Advanced Testing Techniques & Vulnerabilities null Bangalore Humla 19 April 2025 iOS Pentesting Workshop
Abstract
● Bypassing Advanced Jailbreak Detection Using (Swift, Cordova, Flutter & XAMARIN):
○ 14+ Tweaks
○ Frida & Custom Script Creation
○ Objection
○ Custom Hooking
● Intercepting iOS application traffic
● Understanding Certificate Pinning
● Bypassing Certificate Pinning Using:
○ Tweaks
○ Frida
○ Objection
● Intercepting Traffic from Flutter Applications
● Bypassing Certificate Pinning on Flutter Apps (Multiple Methods)
● Bypassing Certificate Pinning on XAMARIN Apps
● Capturing HTTP/HTTPS Traffic Without Bypassing Certificate Pinning
● Reversing iOS application (Swift, Cordova, Flutter & XAMARIN)
● DeepLink Exploitation: (Multiple Vulnerabilities)Pentesting on non-jailbroken iDevices:
● Evaluating Local Storage Security Risks on Non-Jailbroken iOS Devices
● Exploring Frida & Objection on Non-Jailbroken Devices:
○ By Patching the Application
○ Without Patching the Application
Speaker
Timing
Starts at Saturday April 19 2025, 01:45 PM. The sessions runs for about 3 hours.