[Owasp-mobile-security-project] Owasp-mobile-security-projectDigest, Vol 7, Issue 8

Thu May 26 11:57:52 EDT 2011

Barry,

You will need to click on the "streams" tab, click "intercept" and then
"auto send" before the console will redirect all traffic via the GUI.

Hope that helps.

Cheers,
Tom 

-----Original Message-----
From: owasp-mobile-security-project-bounces at lists.owasp.org
[mailto:owasp-mobile-security-project-bounces at lists.owasp.org] On Behalf
Of barrykelly at iol.ie
Sent: 25 May 2011 20:25
To: owasp-mobile-security-project-request at lists.owasp.org;
owasp-mobile-security-project at lists.owasp.org
Subject: Re: [Owasp-mobile-security-project]
Owasp-mobile-security-projectDigest, Vol 7, Issue 8

You may also find the following useful. This is from the SANS AppSec
summit this year. The last couple of pages give a checklist for IOS
application assessments.

http://software-security.sans.org/downloads/appsec-2011-
files/dhanjani-hacking-securing-next-gen.pdf

BTW, does anyone else find the Mallory set up painful? Having issues
getting the GUI to see the traffic.

Regards
Barry K

>Send Owasp-mobile-security-project mailing list submissions to
>	owasp-mobile-security-project at lists.owasp.org
>
>To subscribe or unsubscribe via the World Wide Web, visit
>	https://lists.owasp.org/mailman/listinfo/owasp-mobile-
security-project
>
>or, via email, send a message with subject or body 'help' to
>	owasp-mobile-security-project-request at lists.owasp.org
>
>You can reach the person managing the list at
>	owasp-mobile-security-project-owner at lists.owasp.org
>
>When replying, please edit your Subject line so it is more specific 
>than "Re: Contents of Owasp-mobile-security-project digest..."
>
>
>Today's Topics:
>
>   1. Re: Mobile security assessment (Zaki Akhmad)
>
>
>---------------------------------------------------------------------
-
>
>Message: 1
>Date: Tue, 24 May 2011 10:16:22 +0700
>>From: Zaki Akhmad <za at owasp.org>
>Subject: Re: [Owasp-mobile-security-project] Mobile security
>	assessment
>To: Narendrasinh Parmar <narendraparmar at gmail.com>
>Cc: "owasp-mobile-security-project at lists.owasp.org"
>	<owasp-mobile-security-project at lists.owasp.org>
>Message-ID: <BANLkTimrn4rLHA3+mB9KcNbJtDCK+m_oKw at mail.gmail.com>
>Content-Type: text/plain; charset=ISO-8859-1
>
>On Thu, May 19, 2011 at 8:06 PM, Narendrasinh Parmar 
><narendraparmar at gmail.com> wrote:
>
>> On similar note, there are two white papers from McAfee for iPhone
and
>> Android
>>
>> 1.???? Penetration Testing for iPhone/iPad Applications
>> (http://www.mcafee.com/us/resources/white-papers/foundstone/wp-pen-
testing-iphone-ipad-apps.pdf)
>>
>> 2.???? Penetration Testing for Android Applications
>> (http://www.mcafee.com/us/resources/white-papers/foundstone/wp-pen-
testing-android-apps.pdf)
>
>I was searching for BlackBerry security topics (testing, secure 
>development, etc), and found these link while reading Dwivedi Mobile 
>Application Security book:
>
>* http://www.blackhat.com/presentations/bh-europe-06/bh-eu-06-fx.pdf
>* http://www.praetoriang.net/presentations/blackjack.html
>
>--
>Zaki Akhmad
>OWASP Indonesia Chapter Leader
>http://www.owasp.org/index.php/Indonesia
>
>
>------------------------------
>
>_______________________________________________
>Owasp-mobile-security-project mailing list 
>Owasp-mobile-security-project at lists.owasp.org
>https://lists.owasp.org/mailman/listinfo/owasp-mobile-security-
project
>
>
>End of Owasp-mobile-security-project Digest, Vol 7, Issue 8
>***********************************************************
>
>
http://www.iol.ie
_______________________________________________
Owasp-mobile-security-project mailing list
Owasp-mobile-security-project at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-mobile-security-project

Verizon UK Limited - registered in England & Wales - registered number 2776038 - registered office at Reading International Business Park, Basingstoke Road, Reading, Berkshire, UK RG2 6DA - VAT number 823 8170 33