THE INNER WORKINGS OF MOBILE CROSS-PLATFORM TECHNOLOGIES

No ratings

Presented at BlackhatAsia 2014 by

Simon Femerling

New Apps are being published every week, dreaming to become the new hot App, where short development time and low costs are crucial. Many of these Apps are developed with their respective native platform technologies, however, a new tendency is to use cross-platform technologies with the spirit of developing once and run on multiple platforms to save time and keep low costs. But how is security and privacy affected with all these technologies mixing? This presentation digs under the hood of current top mobile cross-platform technologies such as PhoneGap, Corona, RhoMobile, Xamarin and MoSync that uses HTML5, .NET, C++ and scripting languages to write Apps that run on multiple platforms (iOS, Android, Windows Phone, etc.). We will cover how to reverse engineer and audit these kinds of Apps, using static and dynamic tools and techniques differently from native Apps, to understand how they work and to uncover bugs. Many of the popular games are being developed with these kinds of technologies, so if you are a mobile auditor or a game cracker this talk will get you going on how to hack these Apps. Be ready to read code!