Learning iOS Penetration Testing(Paperback)
Swaroop Yermalkar
- 出版商: Packt Publishing
- 出版日期: 2016-01-07
- 售價: $1,840
- 貴賓價: 9.5 折 $1,748
- 語言: 英文
- 頁數: 204
- 裝訂: Paperback
- ISBN: 1785883259
- ISBN-13: 9781785883255
-
相關分類:
Apple Developer
海外代購書籍(需單獨結帳)
相關主題
商品描述
Secure your iOS applications and uncover hidden vulnerabilities by conducting penetration tests
About This Book
- Achieve your goal to secure iOS devices and applications with the help of this fast paced manual
- Find vulnerabilities in your iOS applications and fix them with the help of this example-driven guide
- Acquire the key skills that will easily help you to perform iOS exploitation and forensics with greater confidence and a stronger understanding
Who This Book Is For
This book is for IT security professionals who want to conduct security testing of applications. This book will give you exposure to diverse tools to perform penetration testing. This book will also appeal to iOS developers who would like to secure their applications, as well as security professionals. It is easy to follow for anyone without experience of iOS pentesting.
What You Will Learn
- Understand the basics of iOS app development, deployment, security architecture, application signing, application sandboxing, and OWASP TOP 10 for mobile
- Set up your lab for iOS app pentesting and identify sensitive information stored locally
- Perform traffic analysis of iOS devices and catch sensitive data being leaked by side channels
- Modify an application's behavior using runtime analysis
- Analyze an application's binary for security protection
- Acquire the knowledge required for exploiting iOS devices
- Learn the basics of iOS forensics
In Detail
iOS has become one of the most popular mobile operating systems with more than 1.4 million apps available in the iOS App Store. Some security weaknesses in any of these applications or on the system could mean that an attacker can get access to the device and retrieve sensitive information. This book will show you how to conduct a wide range of penetration tests on iOS devices to uncover vulnerabilities and strengthen the system from attacks.
Learning iOS Penetration Testing discusses the common vulnerabilities and security-related shortcomings in an iOS application and operating system, and will teach you to conduct static and dynamic analysis of iOS applications.
This practical guide will help you uncover vulnerabilities in iOS phones and applications. We begin with basics of iOS security and dig deep to learn about traffic analysis, code analysis, and various other techniques. Later, we discuss the various utilities, and the process of reversing and auditing.
Style and approach
This fast-paced and practical guide takes a step-by-step approach to penetration testing with the goal of helping you secure your iOS devices and apps quickly.
商品描述(中文翻譯)
保護您的iOS應用程式並發現隱藏的漏洞,進行滲透測試
關於本書
- 通過這本節奏快速的手冊,實現保護iOS設備和應用程式的目標
- 通過這本以實例驅動的指南,找到iOS應用程式中的漏洞並修復它們
- 獲得關鍵技能,以更大的信心和更深入的理解進行iOS利用和取證
本書適合對象
本書適合希望進行應用程式安全測試的IT安全專業人員。本書將讓您接觸到各種工具,以進行滲透測試。本書還適合希望保護其應用程式的iOS開發人員,以及安全專業人員。對於沒有iOS滲透測試經驗的任何人來說,本書都很容易理解。
您將學到什麼
- 了解iOS應用程式開發、部署、安全架構、應用程式簽名、應用程式沙盒和移動端OWASP前十名的基礎知識
- 設置iOS應用程式滲透測試實驗室,並識別本地存儲的敏感信息
- 對iOS設備進行流量分析,並捕獲通過側通道洩漏的敏感數據
- 使用運行時分析修改應用程式的行為
- 分析應用程式的二進制文件以進行安全保護
- 獲取利用iOS設備所需的知識
- 學習iOS取證的基礎知識
詳細內容
iOS已成為最受歡迎的移動操作系統之一,iOS應用程式商店中提供了超過140萬個應用程式。這些應用程式或系統中的一些安全弱點可能意味著攻擊者可以獲取設備並檢索敏感信息。本書將向您展示如何對iOS設備進行各種滲透測試,以發現漏洞並加強系統的防禦能力。
《學習iOS滲透測試》討論了iOS應用程式和操作系統中常見的漏洞和安全缺陷,並將教您進行iOS應用程式的靜態和動態分析。
這本實用指南將幫助您發現iOS手機和應用程式中的漏洞。我們從iOS安全的基礎知識開始,深入研究流量分析、代碼分析和其他各種技術。隨後,我們討論了各種實用工具,以及反向工程和審計的過程。
風格和方法
這本節奏快速、實用的指南以逐步的方式進行滲透測試,旨在幫助您快速保護iOS設備和應用程式。