Securing API keys, clientId, clientSecret etc while distributing to App Store? Ways to prevent reverse engineering?

This page summarizes the projects mentioned and recommended in the original post on /r/swift
iOS mobile-app Objective-C Pentesting SSL

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

  • TrustKit

    Easy SSL pinning validation and reporting for iOS, macOS, tvOS and watchOS.

    • Good points. SSL pinning provides a certain level of protection. It’s tricky to implement correctly, so one can for instance consider https://github.com/datatheorem/TrustKit if you want to leverage SSL pinning.

  • owasp-mastg

    The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

    • Check out OWASP, they have plenty documentation about threat modeling and attack vectors for mobile apps. Regarding jailbreak detection, see the following: https://github.com/OWASP/owasp-mstg/blob/master/Document/0x06j-Testing-Resiliency-Against-Reverse-Engineering.md

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Collaborative List of Open-Source iOS Apps

    1 project | news.ycombinator.com | 20 Dec 2023

  • Google Play rolls out an "Independent security review" badge for apps

    2 projects | news.ycombinator.com | 3 Nov 2023

  • [Free Release] All my unfinished tweaks are now open source!

    2 projects | /r/jailbreak | 18 Jul 2023

  • File Manager like WinRar, WinZip, 7zip, etc., on iOS thats open source?

    2 projects | /r/opensource | 12 Jul 2023

  • Self-hosted habit tracking?

    3 projects | /r/selfhosted | 26 Jun 2023