{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,19]],"date-time":"2026-04-19T23:42:34Z","timestamp":1776642154504,"version":"3.51.2"},"publisher-location":"Cham","reference-count":50,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783032161642","type":"print"},{"value":"9783032161659","type":"electronic"}],"license":[{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-3-032-16165-9_33","type":"book-chapter","created":{"date-parts":[[2026,4,19]],"date-time":"2026-04-19T23:05:50Z","timestamp":1776639950000},"page":"558-577","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Revisiting the\u00a0Effectiveness of\u00a0Jailbreak Detection"],"prefix":"10.1007","author":[{"given":"Muhammad","family":"Irfan","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Nelson","family":"Uto","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2026,4,1]]},"reference":[{"key":"33_CR1","doi-asserted-by":"publisher","unstructured":"Mohd Saudi, M., Husainiamer, M.A., Ahmad, A., Idris, M.Y.I.: iOS mobile malware analysis: a state-of-the-art. J. Comput. Virol. Hacking Tech. (2023). https:\/\/doi.org\/10.1007\/s11416-023-00477-y. Accessed 09 Dec 2024","DOI":"10.1007\/s11416-023-00477-y"},{"key":"33_CR2","unstructured":"Yaswant, A., Bertona, F., Braga, G., Chiaraviglio, N., Pratapagiri, V.: 2023 mobile banking heists report. Technical report, p. 35. Zimperium Inc. (2023). Accessed 13 Sept 2024"},{"key":"33_CR3","unstructured":"Statista, Mobile network subscriptions worldwide 2028 $$|$$ Statista (2024). https:\/\/www.statista.com\/statistics\/330695\/number-of-smartphone-users-worldwide\/. Accessed 13 Sept 2024"},{"key":"33_CR4","doi-asserted-by":"publisher","unstructured":"Kellner, A., Horlboge, M., Rieck, K., Wressnegger, C.: False sense of security: a study on the effectivity of jailbreak detection in banking apps. In: 2019 IEEE European Symposium on Security and Privacy (EuroS&P), pp. 114. IEEE, Stock holm (2019). https:\/\/doi.org\/10.1109\/EuroSP.2019.00011. Accessed 10 Aug 2024","DOI":"10.1109\/EuroSP.2019.00011"},{"key":"33_CR5","doi-asserted-by":"crossref","unstructured":"Thiel, D.: iOS Application Security: The definitive Guide for Hackers and Developers. No Starch Press, San Francisco (2016)","DOI":"10.1016\/S1353-4858(16)30015-0"},{"key":"33_CR6","doi-asserted-by":"publisher","unstructured":"Wu, F., Chen, C.-H., Clarke, D.: Sensitive data protection on mobile devices. Int. J. Adv. Comput. Sci. Appl. 5(9) (2014). https:\/\/doi.org\/10.14569\/IJACSA.2014.050907. Accessed 14 Sept 2024","DOI":"10.14569\/IJACSA.2014.050907"},{"key":"33_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"272","DOI":"10.1007\/978-3-642-38980-1_17","volume-title":"Applied Cryptography and Network Security","author":"J Han","year":"2013","unstructured":"Han, J., et al.: Launching generic attacks on iOS with approved third-party applications. In: Jacobson, M., Locasto, M., Mohassel, P., Safavi-Naini, R. (eds.) ACNS 2013. LNCS, vol. 7954, pp. 272\u2013289. Springer, Heidelberg (2013). https:\/\/doi.org\/10.1007\/978-3-642-38980-1_17"},{"key":"33_CR8","doi-asserted-by":"publisher","unstructured":"Sun, S.-T., Cuadros, A., Beznosov, K.: Android rooting: methods, detection, and evasion. In: Proceedings of the 5th Annual ACM CCS Workshop on Security and Privacy in Smartphones and Mobile Devices, pp. 314. ACM, Denver (2015). https:\/\/doi.org\/10.1145\/2808117.2808126. Accessed 19 Sept 2024","DOI":"10.1145\/2808117.2808126"},{"key":"33_CR9","doi-asserted-by":"publisher","unstructured":"Soewito, B., Suwandaru, A.: Android sensitive data leakage prevention with rooting detection using Java function hooking. J. King Saud Univ.- Comput. Inf. Sci. 34(5), 19501957 (2022). https:\/\/doi.org\/10.1016\/j.jksuci.2020.07.006. Accessed 15 Sept 2024","DOI":"10.1016\/j.jksuci.2020.07.006"},{"key":"33_CR10","doi-asserted-by":"publisher","unstructured":"Zhang, H., She, D., Qian, Z.: Android root and its providers: a double-edged sword. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 10931104. ACM, Denver (2015). https:\/\/doi.org\/10.1145\/2810103.2813714. Accessed 15 Sept 2024","DOI":"10.1145\/2810103.2813714"},{"key":"33_CR11","unstructured":"Key, D.: The history of iOS jailbreaking (2014). https:\/\/medium.com\/@dannykey\/the-history-of-ios-jailbreaking-d1a42f48e462. Accessed 27 Oct 2024"},{"key":"33_CR12","unstructured":"AppleWiki, PwnageTool (2024). https:\/\/theapplewiki.com\/wiki\/PwnageTool. Accessed 26 Oct 2024"},{"key":"33_CR13","unstructured":"Freeman, J.: Bringing debian apt to the iPhone (2008). https:\/\/www.saurik.com\/telesphoreo.html. Accessed 26 Oct 2024"},{"key":"33_CR14","unstructured":"AppleWiki, Filesystem:\/private\/preboot\/boot-manifest-hash\/procursus (2024). https:\/\/theapplewiki.com\/wiki\/Filesystem:\/private\/preboot\/ash"},{"key":"33_CR15","unstructured":"Bouchard, A.: What a rootless iOS 15+ jailbreak means for you (2023). https:\/\/www.idownloadblog.com\/2022\/05\/13\/f-a-q-rootless-ios-15-jailbreak\/. Accessed 13 Sept 2024"},{"key":"33_CR16","unstructured":"Bouchard, A.: Understanding untethered, semi-untethered, semi-tethered, and tethered jailbreaks (2019). https:\/\/www.idownloadblog.com\/2019\/11\/21\/types-of-jailbreaks\/. Accessed 26 Oct 2024"},{"key":"33_CR17","unstructured":"AppleWiki, blackra1n Jailbreak- The Apple Wiki (2024). https:\/\/theapplewiki.com\/wiki\/Blackra1n. Accessed 27 Oct 2024"},{"key":"33_CR18","unstructured":"AppleWiki, Jailbreak- The Apple Wiki (2024). https:\/\/theapplewiki.com\/wiki\/Jailbreak. Accessed 01 Oct 2024"},{"key":"33_CR19","unstructured":"Newman, L.H.: Unfixable exploit is the latest Apple Security Upheaval (2019). https:\/\/www.wired.com\/story\/ios-exploit-jailbreak-iphone-ipad\/. Accessed 25 Oct 2024"},{"key":"33_CR20","unstructured":"AppleWiki, Untethered jailbreak- The Apple Wiki (2024). https:\/\/theapplewiki.com\/wiki\/Untethered_jailbreak. Accessed 18 Oct 2024"},{"key":"33_CR21","unstructured":"AppleWiki, Pangu9- The Apple Wiki (2024). https:\/\/theapplewiki.com\/wiki\/Pangu9. Accessed 28 Oct 2024"},{"key":"33_CR22","unstructured":"Fr\u00f6der, L.: Dopamine jailbreak (2023). https:\/\/ellekit.space\/dopamine\/. Accessed 27 Oct 2024"},{"key":"33_CR23","unstructured":"AppleWiki, Dopamine- The Apple Wiki (2024). https:\/\/theapplewiki.com\/wiki\/dopamine. Accessed 28 Oct 2024"},{"key":"33_CR24","unstructured":"unc0ver-team, unc0ver (2018). https:\/\/unc0ver.dev\/. Accessed 27 Oct 2024"},{"key":"33_CR25","unstructured":"AppleDevelopers, fileExists(atPath:isDirectory:) $$|$$ Apple Developer Documentation, (2024). https:\/\/developer.apple.com\/documentation\/foundation\/filemanager\/1410277-fileexists. Accessed 01 Nov 2024"},{"key":"33_CR26","unstructured":"Regu\u0142a, W.: securing\/IOSSecuritySuite: iOS platform security & anti-tampering Swift library (2020). https:\/\/github.com\/securing\/IOSSecuritySuite. Accessed 01 Nov 2024"},{"key":"33_CR27","unstructured":"Yegorov, V.: Jailbreak detection The modern way (2020). https:\/\/github.com\/vadim-a-yegorov\/Jailbreak-detection-The-modern-way. Accessed 01 Nov 2024"},{"key":"33_CR28","unstructured":"Wu, L., Zhou, Y., Li, M.: IOS URL scheme susceptible to hijacking (2019). https:\/\/web.archive.org\/web\/20191030235352\/https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/ios-url-scheme-susceptible-to-hijacking\/. Accessed 01 Nov 2024"},{"key":"33_CR29","unstructured":"Bisson, D.: Threat actors could abuse iOS URL scheme to undermine user privacy (2019). https:\/\/securityintelligence.com\/news\/threat-actors-could-abuse-ios-url-scheme-to-undermine-user-privacy\/. Accessed 01 Nov 2024"},{"key":"33_CR30","unstructured":"Lindemann, W.: IOS 9.2 update: the fall of URI schemes and the rise of universal links (2015). https:\/\/www.branch.io\/resources\/blog\/uri-schemes-and-universal-links-for-ios\/. Accessed 01 Nov 2024"},{"key":"33_CR31","unstructured":"Apple, Apple Platform Security 2024. Technical report, Apple (2024). https:\/\/help.apple.com\/pdf\/security\/en_GB\/apple-platform-security-guide-b.pdf. Accessed 13 Sept 2024"},{"key":"33_CR32","unstructured":"Trustwave, Jailbreak detection methods (2014). https:\/\/www.trustwave.com\/en-us\/resources\/blogs\/spiderlabs-blog\/jailbreak-detection-methods\/. Accessed 01 Nov 2024"},{"key":"33_CR33","unstructured":"Ravn\u00e5s, O.A.V.: Frida $$\\bullet $$ A world-class dynamic instrumentation toolkit $$|$$ Ob serve and reprogram running programs on Windows, macOS, GNU\/Linux, iOS, watchOS, tvOS, Android, FreeBSD, and QNX (2014). https:\/\/frida.re\/. Accessed 14 Sept 2024"},{"key":"33_CR34","unstructured":"Geist, D., Geist, D., Nigmatullin, M., Nigmatullin, M., Bierens, R.: Jailbreak\/root detection evasion study on iOS and android. MA thesis, SNE-Universitetiet van Amsterdam (2016). https:\/\/rp.os3.nl\/2015-2016\/p51\/report.pdf"},{"key":"33_CR35","unstructured":"OWASP-MASTG, iOS Anti-Reversing Defenses-OWASP Mobile Application Security (2021). https:\/\/mas.owasp.org\/MASTG\/0x06j-Testing-Resiliency-Against-Reverse-Engineering. Accessed 03 Nov 2024"},{"key":"33_CR36","volume-title":"Mac OS X and iOS Internals: To the Apple\u2019s Core","author":"J Levin","year":"2013","unstructured":"Levin, J.: Mac OS X and iOS Internals: To the Apple\u2019s Core. Wiley, Wrox (2013)"},{"key":"33_CR37","unstructured":"Laborde, G.: GantMan\/jail-monkey: a React Native library for identifying if a phone is rooted or mocking locations (2019). https:\/\/github.com\/GantMan\/jail-monkey . Accessed 02 Nov 2024"},{"key":"33_CR38","unstructured":"Bugsnag, Bugsnag Framework Cocoapods (2012). https:\/\/github.com\/bugsnag\/bugsnag-cocoa. Accessed 09 Apr 2025"},{"key":"33_CR39","doi-asserted-by":"crossref","unstructured":"Orikogbo, D., B\u00fcchler, M., Egele, M.: CRiOS: toward large-scale iOS application analysis. In: Proceedings of the 6th Workshop on Security and Privacy in Smart phones and Mobile Devices, p. 3342. ACM, Vienna (2016). https:\/\/doi.org\/10.1145\/2994459.2994473. Accessed 17 Oct 2024","DOI":"10.1145\/2994459.2994473"},{"key":"33_CR40","unstructured":"Tang, Z., Tang, K., Tian, Y., Ikram, M., Zhu, H.: iOS, Your OS, Everybody\u2019s OS: Vetting and Analyzing Network Services of iOS Applications (2020)"},{"key":"33_CR41","unstructured":"DigiDNA, IMazing: IPhone, iPad and iPod Manager for mac and PC (2008). https:\/\/imazing.com\/. Accessed 06 Mar 2025"},{"key":"33_CR42","doi-asserted-by":"crossref","unstructured":"D\u2019Orazio, C.J., Lu, R., Choo, K.-K.R., Vasilakos, A.V.: A Markov adversary model to detect vulnerable iOS devices and vulnerabilities in iOS apps. Appl. Math. Comput. 293, 523544 (2017). https:\/\/doi.org\/10.1016\/j.amc.2016.08.051. Accessed 31 Aug 2024","DOI":"10.1016\/j.amc.2016.08.051"},{"key":"33_CR43","unstructured":"Roothide-team, Roothide\/Dopamine2-Roothide: Dopamine is a semi-untethered jailbreak for IOS 15 and 16 (2024). https:\/\/github.com\/roothide\/Dopamine2-roothide. Accessed 07 Mar 2025"},{"key":"33_CR44","unstructured":"Todesco, L.: Checkra1n (2019). https:\/\/checkra.in\/. Accessed 07 Mar 2025"},{"key":"33_CR45","unstructured":"jjolanos, jjolano\/shadow: a jailbreak detection bypass for modern iOS jailbreaks. (2019). https:\/\/github.com\/jjolano\/shadow. Accessed 07 Nov 2024"},{"key":"33_CR46","unstructured":"Appie, B.: Download a-bypass (2022). https:\/\/repo.co.kr\/package\/com.rpgfarm.a-bypass. Accessed 07 Nov 2024"},{"key":"33_CR47","unstructured":"Roothide, Developer\/roothide.md at main- roothide\/Developer (2024). https:\/\/github.com\/roothide\/Developer\/blob\/main\/roothide.md. Accessed 02 Nov 2024"},{"key":"33_CR48","unstructured":"DXcool223, DXCOOL223 REPO (2013). https:\/\/dxcool223-repo.github.io\/repo\/. Accessed 07 Mar 2025"},{"key":"33_CR49","unstructured":"AloneMonkey, AloneMonkey\/frida-iOS-dump: pull decrypted IPA from jailbreak de vice (2017). https:\/\/github.com\/AloneMonkey\/frida-ios-dump. Accessed 15 Nov 2024"},{"key":"33_CR50","unstructured":"ChiChou, ChiChou\/bagbak: Yet another frida based iOS dumpdecrypted. Also decrypts app extensions (2020). https:\/\/github.com\/ChiChou\/bagbak. Accessed 15 Nov 2024"}],"container-title":["Lecture Notes in Computer Science","Computer Security. ESORICS 2025 International Workshops"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-032-16165-9_33","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,19]],"date-time":"2026-04-19T23:05:56Z","timestamp":1776639956000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-032-16165-9_33"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026]]},"ISBN":["9783032161642","9783032161659"],"references-count":50,"URL":"https:\/\/doi.org\/10.1007\/978-3-032-16165-9_33","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026]]},"assertion":[{"value":"1 April 2026","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"The authors have no competing interests to declare that are relevant to the content of this article.","order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Disclosure of Interests"}},{"value":"ESORICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Symposium on Research in Computer Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Toulouse","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 September 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26 September 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"esorics2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.esorics2025.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}