The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
I came across this article: https://blog.silentsignal.eu/2016/05/06/ios-http-cache-analysis-for-abusing-apis-and-forensics/ which talked about setting the Cache-Control header to prevent caching on iOS devices among other things. I tested it out on iOS 13.4.1 with modified responses containing Cache-Control: no-cache, no-store. The WebKit folders and application specific folder containing Cache.db were not created.
MSTG Chapter
0x06d-testing-data-storage
File Line Number
448
Context
I came across this article: https://blog.silentsignal.eu/2016/05/06/ios-http-cache-analysis-for-abusing-apis-and-forensics/ which talked about setting the Cache-Control header to prevent caching on iOS devices among other things. I tested it out on iOS 13.4.1 with modified responses containing
Cache-Control: no-cache, no-store
. The WebKit folders and application specific folder containing Cache.db were not created.