h4cker/mobile_security/README.md

51 lines
1.8 KiB
Markdown

# Mobile Device Security
The following are several of the resources covered in the Wireless Networks, IoT, and Mobile Devices Hacking (The Art of Hacking Series) LiveLessons.
## OWASP Resources
### OWASP Mobile Security Project
* https://www.owasp.org/index.php/OWASP_Mobile_Security_Project#tab=Home
### OWASP Mobile Top 10:
* https://www.owasp.org/index.php/Mobile_Top_10_2016-Top_10
* https://www.owasp.org/index.php/OWASP_Mobile_Security_Project#tab=Top_10_Mobile_Risks
### OWASP Mobile Security Testing Guide:
* https://b-mueller.gitbooks.io/the-owasp-mobile-security-testing-guide/content
### OWASP Mobile Application Security Verification Standard (MASVS)
* https://www.owasp.org/images/6/61/MASVS_v0.9.4.pdf
## Android
### Android Research and Reverse Tools
* [Android Developer Studio](http://developer.android.com/sdk/index.html)
* [APKtool](http://ibotpeaches.github.io/Apktool/)
* [dex2jar](https://github.com/pxb1988/dex2jar)
* [Bytecode Viewer](https://bytecodeviewer.com/)
* [IDA Pro](https://www.hex-rays.com/products/ida/index.shtml)
### Android Reverse Engineering Arsenals
* https://www.owasp.org/index.php/OWASP_Mobile_Security_Project#tab=M-Tools
### APK Tool
* http://ibotpeaches.github.io/Apktool/
### Dex2jar and JD-GUI
Dex2jar and JD-GUI are two different tools that are often used for reverse engineering Android apps. Dex2jar converts .dex files to .jar. JD-GUI is a Java decompiler that can decompile .jar files to the original Java source.
* http://sourceforge.net/projects/dex2jar/
* http://jd.benow.ca
## Apple iOS
### Damn Vulnerable iOS Application (DVIA)
* DVIA Home Page
* http://damnvulnerableiosapp.com
* DVIA OWASP Project Page
* https://www.owasp.org/index.php/OWASP_DVIA
* DVIA Github Source
* https://github.com/prateek147/DVIA
* DVIA Learning Resources
* http://damnvulnerableiosapp.com/#learn