High-risk tools in Preflight Ios
11 of the 82 tools in Preflight Ios are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
simulator_biometricExecuteControl Face ID / Touch ID: enroll, unenroll, trigger matching (success), or trigger failure. Test biometric authentication flows end-to-end.
-
simulator_icloud_syncExecuteTrigger iCloud sync on the device. Requires the device to be signed into an Apple ID.
-
simulator_launch_appExecuteLaunch an app by bundle ID. Optionally pass launch arguments and environment variables.
-
simulator_location_scenarioExecuteRun predefined GPS location scenarios (Freeway Drive, City Run, City Bicycle Ride). Simulates realistic movement patterns for testing location features.
-
simulator_memory_warningExecuteTrigger a simulated memory warning. Apps will receive didReceiveMemoryWarning and can be tested for proper memory cleanup.
-
simulator_navigate_backExecuteNavigate back in the current app. Sends Cmd+[ (standard back navigation). Works in Safari and apps with standard UINavigationController. Workaround for edge-swipe-back gesture l...
-
simulator_record_videoExecuteStart recording the simulator screen to a video file. Use simulator_stop_recording to stop. Supports H.264 and HEVC codecs.
-
simulator_stop_recordingExecuteStop an active video recording and save the file.
-
simulator_stream_logsExecuteStart/read/stop a live log stream. Use action="start" to begin, "read" to get the buffer, "stop" to end. Great for watching app behavior in real-time.
-
simulator_trigger_siriExecuteInvoke Siri on the simulator. Use simulator_type_text to enter a query if text input is available.
-
simulator_wait_for_elementExecuteWait for an accessibility element to appear on screen. Polls until the element matching your criteria (label, role, or text) appears, or times out. Like Playwright's browser_wai...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.