Explore iOS application security assessment and automation in this Black Hat USA 2012 conference talk. Learn about SIRA, a new tool and methodology for automated and semi-automated testing of iOS apps. Discover the prevalence of security issues in AppStore products and understand the risks associated with trusting data to these applications. Witness demonstrations of SIRA's features, including AutoPilot, manual testing assistance, decryption, analysis, and Cruise Control. Gain insights into the assessment workflow, installation process, and future developments in iOS app security testing. Understand the importance of automated testing in the face of the AppStore's vast number of applications and the limitations of manual testing.
iOS Application Security Assessment and Automation - Introducing SIRA
Overview
Syllabus
Intro
What is SIRA?
Disclaimer
Why Test Apps?
Need for Automated Testing
Demo: AutoPilot
Testing Automation Manual Tester
Props
Assessment Workflow
Install Demo
Decryption and Analysis Demo
SIRA Features
Demo: Decode
Demo: Search
SIRA Cruise Control
Cruise Control Demo
SIRA Requirements
License
Bitdefender Analysis
Application Survey
Toward the Future
Taught by
Black Hat
