Mobile Application Security Training
Key Concepts in the Mobile World
- Description Mobile World
- Operating System and Platform at Mobile World
- BlackBerry, Windows Mobile, Android, iOS, Symbian
- MDM(Mobile Device Management) Kavramı
- Brought byoder Concepts and Risks for Corporate Environments
- Mobile Security Report for the year 2012
Android, iOS Introduction to the World
- Anrdoid Operating System Basics
- Safety Hazards Android, iOS Comparison
- Build Environment for Mobile Application Security Audit
- Creating a test environment on the iPhone and iPad
- iOS SDK Yükleme, XCode Ayarları
- IPhone simulator running on XCode
- IPad simulator to run through XCode
- iPad / iPhone applications to decompile
- Jabilbreak concept, Returns and Risks
- Creating a Test Environment for Android Apps
- Android Emulator Setup and Management (adb)
Mobile Application Security Controls Headlines
- Data collection
- Dinamik Analiz
- Statik Analiz
- Information Gathering Steps
- Determination of Ideas Communication Methods
- -Wifi, -NFC, -GSM, -3G, -Bluetooth
- Among the protocols used for client-server Communications Security Analysis
- Determination of open systems applications that communicate
- Required Components for Dynamic Analysis
Mobile Application Testing Tools
- Çýkmýþ security Weaknesses in Mobile Systems
- Ideas and Parameter Manipulation of intervention
Owasp Top 10 Mobile App. Security Denetimi
- M1: Insecure Data Storage
- M2: Weak Server Side Controls
- M3: Insufficient Transport Layer Protection
- M4: Client Side Injection
- M5: Poor Authorization and Authentication
- M6: Improper Session Handling
- M7: Security Decisions Via Untrusted Inputs
- M8: Side Channel Data Leakage
- M9: Broken Cryptography
- M10: Sensitive Information Disclosure
Required Components for Static Analysis
- Mobile Application Source Code Control
- Mobile Application Binary (binary) Analysis
- Ideas Decompile Operations
- Tools Used for Source Code Analysis
- Commercial vehicles
- Open source, free tools
- Tools for Binary Analysis Purposes
- The Basics of Computer Forensics Analysis for Mobile Systems
- Malware Analysis Methods in Mobile Systems