- Paperback: 408 pages
- Publisher: Wiley; 1 edition (May 8, 2012)
- Language: English
- ISBN-10: 1118204123
- ISBN-13: 978-1118204122
- Product Dimensions: 7.4 x 0.9 x 9.2 inches
- Shipping Weight: 1.3 pounds (View shipping rates and policies)
- Average Customer Review: 26 customer reviews
- Amazon Best Sellers Rank: #219,763 in Books (See Top 100 in Books)
Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
To get the free app, enter your mobile phone number.
iOS Hacker's Handbook 1st Edition
Use the Amazon App to scan ISBNs and compare prices.
Fulfillment by Amazon (FBA) is a service we offer sellers that lets them store their products in Amazon's fulfillment centers, and we directly pack, ship, and provide customer service for these products. Something we hope you'll especially enjoy: FBA items qualify for FREE Shipping and Amazon Prime.
If you're a seller, Fulfillment by Amazon can help you increase your sales. We invite you to learn more about Fulfillment by Amazon .
The Amazon Book Review
Author interviews, book reviews, editors picks, and more. Read it now
Frequently bought together
What other items do customers buy after viewing this item?
From the Back Cover
They can crack the code. Here's how to stop them.
The world loves iOS. Users love the convenience. Black hats love the vulnerability. This book arms you with the knowledge and tools to protect your organization's iOS devices. If you're a developer, it will also help you create hack-resistant applications.
These highly qualified iOS experts review iOS security architecture, examine the internals, and reveal the vulnerabilities. They show you how iOS jailbreaks work and explore encryption, code signing and memory protection, sandboxing, iPhone fuzzing, exploitation, ROP payloads, and baseband attacks. Here's a complete toolkit for defending your iOS devices.
Examine the internals and identify the vulnerabilities of iOS
Explore all the elements of encryption, vulnerability hunting, and exploit writing
Review some common payloads and see what can and can't be done on iOS with ROP
Learn more about kernel debugging and exploitation, with an overview of kernel structure and a look at auditing IOKit drivers
Look at techniques for fuzzing PDF and PowerPoint® documents in MobileSafari
Study different jailbreak types
Source code and additional tools are available at www.wiley.com/go/ioshackershandbook
About the Author
Charlie Miller is Principal Research Consultant at Accuvant Labs and a four-time CanSecWest Pwn2Own winner.
Dionysus Blazakis is an expert on iOS and OS X sandbox security mechanisms.
Dino Dai Zovi is coauthor of The Mac Hacker's Handbook and a popular conference speaker.
Stefan Esser is a PHP security expert and leading researcher of iOS security topics.
Vincenzo Iozzo is an independent security researcher focused on Mac OS X and smartphones.
Ralf-Philipp Weinmann holds a PhD in cryptography and has an extensive security background.
Top customer reviews
There was a problem filtering reviews right now. Please try again later.
The book begins covering sandboxing, code signing and iOS enterprise applications, and their weaknesses. The chapter on fuzzing was very explanatory on the techniques used to do so. It covered fuzzing PDF and powerpoint documents in mobile safari, as well as SMS fuzzing. The next chapter talks about exploitation on iOS devices, focusing on heap exploits and in turn, memory allocation and deallocation.
The chapter on ROP explains what is capable and not capable with return oriented programming, and gives two great examples of such techniques. Following that is a chapter on kernel exploitation, describing how to reverse the IOKit kernel drivers and finding vulnerabilities, as well as how to exploit vulnerabilities once found. This chapter concludes with a demonstration on the heap fang shui technique used for heap buffer overflow exploits.
The jailbreaking chapter is not particularly long, but that is because the techniques used have been described in other parts of the book. This chapter examines the redsn0w jailbreak and describes each step performed by it, including the different kernel patches applied by the jailbreak.
The final chapter covers baseband hacking, which I have not read in detail yet. It appears, at first glance, to cover general knowledge on cell networks leading into the RTOS used on the baseband chips, and ending with a description of the ultrasn0w unlock.
Overall, I would recommend anyone who is interested in the techniques and steps used to find vulnerabilities and exploit them, leading to the development of a jailbreak for an iOS device.
The way current hacking techniques are being introduced, should enable less experienced programmers and enthusiast to get started and the more advanced reader will find a very well processed compendium (and more).
About the troll comments further down:
Some are obviously misinterpreting this book's intention. It's not about giving you a detailed tutorial on how to create a jailbreak, but to give a starting point, to introduce techniques needed and to motivate you to start learning and researching (btw. this belongs to security RESEARCH). Creating a jailbreak needs weeks and months of work, not to mention the vast experience and skills needed to pull of such a major task. One book can't accomplish that. So if you really want to become the next comex or pod2g: get off your backside, learn basics, read this book, read more materials, train your obtained skills and at the end of the road you might be able to develop your own exploits which will lead to a jailbreak.
The authors manage to cover a variety of different subjects in enough detail to give you a good grounding in the iOS security model as well as the current state of vulnerability discovery on the platform.