2. Snooping Around the Architecture | Mobile Application Penetration Testing

Sign In Start Free Trial

Book Overview & Buying
Table Of Contents

Mobile Application Penetration Testing

By : Vijay Kumar Velu

5 (3)

Mobile Application Penetration Testing

5 (3)

By: Vijay Kumar Velu

Overview of this book

Mobile security has come a long way over the last few years. It has transitioned from "should it be done?" to "it must be done!"Alongside the growing number of devises and applications, there is also a growth in the volume of Personally identifiable information (PII), Financial Data, and much more. This data needs to be secured. This is why Pen-testing is so important to modern application developers. You need to know how to secure user data, and find vulnerabilities and loopholes in your application that might lead to security breaches. This book gives you the necessary skills to security test your mobile applications as a beginner, developer, or security practitioner. You'll start by discovering the internal components of an Android and an iOS application. Moving ahead, you'll understand the inter-process working of these applications. Then you'll set up a test environment for this application using various tools to identify the loopholes and vulnerabilities in the structure of the applications. Finally, after collecting all information about these security loop holes, we'll start securing our applications from these threats.

Preface

Preface

What this book covers

What you need for this book

Who this book is for

Conventions

Reader feedback

Customer support

Free Chapter

1. The Mobile Application Security Landscape

1. The Mobile Application Security Landscape

The smartphone market share

Different types of mobile applications

Public Android and iOS vulnerabilities

The key challenges in mobile application security

The mobile application penetration testing methodology

The OWASP mobile security project

OWASP mobile top 10 risks

Summary

2. Snooping Around the Architecture

2. Snooping Around the Architecture

The importance of architecture

The Android architecture

iOS architecture

iOS SDK and Xcode

iOS application programming languages

Understanding application states

Apple's iOS security model

Changes in iOS 8 and 9

iOS isolation

Hardware-level security

iOS permissions

The iOS application structure

Jailbreaking

The Mach-O binary file format

Property lists

Exploring the iOS filesystem

Summary

3. Building a Test Environment

3. Building a Test Environment

Mobile app penetration testing environment setup

Android Studio and SDK

The Android Debug Bridge

Genymotion

Configuring the emulator for HTTP proxy

Google Nexus 5 – configuring the physical device

The iOS SDK (Xcode)

Setting up iPhone/iPad with necessary tools

SSH clients – PuTTy and WinSCP

Emulator, simulators, and real devices

Summary

4. Loading up – Mobile Pentesting Tools

4. Loading up – Mobile Pentesting Tools

Android security tools

iOS security tools

Summary

5. Building Attack Paths – Threat Modeling an Application

5. Building Attack Paths – Threat Modeling an Application

Assets

Threats

Vulnerabilities

Risk

Approach to threat models

Threat modeling a mobile application

Summary

6. Full Steam Ahead – Attacking Android Applications

6. Full Steam Ahead – Attacking Android Applications

Setting up the target app

Analyzing the app using drozer

Android components

Attacking WebViews

SQL injection

Man-in-the-Middle (MitM) attacks

Hardcoded credentials

Encryption and decryption on the client side

Runtime manipulation using JDWP

Storage/archive analysis

Log analysis

Assessing implementation vulnerabilities

Binary patching

Summary

7. Full Steam Ahead – Attacking iOS Applications

7. Full Steam Ahead – Attacking iOS Applications

Setting up the target

Storage/archive analysis

Reverse engineering

Static code analysis

App patching using Hopper

Hardcoded username and password

Runtime manipulation using Cycript

Dumpdecrypted

Client-side injections

Man-in-the-Middle attacks

Implementation vulnerabilities

Building a remote tracer using LLDB

Snoop-IT for assessment

Summary

8. Securing Your Android and iOS Applications

8. Securing Your Android and iOS Applications

Secure by design

Security mind map for developers (iOS and Android)

Device level

Network level

Server level

OWASP mobile app security checklist

Secure coding best practices

Post-production protection

Summary

Index

Index

The iOS application structure

Now that we have understood the iOS security model and its permissions, we will see how all the compiled application code, resources, and application metadata required to define a complete application are zipped and signed with the developer's certificate and finally issued as an iOS app store package (iPA). The structural representation of an iOS application would typically be as shown in this diagram:

When an iPA file is opened with any archiving software such as 7-Zip, WinRAR, and so on, you can see the following:

Payload: This folder contains all the application data
- Application.app: This folder contains all the following along with static images and other resources
- App binary: This is the binary executable
- Bundle Resources: All the resources required by the app binary are stored here
- Embedded.mobileprovision: This file is the original provisioning file packaged with the application, and it helps the developers re-sign an iOS application without requiring...

CONTINUE READING

83

Tech Concepts

36

Programming languages

73

Tech Tools

Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.

Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.

50+ new titles added per month and exclusive early access to books as they are being written.

Mobile Application Penetration Testing

Search

Your notes and bookmarks