Title: Mobile Device Exploitation Cookbook
Publisher: Packt Publishing
Publication Date: 2016
Language: English
ISBN 10: 1783558725
ISBN 13: 9781783558728
Binding: Taschenbuch
Condition: Neu
Dimensions: 235 millimeters width by 191 millimeters height by 13 millimeters depth
Weight: 438 grams

About this title

Synopsis

Over 40 recipes to master mobile device penetration testing with open source tools

About This Book

Learn application exploitation for popular mobile platforms
Improve the current security level for mobile platforms and applications
Discover tricks of the trade with the help of code snippets and screenshots

Who This Book Is For

This book is intended for mobile security enthusiasts and penetration testers who wish to secure mobile devices to prevent attacks and discover vulnerabilities to protect devices.

What You Will Learn

Install and configure Android SDK and ADB
Analyze Android Permission Model using ADB and bypass Android Lock Screen Protection
Set up the iOS Development Environment - Xcode and iOS Simulator
Create a Simple Android app and iOS app and run it in Emulator and Simulator respectively
Set up the Android and iOS Pentesting Environment
Explore mobile malware, reverse engineering, and code your own malware
Audit Android and iOS apps using static and dynamic analysis
Examine iOS App Data storage and Keychain security vulnerabilities
Set up the Wireless Pentesting Lab for Mobile Devices
Configure traffic interception with Android and intercept Traffic using Burp Suite and Wireshark
Attack mobile applications by playing around with traffic and SSL certificates
Set up the Blackberry and Windows Phone Development Environment and Simulator
Setting up the Blackberry and Windows Phone Pentesting Environment
Steal data from Blackberry and Windows phones applications

In Detail

Mobile attacks are on the rise. We are adapting ourselves to new and improved smartphones, gadgets, and their accessories, and with this network of smart things, come bigger risks. Threat exposure increases and the possibility of data losses increase. Exploitations of mobile devices are significant sources of such attacks.

Mobile devices come with different platforms, such as Android and iOS. Each platform has its own feature-set, programming language, and a different set of tools. This means that each platform has different exploitation tricks, different malware, and requires a unique approach in regards to forensics or penetration testing. Device exploitation is a broad subject which is widely discussed, equally explored by both Whitehats and Blackhats.

This cookbook recipes take you through a wide variety of exploitation techniques across popular mobile platforms. The journey starts with an introduction to basic exploits on mobile platforms and reverse engineering for Android and iOS platforms. Setup and use Android and iOS SDKs and the Pentesting environment. Understand more about basic malware attacks and learn how the malware are coded. Further, perform security testing of Android and iOS applications and audit mobile applications via static and dynamic analysis.

Moving further, you'll get introduced to mobile device forensics. Attack mobile application traffic and overcome SSL, before moving on to penetration testing and exploitation.

The book concludes with the basics of platforms and exploit tricks on BlackBerry and Windows Phone. By the end of the book, you will be able to use variety of exploitation techniques across popular mobile platforms with stress on Android and iOS.

Style and approach

This is a hands-on recipe guide that walks you through different aspects of mobile device exploitation and securing your mobile devices against vulnerabilities. Recipes are packed with useful code snippets and screenshots.

About the Authors

Prashant Verma, Certified Information Systems Security Professional (CISSP) is a Sr. Practice Manager―Security Testing at Paladion Networks. Information security has been his interest and research area for the past 10 years. He has been involved with mobile security since 2008. One of his career achievements has been to establish mobile security as a service at Paladion Networks. He loves to share his knowledge, research, and experience via training, workshops, and guest lectures. He has spoken at premier global security conferences such as OWASP Asia Pacific 2012 in Sydney and RSA Conference Asia Pacific and Japan 2014 in Singapore. He has shared his knowledge via webinars and trainings. He is primary security consultant for leading financial institutions. His banking security experience was translated into his co-authored book Security Testing Handbook for Banking Applications, IT Governance Publishing. He has written articles for Hacki9 and Palizine Magazine. Beyond mobile platforms, he holds expertise in various other areas of InfoSec, such as Security Testing, Security Management and Consulting. He has occasionally, analyzed security incidents and cybercrimes. He has conducted assessments for organizations globally at multiple locations. He is a subject matter expert and his work has earned him a distinguished position with his customers. He can be contacted at verma.prashantkumar@gmail.com. His Twitter handle is @prashantverma21. He occasionally writes on his personal blog at www.prashantverma21.blogspot.in.

Akshay Dixit is an information security specialist, consultant, speaker, researcher, and entrepreneur. He has been providing consulting services in information security to various government and business establishments, specializing in mobile and web security. Akshay is an active researcher in the field of mobile security. He has developed various commercial and in-house tools and utilities for the security assessment of mobile devices and applications. His current research involves artificial intelligence and mobile device exploitation. He has been invited to several international conferences to give training, talks and workshops. He has written articles for various blogs and magazines on topics such as mobile security, social engineering, and web exploitation. Akshay co-founded and currently holds the position of Chief Technology Officer at Anzen Technologies, an information security consulting firm specializing in providing end-to-end security services. Anzen Technologies (http://www.anzentech.com) is a one-stop solution for industry-leading services, solutions and products in the cyber security, IT governance, risk management, and compliance space. Anzen's vision is to instill end-to-end security in organizations, aligned to their business requirements, in order to ensure their lasting success.

"About this title" may belong to another edition of this title.

Store Description

Das Unternehmen AHA-BUCH GmbH: Seit der Gr�ndung von AHA-BUCH im Juli 2005 ist unser Hauptziel, zufriedenen Kunden so schnell und so preisg�nstig wie m�glich ihren B�cherwunsch zu erf�llen. Unsere Firma besch�ftigt 16 Mitarbeiter, die nur ein Ziel kennen: den Kunden und seine W�nsche! Auf �ber 3700 m2 Fl�che haben wir �ber 100.000 B�cher, Modernes Antiquariat und Spiele auf Lager.

Visit Seller's Storefront

Seller's business information

AHA-BUCH GmbH
Garlebsen 48, Einbeck, 37574, Germany

Sale & Shipping Terms

Terms of Sale

General Terms and Conditions and Customer Information / Privacy Policy

I. General Terms and Conditions

� 1 Basic provisions

(1) The following terms and conditions apply to all contracts that you conclude with us as a provider (AHA-BUCH GmbH) via the Internet platforms AbeBooks and/or ZVAB. Unless otherwise agreed, the inclusion of any of your own terms and conditions used by you will be objected to

(2) A consumer within the meaning of the following regulations is any natural person who concludes...

More Information

Right of cancellation

**Right of withdrawal for consumers **

(A consumer is any natural person who concludes a legal transaction for purposes that can predominantly be attributed neither to their commercial nor their independent professional activity.)

Cancellation
Withdrawal
You have the right to revoke this contract within fourteen days without giving reasons.
The revocation period is fourteen days from the day,

on which you or a third party named by you, who is not the carrier, has taken possession of the goods, provided that you have ordered one or more goods within the framework of a uniform order and these are or will be delivered uniformly;
on which you or a third party named by you, who is not the carrier, has taken possession of the last goods, provided that you have ordered several goods within the framework of a single order and these are delivered separately;
on which you or a third party named by you, who is not the carrier, has taken possession of the last partial shipment or the last piece, provided that you have ordered goods that are delivered in several partial shipments or pieces;

In order to exercise your right of withdrawal, you must inform us (AHA-BUCH GmbH, Garlebsen 48, 37574 Einbeck, telephone number: 05563 9996039, fax number: 05563 9995974, e-mail address: service@aha-buch.de) of your decision to revoke this contract by means of a clear declaration (e.B. a letter sent by post, fax or e-mail). You can use the attached model withdrawal form, but this is not mandatory.

To comply with the revocation period, it is sufficient that you send the notification of the exercise of the right of revocation before the expiry of the revocation period.

Consequences of revocation

If you withdraw from this contract, we shall reimburse you all payments that we have received from you, including delivery costs (with the exception of the additional costs resulting from the fact that you have chosen a different type of delivery than the cheapest standard delivery offered by us), immediately and at the latest within fourteen days from the day on which we received the notification of your revocation of this contract.
For this repayment, we will use the same means of payment that you used for the original transaction, unless expressly agreed otherwise with you; in no case will you be charged any fees for this repayment.

We may withhold reimbursement until we have received the goods back or until you have provided proof that you have returned the goods, whichever is the earlier.

You must return or hand over the goods to us immediately and in any case at the latest within fourteen days from the day on which you inform us of the revocation of this contract. The deadline is met if you send the goods before the expiry of the period of fourteen days.

You bear the direct costs of returning the goods.

You only have to pay for any loss of value of the goods if this loss of value is due to handling of the goods that is not necessary to check the nature, characteristics and functioning of the goods.

Reasons for exclusion or extinction

The right of revocation does not apply to contracts

for the delivery of goods which are not prefabricated and for the manufacture of which an individual choice or determination by the consumer is decisive or which are clearly tailored to the personal needs of the consumer;
for the delivery of goods that can spoil quickly or whose expiry date would be exceeded quickly;
for the delivery of alcoholic beverages, the price of which was agreed at the time of conclusion of the contract, but which can be delivered at the earliest 30 days after conclusion of the contract and whose current value depends on fluctuations in the market over which the entrepreneur has no influence;
for the delivery of newspapers, magazines or magazines with the exception of subscription contracts.

The right of revocation expires prematurely in the case of contracts

for the delivery of sealed goods that are not suitable for return for reasons of health protection or hygiene, if their seal has been removed after delivery;
for the delivery of goods if they have been inseparably mixed with other goods after delivery due to their nature;
for the delivery of sound or video recordings or computer software in a sealed package, if the seal has been removed after delivery.

Sample withdrawal form

(If you want to cancel the contract, please fill out this form and send it back.)

To AHA-BUCH GmbH, Garlebsen 48, 37574 Einbeck, fax number: 05563 9995974, e-mail address: service@aha-buch.de :
I/we () hereby revoke the contract concluded by me/us () for the purchase of the following goods ()/
the provision of the following service ()
Ordered on ()/ received on ()
Name of the consumer(s)
Address of the consumer(s)
Signature of the consumer(s) (only in case of notification on paper)
Date

(*) Delete as appropriate.

Shipping Terms

We ship your order after we received them
for articles on hand latest 24 hours,
for articles with overnight supply latest 48 hours.
In case we need to order an article from our supplier our dispatch time depends on the reception date of the articles, but the articles will be shipped on the same day.

Our goal is to send the ordered articles in the fastest, but also most efficient and secure way to our customers.

Shipping rates from Germany to U.S.A.

Shipping rates from Germany to U.S.A.
Order quantity	30 to 40 business days	7 to 14 business days
First item	� 54.51	� 63.28

Delivery times are set by sellers and vary by carrier and location. Orders passing through Customs may face delays and buyers are responsible for any associated duties or fees. Sellers may contact you regarding additional charges to cover any increased costs to ship your items.

Detailed Seller Information