iOS Security and Penetration Testing presented at Shakacon 2012

by Jason Haddix,

Summary : In contrast to Android applications written in a language like java, Objective-C, the iOS runtime, and the vulnerabilities baked into the platform are a new area for auditors, QA, and pentesters. I will present some of these vulnerabilities through both the lens of blackbox and whitebox testing, illustrating dynamic testing techniques and static review techniques, as well as the tools used for these techniques.