Sold by: Value Bridge
Deployed on AWS
Deploy a private iOS app security scanner in your own AWS account.
IPA Inspector performs 12-dimensional security analysis - binary
hardening, entitlements, ATS, secrets, weak crypto - and compares
IPA versions side by side, with AI-powered remediation via Amazon Bedrock.
Overview
IPA Inspector is a self-hosted iOS application security analysis platform deployed entirely within your AWS account. Upload IPA files through a browser-based interface and receive a detailed security report in under two minutes - no third-party services, no data egress.
SECURITY SCANNING - 12 DIMENSIONS
Binary Hardening: PIE, stack canary, ARC, Objective-C restrictions Entitlements: dangerous capabilities, keychain sharing exposure App Transport Security (ATS): NSAllowsArbitraryLoads, exception domains Privacy Permissions: undeclared NSUsageDescription strings Privacy Manifest: PrivacyInfo.xcprivacy completeness check Hardcoded Secrets: API keys, tokens, credentials in binary and bundles Weak Cryptography: MD5/SHA1/DES/RC4 usage detection URL Schemes: hijackable custom URL scheme exposure Third-Party SDKs: known risky SDKs and tracking frameworks Background Modes: unnecessary background execution privileges Payment Compliance: StoreKit and in-app purchase integrity checks Review Evasion: dynamic code loading, obfuscation patterns
VERSION DIFF ANALYSIS
Upload two IPA builds (old vs new) to get a side-by-side comparison: permission additions and removals, new or removed third-party SDKs, entitlement changes, and binary size delta - essential for pre-release security review and compliance audits.
AI-POWERED REMEDIATION
Every finding includes an AI-generated remediation guide produced by Amazon Bedrock (Nova). Guidance covers severity rationale, realistic attack scenarios, and concrete fix recommendations with references to Apple documentation and OWASP Mobile Top 10.
ARCHITECTURE - FULLY PRIVATE
IPA Inspector is deployed via AWS CloudFormation into your own account:
- Compute: AWS Fargate (ARM64 Graviton, 4 vCPU / 8 GB)
- Storage: Amazon S3 (IPA files, auto-deleted after 7 days)
- Database: Amazon RDS PostgreSQL (reports stored 24 hours)
- AI: Amazon Bedrock Nova Lite
- Access: Application Load Balancer (internal or internet-facing)
IPA files are uploaded directly from the browser to S3 via presigned URLs - they never pass through any intermediary server. All analysis runs inside your VPC.
REQUIREMENTS
- AWS account with Amazon Bedrock Nova Lite enabled in us-east-1
- Sufficient Fargate quota (1 task, 4 vCPU)
- Deployment via included CloudFormation template (~15 minutes)
Highlights
- 12-dimensional iOS security analysis covering OWASP Mobile Top 10 and Apple guidelines - fully private, data never leaves your AWS account.
- Version diff analysis: compare two IPA builds to detect permission changes, new SDKs, entitlement additions, and binary size deltas.
- AI-powered fix recommendations generated by Amazon Bedrock Nova, grounded in OWASP documentation and Apple security best practices.
Details
Sold by
Categories
Delivery method
Supported services
Delivery option
AWS ECS Fargate - CloudFormation Deployment
Latest version
Operating system
Linux
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/month |
|---|---|---|
IPA Inspector Deployment License | One private deployment of IPA Inspector in your AWS account. Includes unlimited scans for the duration of the contract period. | $299.00 |
Vendor refund policy
All sales are final. Due to the nature of software deployment licenses, we do not offer refunds after the contract is activated and container images have been accessed. If you experience technical issues preventing deployment, contact us within 7 days of purchase for assistance. For support: yuki@beijingzhiyun.com
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
AWS ECS Fargate - CloudFormation Deployment
Supported services: Learn more
- Amazon ECS
Container image
Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.
Version release notes
Initial release of IPA Inspector.
12-dimensional iOS security analysis: binary hardening, entitlements, ATS, secrets, weak crypto, URL schemes, SDKs, background modes, privacy manifest, permissions, payment compliance, review evasion.
Version diff analysis: compare two IPA builds side by side.
AI-powered remediation guidance via Amazon Bedrock Nova Lite.
Fully private deployment via AWS CloudFormation (ECS Fargate + RDS + S3).
Reports expire automatically after 24 hours.
Additional details
Usage instructions
Prerequisites:
- AWS CLI configured with administrator permissions
- Amazon Bedrock Nova Lite model enabled in us-east-1
- Sufficient Fargate quota (4 vCPU)
Deployment steps:
- Download the CloudFormation template from the deployment resources below
- Go to AWS CloudFormation console and create a new stack
- Upload the template and follow the wizard (all parameters have defaults)
- Wait approximately 15 minutes for the stack to complete
- Find the ALB URL in the CloudFormation Outputs tab
- Open the URL in your browser to access IPA Inspector
The stack creates all required resources automatically. IPA files are stored in S3 and auto-deleted after 7 days. Reports are retained for 24 hours.
Support
Vendor support
Email support with 2 business day response time. Includes deployment assistance and bug reports.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
This product has charges associated with it for seller support. Simple, Secure and Supported deployment with the Hossted CLI, for easy self-maintenance.
DexProtector (hourly) is the pioneering mobile app protection suite, safeguarding Android and iOS applications with advanced security features. Our comprehensive solution includes app obfuscation, encryption, RASP, and anti-tampering measures, ensuring robust protection against reverse engineering, data theft, and malware. Trusted by clients in over 80 countries with 12 billion installations, DexProtector seamlessly integrates into your build process, maintaining app performance and security. For the latest information, visit https://licelus.com.
DexProtector (BYOL - Separate license required) is the pioneering mobile app protection suite, safeguarding Android and iOS applications with advanced security features. Our comprehensive solution includes app obfuscation, encryption, RASP, and anti-tampering measures, ensuring robust protection against reverse engineering, data theft, and malware. Trusted by clients in over 80 countries with 12 billion installations, DexProtector seamlessly integrates into your build process, maintaining app performance and security. For the latest information, visit https://licelus.com.
Natural and expressive voices in multiple languages. For voice agents and brand ambassadors.
Customer reviews
No customer reviews yet
Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.