Black Hat USA Registration Black Hat USA Registration Black Hat USA Briefings Black Hat USA Briefings Black Hat USA Training Black Hat USA Training Black Hat USA Schedule Black Hat USA Schedule Black Hat USA Sponsors Black Hat USA Sponsors Black Hat  USA Special Events Black Hat  USA Special Events Black Hat USA Venue Black Hat USA Venue

On This Page

Mobile Hacking II

HotWAN | July 27-28 & 29-30



Ends May 31



Ends July 24



Ends July 30


This class provides a better understanding of emerging trends and threats in the mobile space. Participants will audit mobile apps, circumvent operating systems, jailbreak / root devices, leverage mobile forensics and perform a variety of network-based attacks.


  1. Day 1:
    • Intro
    • Today’s Trends and Emerging Threats
    • Mobile Application Auditing
    • iOS (Beginner to Advanced) till end of day
  2. Day 2:
    • Brief Review of Day 1
    • Android (Beginner to Advanced) till 2nd Break
    • USRP, OpenBTS
    • Network Based Fuzzing

Course Modules


Who Should Take This Course

  1. Hackers
  2. Mobile Application Auditors
  3. Security Professionals involved in Mobile Security


What Students Will Be Provided With

White Papers, Presentations, Tools, Images, *Other stuFF

What Students Should Bring


HotWAN has sourced content from variety of experts in the mobile space.

David Wang (@planetbeing) is a member of the iPhone Dev Team and Evad3rs. He is a former developer of many iOS jailbreak tools including redsn0w, xpwn, and QuickPwn. He’s worked actively on the latest public jailbreaks for iOS. He has also found and successfully exploited several vulnerabilities in iOS 6, leading to an untethered jailbreak.

Nikias Bassen (@pimskeks) is a member of the Evad3rs and has found several flaws and directory traversals in iDevice services that allowed installation the latest iOS 6 jailbreak. Apart from reverse engineering and security research he founded the company samaraIT and is working as an independent developer for international clients.

Josh Hill (@p0sixninja) former member of the Chronic Dev Team. He has been an iOS Jailbreaker for more than 5 years

Aditya Gupta (@adi1391) is the co-founder of XY Security, an information security firm based in India, which focusses on Mobile Devices security. His main expertise include Android Malware Analysis and Reversing, writing automated security tools and Android App Pentesting.

Subho Halder (@sunnyrockzzs) is the co-founder of XYSecurity, where he focusses on Android security research, product development and iOS App pentesting. He also enjoys giving talks and trainings on Android and iOS Exploitation in international conferences.

Jonathan Stuart (@dent1zt) former BSD developer/commiter, reverse engineer. Specialties: Unix, Linux, OS kernels (ARM, SPARC, MIPS, x86).Experience: 12 years of industry experience finding vulnerabilities and writing exploitation mechanisms for said remote/lal vuln.

Georgia Weidman (@georgiaweidman) is the Founder of Bulb Security LLC. She was the recipient of a DARPA CyberFast Track grant to develop the Smartphone Pentest Framework, a tool for assessing the security posture of mobile devices.

Drew Porter (@IAmRedShift) [Security +, CEH] is a Senior Security Analyst at Stach & Liu,. In this role, he focuses on wireless assessments, hardware security, penetration testing, and cellular research. Prior to joining Stach & Liu, Drew worked as a Mobile Security Exploit Engineer for a defense contractor and a System Security Architect for an EMR Software Company. Drew is a sought after speaker, and has presented at ToorCon, BSides, and ICDW.

Blake Turrentine, CEO of HotWAN