So, I've been kind of pissed that the iphone seeminly had more robust potential as a pentesting platform, compared to Android. In a, shall we say, moment of discomfort, I shitcanned AT&T for Sprint and got a Galaxy S phone. And of course, there's no native port of Metasploit yet.

If you're in my boat, fear not, there is a solution: Chroot'd ubuntu. Just follow the instructions at http://bit.ly/g2jQmz to get yourself a functional Ubuntu environment, then load it up with your tools of choice. Metasploit works quite well!

Pics later, if anyone cares.

savant

The hell?! Ok, so in the sake of full disclosure - this is not running *ON* the Apple IIe. As far as I know, nobody has ported Ruby to Apple IIe. I can't imagine how painfully slow that would be. I used the native Apple Super Serial Card and a DB25 <-> DB9 null modem cable. The other end terminates to a USB to serial adapter hooked up to a net book running a persistent install of backtrack 4. From there, a little /sbin/getty action and I've got shell access over serial. I'm using ProTERM 3.1 as the terminal emulator on the Apple IIe connected to a vt100 terminal type. savant

The iPad is hailed by Apple to be a "Magical and revolutionary" device. Whether or not that is true is a fact in heavy debate. Personally, I don't think so. But it IS a very interesting platform for penetration testing.

First off, what is an ECID and SHSH and why do you care? via iphoneincanda.com "Well “ECID” stands for Exclusive Chip ID. This is a unique chip identification that is different for every iPhone 3GS and iPod Touch 3g. When you restore your device, iTunes contacts the Apple servers, to generate signatures (SHSH), just for your device. It is widely thought that this a new security feature, implemented to stop jailbreaking of future firmwares."