Added few more exercises

Author: swaroop

iGoat-Swift/iGoat-Objc-Bridging-Header.h

@@ -9,3 +9,6 @@
 #import "UIImage+animatedGIF.h"
 #import "SVProgressHUD.h"
 #import <CommonCrypto/CommonCrypto.h>
+#import <sqlite3.h>
+
+char *do_it(void);

iGoat-Swift/iGoat-Swift.xcodeproj/project.pbxproj

@@ -72,76 +72,6 @@
 			</dict>
 		</array>
 	</dict>
-	<key>Sample Test</key>
-	<dict>
-		<key>description</key>
-		<string>This exercise category contains exercises related to reverse engineering a mobile app&apos;s binary code. On its own, reverse engineering an app leads to a number of valuable things for a hacker. First, it will give the hacker a solid blueprint of the app and reveal a great deal of information about the underlying architecture, design, and implementation. This can lead to things like counterfeiting or stealing of code. As a springboard, the hacker can then exploit this knowledge to conduct other types of attacks. For instance, the hacker may extract infrastructure passwords to conduct infrastructure attacks against backend systems. The hacker may leverage this knowledge to modify the app or its runtime behavior. These exercises show you how to raise the bar and make it much more painful and difficult for the hacker to successfully extract anything useful from the binary.</string>
-		<key>exercises</key>
-		<array>
-			<dict>
-				<key>creditsFile</key>
-				<string>KRvWAssociates.html</string>
-				<key>description</key>
-				<string>In this exercise, we are trying to extract a secret piece of information embedded within a string located within the app&apos;s binary. Ideally, you should avoid relying upon sensitive strings embedded within your binary. However, that is not always realistic. Offline availability requirements or system architectures typically drive the need for reliance upon embedded strings.  In some scenarios, it is not possible to avoid placing sensitive strings within your string table. However, there are things you can do to make it much more difficult to exploit these strings...
-                    
-                    Your first goal is to perform a string analysis of the compiled binary and answer the riddle posed by this exercise.
-                    
-                    Your second goal is to alter the mobile app in such a way that static analysis will not easily reveal the answer to the riddle.
-                </string>
-				<key>hints</key>
-				<array>
-					<string>To extract useful string information from a binary, a hacker will follow a well-established methodology. First, the hacker will download the app from the iTunes store and decrypt it within a jailbroken environment using a free tool like &lt;i&gt;Clutch&lt;/i&gt;.&lt;br/&gt;&lt;br/&gt;
-                        
-                        To see a demo of how to bypass iTunes code encryption, click &lt;a href=&quot;http://m.youtube.com/watch?v=nOFXsR4-2AQ&quot;&gt;here&lt;/a&gt;.&lt;br/&gt;&lt;br/&gt;
-                        
-                        Normally, you must start a string analysis by breaking through iTunes code encryption to look at the underlying string table. However, you are running this app within a development environment. Hence, you cannot download the iTunes version of the app which would include this easily breakable protection. You can safely ignore the first step of bypassing iTunes code encryption through the use of a tool like &lt;i&gt;Clutch&lt;/i&gt; on your binary.
-                        
-                    </string>
-					<string>The heart of every iPhone mobile app lies within its core binary file. The file contains ARM instructions that will be executed by iOS. When you download the app from the iTunes store, your phone receives an IPA file. This is an archive that contains an application bundle (APP file) as well as other files meant for iTunes management of your app.&lt;br/&gt;&lt;br/&gt;
-                        
-                        Within the Xcode environment, you can find the APP file within the &lt;i&gt;Products&lt;/i&gt; directory of the iGoat project. The particular subdirectory will dependend upon which target you are building against. If you are running the app within an iOS emulator, you can find the APP file within the filepath &lt;i&gt;~/Library/Application\ Support/iPhone\ Simulator&lt;/i&gt;.
-                    </string>
-					<string>The application bundle contains the raw binary you will want to analyze. The binary typically has the same name as the project. In this case, the name of the raw binary is the filename &lt;i&gt;iGoat&lt;/i&gt;
-                    </string>
-					<string>A hacker will use static analysis tools (&lt;i&gt;IDA Pro&lt;/i&gt;; &lt;i&gt;Hopper&lt;/i&gt;; &lt;i&gt;strings&lt;/i&gt;)to inspect the unencrypted binary&apos;s string table.  To learn how to perform basic static analysis, click &lt;a href=&quot;http://m.youtube.com/watch?v=GvqnJmTb9HU&quot;&gt;here&lt;/a&gt;.&lt;br/&gt;&lt;br/&gt;
-                        
-                        If you like the idea of using a simple command line tool instead, check out &lt;i&gt;strings&lt;/i&gt;.
-                    </string>
-					<string>A hacker will typically pipe the output from the &lt;i&gt;strings&lt;/i&gt; command line tool to another tool like &lt;i&gt;grep&lt;/i&gt; to search for strings matching a particular pattern.
-                    </string>
-					<string>There are many simple, easy things you can do to your original code to trick casual hackers from identifying sensitive strings contained within your binary string table. You can tweak the algorithm behind the code that retrieves the sensitive string to ensure that the original string is never stored in plaintext and easily accessible to the hacker.&lt;br/&gt;&lt;br/&gt;
-                        
-                        Which type of encryption / encoding algorithms are available to you? What do you need to worry about with each type?
-                    </string>
-				</array>
-				<key>initialViewController</key>
-				<string>SampleDemoVC</string>
-				<key>name</key>
-				<string>Sample Demo</string>
-				<key>solution</key>
-				<string>There are two key goals of this exercise.
-                    
-                    First, you must answer the riddle posed to you by the application. You might be tempted to just look at the source code and get the answer. However, a hacker will not have the luxury of doing so as they will not have access to the original source code. They will only have access to what they can download off the iTunes store. The answer is embedded within the app&apos;s binary string table.
-                    
-                    To get the answer, a hacker must perform binary string analysis and inspect its string table. The string table contains any hardcoded strings used by the code throughout its execution. Hardcoded strings reveal all sorts of useful tidbits of information. A hacker can use a string table to cross-reference and locate sensitive algorithms within the binary. There are many studies of apps in the wild that show the prevalence of hardcoded usernames and passwords to backend systesm.
-                    
-                    Use the command-line tool &lt;i&gt;strings&lt;/i&gt; against the core binary file iGoat and pipe the output to &lt;i&gt;grep&lt;/i&gt; to search for the answer to the riddle.
-                    
-                    &lt;i&gt;strings iGoat | grep riddle&lt;/i&gt;
-                    
-                    The second goal is to make the app immune to this type of binary attack. To achieve this goal, there are a number of different techniques available. You could store an encrypted version of the string within the string table and decrypt it at runtime. After decryption, perform the string comparison to determine if the answer is correct. In taking this approach, static analysis will no longer yield a useful result. The attacker will be forced to move into the more expensive proposition of performing dynamic analysis to deduce the answer to the riddle. There are a whole other set of deterrents related to preventing or frustrating dynamic analsyis.
-                    
-                    You could also transform the representation of the string into something else (like an array of bytes) that would take it completely outside of the string table. You would be surprised how often this simple transformation will deter a hacker from going further...
-                    
-                    &lt;H1&gt;External References&lt;/H1&gt;
-                    &lt;OL&gt;
-                    &lt;LI&gt;OWASP Technical Risks of Reverse Engineering and Unauthorized Code Modification - &lt;i&gt;&lt;a href=&quot;https://www.owasp.org/index.php/Technical_Risks_of_Reverse_Engineering_and_Unauthorized_Code_Modification#Exposed_String_Tables&quot;&gt;Exposed String Tables&lt;/a&gt;&lt;/i&gt;&lt;/LI&gt;
-                    &lt;LI&gt;OWASP Mobile Top Ten 2014 - &lt;i&gt;&lt;a href=&quot;https://www.owasp.org/index.php/Mobile_Top_10_2014-M10&quot;&gt;M10&lt;/a&gt;&lt;/i&gt;&lt;/LI&gt;
-                    &lt;/OL&gt;
-                </string>
-			</dict>
-		</array>
-	</dict>
 	<key>Tampering</key>
 	<dict>
 		<key>description</key>
@@ -254,7 +184,7 @@
 					<string>If you received a message telling you that your credentials were compromised, you&apos;ve finished the first part.</string>
 				</array>
 				<key>initialViewController</key>
-				<string>RemoteAuthenticationExerciseController</string>
+				<string>RemoteAuthenticationExerciseVC</string>
 				<key>name</key>
 				<string>Remote Authentication</string>
 				<key>solution</key>
@@ -637,7 +567,7 @@ Pinning is the process of a mobile app verifying an SSL server&apos;s identity t
                         all the data in the database.</string>
 				</array>
 				<key>initialViewController</key>
-				<string>SQLInjectionExerciseController</string>
+				<string>SQLInjectionExerciseVC</string>
 				<key>name</key>
 				<string>SQL Injection</string>
 				<key>solution</key>
@@ -663,7 +593,7 @@ Pinning is the process of a mobile app verifying an SSL server&apos;s identity t
 					<string>Can you try most common XSS payload?</string>
 				</array>
 				<key>initialViewController</key>
-				<string>CrossSiteScriptingExerciseViewController</string>
+				<string>CrossSiteScriptingExerciseVC</string>
 				<key>name</key>
 				<string>Cross Site Scripting</string>
 				<key>solution</key>
@@ -877,7 +807,7 @@ Pinning is the process of a mobile app verifying an SSL server&apos;s identity t
 					<string>Can you identify hard coded encryption key in code?</string>
 				</array>
 				<key>initialViewController</key>
-				<string>BrokenCryptographyExerciseViewController</string>
+				<string>BrokenCryptographyExerciseVC</string>
 				<key>name</key>
 				<string>Hardcoded Keys</string>
 				<key>solution</key>
@@ -893,7 +823,7 @@ Pinning is the process of a mobile app verifying an SSL server&apos;s identity t
 					<string>Look into one of side channel data leakage.</string>
 				</array>
 				<key>initialViewController</key>
-				<string>RandomKeyGenerationExerciseViewController</string>
+				<string>RandomKeyGenerationExerciseVC</string>
 				<key>name</key>
 				<string>Random Key Generation</string>
 				<key>solution</key>

iGoat-Swift/iGoat-Swift.xcodeproj/project.xcworkspace/xcuserdata/anthonyg.xcuserdatad/UserInterfaceState.xcuserstate

@@ -11,13 +11,15 @@
       "scale" : "3x"
     },
     {
-      "idiom" : "iphone",
       "size" : "29x29",
+      "idiom" : "iphone",
+      "filename" : "igoat_icon_58x58.png",
       "scale" : "2x"
     },
     {
-      "idiom" : "iphone",
       "size" : "29x29",
+      "idiom" : "iphone",
+      "filename" : "igoat_icon_1_87x87.png",
       "scale" : "3x"
     },
     {
@@ -31,13 +33,15 @@
       "scale" : "3x"
     },
     {
-      "idiom" : "iphone",
       "size" : "60x60",
+      "idiom" : "iphone",
+      "filename" : "igoat_icon_2_120x120.png",
       "scale" : "2x"
     },
     {
-      "idiom" : "iphone",
       "size" : "60x60",
+      "idiom" : "iphone",
+      "filename" : "igoat_icon_3_180x180.png",
       "scale" : "3x"
     },
     {