At Black Hat Asia 2015 in Singapore, NowSecure mobile researchers Marco Grassi and Sebastián Guerrero Selma gave a well-received presentation about cross platform frameworks and the unique security vulnerabilities they present.
The large mobile attack surface can be seen as a hostile environment. This presentation will focus on hardening where the critical business data often resides-in the app. Come learn specific techniques attackers may use on every day app vulnerabilities, and how to best protect apps against those attacks.
Cycript is a javaskript interpreter which also understands Objective-C syntax. The goal will be to introduce it and show the attendees how they can hook into a running iOS app, read its internal workings and modify its behavior. Will explain how such runtime manipulation can be used to circumvent security, and ultimately help the developer secure the app from external attackers.