110 likes | 123 Views
This presentation challenges misconceptions about jailbreaking, emphasizing its significance in iOS penetration testing. Learn the concepts, benefits, and outcomes to improve security testing practices on iOS devices.
E N D
ANUJ SHARMA SECURITY EXPERT NIIT TECHNOLOGIES
Abstract This Presentation will change the perception towards Jailbreaking and will highlight the importance of it in iOS penetration testing . Concepts Conclusion Core Idea • Importance of Jailbreaking ? • How to Jailbreak ? • Need of Mobile Security • Penetration testing ? iOS? • Jailbreaking ? iOS? • Outcomes of Jailbreaking ? • Benefits to Penetration Testers ?
Penetration Testing ? How to do in iOS ? A penetration test is an authorized simulated attack on a computer system that looks for security weakness , potentially gaining access to the system’s features and data. • Whitebox Testing : • Full information • Source Code provided • Blackbox Testing : • No Code or information provided. • Working only with downloadable app. • Focus : • Attack the network communication. • Server component • Client component 4
Jailbreaking in iOS ? Challenges in Jailbreaking ? iOS jailbreaking is privilege escalation for the process of removing software restrictions imposed by Apple on iOS. It is similar to rooting in Android. • Jailbreaking is often taken as illegal, which in real it is not. • Different iOS versions need different Jailbreaking softwares. • Jailbreaking voids Apple’s device warranty. So no more device issues fixed by Apple. • Difficult to obtain device for jailbreaking as device providers don’t understand the use of jailbreaking in iOS penetration testing.
iOS penetration testing in Jailbreak devices give maximum coverage of application as it has permissions of underlying OS. Why to jailbreak iOS device ? Root Access Tools Coverage 6
4. Tap Evasion on Home Screen and let device reboot. • 2. Restore Device • 3. Download , Run Evasion and tap Jailbreak How to Jailbreak ? Software for Jaibreaking iOS device Steps to Jailbreak 7
Outcomes of Jailbreaking • Jailbreaking iOS device enables iOS penetration testers to better assess iOS applications . • Better security provided by jailbreaking means less hacking possibilities. Security Hacking • Allows penetration testers to be on the same level as Hackers because hackers generally Jailbreak their devices to hack applications. 8
Take Away • First step in iOS penetration testing is Jailbreaking. • Jailbreaking is highly important in iOS penetration testing. • Jailbreaking is fairly legal and very easy to do. • Jailbreaking can reduce hacking possibilities by assessing application vulnerabilities before hand.
A • & 10
Author Biography References & Appendix • Wikipedia – Penetration Testing • Wikipedia – iOS Jailbreaking • OWASP – iOS Application Security Cheat Sheet • Currently Working as Security Expert in NIIT Technologies . • Qualification : MCA • Skilled expertise in Security tools like Burp Suite , Acunetix , Nessus etc. Thank You!!!