Overview
Explore the current landscape of iOS malware detection in this comprehensive conference talk from the Hack In The Box Security Conference. Delve into an analysis of recent iOS 0-1 Click Malware samples, including Pegasus I/II, Hermit, and Google's 2019 findings. Examine the detection methods used by researchers and their implications for future analysis. Investigate technical detection capabilities across three categories: on-device/fully automated, companion/MDM/half-automated, and forensic/manual. Learn about jailbreak detection techniques, MDM data utilization, and forensic analysis tools like MVT. Discover the constraints in current detection methods, including what can be detected automatically versus manually, and at what scale. Gain insights into signs of compromise and explore potential improvements in iOS malware detection, focusing on data collection, process enhancement, and implementing detection at scale.
Syllabus
#HITB2023AMS D1T1 - Current State Of IOS Malware Detection - Matthias Frielingsdorf
Taught by
Hack In The Box Security Conference