How to configure Android (Virtual) for Mobile PenTest
This post is about setting up an Android Virtual Machine (AVD) for a mobile application penetration test.
mobile application
Android App Testing on Chromebooks
Update: As of March 2021, I’d recommend using Android Virtual Devices over Chromebooks. Chromebooks still work (in many cases) but the AVDs are much easier to build and use. Jason wrote a great blog on how to set them up and can be found here: https://secureideas.com/blog/2020/09/how-to-configure-android-virtual-for-mobile-pentest.html. If you are still interested in using a Chromebook, …
Whose Code Are You Running?
One of my favorite ways to eat Oreo cookies is to twist the two halves apart, carefully set the filling aside, eat both chocolate halves, and then slowly enjoy the indulgent filling. Without milk, this is by far the best way to fully indulge in both parts of the cookie. But with a glass of …
Professionally Evil Training Event: Multiple classes being offered in Orlando FL April 6-9 2015
Secure Ideas is very excited to announce their training event for April. We have worked with the Core Group and TrustedSec to create an event that covers a wide variety of training needs. The event is April 6-9th 2015 and will be held at the Palms International Resort. We are in the process of getting …
Professionally Evil Tools: MobiSec 1.3 Release
Wow, I can’t believe how long this release has been in the making. a couple of years ago, we were honored to be allowed to build MobiSec under the DARPA CyberFast Track process. We released the first two version quickly after that. Then at DerbyCon last year, we offered our MobiSec course for the first …
Is My Application Illegal?
Mobile devices and applications are everywhere. And we have seen tons of information, guides and what not on how to build successful businesses around the next big mobile application. There is even an article spreading around right now about how somebody learned how to program in 3 days and has released an amazing application. But …
Professionally Evil Courses: Advanced Mobile PenTesting with MobiSec
Secure Ideas is excited to announce that Kevin Johnson and James Jardine will be teaching Advance Mobile PenTesting with MobiSec at Blackhat 2014. This course will be offered twice, in two day sessions. In this hands-on, lab driven course students will be taught a methodology and series of techniques used to perform penetration testing of …
Professionally Evil Courses: Advanced Mobile PenTesting with MobiSec Read More »
Professionally Evil Courses: Mobile PenTesting with MobiSec
Secure Ideas is excited to announce that Jason Gillam will be teaching Mobile PenTesting with MobiSec at Charlotte ISSA 10th Annual Infosec Summit. Kevin Johnson, one of the course authors, may be available on the second day. In this hands-on, lab driven course students will be taught a methodology and series of techniques used to perform penetration …
Professionally Evil Courses: Mobile PenTesting with MobiSec Read More »
My Crayons Didn’t Upload My Pictures to the Internet
In July, my daughter, Brenna (11yo) and I presented at the SANS Denver event. She has long wanted to present with me and we both thought this talk was the perfect one to do. In it, we walk through the various privacy concerns mobile applications and devices have. We do this by looking at the …
My Crayons Didn’t Upload My Pictures to the Internet Read More »
Professionally Evil Perspective podcast: Mobile Security Testing – Tips and Tools
I have to say that I really enjoy doing the Professionally Evil Perspective (PEP) podcast with Kevin. It started as a crazy idea that I had a few months ago, and it is just as fun as I had hoped it would be. In this episode, we are joined by Nathan Sweaney, a Senior Security …
Professionally Evil Perspective podcast: Mobile Security Testing – Tips and Tools Read More »