So S.W.I.M. has been working on Tamper Detection and JB bypass for a Unity Based IPA.
IDA static analysis has given some insight. S.W.I.M. has found a good chunk of the methods and trace for JB detection.
Currently hooked to override most of the common JB detection methods for FS detection.
fileExistsAtPath for 12 or so of the common ones.
Responds to Uri for cydia://
Proper Sandboxed detection testing.
We've seen there is a signature check, which is a new one for us, and some form other form of tamper detection which we cant identify with our IDA tracing thus far.
I was hoping to find some solid resources or suggestions for tamper detection methodologies that have been instituted.
Been guessing there's maybe payload size check, confirmed from IDA there's a signature check, but cant find any solid sources for tamper detection on iOS that extend beyond traditional JB detection.