The Mobile Application Hacker's Handbook (eBook)
816 Seiten
John Wiley & Sons (Verlag)
978-1-118-95851-3 (ISBN)
The Mobile Application Hacker's Handbook is a comprehensive guide to securing all mobile applications by approaching the issue from a hacker's point of view. Heavily practical, this book provides expert guidance toward discovering and exploiting flaws in mobile applications on the iOS, Android, Blackberry, and Windows Phone platforms. You will learn a proven methodology for approaching mobile application assessments, and the techniques used to prevent, disrupt, and remediate the various types of attacks. Coverage includes data storage, cryptography, transport layers, data leakage, injection attacks, runtime manipulation, security controls, and cross-platform apps, with vulnerabilities highlighted and detailed information on the methods hackers use to get around standard security.
Mobile applications are widely used in the consumer and enterprise markets to process and/or store sensitive data. There is currently little published on the topic of mobile security, but with over a million apps in the Apple App Store alone, the attack surface is significant. This book helps you secure mobile apps by demonstrating the ways in which hackers exploit weak points and flaws to gain access to data.
* Understand the ways data can be stored, and how cryptography is defeated
* Set up an environment for identifying insecurities and the data leakages that arise
* Develop extensions to bypass security controls and perform injection attacks
* Learn the different attacks that apply specifically to cross-platform apps
IT security breaches have made big headlines, with millions of consumers vulnerable as major corporations come under attack. Learning the tricks of the hacker's trade allows security professionals to lock the app up tight. For better mobile security and less vulnerable data, The Mobile Application Hacker's Handbook is a practical, comprehensive guide.
DOMINIC CHELL is a director of MDSec and a recognized expert in mobile security, providing training to leading global organizations. TYRONE ERASMUS is an expert on Android security and heads Mobile Practice at MWR InfoSecurity SA. SHAUN COLLEY is a security consultant and researcher at IOActive specializing in mobile security and reverse engineering. OLLIE WHITEHOUSE is Technical Director with NCC Group who has previously worked for BlackBerry and Symantec specialising in mobile security.
Introduction xxxi
Chapter 1 Mobile Application (In)security 1
Chapter 2 Analyzing iOS Applications 17
Chapter 3 Attacking iOS Applications 69
Chapter 4 Identifying iOS Implementation Insecurities 133
Chapter 5 Writing Secure iOS Applications 149
Chapter 6 Analyzing Android Applications 173
Chapter 7 Attacking Android Applications 247
Chapter 8 Identifying and Exploiting Android Implementation Issues 353
Chapter 9 Writing Secure Android Applications 427
Chapter 10 Analyzing Windows Phone Applications 459
Chapter 11 Attacking Windows Phone Applications 511
Chapter 12 Identifying Windows Phone Implementation Issues 587
Chapter 13 Writing Secure Windows Phone Applications 629
Chapter 14 Analyzing BlackBerry Applications 647
Chapter 15 Attacking BlackBerry Applications 681
Chapter 16 Identifying BlackBerry Application Issues 693
Chapter 17 Writing Secure BlackBerry Applications 705
Chapter 18 Cross?]Platform Mobile Applications 729
Index 743
"..there is a shocking lack of published material on the topic of mobile security. The Mobile Application Hacker's Handbook seeks to change this and be a positive movement to educating others in the topic of mobile security awareness." (Vigilance-Security Magazine, March 2015)
Erscheint lt. Verlag | 17.2.2015 |
---|---|
Sprache | englisch |
Themenwelt | Informatik ► Netzwerke ► Sicherheit / Firewall |
Schlagworte | Computer Science • Informatik • Networking / Security • Netzwerk • Netzwerke / Sicherheit • Netzwerksicherheit |
ISBN-10 | 1-118-95851-9 / 1118958519 |
ISBN-13 | 978-1-118-95851-3 / 9781118958513 |
Haben Sie eine Frage zum Produkt? |
Größe: 6,5 MB
Kopierschutz: Adobe-DRM
Adobe-DRM ist ein Kopierschutz, der das eBook vor Mißbrauch schützen soll. Dabei wird das eBook bereits beim Download auf Ihre persönliche Adobe-ID autorisiert. Lesen können Sie das eBook dann nur auf den Geräten, welche ebenfalls auf Ihre Adobe-ID registriert sind.
Details zum Adobe-DRM
Dateiformat: EPUB (Electronic Publication)
EPUB ist ein offener Standard für eBooks und eignet sich besonders zur Darstellung von Belletristik und Sachbüchern. Der Fließtext wird dynamisch an die Display- und Schriftgröße angepasst. Auch für mobile Lesegeräte ist EPUB daher gut geeignet.
Systemvoraussetzungen:
PC/Mac: Mit einem PC oder Mac können Sie dieses eBook lesen. Sie benötigen eine
eReader: Dieses eBook kann mit (fast) allen eBook-Readern gelesen werden. Mit dem amazon-Kindle ist es aber nicht kompatibel.
Smartphone/Tablet: Egal ob Apple oder Android, dieses eBook können Sie lesen. Sie benötigen eine
Geräteliste und zusätzliche Hinweise
Buying eBooks from abroad
For tax law reasons we can sell eBooks just within Germany and Switzerland. Regrettably we cannot fulfill eBook-orders from other countries.
aus dem Bereich