Enviar búsqueda
Cargar
objection - runtime mobile exploration
•
3 recomendaciones
•
1,976 vistas
SensePost
Seguir
Slides for 0xcon 2017 talk about objection by @leonjza.
Leer menos
Leer más
Móvil
Denunciar
Compartir
Denunciar
Compartir
1 de 22
Descargar ahora
Descargar para leer sin conexión
Recomendados
Event loop
Event loop
codepitbull
Don’t block the event loop!
Don’t block the event loop!
hujinpu
All you need to know about the JavaScript event loop
All you need to know about the JavaScript event loop
Saša Tatar
JavaScript Engines and Event Loop
JavaScript Engines and Event Loop
Tapan B.K.
Async java8
Async java8
Murali Pachiyappan
톰캣 #04-환경설정
톰캣 #04-환경설정
GyuSeok Lee
ECMAScript 6
ECMAScript 6
偉格 高
Avoiding Callback Hell with Async.js
Avoiding Callback Hell with Async.js
cacois
Recomendados
Event loop
Event loop
codepitbull
Don’t block the event loop!
Don’t block the event loop!
hujinpu
All you need to know about the JavaScript event loop
All you need to know about the JavaScript event loop
Saša Tatar
JavaScript Engines and Event Loop
JavaScript Engines and Event Loop
Tapan B.K.
Async java8
Async java8
Murali Pachiyappan
톰캣 #04-환경설정
톰캣 #04-환경설정
GyuSeok Lee
ECMAScript 6
ECMAScript 6
偉格 高
Avoiding Callback Hell with Async.js
Avoiding Callback Hell with Async.js
cacois
Go for Rubyists
Go for Rubyists
Luka Zakrajšek
Coroutines talk ppt
Coroutines talk ppt
Shahroz Khan
Node js presentation
Node js presentation
martincabrera
BOSH deploys distributed systems, and Diego runs any containers
BOSH deploys distributed systems, and Diego runs any containers
Benjamin Gandon
libuv, NodeJS and everything in between
libuv, NodeJS and everything in between
Saúl Ibarra Corretgé
G*なクラウド 雲のかなたに ショートバージョン
G*なクラウド 雲のかなたに ショートバージョン
Tsuyoshi Yamamoto
Puppet and Openshift
Puppet and Openshift
Gareth Rushgrove
How NOT to write in Node.js
How NOT to write in Node.js
Piotr Pelczar
HTML5 video filters
HTML5 video filters
Artigiani del Web
Nodejs intro
Nodejs intro
Ndjido Ardo BAR
Modern frontend in react.js
Modern frontend in react.js
Abdulsattar Mohammed
OS-autoinst: Testing with Perl and openCV
OS-autoinst: Testing with Perl and openCV
Alex-P. Natsios
Introduction to node.js
Introduction to node.js
jacekbecela
Binary Studio Academy: Concurrency in C# 5.0
Binary Studio Academy: Concurrency in C# 5.0
Binary Studio
Scalable Angular 2 Application Architecture
Scalable Angular 2 Application Architecture
FDConf
How to Write Node.js Module
How to Write Node.js Module
Fred Chien
Nevyn — Promise, It's Async! Swift Language User Group Lightning Talk 2015-09-24
Nevyn — Promise, It's Async! Swift Language User Group Lightning Talk 2015-09-24
Joachim Bengtsson
Functional Operations (Functional Programming at Comcast Labs Connect)
Functional Operations (Functional Programming at Comcast Labs Connect)
Susan Potter
Event Loop in Javascript
Event Loop in Javascript
DiptiGandhi4
Laravel Day / Deploy
Laravel Day / Deploy
Simone Gentili
Catch a spider monkey
Catch a spider monkey
ChengHui Weng
Eric Lafortune - The Jack and Jill build system
Eric Lafortune - The Jack and Jill build system
GuardSquare
Más contenido relacionado
La actualidad más candente
Go for Rubyists
Go for Rubyists
Luka Zakrajšek
Coroutines talk ppt
Coroutines talk ppt
Shahroz Khan
Node js presentation
Node js presentation
martincabrera
BOSH deploys distributed systems, and Diego runs any containers
BOSH deploys distributed systems, and Diego runs any containers
Benjamin Gandon
libuv, NodeJS and everything in between
libuv, NodeJS and everything in between
Saúl Ibarra Corretgé
G*なクラウド 雲のかなたに ショートバージョン
G*なクラウド 雲のかなたに ショートバージョン
Tsuyoshi Yamamoto
Puppet and Openshift
Puppet and Openshift
Gareth Rushgrove
How NOT to write in Node.js
How NOT to write in Node.js
Piotr Pelczar
HTML5 video filters
HTML5 video filters
Artigiani del Web
Nodejs intro
Nodejs intro
Ndjido Ardo BAR
Modern frontend in react.js
Modern frontend in react.js
Abdulsattar Mohammed
OS-autoinst: Testing with Perl and openCV
OS-autoinst: Testing with Perl and openCV
Alex-P. Natsios
Introduction to node.js
Introduction to node.js
jacekbecela
Binary Studio Academy: Concurrency in C# 5.0
Binary Studio Academy: Concurrency in C# 5.0
Binary Studio
Scalable Angular 2 Application Architecture
Scalable Angular 2 Application Architecture
FDConf
How to Write Node.js Module
How to Write Node.js Module
Fred Chien
Nevyn — Promise, It's Async! Swift Language User Group Lightning Talk 2015-09-24
Nevyn — Promise, It's Async! Swift Language User Group Lightning Talk 2015-09-24
Joachim Bengtsson
Functional Operations (Functional Programming at Comcast Labs Connect)
Functional Operations (Functional Programming at Comcast Labs Connect)
Susan Potter
Event Loop in Javascript
Event Loop in Javascript
DiptiGandhi4
Laravel Day / Deploy
Laravel Day / Deploy
Simone Gentili
La actualidad más candente
(20)
Go for Rubyists
Go for Rubyists
Coroutines talk ppt
Coroutines talk ppt
Node js presentation
Node js presentation
BOSH deploys distributed systems, and Diego runs any containers
BOSH deploys distributed systems, and Diego runs any containers
libuv, NodeJS and everything in between
libuv, NodeJS and everything in between
G*なクラウド 雲のかなたに ショートバージョン
G*なクラウド 雲のかなたに ショートバージョン
Puppet and Openshift
Puppet and Openshift
How NOT to write in Node.js
How NOT to write in Node.js
HTML5 video filters
HTML5 video filters
Nodejs intro
Nodejs intro
Modern frontend in react.js
Modern frontend in react.js
OS-autoinst: Testing with Perl and openCV
OS-autoinst: Testing with Perl and openCV
Introduction to node.js
Introduction to node.js
Binary Studio Academy: Concurrency in C# 5.0
Binary Studio Academy: Concurrency in C# 5.0
Scalable Angular 2 Application Architecture
Scalable Angular 2 Application Architecture
How to Write Node.js Module
How to Write Node.js Module
Nevyn — Promise, It's Async! Swift Language User Group Lightning Talk 2015-09-24
Nevyn — Promise, It's Async! Swift Language User Group Lightning Talk 2015-09-24
Functional Operations (Functional Programming at Comcast Labs Connect)
Functional Operations (Functional Programming at Comcast Labs Connect)
Event Loop in Javascript
Event Loop in Javascript
Laravel Day / Deploy
Laravel Day / Deploy
Similar a objection - runtime mobile exploration
Catch a spider monkey
Catch a spider monkey
ChengHui Weng
Eric Lafortune - The Jack and Jill build system
Eric Lafortune - The Jack and Jill build system
GuardSquare
Hipster oriented programming (Mobilization Lodz 2015)
Hipster oriented programming (Mobilization Lodz 2015)
Jens Ravens
Play framework
Play framework
Andrew Skiba
JavaScript Growing Up
JavaScript Growing Up
David Padbury
A new execution model for Nashorn in Java 9
A new execution model for Nashorn in Java 9
Marcus Lagergren
LyonJUG : Comment Jigsaw est prêt à tuer le classpath
LyonJUG : Comment Jigsaw est prêt à tuer le classpath
Alexis Hassler
LyonJUG : Comment Jigsaw est prêt à tuer le classpath
LyonJUG : Comment Jigsaw est prêt à tuer le classpath
Alexis Hassler
DevFest Nantes 2016 - Jigsaw est prêt à tuer le classpath Java
DevFest Nantes 2016 - Jigsaw est prêt à tuer le classpath Java
Alexis Hassler
Nantes Jug - Java 7
Nantes Jug - Java 7
Sébastien Prunier
Cocoaheads Stockholm 2014-02: Writing your own jailbreak tweak
Cocoaheads Stockholm 2014-02: Writing your own jailbreak tweak
Joachim Bengtsson
HTML5 for the Silverlight Guy
HTML5 for the Silverlight Guy
David Padbury
OSGi and Eclipse RCP
OSGi and Eclipse RCP
Eric Jain
React native
React native
Mohammed El Rafie Tarabay
What`s new in Java 7
What`s new in Java 7
Georgian Micsa
XebiCon'17 : Faites chauffer les neurones de votre Smartphone avec du Deep Le...
XebiCon'17 : Faites chauffer les neurones de votre Smartphone avec du Deep Le...
Publicis Sapient Engineering
Painless JavaScript Testing with Jest
Painless JavaScript Testing with Jest
Michał Pierzchała
Writing your Third Plugin
Writing your Third Plugin
Justin Ryan
Intro to HTML5
Intro to HTML5
Jussi Pohjolainen
BATTLESTAR GALACTICA : Saison 5 - Les Cylons passent dans le cloud avec Vert....
BATTLESTAR GALACTICA : Saison 5 - Les Cylons passent dans le cloud avec Vert....
La Cuisine du Web
Similar a objection - runtime mobile exploration
(20)
Catch a spider monkey
Catch a spider monkey
Eric Lafortune - The Jack and Jill build system
Eric Lafortune - The Jack and Jill build system
Hipster oriented programming (Mobilization Lodz 2015)
Hipster oriented programming (Mobilization Lodz 2015)
Play framework
Play framework
JavaScript Growing Up
JavaScript Growing Up
A new execution model for Nashorn in Java 9
A new execution model for Nashorn in Java 9
LyonJUG : Comment Jigsaw est prêt à tuer le classpath
LyonJUG : Comment Jigsaw est prêt à tuer le classpath
LyonJUG : Comment Jigsaw est prêt à tuer le classpath
LyonJUG : Comment Jigsaw est prêt à tuer le classpath
DevFest Nantes 2016 - Jigsaw est prêt à tuer le classpath Java
DevFest Nantes 2016 - Jigsaw est prêt à tuer le classpath Java
Nantes Jug - Java 7
Nantes Jug - Java 7
Cocoaheads Stockholm 2014-02: Writing your own jailbreak tweak
Cocoaheads Stockholm 2014-02: Writing your own jailbreak tweak
HTML5 for the Silverlight Guy
HTML5 for the Silverlight Guy
OSGi and Eclipse RCP
OSGi and Eclipse RCP
React native
React native
What`s new in Java 7
What`s new in Java 7
XebiCon'17 : Faites chauffer les neurones de votre Smartphone avec du Deep Le...
XebiCon'17 : Faites chauffer les neurones de votre Smartphone avec du Deep Le...
Painless JavaScript Testing with Jest
Painless JavaScript Testing with Jest
Writing your Third Plugin
Writing your Third Plugin
Intro to HTML5
Intro to HTML5
BATTLESTAR GALACTICA : Saison 5 - Les Cylons passent dans le cloud avec Vert....
BATTLESTAR GALACTICA : Saison 5 - Les Cylons passent dans le cloud avec Vert....
Más de SensePost
Vulnerabilities in TN3270 based Application
Vulnerabilities in TN3270 based Application
SensePost
Ruler and Liniaal @ Troopers 17
Ruler and Liniaal @ Troopers 17
SensePost
Introducing (DET) the Data Exfiltration Toolkit
Introducing (DET) the Data Exfiltration Toolkit
SensePost
ZaCon 2015 - Zombie Mana Attacks
ZaCon 2015 - Zombie Mana Attacks
SensePost
Improvement in Rogue Access Points - SensePost Defcon 22
Improvement in Rogue Access Points - SensePost Defcon 22
SensePost
Heartbleed Overview
Heartbleed Overview
SensePost
Botconf 2013 - DNS-based Botnet C2 Server Detection
Botconf 2013 - DNS-based Botnet C2 Server Detection
SensePost
Rat a-tat-tat
Rat a-tat-tat
SensePost
Hacking Z-Wave Home Automation Systems
Hacking Z-Wave Home Automation Systems
SensePost
Offence oriented Defence
Offence oriented Defence
SensePost
Threats to machine clouds
Threats to machine clouds
SensePost
Inside .NET Smart Card Operating System
Inside .NET Smart Card Operating System
SensePost
SNMP : Simple Network Mediated (Cisco) Pwnage
SNMP : Simple Network Mediated (Cisco) Pwnage
SensePost
Its Ok To Get Hacked
Its Ok To Get Hacked
SensePost
Web Application Hacking
Web Application Hacking
SensePost
Putting the tea back into cyber terrorism
Putting the tea back into cyber terrorism
SensePost
Major global information security trends - a summary
Major global information security trends - a summary
SensePost
Attacks and Defences
Attacks and Defences
SensePost
Corporate Threat Modeling v2
Corporate Threat Modeling v2
SensePost
State of the information security nation
State of the information security nation
SensePost
Más de SensePost
(20)
Vulnerabilities in TN3270 based Application
Vulnerabilities in TN3270 based Application
Ruler and Liniaal @ Troopers 17
Ruler and Liniaal @ Troopers 17
Introducing (DET) the Data Exfiltration Toolkit
Introducing (DET) the Data Exfiltration Toolkit
ZaCon 2015 - Zombie Mana Attacks
ZaCon 2015 - Zombie Mana Attacks
Improvement in Rogue Access Points - SensePost Defcon 22
Improvement in Rogue Access Points - SensePost Defcon 22
Heartbleed Overview
Heartbleed Overview
Botconf 2013 - DNS-based Botnet C2 Server Detection
Botconf 2013 - DNS-based Botnet C2 Server Detection
Rat a-tat-tat
Rat a-tat-tat
Hacking Z-Wave Home Automation Systems
Hacking Z-Wave Home Automation Systems
Offence oriented Defence
Offence oriented Defence
Threats to machine clouds
Threats to machine clouds
Inside .NET Smart Card Operating System
Inside .NET Smart Card Operating System
SNMP : Simple Network Mediated (Cisco) Pwnage
SNMP : Simple Network Mediated (Cisco) Pwnage
Its Ok To Get Hacked
Its Ok To Get Hacked
Web Application Hacking
Web Application Hacking
Putting the tea back into cyber terrorism
Putting the tea back into cyber terrorism
Major global information security trends - a summary
Major global information security trends - a summary
Attacks and Defences
Attacks and Defences
Corporate Threat Modeling v2
Corporate Threat Modeling v2
State of the information security nation
State of the information security nation
Último
Powerful Love Spells in Arkansas, AR (310) 882-6330 Bring Back Lost Lover
Powerful Love Spells in Arkansas, AR (310) 882-6330 Bring Back Lost Lover
PsychicRuben LoveSpells
CALL ON ➥8923113531 🔝Call Girls Saharaganj Lucknow best sexual service
CALL ON ➥8923113531 🔝Call Girls Saharaganj Lucknow best sexual service
anilsa9823
Call US Pooja 9892124323 ✓Call Girls In Mira Road ( Mumbai ) secure service,
Call US Pooja 9892124323 ✓Call Girls In Mira Road ( Mumbai ) secure service,
Pooja Nehwal
BDSM⚡Call Girls in Sector 71 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 71 Noida Escorts >༒8448380779 Escort Service
Delhi Call girls
CALL ON ➥8923113531 🔝Call Girls Gomti Nagar Lucknow best Night Fun service
CALL ON ➥8923113531 🔝Call Girls Gomti Nagar Lucknow best Night Fun service
anilsa9823
9892124323 | Book Call Girls in Juhu and escort services 24x7
9892124323 | Book Call Girls in Juhu and escort services 24x7
Pooja Nehwal
FULL ENJOY - 9999218229 Call Girls in {Mahipalpur}| Delhi NCR
FULL ENJOY - 9999218229 Call Girls in {Mahipalpur}| Delhi NCR
nishacall1
Último
(7)
Powerful Love Spells in Arkansas, AR (310) 882-6330 Bring Back Lost Lover
Powerful Love Spells in Arkansas, AR (310) 882-6330 Bring Back Lost Lover
CALL ON ➥8923113531 🔝Call Girls Saharaganj Lucknow best sexual service
CALL ON ➥8923113531 🔝Call Girls Saharaganj Lucknow best sexual service
Call US Pooja 9892124323 ✓Call Girls In Mira Road ( Mumbai ) secure service,
Call US Pooja 9892124323 ✓Call Girls In Mira Road ( Mumbai ) secure service,
BDSM⚡Call Girls in Sector 71 Noida Escorts >༒8448380779 Escort Service
BDSM⚡Call Girls in Sector 71 Noida Escorts >༒8448380779 Escort Service
CALL ON ➥8923113531 🔝Call Girls Gomti Nagar Lucknow best Night Fun service
CALL ON ➥8923113531 🔝Call Girls Gomti Nagar Lucknow best Night Fun service
9892124323 | Book Call Girls in Juhu and escort services 24x7
9892124323 | Book Call Girls in Juhu and escort services 24x7
FULL ENJOY - 9999218229 Call Girls in {Mahipalpur}| Delhi NCR
FULL ENJOY - 9999218229 Call Girls in {Mahipalpur}| Delhi NCR
objection - runtime mobile exploration
1.
0xcon 2017 📱objection RUNTIME MOBILE
EXPLORATION
2.
0xcon 2017 @leonjza @sensepost
3.
0xcon 2017
4.
0xcon 2017
5.
0xcon 2017 meh.
6.
0xcon 2017 - Ole
André Vadla Ravnås (@oleavr) - dynamic instrumentation toolkit - injects chrome v8 (or duktape) into process - instrumentation done using JavaScript - basically magic (no really.) frida
7.
0xcon 2017 ‘embedded mode’ (recently
added fully autonomous mode)
8.
0xcon 2017 demo(native function
hooking)
9.
0xcon 2017 objective-c (and java)
10.
0xcon 2017 @implementation JailbreakDetection +(BOOL)
isJailbroken { NSFileManager *fm = [NSFileManager defaultManager]; if ([fm fileExistsAtPath:@"/bin/bash"]) { return YES; } return NO; } @end
11.
0xcon 2017 var JailbreakDetection
= ObjC.classes.JailbreakDetection; Interceptor.attach( JailbreakDetection.isJailbroken.implementation, { onEnter: function (args) { // }, onLeave: function (retval) { retval.replace(0x0); } });
12.
0xcon 2017 demo(jailbreak detection
simulation/bypass)
13.
0xcon 2017 lets… inject
arbitrary code
14.
0xcon 2017 demo(nsuserdefaults extraction)
15.
0xcon 2017 📱objection bundled it
up, and called it… (object)inject(ion)
16.
0xcon 2017 - python3,
installable with pip3 - bundles ios and android hooks - ’compiles’ hooks with Jinja2 - can import arbitrary Frida scripts - do not need a jailbroken / rooted device internals
17.
0xcon 2017 thanks! 🎉
18.
0xcon 2017 demo(exploring the
filesystem)
19.
0xcon 2017 demo(ssl pinning
bypass)
20.
0xcon 2017 demo(class method
monitoring)
21.
0xcon 2017 - dump
process/module memory - interact with iOS keychain - bypass touchid* - monitor iOS pasteboard - extract iOS binary cookies and lots more!
22.
0xcon 2017 questions? https://github.com/sensepost/objection @leonjza /
@sensepost
Descargar ahora