse.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly instructs fetching and parsing public website AASA files (e.g., curl -s "https://target.com/.well-known/apple-app-site-association" | jq . in section 4.1) so the agent ingests untrusted third‑party web content whose contents can directly change testing decisions and actions.