Bypass StoreKit In-app purchases of iOS apps using LLDB

In this post, we will reverse engineering an app using StoreKit framework and bypass In-app purchase features. StoreKit is an iOS framework that supports in-app purchases and interactions with the ...

Apr 14, 2020

Bypass SSL Pinning with LLDB in iOS app

Imagine that you want to inspect the app to see what’s information exchange between mobile app and server, you can think about using simple proxy tools to sniff requests and responses or more advan...

Apr 9, 2020

Bypass In-app purchases of react native iOS app

Today we will reverse engineering a react native iOS app and bypass in-app purchase to use locked features. Below is an example of purchase screen whenever tap on premium content. Figure 1: Sample...

Mar 23, 2020

Bypass in-app purchase content in iOS apps by modifying local configuration!

In this post, we will reverse engineering and unlock in-app purchase contents by modifying local configuration on device. Below is an example of locked features and unlocked ones. Disclaimer This ...

Mar 15, 2020

Bypass locked features on iOS apps with Burp Suite!

In this post I will share some steps to enable blocked or hidden features on iOS app using Burp Suite tool. I will use EWA, a language learning app on AppStore, to illustrate the whole process. Di...

Dec 13, 2019