iPwn Apps: Pentesting iOS Applications

Since Apple's iPhone graced us with its presence in 2007, the mobile landscape has been forever changed. Smart phones and tablets and variations in between have permeated all demographics, almost to the point where not owning one is strange. The exponential growth has opened up new opportunities; letting users conduct computing activates while on the go...but so too has it opened up new security risks. It is important for penetration testers to be able to keep up with the ever-expanding user demand that brings in new devices, new apps and new risks. Understanding these devices, their apps, and the points of exposure they bring are absolutely essential. It is the goal of this paper to provide insight and methodology into penetration testing mobile devices and their applications.