6. Analyzing iOS Binary Protections | Learning iOS Penetration Testing

Sign In Start Free Trial

Book Overview & Buying
Table Of Contents
Feedback & Rating

Learning iOS Penetration Testing

By : Yermalkar

4.2 (12)

Learning iOS Penetration Testing

4.2 (12)

By: Yermalkar

Overview of this book

iOS has become one of the most popular mobile operating systems with more than 1.4 million apps available in the iOS App Store. Some security weaknesses in any of these applications or on the system could mean that an attacker can get access to the device and retrieve sensitive information. This book will show you how to conduct a wide range of penetration tests on iOS devices to uncover vulnerabilities and strengthen the system from attacks. Learning iOS Penetration Testing discusses the common vulnerabilities and security-related shortcomings in an iOS application and operating system, and will teach you to conduct static and dynamic analysis of iOS applications. This practical guide will help you uncover vulnerabilities in iOS phones and applications. We begin with basics of iOS security and dig deep to learn about traffic analysis, code analysis, and various other techniques. Later, we discuss the various utilities, and the process of reversing and auditing.

Preface

Preface

What this book covers

What you need for this book

Who this book is for

Conventions

Reader feedback

Customer support

Free Chapter

1. Introducing iOS Application Security

1. Introducing iOS Application Security

Basics of iOS and application development

Developing your first iOS app

Running apps on iDevice

iOS MVC design

iOS security model

iOS secure boot chain

iOS application signing

iOS application sandboxing

OWASP Top 10 Mobile Risks

Summary

2. Setting up Lab for iOS App Pentesting

2. Setting up Lab for iOS App Pentesting

Need for jailbreaking

Jailbreaking iDevice

Connecting with iDevice

Installing utilities on iDevice

Installing apps on iDevice

Pentesting using iOS Simulator

Summary

3. Identifying the Flaws in Local Storage

3. Identifying the Flaws in Local Storage

Introduction to insecure data storage

Installing third-party applications

Insecure data in the plist files

Insecure storage in the NSUserDefaults class

Insecure storage in SQLite database

SQL injection in iOS applications

Insecure storage in Core Data

Insecure storage in keychain

Summary

4. Traffic Analysis for iOS Application

4. Traffic Analysis for iOS Application

Intercepting traffic over HTTP

Intercepting traffic over HTTPS

Intercepting traffic of iOS Simulator

Web API attack demo

Bypassing SSL pinning

Summary

5. Sealing up Side Channel Data Leakage

5. Sealing up Side Channel Data Leakage

Data leakage via application screenshot

Pasteboard leaking sensitive information

Device logs leaking application sensitive data

Keyboard cache capturing sensitive data

Summary

6. Analyzing iOS Binary Protections

6. Analyzing iOS Binary Protections

Decrypting unsigned iOS applications

Decrypting signed iOS applications

Analyzing code by reverse engineering

Analyzing iOS binary

Hardening binary against reverse engineering

Summary

7. The iOS App Dynamic Analysis

7. The iOS App Dynamic Analysis

Understanding Objective-C runtime

Dynamic analysis using Cycript

Runtime analysis using Snoop-it

Dynamic analysis on iOS Simulator

Summary

8. iOS Exploitation

8. iOS Exploitation

Setting up exploitation lab

Shell bind TCP for iOS

Shell reverse TCP for iOS

Creating iOS backdoor

Converting iDevice to a pentesting device

Summary

9. Introducing iOS Forensics

9. Introducing iOS Forensics

Basics of iOS forensics

The iPhone hardware

The iOS filesystem

Physical acquisition

Data backup acquisition

iOS forensics tools walkthrough

Summary

Index

Index

Customer Reviews

4.2 (12)

5 star

41.7%

4 star

33.3%

3 star

25%

2 star

0%

1 star

0%

Analyzing code by reverse engineering

Many times, an application makes the mistake of storing sensitive API keys and encryption keys at client side. After reverse engineering the iOS application, we can look in the source code for sensitive keys, application logic, and other such aspects.

In the iGoat application, there is an exercise of String Analysis where you have to find the answer to the riddle that lies in the source code and input it in the box to complete the challenge.

Follow these steps to perform string analysis:

Start the Reverse Engineering exercise from the iGoat application. It will prompt you with a window to answer the riddle:
If you provide the wrong answer to the riddle, it will show you an Incorrect! error and suggest you to look for hints:
You can reverse engineer the iOS application using methods that you learned earlier and perform string analysis using the string command.
Another way could be to use the Hopper Disassembler. Provide the application's decrypted binary to...

Visually different images

CONTINUE READING

83

Tech Concepts

36

Programming languages

73

Tech Tools

Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.

Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.

50+ new titles added per month and exclusive early access to books as they are being written.

Learning iOS Penetration Testing

Search

Your notes and bookmarks