#006 · Security Tooling

iOS Exploit-Kit Response and Security Check Tool

To support the MIIT with a rapid response to an iOS exploit-kit security incident, engineers used AVL Code to build a zero-dependency HTML detection tool in record time.

Built with AVL Code + the Landi model

iOSExploitDetection Tool

Overview

Building on the iVerify disclosure of the Coruna nation-state iOS attack toolchain, AVL Code and the Landi model rapidly produced a zero-dependency HTML detection tool — open it in any browser and it flags the risk level of the iOS version and guides the user through upgrading.

Key results

  • Delivered a single-file, zero-dependency online tool that also works offline
  • Implemented dual version detection with three-segment version comparison
  • Provided five-state risk output backed by real threat-intelligence rules

Technical highlights

Automatic UA parsingSemantic version comparisonFive-state risk gradingIntelligence rule engineZero-dependency single file

Practical value

Ordinary users can check their device risk with no security expertise; security teams can quickly sweep internal iOS assets; complex threat intelligence becomes actionable detection results and guidance. The case also demonstrates AI models working in concert with the cybersecurity authorities on early warning, and the single-file architecture adapts quickly to new vulnerability intelligence.

Artifacts

Session replays & reports are original records in Simplified Chinese · Built with AVL Code + the Landi model