Loading…
AppSec IL 2020 has ended
Welcome to Virtual AppSec Israel 2020!
Back To Schedule
Tuesday, October 27 • 14:15 - 16:15
iOS Mobile Hacking Workshop

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Overview:
The workshop is the iOS (very) short version of a 3-days training dedicated to learning the basics to be able to assess the security of iOS mobile applications.

Davy Douhine (ddouhine) will share many techniques, tips and tricks to deliver to pentesters, bug bounty researchers, app makers or just curious about a 100% hands-on iOS workshop. The goals are:
  • Understand iOS basics and the OWASP Mobile Security Testing Guide
  • Learn how to use the common tools (Cydia Impactor, Hopper, rvictl, rvi_capture, Frida and Objection) in order to assess iOS applications
  • Practice on how to resolve iGoat and DVIA challenges

Agenda:
This 2 hours workshop is divided in 4 main parts:
  1. OWASP Mobile Security Testing Guide project:
    1. The Guide
    2. The Standard
    3. The Checklist
    4. The TOP10
  2. Setup your environment: Presentation of the tools used during this workshop
  3. Practical exercises
    1. Static Analysis (2 labs)
    2. Data Security (3 labs)
    3. Execution Analysis (2 labs)
    4. Transport Security (1 lab)

Prerequisites:
- If possible an iOS device.
- Download a specially crafted Virtual Machine (based on Kali). - Link will be emailed *to attendees only* a few days before the workshop.
- Need a laptop with 30 Gb of free space
- Download and install VMWare Workstation Player 16 (DO NOT use Virtual Box) : https://www.vmware.com/products/workstation-player/workstation-player-evaluation.html



Speakers
avatar for Davy Douhine

Davy Douhine

Founder of RandoriSec (https://randorisec.fr/) a security focused IT firm, Davy is working in the itsec field since almost fifteen years.He has mainly worked for financial, banks and defense key accounts doing pentests and trainings to help them to improve their security.He enjoys... Read More →


Tuesday October 27, 2020 14:15 - 16:15 IST
Track B