The Mobile Application Hacker’s Handbook 1st edition by Dominic Chell, Tyrone Erasmus, Shaun Colley, Ollie Whitehouse – Ebook PDF Instant Download/Delivery: 1118958500, 978-1118958506
Full download The Mobile Application Hacker’s Handbook 1st edition after payment
Product details:
ISBN 10: 1118958500
ISBN 13: 978-1118958506
Author: Dominic Chell, Tyrone Erasmus, Shaun Colley, Ollie Whitehouse
See your app through a hacker’s eyes to find the real sources of vulnerability
The Mobile Application Hacker’s Handbook is a comprehensive guide to securing all mobile applications by approaching the issue from a hacker’s point of view. Heavily practical, this book provides expert guidance toward discovering and exploiting flaws in mobile applications on the iOS, Android, Blackberry, and Windows Phone platforms. You will learn a proven methodology for approaching mobile application assessments, and the techniques used to prevent, disrupt, and remediate the various types of attacks. Coverage includes data storage, cryptography, transport layers, data leakage, injection attacks, runtime manipulation, security controls, and cross-platform apps, with vulnerabilities highlighted and detailed information on the methods hackers use to get around standard security.
Mobile applications are widely used in the consumer and enterprise markets to process and/or store sensitive data. There is currently little published on the topic of mobile security, but with over a million apps in the Apple App Store alone, the attack surface is significant. This book helps you secure mobile apps by demonstrating the ways in which hackers exploit weak points and flaws to gain access to data.
- Understand the ways data can be stored, and how cryptography is defeated
- Set up an environment for identifying insecurities and the data leakages that arise
- Develop extensions to bypass security controls and perform injection attacks
- Learn the different attacks that apply specifically to cross-platform apps
IT security breaches have made big headlines, with millions of consumers vulnerable as major corporations come under attack. Learning the tricks of the hacker’s trade allows security professionals to lock the app up tight. For better mobile security and less vulnerable data, The Mobile Application Hacker’s Handbook is a practical, comprehensive guide.
The Mobile Application Hacker’s Handbook 1st Table of contents:
Chapter 1 Mobile Application (In)security
The Evolution of Mobile Applications
Mobile Application Security
Summary
Chapter 2 Analyzing iOS Applications
Understanding the Security Model
Understanding iOS Applications
Jailbreaking Explained
Understanding the Data Protection API
Understanding the iOS Keychain
Understanding Touch ID
Reverse Engineering iOS Binaries
Summary
Chapter 3 Attacking iOS Applications
Introduction to Transport Security
Identifying Insecure Storage
Patching iOS Applications with Hopper
Attacking the iOS Runtime
Understanding Interprocess Communication
Attacking Using Injection
Summary
Chapter 4 Identifying iOS Implementation Insecurities
Disclosing Personally Identifiable Information
Identifying Data Leaks
Memory Corruption in iOS Applications
Summary
Chapter 5 Writing Secure iOS Applications
Protecting Data in Your Application
Avoiding Injection Vulnerabilities
Securing Your Application with Binary Protections
Summary
Chapter 6 Analyzing Android Applications
Creating Your First Android Environment
Understanding Android Applications
Understanding the Security Model
Reverse-Engineering Applications
Summary
Chapter 7 Attacking Android Applications
Exposing Security Model Quirks
Attacking Application Components
Accessing Storage and Logging
Misusing Insecure Communications
Exploiting Other Vectors
Additional Testing Techniques
Summary
Chapter 8 Identifying and Exploiting Android Implementation Issues
Reviewing Pre-Installed Applications
Exploiting Devices
Infiltrating User Data
Summary
Chapter 9 Writing Secure Android Applications
Principle of Least Exposure
Essential Security Mechanisms
Advanced Security Mechanisms
Slowing Down a Reverse Engineer
Summary
Chapter 10 Analyzing Windows Phone Applications
Understanding the Security Model
Understanding Windows Phone 8.x Applications
Building a Test Environment
Analyzing Application Binaries
Summary
Chapter 11 Attacking Windows Phone Applications
Analyzing for Data Entry Points
Attacking Transport Security
Attacking WebBrowser and WebView Controls
Identifying Interprocess Communication Vulnerabilities
Attacking XML Parsing
Attacking Databases
Attacking File Handling
Patching .NET Assemblies
Summary
Chapter 12 Identifying Windows Phone Implementation Issues
Identifying Insecure Application Settings Storage
Identifying Data Leaks
Identifying Insecure Data Storage
Insecure Random Number Generation
Insecure Cryptography and Password Use
Identifying Native Code Vulnerabilities
Summary
Chapter 13 Writing Secure Windows Phone Applications
General Security Design Considerations
Storing and Encrypting Data Securely
Secure Random Number Generation
Securing Data in Memory and Wiping Memory
Avoiding SQLite Injection
Implementing Secure Communications
Avoiding Cross-Site Scripting in WebViews and WebBrowser Components
Secure XML Parsing
Clearing Web Cache and Web Cookies
Avoiding Native Code Bugs
Using Exploit Mitigation Features
Summary
Chapter 14 Analyzing BlackBerry Applications
Understanding BlackBerry Legacy
Understanding BlackBerry 10
Understanding the BlackBerry 10 Security Model
BlackBerry 10 Jailbreaking
Using Developer Mode
The BlackBerry 10 Device Simulator
Accessing App Data from a Device
Accessing BAR Files
Looking at Applications
Summary
Chapter 15 Attacking BlackBerry Applications
Traversing Trust Boundaries
Summary
Chapter 16 Identifying BlackBerry Application Issues
Limiting Excessive Permissions
Resolving Data Storage Issues
Checking Data Transmission
Handling Personally Identifiable Information and Privacy
Ensuring Secure Development
Summary
Chapter 17 Writing Secure BlackBerry Applications
Securing BlackBerry OS 7.x and Earlier Legacy Java Applications
Securing BlackBerry 10 Native Applications
Securing BlackBerry 10 Cascades Applications
Securing BlackBerry 10 HTML5 and JavaScript (WebWorks) Applications
Securing Android Applications on BlackBerry 10
Summary
Chapter 18 Cross-Platform Mobile Applications
Introduction to Cross-Platform Mobile Applications
Bridging Native Functionality
Exploring PhoneGap and Apache Cordova
People also search for The Mobile Application Hacker’s Handbook 1st:
borrow the mobile application hacker’s handbook
the mobile application hacker’s handbook pdf
the mobile application hacker’s handbook pdf free download
the mobile application hacker’s handbook pdf download
the mobile application hacker’s handbook by dominic chell
Tags: Dominic Chell, Tyrone Erasmus, Shaun Colley, Ollie Whitehouse, The Mobile, Application Hacker’s