Free-RASP-iOS icon indicating copy to clipboard operation
Free-RASP-iOS copied to clipboard
verified publisher icon talsec

Failure to detect privileged access threat on Dopamine Jailbreak Tool Version >= 1.1

Open nimrod-cohen-island opened this issue 2 years ago • 2 comments

Describe the bug

Talsec fails to report privileged access threat when device is jailbroken using Dopamine in versions >= 1.1 (semi-untethered rootless jailbreak).

Note: even if jailbreak is not hidden by Dopamine.

To Reproduce

  • Install latest Dopamine jailbreak tool on iPad 9th generation.
  • Jailbreak the device (Without hiding the jailbreak).
  • Run app with Talsec detection.
  • Notice that privileged access threat is not being reported.

Expected behavior

Since device is jailbroken - Talsec should report privileged access threat. Note that privileged access is being reported as expected when using older dopamine versions such as 1.0.5

  • Device: iPad 9th generation
  • OS version: iOS 15.1
  • Version of freeRASP: 5.1.0

nimrod-cohen-island avatar Nov 14 '23 14:11 nimrod-cohen-island

Hello @nimrod-cohen-island , thank you for reporting this! We will look at it! Could you also send a source/link to the Dopamine jailbreak with given version?

Kind regards, Talsec team

msikyna avatar Nov 20 '23 09:11 msikyna

Hey @msikyna thanks for the quick response,

here you can find all dopamine release assets. Note that any version >= 1.1 will not be identified by latest RASP version.

Please reach out if there's anything else I can do to help and thank you again.

niminim44 avatar Nov 20 '23 09:11 niminim44

Hello @nimrod-cohen-island , @niminim44 ,

a new version has been released with Dopamine detection: https://github.com/talsec/Free-RASP-iOS/releases/tag/6.6.0

Kind regards, Talsec team

msikyna avatar Aug 30 '24 19:08 msikyna