Uncovering OWASP’s Mobile Risks in iOS Apps - Patrick Wardle - OWASP AppSec California 2015

On YouTube

Synack at AppSec California with Patrick Wardle from Synack

Slide


讲座中提及的Tools

讲座中提及的exploit


iOS App File Structure

App Binary

App Binary

Decryption

GitHub - dumpdecrypted

未知与Clutch有何不同.

iOS Reverse Engineering Techniques

RE iOS App是拿不回原始resource的.

oTool

安装 Darwin CC Tools 就会安装好.

class-dump-z

IDA Pro

ARM Architecture

File System I/O

FileMon

filemon - Download

App Debugging

简单来说就是Monitor code execution.

App Instrumentation

简单来说,就是Inject @runtime

# cycript -p <pID>

Secure Local Storage

FileDP 可用于检查文件使用的protection(e.g. NSProtectionComplete).

Tutorial

ViewLog

# tail -f /var/log/syslog