Tag Archives: metasploit

Hacking with mobile devices PART II

20140408-185020.jpg

Vulnerability Identification

There are numerous commercial tools available to a professional penetration tester who conducts vulnerability identification analysis – unfortunately, none have been ported to the iPod touch.
The Nmap application has the ability to use scripts that interpret the Nmap findings and attempt to identify vulnerability; however, the development of Nmap as a vulnerability scanning application does not have the support that other programs do, like Nessus or Core IMPACT (to name a couple).
Perhaps a better alternative is to use the iPod touch as a pivot for more robust vulnerability scanners.

I would say that the use of the iPod touch as a platform to conduct a pivot attack seems to be the best option for conducting a vulnerability identification scan than trying to use Nmap or do the identification manually.

Vulnerability Exploitation

We can use an agent deployed on the iPod touch to conduct vulnerability exploita- tion, similar to the way an agent can be used to perform vulnerability identification. Again, Core IMPACT would be a good choice for such an attack. However, there is an application framework that can perform vulnerability exploitation, which can be installed using Cydia – the Metasploit 3.0
Similar to the traditional application installed on laptops or desktops, the Metasploit application can be run from the command line from the iPhone touch where we can launch exploits against servers with greater certainty of stability and accuracy.
Continue reading


Iphone as a pentesting device

20140314-114513.jpg

Tested on the iPhone 4S running IOS 7 jailbroken by using evasion7

I wanted to talk about using a iDevice (ios 7)as a pen testing device . But first, why should I do that?

Well, first off ,
Its portable
Not noticeable
it looks cool
its pretty fast
IOS == Unix
It can easily be used with the pineapple
Let’s move on , so how do you make your iDevice into a pentesting device ?
First you need jailbreak your iDevice (eg ; Evasion7)
Continue reading


%d bloggers like this: