UNPKG

@nativescript/ios-security

Version:

IOSSecuritySuite for NativeScript

github.com/NativeScript/plugins

NativeScript/plugins

85 lines (65 loc) ā€¢ 2.25 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
# @nativescript/ios-security šŸ”’ [IOSSecuritySuite](https://github.com/securing/IOSSecuritySuite) for NativeScript. > šŸŒ iOS Security Suite is an advanced and easy-to-use platform security & anti-tampering library. If you are developing for iOS and you want to protect your app according to the OWASP [MASVS](https://github.com/OWASP/owasp-masvs) standard, chapter v8, then this library could save you a lot of time. šŸš€ > What ISS detects: > * Jailbreak (even the iOS 11+ with brand new indicators! šŸ”„) > * Attached debugger šŸ‘ØšŸ»ā€šŸš€ > * If an app was run in an emulator šŸ‘½ > * Common reverse engineering tools running on the device šŸ”­ ```javascript ns plugin add @nativescript/ios-security ``` ## Usage *TypeScript* ``` import { IOSSecurity } from "@nativescript/ios-security"; ``` *Javascript* ``` var IOSSecurity = require("@nativescript/ios-security").IOSSecurity; ``` ### Update Info.plist After adding ios-security to your project, you will also need to update your Info.plist. There is a check in jailbreak detection module that uses ```canOpenURL(_:)``` method and [requires](https://developer.apple.com/documentation/uikit/uiapplication/1622952-canopenurl) specifying URLs that will be queried. ```xml <key>LSApplicationQueriesSchemes</key> <array> <string>cydia</string> <string>undecimus</string> <string>sileo</string> <string>zbra</string> <string>filza</string> <string>activator</string> </array> ``` ### Jailbreak detector module * **The simplest method** returns true/false if you just want to know if the device is jailbroken or jailed *Javascript* ``` if (IOSSecurity.amIJailbroken()) { console.log("This device is jailbroken"); } else { console.log("This device is not jailbroken"); } ``` ### Debugger detector module ``` const amIDebugged = IOSSecurity.amIDebugged(); ``` ### Deny debugger at all ``` IOSSecurity.denyDebugger(); ``` ### Emulator detector module ``` const runInEmulator = IOSSecurity.amIRunInEmulator(); ``` ### Reverse engineering tools detector module ``` const amIReverseEngineered = IOSSecurity.amIReverseEngineered(); ``` ### System proxy detector module ``` const amIProxied = IOSSecurity.amIProxied(); ``` ## License Apache License Version 2.0