2. Windows Phone
Overview
Approach
Application File
Structure
Tools for Penetration
Testing
Security Features
PenetrationTesting of Windows Phone Applications
3. Microsoft’s Own OS
Based onWindows 8 Core – ARM Architecture
History
The successor to theWindows Mobile OS
- 15 Mar 2010 –Windows Phone 7 series announced
- 21 Oct 2010 –Windows Phone 7 released
- 29 Oct 2012 –Windows Phone 8 released With the GDR 2 (Amber)
& GDR 3 (Black) Updates
PenetrationTesting of Windows Phone Applications
4. NTFS file system support
BitLocker device encryption
Sandboxed applications: Applications run in their own sandboxed
virtual environment
UEFI Secure boot: Unified Extensible Firmware Interface (UEFI) is
the successor to the legacy BIOS firmware interface. UEFI relies on
theTrusted Platform Module (TPM) 2.0 standard requiring unique
keys to be burned into the chip during production to restrict
software without correct digital signature to execute.
AllWindows Phone 8 binaries must have digital signatures signed
by Microsoft to run
PenetrationTesting of Windows Phone Applications
5. Chamber Concept (WP7)
Trusted Computing Base
(TCB)
▪ Kernel, kernel-mode drivers
- Elevated Rights Chamber
(ERC)
▪ Services, user-mode drivers
- Standard Rights Chamber
(SRC)
▪ Pre-installed applications
- Least PrivilegedChamber
(LPC)
▪ Applications from WP store
PenetrationTesting of Windows Phone Applications
6. Chamber Concept (WP8)
Trusted Computing Base (TCB)
▪ Kernel, kernel-mode drivers
- Least Privileged Chamber (LPC)
All other software: services,
pre-installed apps, application
fromWP store
PenetrationTesting of Windows Phone Applications
9. Emulator /Windows Phone SDK
Unlocked Device
Side Loading
Developer Unlock – Free Unlock with 2 Apps Limit
Student Unlock – Up to 3 Apps
Limitations
Apps from the store cannot be extracted
Apps from the store will not work on emulators
PenetrationTesting of Windows Phone Applications
10. Burp Suite
WP Power tools
.NET Reflector
PenetrationTesting of Windows Phone Applications