Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Needle - Black Hat Arsenal USA 2017

A87dd450496fa9c95cc16f7d77c340a3?s=47 Marco Lancini
July 27, 2017
Technology
0
140

Needle - Black Hat Arsenal USA 2017

I delivered a talk based on this presentation at Black Hat Arsenal USA 2017 (https://www.blackhat.com/us-17/arsenal/schedule/index.html#needle-7897) in Las Vegas (July 27th, 2017).

A87dd450496fa9c95cc16f7d77c340a3?s=128

Marco Lancini

July 27, 2017
Tweet

More Decks by Marco Lancini

See All by Marco Lancini
2022-03-24_Doyensec - Infrastructure Review
A87dd450496fa9c95cc16f7d77c340a3?s=48 marcolancini
0
10
Cartography: using graphs to improve and scale security decision-making
A87dd450496fa9c95cc16f7d77c340a3?s=48 marcolancini
0
200
Needle - Black Hat Arsenal EU 2016
A87dd450496fa9c95cc16f7d77c340a3?s=48 marcolancini
0
90
Needle - OWASP AppSec USA 2016
A87dd450496fa9c95cc16f7d77c340a3?s=48 marcolancini
0
150
Enhancing Mobile Malware: an Android RAT Case Study - BSides Vienna 2014
A87dd450496fa9c95cc16f7d77c340a3?s=48 marcolancini
0
360
Social Authentication: Vulnerabilities, Mitigations, and Redesign - DEEPSEC 2014
A87dd450496fa9c95cc16f7d77c340a3?s=48 marcolancini
0
140
Social Authentication - CyCon 2014
A87dd450496fa9c95cc16f7d77c340a3?s=48 marcolancini
0
120
Social Authentication: Vulnerabilities, Mitigations, and Redesign
A87dd450496fa9c95cc16f7d77c340a3?s=48 marcolancini
1
180
Showcase
A87dd450496fa9c95cc16f7d77c340a3?s=48 marcolancini
0
26

Other Decks in Technology

See All in Technology
What's Data Lake ? Azure Data Lake best practice
0d7a3b61c5c1f64a50136cf4bb5702b7?s=48 ryomaru0825
2
750
スクラムのスケールとチームトポロジー / Scaled Scrum and Team Topologies
4dd89003cc8fe9f21d67b0c99b773436?s=48 daiksy
1
450
Citizen 개발기
748a6dc8b4eaba0fde62909e39be7987?s=48 outsider
0
290
【toranoana.deno#7】Denoからwasmを呼び出す基礎
6ab47a68ee78e84c34731ce12333deff?s=48 toranoana
0
130
oakのミドルウェアを書くときの技のらしきもの
6ab47a68ee78e84c34731ce12333deff?s=48 toranoana
0
130
インフラのCI/CDはGitHub Actionsに任せた
F5c597c41d9bc6a80cce50adbd6c7bd9?s=48 mihyon
0
110
ノーコードで Stripeを使いこなす3つの方法 / jp-stripes-online-vol-4
E77ca94266ffd3d69f8aee91f7468264?s=48 stripehideokamoto
0
300
Oracle Cloud Infrastructure:2022年6月度サービス・アップデート
3115a782126be714b5f94d24073c957d?s=48 oracle4engineer
PRO
0
150
What's new in Vision
53e2d354b3299d64a54af680865516d5?s=48 satotakeshi
0
220
Meet passkeys
53e2d354b3299d64a54af680865516d5?s=48 satotakeshi
1
130
Data in Google I/O - IO Extended GDG Seoul
3bd69093dbe39b14603242b96cfbd7c6?s=48 kennethanceyer
0
150
機械学習システムのアーキテクチャとデザインパターン
Ab00369879507922677a971b56cec3ae?s=48 washizaki
1
530

Featured

See All Featured
Docker and Python
Ecdea9b9714877b86cee08458f085481?s=48 trallard
27
1.6k
Put a Button on it: Removing Barriers to Going Fast.
Bfd6b681ec6e8c9bef82ff0521c364f7?s=48 kastner
56
2.3k
Designing Dashboards & Data Visualisations in Web Apps
Fde6c3a50ca518a909ef35c22c0ee0e4?s=48 destraynor
224
49k
Become a Pro
828ace851b606e1206900f26459f55ad?s=48 speakerdeck
PRO
3
840
Learning to Love Humans: Emotional Interface Design
5f50f94346fbcb23706f0707169317a4?s=48 aarron
261
37k
Design by the Numbers
027d1ebf66cc039a0bd3b55eeadbe75d?s=48 sachag
271
17k
Web Components: a chance to create the future
E190023b66e2b8aa73a842b106920c93?s=48 zenorocha
303
40k
Raft: Consensus for Rubyists
B6a8f005f39d23ffc930508ac9da68b9?s=48 vanstee
126
5.4k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
D8fc2580cfaca035f666d9e4ee79a7f7?s=48 mongodb
29
4.3k
Embracing the Ebb and Flow
C9b18d9dff88a9dd2393364c2b3b21bd?s=48 colly
73
3.4k
VelocityConf: Rendering Performance Case Studies
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
316
22k
How to train your dragon (web standard)
053e75a5b48b44d6dd0612795dfb326d?s=48 notwaldorf
58
3.9k

Transcript

  1. ++ Black Hat Arsenal USA Marco Lancini 27th July 2017

    Needle

  2. What is Needle? Black Hat Arsenal USA A tool for

    auditing iOS Application Security An open source, modular framework •streamline the entire process •acts as a central hub Not a vuln scanner •knowledge (and intuition) of the tester is still required

  3. Motivation Beginners: easy to use Professionals: save time during assessments

    Developers: quickly test their products Black Hat Arsenal USA

  4. The Architecture

  5. New Native Agent Black Hat Arsenal USA

  6. How it works (briefly…) Black Hat Arsenal USA

  7. UI Black Hat Arsenal USA

  8. + The framework core exposes APIs to interact with the

    local and remote OS + These wraps common functionalities • file and data access • command execution • networking + Speed-up creation of new modules API Black Hat Arsenal USA

  9. API Black Hat Arsenal USA

  10. API - Agent Black Hat Arsenal USA

  11. Currently Supported Modules Black Hat Arsenal USA Binary Storage Dynamic

    Analysis Hooking / Instrumentation Network Communications Static Analysis

  12. Other additions

  13. Automatic Issue Detection Black Hat Arsenal USA

  14. + python needle-cli.py -g APP=mwr.ios.dvia -m binary/info/metadata -m device/agent_client#COMMAND=OS_VERSION Non

    Interactive Mode Black Hat Arsenal USA

  15. Support for System Apps Black Hat Arsenal USA

  16. Roadmap

  17. Roadmap Black Hat Arsenal USA •Replace all the dependencies Agent

    to deploy on device Support for non-jailbroken devices •Substrate integration •WebView scanner •Hook Swift methods •URI handlers fuzzer •Obfuscation detection New modules … community based

  18. Want to know more? Black Hat Arsenal USA mwr.to/needle @mwrneedle