SOLUTIONS
> Side Channel Analysis
Ready-to-use side channel tools to assess cryptography algorithms.
> Fault Injection: Laser, EM & Glitching
Make sure your chip withstands different techniques of physical fault injections.
> Firmware Security Analysis
Qualify embedded code binaries without physical devices and benches.
> Security Failure Analysis
Photoemission analysis to explore internal information in a chip.
> Vulnerability Research
Dynamic analyses at a system level for investigating potential vulnerabilities.
> esDynamic for EDU SCA and FI
A learning center for academics to teach and perform side-channel analysis and fault injection
TECHNOLOGIES
> Data Science Platform
esDynamic is a complete data focused platform to leverage the know-how of your team for complex analyses.
> esFirmware Engine
Assess the security of the firmware of IoT devices against logical and physical attacks.
> esReven Engine
Record and replay vulnerability researches within reverse engineering processes and tools.
PROFESSIONAL SERVICES
> Cybersecurity Training
Grow your expertise with training modules driven by a coach.
> Hardware Evaluation Lab
High-end laboratory capabilities specialized in hardware security evaluations.
EXPERTISE
> Mobile App Security
Onboard your Team into your Security Challenges.
> DevSecOps
Integrate the security protections verification in your CI/CD pipeline.
> PCI MPoC
Prepare your product to meet this new mobile payment standard.
SOLUTIONS
> Mobile App Security Testing (MAST)
esChecker SaaS: automating the security testing of your mobile app binary.
PROFESSIONAL SERVICES
> Mobile App Penetration Testing
Testing the resiliency of your Mobile App, SDK or RASP tool.
> Backend Penetration Testing
Testing the resiliency of your Web App, API or Backend Systems.
> Coaching for Mobile App Developers
Providing insights into the mobile app threats and how attackers work by a learning-by-doing approach.
Go to our German website
OUR COMPANY
> Events
CAREERS
> Meet our experts
> Open positions
Join our team!
FOLLOW US
Twitter
Linkedin
Youtube
Github
Gitlab
Dynamic Analysis of an iOS application
In this module, you will get knowledge on dynamic analysis techniques to understand the inner workings of an iOS application. You will see the different steps of analysing an application at runtime from the repackaging process of an application to the use of an instrumentation framework.
Covered Topics
What you will learn:
- How to set up your working environment
- Dynamic analysis techniques to analyse a code being executed at runtime
- Patching and repackaging an application on a device with or without Jailbreak
- Instrument the application using FRIDA on a device with or without Jailbreak
Exercises
This is a CrackMe-like challenge where flag(s) have to be found by only applying dynamic analysis tools and techniques.
You will have to patch the code and to analyse the application at runtime by debugging and instrumenting it using FRIDA.
Requirements
- MacOS
- Jailbroken iPhone on iOS 13 and above
- Xcode and the developer tools
- Beginner knowledge in debugging
- Basic knowledge of javascript
- An ARM disassembler like IDA (+Hex-Rays decompiler), Hopper or Ghidra
- Basic understanding of the Objective-C and Swift programming languages (If beginner level, the module related to Part 1: Static Analysis of an iOS Application is required)
- Basic understanding of the AARCH64 assembly language. (If beginner level, the module related to ARM is required)
Practical information
Overall duration: 5 to 10 days
Schedule: 9:30am - 13pm (CET/CEST) - virtual/in person
Number of trainees: 2 trainees max.
