Needle is an open source
modular framework maintained by MWR InfoSecurity which aims to restructure the entire practice of conducting security assessments of iOS applications. With its modular approach, Needle is simply extensible that allows new modules to be added in the form of python scripts. Needle is anticipated to be helpful not only for security professionals, but also for developers looking to secure their code. A few cases of testing areas covered by Needle consist of: data storage, inter-process communication, network communications, static code analysis, hooking and binary protections.
• Needle’s CLI is basically a shell itself, so it is possible to run commands on the local workstation just by typing them.
• Type “shell” to drop a shell on the remote device.
• Execute command on device (exec_command <cmd>)
• It is also possible to retrieve or upload files from/on the device.
The only requirement in order to run Needle effectively is a jailbroken device.