25.10.0
This website uses cookies to ensure you get the best experience on our website. Learn more
Blackhat logoBlackhat logo
Black Hat

Offensive Mobile Reversing and Exploitation [4108]

Luís Guerra

After running sold-out trainings at multiple conferences over the last few years, we are back with an updated version of our course which now covers ARM64, mobile browser security, and detailed Mobile apps and operating system security. The class starts with a basic introduction to the ARM instruction set and calling conventions followed by some reverse engineering exercises. We then learn how to craft simple exploits for the ARM64 environment. Next, we move to Mobile browser security, understand some of the browser mitigations followed by writing some simple exploits for the mobile browser. We then cover iOS and Android internals in further detail. We then discuss some of the exploitation techniques using real-world vulnerabilities (e.g., voucher_swap, checkm8, etc) followed by a walkthrough of how jailbreaks are written. We also discuss some of the common vulnerability types (Heap Overflows, Use-after-free, Uninitialized Stack variable, Race conditions). The training then moves on to application security based on exploiting the Damn Vulnerable iOS app, Android-InsecureBankv2, and InsecurePass application written by the authors of this course in addition to a broad range of other real-world applications. We also cover a variety of mitigations deployed in real-world apps and discuss how to bypass them. The course then covers the kernel exploitation and details for both Android and iOS platforms along with steps for breaking into Mobile Kernel exploitation. Slides, videos and detailed documentation on the labs will be provided to the students for practice after the class. Corellium access will be provided to students during the duration of the training course.

Summary

  • Fully updated for iOS 17 and Android 14

  • Get 30 Days of Lab Access to our VMs

  • Virtual Devices on iOS and Android using Corellium

  • Get Certified as Mobile Security Expert

  • Learn Reverse Engineering Mobile Apps from Scratch

  • Learn Malware Reversing for iOS and Android

  • Learn the internals of iOS and Android Kernel and their mitigations

  • Learn Penetration Testing of iOS and Android apps

  • Get an understanding of ARM64 architecture

  • Learn Advanced Binary Instrumentation techniques using Frida

  • Learn how to set up your own Mobile Research Environment

Skills / Knowledge

  • Mobile
  • AppSec

Issued on

December 12, 2024

Expires on

Does not expire