Integrating Mobile Devices into Your Penetration Testing Program - DefCamp 2015

Explore the integration of mobile devices into penetration testing programs in this DefCamp 2015 conference talk. Delve into topics such as corporate mobile device security, social engineering tactics, QR code vulnerabilities, mobile malware detection, and the creation of malicious applications. Learn about phishing techniques, network vulnerabilities, mobile security testing methodologies, and ways to bypass Mobile Device Management systems. Discover strategies for strengthening security postures, implementing two-factor authentication, and gaining access to iOS devices. Gain valuable insights into the evolving landscape of mobile security and its implications for penetration testing.

Intro
Car
Mobile Devices
Carrier Update
Corporate Mobile Devices
There is an app for everything
Social engineering works
QR codes
Detecting mobile malware
Using developer keys
Making malicious applications
What can we do
Phishing
Vulnerability on the Network
The Perimeter
Mobile Security Testing
Mobile Device Management bypasses
The bottom of the barrel
Please get over it
Questions for you
Strong security postures
Twofactor authentication
Getting onto iOS devices