Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hacking The iPhone Group 17 Shelby Allen Richard Denney.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Hacking The iPhone Group 17 Shelby Allen Richard Denney."— Presentation transcript:

1 Hacking The iPhone Group 17 Shelby Allen Richard Denney

2 Outline Introduction Lab goals Procedure Results Conclusions Defenses References

3 Introduction Proliferation of mobile devices Popularity of iPhone Soon-to-be released SDK

4 Lab Goals Show that the iPhone, and by extension all future mobile devices, are locked away computers and so they should be given the same security precautions as a computer.

5 Procedure Buffer overflow Copy and edit disk image Install SSH Copy files

6 Results Installer Community sources Easy install Easy update

7 Results MobileFinder Explore file system Fully functional

8 Results MobileFinder Explore file system Fully functional

9 Results Term-vt100 Terminal that won’t go away Partial functionality expandable

10 Results Sysinfo Task Manager equiv. Can kill processes All processes ran as root

11 Conclusions A computer in a mobile device’s body The default user is the only user – root Serious vulnerabilities Default user name and password All programs ran as root A vulnerability in any program compromises the entire system Buffer overflow

12 Defenses Change user name and password Download newest firmware Same practices as a computer Lobby for better security

13 Lab Structure Student will: Jailbreak iPod Touch Load custom applications Explore architecture Evaluate device security

14 References For more information on iPod/iPhone hacking, visit: Instruction guide to hacking iPod Touch http://forums.macrumors.com/showthread.php?p=4308881& nojs=1 http://forums.macrumors.com/showthread.php?p=4308881& nojs=1 Installer.app Homepage http://iphone.nullriver.com/beta/ Ipod Touch hacking wiki http://www.touchdev.net/wiki/Main_Page Iphone security evaluation by consulting firm http://www.securityevaluators.com/iphone/

15 Questions?

Download ppt "Hacking The iPhone Group 17 Shelby Allen Richard Denney."

Similar presentations

Ch-11 Project Execution and Termination. System Testing This involves two different phases with two different outputs First phase is system test planning.

Ch-11 Project Execution and Termination. System Testing This involves two different phases with two different outputs First phase is system test planning.
Uniworld Wire-less Wireless E-Mail at Your Fingertips.

Uniworld Wire-less Wireless at Your Fingertips.
Peter Coddington CEO 240-258-2100 ::

Peter Coddington CEO ::
Section 3.2: Operating Systems Security

Section 3.2: Operating Systems Security
HNA-Drive Familiarization Presentation. From the address bar in your preferred internet browser, navigate to www.hnadrive.com Site supports: Internet.

HNA-Drive Familiarization Presentation. From the address bar in your preferred internet browser, navigate to Site supports: Internet.
Agenda Introduction New Features in Map Suite Web Edition 3.0 Demonstration Where to Get Help and Learn More Q&A 2.

Agenda Introduction New Features in Map Suite Web Edition 3.0 Demonstration Where to Get Help and Learn More Q&A 2.
Contents What is WebOS Types of WebOS History of eyeOS Current eyeOS

Contents What is WebOS Types of WebOS History of eyeOS Current eyeOS
Manuka project IEEE IA Workshop June 10, 2004. Agenda Introduction Inspiration to Solution Manuka Use SE Approach Conclusion.

Manuka project IEEE IA Workshop June 10, Agenda Introduction Inspiration to Solution Manuka Use SE Approach Conclusion.
IPhone Security: Understanding the KeyChain Nicholis Bufmack and Ryan Thomas CS 691 Summer 2009.

IPhone Security: Understanding the KeyChain Nicholis Bufmack and Ryan Thomas CS 691 Summer 2009.
Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.

Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.
A Guide for Getting Started

A Guide for Getting Started
Installing Windows Vista Lesson 2. Skills Matrix Technology SkillObjective DomainObjective # Performing a Clean Installation Set up Windows Vista as the.

Installing Windows Vista Lesson 2. Skills Matrix Technology SkillObjective DomainObjective # Performing a Clean Installation Set up Windows Vista as the.
Introduction to Computers Connie Dalrymple. What is a computer? Sources:

Introduction to Computers Connie Dalrymple. What is a computer? Sources:
Your Interactive Guide to the Digital World Discovering Computers 2012.

Your Interactive Guide to the Digital World Discovering Computers 2012.
Anthony Karnowski. A field-programmable gate array (FPGA) is an integrated circuit designed to be configured by a customer or a designer after manufacturing—hence.

Anthony Karnowski. A field-programmable gate array (FPGA) is an integrated circuit designed to be configured by a customer or a designer after manufacturing—hence.
A survey of Buffer overflow exploitation on HTC touch mobile phone Advanced Defense Lab CSIE NCU Chih-Wen Ou.

A survey of Buffer overflow exploitation on HTC touch mobile phone Advanced Defense Lab CSIE NCU Chih-Wen Ou.
Introduction to InVEST ArcGIS Tool Nasser Olwero GMP, Bangkok April 2-6 2012.

Introduction to InVEST ArcGIS Tool Nasser Olwero GMP, Bangkok April
Computers Are Your Future Eleventh Edition Chapter 4: System Software Copyright © 2011 Pearson Education, Inc. Publishing as Prentice Hall1.

Computers Are Your Future Eleventh Edition Chapter 4: System Software Copyright © 2011 Pearson Education, Inc. Publishing as Prentice Hall1.
Redes Inalámbricas Máster Ingeniería de Computadores 2008/2009 Tema 7.- CASTADIVA PROJECT Performance Evaluation of a MANET architecture.

Redes Inalámbricas Máster Ingeniería de Computadores 2008/2009 Tema 7.- CASTADIVA PROJECT Performance Evaluation of a MANET architecture.
Kyocera Driver Installation Basic instruction to add a printer to computer using standard defaults.

Kyocera Driver Installation Basic instruction to add a printer to computer using standard defaults.

Similar presentations

Ads by Google