Fuzzing, Defense, & Return-oriented Programming

iOS | Intermediate

10 videos | 35m 18s
Includes Assessment
Earns a Badge

It is vital to perform security testing of both your iOS applications and devices. Learn how to design and administer fuzz tests, defend against exploits, and use return-oriented programming to reveal application vulnerabilities.

WHAT YOU WILL LEARN

describe the basic idea behind fuzzing and how it is used to reveal security issues in iOS applications

describe steps for carrying out a fuzz test

carry out a fuzz test on Safari web browser for Mac OS X Yosemite

describe how to exploit use-after-free and double free bugs

describe the concept of regions and how regions are allocated and deallocated
describe TCMalloc allocator as well as large and small object allocation and deallocation

describe background on ROP and basics in ARM architecture

describe how system calls are invoked on ARM

describe the ARM calling convention on iOS

create a new configuration profile using Apple Configurator and enroll a device using the OS X Profile Manager service

IN THIS COURSE

1.

Overview of Fuzzing iOS Applications

1m 56s

UP NEXT
2.

Carrying Out a Fuzz Test

2m 1s
3.

Fuzzing MobileSafari

8m 27s

FREE ACCESS
4.

Exploiting Bug Classes

1m 36s

FREE ACCESS
5.

Understanding the iOS System Allocator

2m 53s

FREE ACCESS
6.

Understanding TCMalloc

2m 42s

FREE ACCESS
7.

Overview of Return-Oriented Programming

2m 41s

FREE ACCESS
8.

Understanding the ARM Systems Call Convention

1m 35s

FREE ACCESS
9.

Understanding the iOS ARM Calling Convention

1m 47s

FREE ACCESS
10.

Exercise: Working with Profiles

9m 41s

FREE ACCESS

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.

Digital badges are yours to keep, forever.

Book Ethical Hacker's Penetration Testing Guide: Vulnerability Assessment and Attack Simulation on Web, Mobile, Network Services and Wireless Networks

Channel Wintellect Application Security

Book Modularizing Legacy Projects Using TDD

Get Started

Sharpen your skills. Upgrade your career. Find the right learning path for you, based on your role and skills. Take part in hands-on practice, study for a certification, and much more - all personalized for you.

*Content items for Compliance and Leadership are not included in this subscription.

Your content + our content + our platform = a path to learning success

Using our learning experience platform, Percipio, your learners can engage in custom learning paths that can feature curated content from all sources.

Learn More

Aspire to something bigger

Aspire Journeys are guided learning paths that set you in motion for career success.

Browse Aspire Journeys

Explore a world of live learning with Global Knowledge

Choose from convenient delivery formats to get the training you and your team need - where, when and how you want it.

Browse Live Learning

Fuzzing, Defense, & Return-oriented Programming

WHAT YOU WILL LEARN

IN THIS COURSE

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

YOU MIGHT ALSO LIKE