Skip to main content

28 posts tagged with "Desktop Appliance Deployments"

View All Tags

Release 7.10.0

Corellium has rolled out an extensive update that expands platform compatibility and enhances functionality across several fronts. The mobile OS lineup now includes the latest iOS/iPadOS versions, from iOS 15.8.7 up to iOS 18.7.7, plus iOS/iPadOS 26.x betas and releases, along with support for new hardware like the iPhone 17e. In addition, key feature updates include Corellium MATRIX’s generation of detailed Software Bill of Material (SBOM) artifacts that improve visibility into application dependencies and vulnerabilities, as well as the introduction of a Generic Linux VM running Ubuntu within Viper Advanced & Falcon; this integration lets testers deploy any Linux-based tooling seamlessly alongside mobile phone VMs without resorting to VPNs or complex network configurations. On the administrative side, a new Cluster Administrator role has been introduced for on-premises appliances, offering secure web console access and centralized snapshot management (including clone, restore, rename, share, and delete functions) across compute nodes, thereby reducing manual intervention from support teams. Other enhancements include an upgrade to Frida (version 17.8) that resolves spawn issues with iOS/iPadOS 26.x, and a refined Secure LDAP (LDAPS)implementation allowing either customer-supplied certificates or automatic acceptance of server-presented credentials, ensuring robust encrypted
communications.

Mobile OS Support

We've expanded our platform's compatibility with the latest mobile operating system versions:

iOS/iPadOS

  • iOS 15.8.7
  • iOS 16.7.15
  • iOS 18.7.6
  • iOS 18.7.7
  • iOS 26.3.1
  • iOS 26.4.1
  • iOS 26.4.0 Betas 1-4 for SA Falcon Premium only, and RC1 & RC2/GA for everyone

Mobile Model Support

We've expanded out platform's compatibility with the latest mobile models:

iPhone

  • iPhone 17e

New Features

Corellium MATRIX gains Software Bill of Materials (SBOM) Artifacts

Corellium MATRIX's latest enhancement introduces SBOM support by generating
detailed dependency reports that list every component, including indirect or transitive dependencies, with version details when available, thereby improving application composition visibility and significantly bolstering cybersecurity by pinpointing vulnerabilities, reducing supply chain risks, and minimizing the overall attack surface.

New Generic Linux VM added to Viper Advanced & Falcon

Corellium’s new Generic Linux VM, running Ubuntu alongside mobile phone VMs
within the same project and network, empowers testers by offering a unified platform to deploy any Linux based tooling without the hassles of VPNs or routed connectivity. With this integrated environment, users can easily run services like an Appium server for dynamic mobile app automation or deploy man-in-the-middle proxies to capture live network traffic, thereby streamlining workflows and enhancing testing efficiency within a secure, centralized ecosystem.

Administrative Changes

Cluster Admin Management

We're introducing a new user role and administrative capabilities designed specifically for managing on-premises appliances. The new Cluster Administrator role provides access to advanced troubleshooting and management tools that previously required direct command-line access.

New Capability: Appliance Console Access

  • Cluster Administrators can now access the appliances's command line console directly within the web UI.
  • Eliminates the need for direct serial or SSH access to appliances.
  • Provides a secure, centralized interface for advanced troubleshooting.
  • Available for all on-premises appliance deployments.

New Capability: Snapshot Management

  • Cluster Administrators can now manage any and all device snapshots from a single location.
  • Clone, Restore, Rename, Share, and Delete snapshots.
  • Globally set number of snapshots allowed per device.
  • Manage snapshots across all compute nodes of a clustered server environment.

These capabilities significantly reduce the need for manual intervention from Corellium Support teams, providing customers with greater autonomy and control over their on-premises appliance environments.

Other Enhancements

Updated Frida Versions

The latest Frida release (version 17.8) has been deployed to address spawn issues encountered when working with iOS and iPadOS 26.x, ensuring smoother integration and improved reliability for dynamic instrumentation on these platforms.

LDAPS Support

Corellium's Secure LDAP (LDAPS) support has been updated to provide greater flexibility and enhanced security when connecting to an LDAP server. With this enhancement, if a customer configures and supplies their own certificate, that certificate will be used for establishing the secure connection. In cases where no custom certificate is provided, the system will automatically accept the certificate offered by the LDAP server. This dual-mode approach lets organizations integrate their existing PKI infrastructure or comply with specific security requirements while ensuring all communications remain encrypted and trusted.

Bug Fixes & UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

Release 7.9.0

Corellium 7.9 expands device coverage across all supported iOS/iPadOS versions from legacy releases like 12.5.8 up through the newest 26.x builds (including beta tracks of 26.2.0/26.3.0 for SA Premium Falcon and full GA access to 26.3.0) giving you a seamless testing environment on every modern Apple ecosystem; it also adds a one-click "Take Screenshot" button in the UI that instantly downloads a local copy of any iOS/iPadOS or Android virtual device screen without ever writing the image back into the device's camera roll, eliminating export steps and preserving anytime forensic integrity; finally, you can now toggle WAN access on or off at creation time or anytime thereafter, allowing instant isolation to prevent data leakage or evidence alteration, or grant targeted internet connectivity for specific analysis steps. And finally, a brand-new Cluster Administrator role grants web-UI console access that eliminates SSH requirements to the appliance console(s), plus a new unified snapshot management-- clone, restore, rename, share, delete, global limits, and cross-node control, so you can manage every on-premises appliance completely through the platform. Together, these enhancements provide broader OS support, an immediate screenshot workflow, and precise network control all within a secure, unified Corellium platform.

Mobile OS Support

We've expanded our platform's compatibility with the latest mobile operating system versions:

iOS/iPadOS

  • iOS/iPad OS 15.8.6
  • iOS/iPad OS 16.7.14
  • iOS/iPad OS 18.7.4
  • iOS/iPad OS 18.7.5
  • iOS/iPad OS 26.2.0 (Betas 1-3 for SA Premium Falcon only; RC1, RC2, RC3/GA for everyone)
  • iOS/iPad OS 26.2.1
  • iOS/iPad OS 26.3.0 (Betas 1-3 for SA Premium Falcon only; RC1 and RC2/GA for everyone)

New Features

WAN Access Toggle for Virtual Devices

  • New Capability: Virtual devices now expose a built‑in switch that can enable or disable WAN (Internet) connectivity at any time.
  • Where to Configure:
    • During Creation: Choose “WAN Enabled” or “WAN Disabled” when initially provisioning the VM/Phone.
    • Post‑Creation: Open the device’s settings panel and toggle Internet access on/off whenever you need it—no reboot required.
  • Use Cases:
    • Data Isolation & Leakage Prevention – Turn off WAN to create an air‑gapped environment for forensic or malware analysis, ensuring no external traffic can exfiltrate data.
    • Evidence Preservation – Keep a device completely offline while capturing logs or snapshots, then restore connectivity later to pull results.
    • Controlled Access – Grant network access only at specific analysis steps (e.g., when downloading samples, uploading test results, or calling an external API).
  • Impact: Provides granular networking control without needing external firewalls or host‑level ACLs, streamlining secure testing workflows and reducing the risk of unintended data leakage.

One‑Click Screenshot Capture (iOS/iPadOS & Android)

  • New UI Control: A dedicated “Take Screenshot” button now appears alongside the existing volume, lock, and other device‑control icons on every virtual device.
  • Instant Download: Clicking the button automatically downloads a high‑resolution screenshot to your local workstation – no manual export steps required.
  • No Camera‑Roll Placement: The image is captured and saved externally; it never gets written back into the device’s Photos/Camera Roll, keeping the virtual environment pristine for forensic or analytical workflows.
  • Supported Platforms: Works identically on both iOS/iPadOS virtual devices and Android virtual devices, eliminating platform‑specific export gymnastics.
  • User Benefit: Enables rapid, repeatable capture of UI states, logs, error messages, or any visual evidence without leaving the Corellium console or interrupting your analysis flow.

Administrative Changes

Cluster Admin Management

We're introducing a new user role and administrative capabilities designed specifically for managing on-premises appliances. The new Cluster Administrator role provides access to advanced troubleshooting and management tools that previously required direct command-line access.

New Capability: Appliance Console Access

  • Cluster Administrators can now access the appliances's command line console directly within the web UI.
  • Eliminates the need for direct serial or SSH access to appliances.
  • Provides a secure, centralized interface for advanced troubleshooting.
  • Available for all on-premises appliance deployments.

New Capability: Snapshot Management

  • Cluster Administrators can now manage any and all device snapshots from a single location.
  • Clone, Restore, Rename, Share, and Delete snapshots.
  • Globally set number of snapshots allowed per device.
  • Manage snapshots across all compute nodes of a clustered server environment.

These capabilities significantly reduce the need for manual intervention from Corellium Support teams, providing customers with greater autonomy and control over their on-premises appliance environments.

Bug Fixes & UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

Release 7.8.0

As we close out the year with our final release of 2025, this version was primarily focused on backend enhancements and bug fixes. However, there are some notable feature highlights worth mentioning. We now support the latest versions of iOS and iPadOS 26.1, as well as 26.2 beta releases for our on-premises Premium customers. Additionally, we've introduced new capabilities when uploading device firmware/IPSWs and improved error messaging with more meaningful feedback if a MATRIX test fails to run against an app.

Mobile OS Support

We've expanded our platform's compatibility with the latest mobile operation system versions:

Android

  • Android 13 revisions

iOS/iPadOS

  • iOS/iPad OS 26.1.0 (Betas 1-4 & RC1 for SA Premium Falcon only; GA for everyone).
  • iOS/iPad OS 26.2.0 (Beta 1-2 for SA Premium Falcon only).

New Features

Enhanced Firmware/IPSW Upload

The latest release marks the first phase in the comprehensive revamp of our firmware management system, introducing an enhanced web-based interface that simplifies the upload process for firmware image files without requiring command line access. This user-friendly platform features a straightforward drag-and-drop interface that supports both individual and batch uploads, complete with progress indicators to efficiently manage large files.

MATRIX: Specific Test-Failed Messages

We have improved the feedback in MATRIX by providing more meaningful context when a test fails. This update helps you better understand what happened and makes it easier to determine next steps.

Other Enhancements

Update Frida Versions

In this latest update, we've made significant enhancements and resolved several bugs in the built-in versions of Frida 17, available on both iOS/iPadOS and Android platforms. These improvements aim to bolster performance and reliability ensuring seamless integration and functionality within our testing environments. The updates address previously reported issues, enhancing the overall user experience and extending the capabilities of our debugging tools.

Bug Fixes and UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. iOS performance is faster, Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

We appreciate your continued support as we strive to improve Corellium. We hope these updates will contribute to your success in 2025 and beyond. Please feel free to reach out with any questions or feedback.

From all of us here at Corellium, we wish you a happy holiday!

Release 7.6.0

Overview

Corellium 7.6 delivers comprehensive enhancements focused on regulatory compliance, mobile OS support, and administrative capabilities. This release strengthens our platform's security testing capabilities with expanded compliance mapping for critical regulations while providing support for the latest mobile operating systems versions. The update empowers system administrators with advanced management tools and streamlines security testing workflows through enhanced automation and flexibility.

Mobile OS Support

We've expanded out platform's compatibility with the latest mobile operating system versions:

iOS/iPadOS

  • iOS/iPadOS 18.6.0 and 18.6.1 General Availability (GA) versions
  • iOS/iPadOS 18.6 and 26 Betas (on-premises Falcon Premium only)

Administrative Changes

Cluster Admin Management

We're introducing a new user role and administrative capabilities designed specifically for managing on-premises appliances. The new Cluster Administrator role provides access to advanced troubleshooting and management tools that previously required direct command-line access.

Key Capability: Appliance Console Access

  • Cluster Administrators can now access the appliances's command line console directly within the web UI.
  • Eliminates the need for direct serial or SSH access to appliances.
  • Provides a secure, centralized interface for advanced troubleshooting.
  • Available for all on-premises appliance deployments.

Preserve User Data Installer Page (onsite)

Enhanced support for on-premises appliance reconfigurations with improved data preservation capabilities:

  • Cluster Expansion: User data is now automatically preserved during cluster expansion operations.
  • Network Reconfigurations: Seamless network updates without manual intervention from Corellium Support.
  • Certificate Updates: Server certificate management with automatic data preservation.
  • Appliance Configuration Changes: All configuration updates maintain user data integrity.

These capabilities significantly reduce the need for manual intervention from Corellium Support teams, providing customers with greater autonomy and control over their on-premises appliance environments.

New Features

iOS Front Camera

Enhanced camera testing capabilities for iOS devices that support camera functionality:

  • Ability to switch between rear and front cameras during application testing.
  • Utilizes standard camera switching features within the Camera app.
  • Enables comprehensive testing of camera-dependent applications.

iOS Camera QR Code Detection and Decoding

New QR code handling for iPhone 8 + iOS 16, using the back camera:

  • Swift detection and decoding of QR codes using iOS device camera.
  • Seamless interaction with printed materials for quick information retrieval.
  • Supports URL browser shortcut QR codes.
  • Handles deep link QR codes that launch specific apps and pre-populate information.

iOS Keychain Export Enhancement

Enhanced keychain management: Users can now easily export device or app specific keychains directly from iOS and iPadOS devices:

  • Export entire device keychain or application-specific keychain portions.
  • Eliminates need to run MATRIX tests for keychain data
  • Provides instant access to full device keychain data.
  • Streamline workflow for security testing and analysis.

MATRIX: Upload Frida Script to Run When Opening App

You can now upload a Frida script directly in the MATRIX test configuration. The script will automatically run when we launch the application for monitoring, allowing you to bypass security controls or apply custom runtime logic during your scans.

MATRIX: Enhanced Compliance Mapping

Each check in the MATRIX report now includes expanded compliance mapping. Alongside OWASP, CVE and CWE, you'll see coverage for PCI DSS v4, GDPR and HIPAA, making it easier to align results with key regulatory requirements.

Other Enhancements

Network Mode Options for SA Clusters

Enhanced network management: The server appliance (SA) now allows customers to easily switch Network Type between Bridged, Routed, and NAT mode when reconfiguring the cluster via the admin tab.

Key Benefits for Customers:

  • Flexible Network Topology: Choose the most appropriate network configuration for specific testing scenarios.
  • Simplifies Reconfiguration: No need for manual intervention or command-line access to change network modes.
  • Enhanced Testing Capabilities: Support for different network environments including bridged (direct access), routed (controlled routing), and NAT (isolated network) configurations.
  • Preserve User Data Feature: Changing network field options (i.e., network domain name / IP, etc.) no longer requires a "Reset Corellium", instead use "Reconfigure Corellium".

Frida Version Update

Frida 17 integration: Following the release of Frida 17 for iOS/iPadOS devices in version 7.5, we've now updated Android devices to Frida 17 as well, providing consistent tooling across all supported platforms.

Bug Fixes & UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

Release 7.2.0

Overview

This release of Corellium introduces several significant updates, including enhanced security features, improved integration with external systems, support for all the latest iOS versions, and various bug fixes and UI enhancements.

Added Support for iOS up to 18.3.1

  • Corellium now supports the latest iOS versions, ensuring compatibility with the most recent updates.
  • Users can analyze the latest iOS devices without compromising functionality or security features.

New Features

  1. Added SAML Support

    • Corellium now supports SAML (Security Assertion Markup Language) authentication, providing secure single sign-on capabilities.
    • Integrates seamlessly with Identity Providers like Okta, OneLogin, and Azure AD.
    • Enhances security by leveraging industry-standard protocols for user authentication.

  2. Admin Interface: User Activity Logger - A new activity monitoring system has been integrated into the Admin interface. This enhancement provides administrators with detailed insights into user interactions across the platform.

    • Track and view user actions.
    • Improve security auditing and compliance reporting.
    • Identify potential issues or unusual behavior quickly.

  3. LDAP Authentication Integration - We've implemented enterprise-grade LDAP authentication, enhancing security and streamlining user access management across the platform.

    • Seamlessly map your organization's existing LDAP groups to Corellium roles.
    • Maintain consistent access control policies across your infrastructure.
    • Simplify user permissions management through centralized RBAC.

  4. VLAN Tagging for Network Isolation - We've introduced VLAN tagging capabilities at the project level, enabling enhanced network segmentation and isolation for on-premise deployments.

    • Configure VLAN tags at the project scope.
    • Maintain separate network domains for distinct workloads.
    • Seamlessly integrate with existing network infrastructure.
    • Available for select enterprise customers.

Contact your Account Representative for enablement. Network administrator configuration may be required.

MATRIX

  • New Check for Android Code Signing Artifacts

    • A new feature has been introduced to gather code signing artifacts from Android applications.
    • This addition adds in thorough security analysis by extracting relevant information for compliance and audit purposes.

Other Enhancements

  1. Enhanced Crash Report Analysis - We've significantly improved our crash reporting system by integrating disassembly information directly into crash reports, providing deeper insights into application behavior and failure points.

    • Direct access to disassembled code at crash locations.
    • Immediate visibility into instruction-level execution context.

  2. Bug Fixes and Minor UI Enhancements

    • Various underlying bugs have been resolved to improve stability and performance.
    • Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

Release 6.5.0

MATRIX

MATRIX in 6.5 We made a stack of iterative improvements to our MATRIX feature!

  • Added support for downloading JSON to History page
  • Added tooltips to report statuses
  • Added pagination to improve UI
  • 2 new Android checks
  • 5 new iOS checks
  • Improved check outputs
  • Lots of bugfixes and improvements

Enhanced Plan Offerings

We have enhanced our plan offerings to better align with our customers’ budgets, feature requirements, and environment needs. We now provide a diverse range of plan levels, ensuring that our customers can find options that meet both their financial and operational needs.

Release 6.3.0

This month's update includes two features - one that we have had enhanced in beta for a few months now, called MATRIX, and one that is new to our platform called Snapshot Sharing.

MATRIX

If you've been playing with this feature, you may have seen it referred to in our application as MAST (Beta). Today, we're formally rolling out our name for this feature, MATRIX, which stands for Mobile Application Testing and Reporting Interface.

MATRIX now includes 8 new Android checks and 4 new iOS checks.

Release 6.2.1

Today we're rolling out Corellium version 6.2.1 for on-premise and desktop appliances.

Android Live Snapshots

Live snapshots capture the state of a virtual device's RAM and filesystem. Corellium can resume live snapshots in the same state as when they were suspended, including running apps. We're bringing Live Snapshots, a feature previously only available on iOS devices, to Android.