Tools cannot think! But you make tools work the way you think.
Effective analysis of a system or application in order to identify problems and collect data quickly is done through tools. In this chapter, for both Android and iOS, we will cover tools that should be in your toolbox for every penetration test. We will explore what each of these tools is used for and how to configure them. Each tool for each platform will include a step-by-step configuration process and details around their applicable use cases. By the end of this chapter, you should be familiar with the following:
Setting up Android pentesting tools, such as the following:
APKAnalyser
drozer
APKTool, dex2jar, and JD-GUI
Androguard
JDB debugging
Setting up iOS pentesting tools, such as the following:
oTool
keychain dumper
LLDB remote debugging
Clutch, Class-dump-z, and instrumentation with Frida and Cycript
Hopper
Snoop-it
All the tools demonstrated in this chapter can also perform multiple...