This repository contains my presentation for Mobos 2018 together with the material that supports it.
Mobos is a conference focused on Mobile Technologies organized in Cluj-Napoca Romania. The conference took place on 15th February 2018.
Topic of the presentation was Tackling Common Vulnerabilities. To provide a complete mobile application, its vulnerabilities must be discovered by the development team and addressed immediately. We will talk about a few simple and common vulnerabilities, about how to find them and how to solve them.
Slides of my presentation can be found in Slides
Source code used in demo can be found in Samples
The Mobos2018_app contains the sample app containing mitigations for the following vulnerabilities:
- Screen capture by Task-Switcher
- Keyboard logging, Autocomplete
- General Pasteboard
- It also demonstrates State Preservation but without the suggested mitigation: encryption.
The Mobos2018_attacker contains the sample app for keyboard extensions and pasteboard "observer".
All material used in the making of the presentation (and much more!) can be found in Resources. This page can be a starting point if you want to research vulnerabilities in iOS applications.
If you have any suggestions or questions, don't hesitate to contact me!