+ All Categories
Home > Technology > Mobile arsenal

Mobile arsenal

Date post: 13-Apr-2017
Category:
Upload: ackcent
View: 233 times
Download: 2 times
Share this document with a friend
24
Transcript

2

§Alex Soler (@as0ler)

§Red Team Officer @ Ackcent

§[email protected]

3

Disclaimer: this talk don’t pretend to show all the toolsrelated to mobile security assessment nor all vulnerabiltiescould affect a mobile app, but how to start.

4

People thinks mobile applications are always secure…

5

6

7

§iOS Device with Jailbreak

§Android Device rooted

§Some Alternatives

(with their limitations):

− Android Emulator

− “iPhone simulator”

8

§ Binary Analysis

−Lack of binary protections

−Poor authorization and authentication§ File Analysis

−Insecure data Storage§ Configuration

−Improper permission usage§ Libraries and API information

−Insecure API usage

9

§Network analysis

−Weak server-side controls

−Insufficient Transport Layer

−Unintended data leakage§Runtime analysis

−Improper session handling

−Broken cryptography

10

11

12

Classes.dexjavac

Other class files

Source code

Class files

AndroidManifest.xml

dx

13

Classes.dex

Apk Downloader

Smali files

Source codeClass files

AndroidManifest.xml

Unzip

Apktool d

dex2jarjadx

14

Android Source Code

15

Smali

16

You need to decrypt the iOS App

Application

EncryptedCode

Decrypt.bin

cryptoff

cryp

tszi

e

__TEXT offset

17

You need to decrypt the iOS App

Application

EncryptedCode

Decrypt.bin

cryptoff

cryp

tszi

e

__TEXT offset

18

Clutch2

19

Class-dump Get Obj-C classes

20

§Burp

HTTP/HTTPs

21

§Modifying the application from memory

−Android

§Xposed

−iOS

§Cycript

−Both

§Mobile Substrate

§Frida

22

§ https://www.owasp.org/index.php/OWASP_Mobile_Security_Project_-_Android

§ https://www.owasp.org/index.php/IOS_Application_Security_Testing_Cheat_Sheet

§ https://mobilesecuritywiki.com

23

§ iOS Jailbreak: https://theiphonewiki.com/wiki/Jailbreak

§ SSH Over USB: http://iphonedevwiki.net/index.php/SSH_Over_USB

§ Direct APK Downloader (Chrome): https://chrome.google.com/webstore/detail/direct-apk-downloader/

§ Installing certificate on android device: https://support.portswigger.net/customer/portal/articles/1841102-Mobile%20Set-up_Android%20Device%20-%20Installing%20CA%20Certificate.html

24

Questions?


Recommended