SOLUTIONS
> Side Channel Analysis
Ready-to-use side channel tools to assess cryptography algorithms.
> Laser & EM Fault Injection
Make sure your chip withstands different techniques of physical fault injections.
> Firmware Security Analysis
Qualify embedded code binaries without physical devices and benches.
> Security Failure Analysis
Photoemission analysis to explore internal information in a chip.
> Vulnerability Research
Dynamic analyses at a system level for investigating potential vulnerabilities.
TECHNOLOGIES
> Data Science Platform
esDynamic is a complete data focused platform to leverage the know-how of your team for complex analyses.
> esFirmware Engine
Assess the security of the firmware of IoT devices against logical and physical attacks.
> REVEN Engine
Record and replay vulnerability researches within reverse engineering processes and tools.
PROFESSIONAL SERVICES
> Cybersecurity Training
Grow your expertise with training modules driven by a coach.
EXPERTISE
> Mobile App Security
Know the threats and risks of your Mobile App.
> DevSecOps
Integrate the security protections verification in your CI/CD pipeline.
SOLUTIONS
> Automated Mobile App Security Testing
esChecker SaaS: automating the security testing of your mobile app binary.
> Mobile App Penetration Testing
Testing the resiliency of your Mobile App, SDK or RASP tool.
> Backend Penetration Testing
Testing the resiliency of your Web App, API or Backend Systems.
PROFESSIONAL SERVICES
> Coaching for Mobile App Developers
Providing insights into the mobile app threats and how attackers work by a learning-by-doing approach.
OUR COMPANY
> Our offices
> Events
CARREERS
> Meet our experts
> Open positions
Join our team!
FOLLOW US
Twitter
Linkedin
Youtube
Github
Gitlab
Dynamic Analysis of an iOS application
In this module, you will get knowledge on dynamic analysis techniques to understand the inner workings of an iOS application. You will see the different steps of analysing an application at runtime from the repackaging process of an application to the use of an instrumentation framework.
Covered Topics
What you will learn:
- How to set up your working environment
- Dynamic analysis techniques to analyse a code being executed at runtime
- Patching and repackaging an application on a device with or without Jailbreak
- Instrument the application using FRIDA on a device with or without Jailbreak
Exercises
This is a CrackMe-like challenge where flag(s) have to be found by only applying dynamic analysis tools and techniques.
You will have to patch the code and to analyse the application at runtime by debugging and instrumenting it using FRIDA.
Requirements
- MacOS
- Jailbroken iPhone on iOS 13 and above
- Xcode and the developer tools
- Beginner knowledge in debugging
- Basic knowledge of javascript
- An ARM disassembler like IDA (+Hex-Rays decompiler), Hopper or Ghidra
- Basic understanding of the Objective-C and Swift programming languages (If beginner level, the module related to Part 1: Static Analysis of an iOS Application is required)
- Basic understanding of the AARCH64 assembly language. (If beginner level, the module related to ARM is required)
Practical informations
Overall duration: 5 to 10 days
Schedule: 9:30am - 13pm (CET/CEST) - virtual/in person
Number of trainees: 2 trainees max.
