Bug Hunting: Mobile Apps — From Setup to Bugs — by Sebastian Wieseler

SINCON 2020 Conference Insights Track

Day 2 (3 Jan 2021)

10am—10.45am

@ Main Stage

[SINCON 2020 Conference Full Schedule]

Abstract

This talk will primarily focus on how to get started hunting for bugs in Mobile Applications (iOS & Android). We will be taking a closer look into the setup of Android studio, exploring root detection mechanisms and SSL pinning techniques — and how to compromise them. As well as an overview of how to get started with the analysis of iOS apps. We will be looking at static & dynamic code analysis (with the FRIDA framework). The highlights of this talk will be real-life bugs, what to look out for and what's worth exploring.

About Sebastian Wieseler

SEBASTIAN WIESELER has 10 years experience in telco, with more than two years supporting the internal SOC of Deutsche Telekom. He has been in Singapore since 2015, leading IT & Security teams in MyRepublic for more than 4 years. He spent 1.5 years leading the IT Security & Compliance division in a fintech - BigPay, aligning with government regulation from local watchdogs in Malaysia & Singapore. He has recently moved to 8x8 International, supporting IT Security & Compliance topics for Singapore & the region.