Ethical Hacking: Mobile Devices and Platforms

Learn how to secure your organization's mobile devices and test iOS and Android applications for security flaws—key topics on the Certified Ethical Hacker exam.

Introduction

• Keeping your mobile devices safe
• Before watching this course
• Course disclaimer

1. Mobile Technology

• Understand and test for mobile vulnerabilities
• Static analysis of applications
• Dynamic analysis of applications
• Mobile web testing

2. Android

• Understanding the Android operating system
• Understanding the Android security model
• Preparing for Android testing
• Extracting and reading the manifest file
• Extracting and reading JavaScript code
• Recreating Java source code with JAD
• Browsing applications directly with JADX
• Getting command-line access with ADB
• Install an Android emulator from the SDK
• Dynamic analysis of Android applications
• Using Drozer to analyze applications
• Checking for scam phones

3. iOS

• iOS applications and vulnerabilities
• Securing iOS applications by design
• Jailbreaking for command-line access
• More jailbreak and extractor tools
• Preparing to test iOS applications
• Extracting properties and class headers
• Disassembling iOS executable code
• Advancing into dynamic analysis of iOS

4. Security Shepherd

• Taking a look at Security Shepherd
• Watching for bad cryptography
• Insecure data when in developer mode

Conclusion

• Next steps