OWASP top 10 mobile pentest platformpassword min 8 - LM/ALM lanman hashb

1. OWASP top 10 mobile pentest platform
2.  
3. password min 8 - LM/ALM lanman hash
4.  
5. buffer overflow attack
6.  
7. http://burp
8. install burp cert into browser -(added into trusted list)
9.  
10. active traffic analysis (burpsuite)
11. default username: root
12. default password :alpine
13. $ uname -a
14.  
15. UID - unique
16. GID - group id ex. same batch of phone
17.  
18. ios universal writable path
19. $ /var/root
20.  
21. ASLR
22. - allocate different memory space or ID everytime reboot
23.  
24. jailbreak-me.info
25.  
26. types - tethered, untethered
27.  
28. SFTP command
29. $ sftp <username>@<ip>
30. $ put <filename>
31. $ get <filename>
32.  
33. ios local storage is differ follow by ios version
34. for example version 7
35. $ cd /var/mobile/Applications
36. version 9
37. $ /private/var/mobile/Containers/Data/Application
38.  
39. $ find -name challenge1
40.  
41. source code path in version 9
42. $ /var/containers/Bundle/Application
43. name with asterik - binary file or source file
44.  
45. Filza - AppManager > app_name - container name plus local storage path
46. .plist is some kind of local storage file type
47.  
48. $ sw_vers (software version)
49.  
50. $ run scanner.provider.finduris