This document provides an overview of Android malware. It begins with background on Android architecture, including that Android applications are packaged in APK files which contain code, resources, and an AndroidManifest file. It discusses Android application components like Activities and Services. It then covers the Android security model, permissions, and the Dalvik virtual machine. The document demonstrates reversing an APK file and outlines steps for creating a basic malware. It concludes with discussions of notable Android malware examples and opportunities for mobile application penetration testing.
Video at http://mrkn.co/andsec
With Android activations reaching a million devices per day, it is no surprise that security threats against our favorite mobile platform have been on the rise.
In this session, you will learn all about Android's security model, including application isolation (sandboxing) and provenance (signing), its permission system and enforcement, data protection features and encryption, as well as enterprise device administration.
Together, we will dig into Android's own internals to see how its security model is applied through the entire Android stack - from the Linux kernel, to the native layers, to the Application Framework services, and to the applications themselves.
Finally, you’ll learn about some of the weaknesses in the Android's model (including rooting, tap-jacking, malware, social-engineering) as well as what can be done to mitigate those threats, such as SE-Linux, memory protection, anti-malware, firewall, and developer best practices.
By the end of this session you will have a better understanding of what it takes to make Android a more trusted component of our personal and professional lives.
Android Application Penetration Testing - Mohammed AdamMohammed Adam
Android Penetration Testing is a process of testing and finding security issues in an android application. It involves decompiling, real-time analyzing and testing android application for security point of view. This Slides covers real-time testing of android applications and some security issues like insecure logging, leaking content providers, insecure data storage and access control issues.
This talk is going to give an overview of Android operating system and it´s apps ecosystem from the security point of view of a penetration tester.
So lets dive into topics like Pentest Environment Setup, Tools of the Trade, App Analysis and some security hints for Android developers.
Hacker Halted 2014 - Reverse Engineering the Android OSEC-Council
Introduction to the Android OS. the Android Developers Kit, Android Emulators, Rooting Android devices, de-compiling Android Apps. Dex2jar, Java JD_GUI and so on. During the presentation I will pull an App apart and show how to bypass a login screen.
What better way to express the Zombie Apocalypse then with mobile devices. They are ubiquitous. they are carried everywhere, they go everywhere. Having a decent understanding of the Operating System and it’s vulnerabilities can go a long way towards keeping your device protected.
Mobile apps are the entry point to your web applications, APIs and web services. But sometimes the developer implements security in the mobile app that can easily be bypassed by a malicious attacker, allowing the attacker to exploit your web applications and steal confidential information. In this presentation I will show you how easy it is to attack a mobile application, intercept the communication and exploit the trust model of mobile apps. I will also give an overview of the OWASP Top 10 Mobile Risks.
Basic Android OS security mechanism,
Basic malware definition
Attacking Android platform with
Malware, Remote access, File is stealing and Social Engeering attack is methods have been done discussing in the class.
Attacking the Android:
Installing Kali Linux on android to perform attacks
Installing Dsploit for running attack with android (MITM, XSS, traffic sniffing…. Etc.)
These slides were presented at GDG MeetUp in Bangalore which was held on 21st September 2013. Uploading the slides to help the people who wanted the slide Deck
Video at http://mrkn.co/andsec
With Android activations reaching a million devices per day, it is no surprise that security threats against our favorite mobile platform have been on the rise.
In this session, you will learn all about Android's security model, including application isolation (sandboxing) and provenance (signing), its permission system and enforcement, data protection features and encryption, as well as enterprise device administration.
Together, we will dig into Android's own internals to see how its security model is applied through the entire Android stack - from the Linux kernel, to the native layers, to the Application Framework services, and to the applications themselves.
Finally, you’ll learn about some of the weaknesses in the Android's model (including rooting, tap-jacking, malware, social-engineering) as well as what can be done to mitigate those threats, such as SE-Linux, memory protection, anti-malware, firewall, and developer best practices.
By the end of this session you will have a better understanding of what it takes to make Android a more trusted component of our personal and professional lives.
Android Application Penetration Testing - Mohammed AdamMohammed Adam
Android Penetration Testing is a process of testing and finding security issues in an android application. It involves decompiling, real-time analyzing and testing android application for security point of view. This Slides covers real-time testing of android applications and some security issues like insecure logging, leaking content providers, insecure data storage and access control issues.
This talk is going to give an overview of Android operating system and it´s apps ecosystem from the security point of view of a penetration tester.
So lets dive into topics like Pentest Environment Setup, Tools of the Trade, App Analysis and some security hints for Android developers.
Hacker Halted 2014 - Reverse Engineering the Android OSEC-Council
Introduction to the Android OS. the Android Developers Kit, Android Emulators, Rooting Android devices, de-compiling Android Apps. Dex2jar, Java JD_GUI and so on. During the presentation I will pull an App apart and show how to bypass a login screen.
What better way to express the Zombie Apocalypse then with mobile devices. They are ubiquitous. they are carried everywhere, they go everywhere. Having a decent understanding of the Operating System and it’s vulnerabilities can go a long way towards keeping your device protected.
Mobile apps are the entry point to your web applications, APIs and web services. But sometimes the developer implements security in the mobile app that can easily be bypassed by a malicious attacker, allowing the attacker to exploit your web applications and steal confidential information. In this presentation I will show you how easy it is to attack a mobile application, intercept the communication and exploit the trust model of mobile apps. I will also give an overview of the OWASP Top 10 Mobile Risks.
Basic Android OS security mechanism,
Basic malware definition
Attacking Android platform with
Malware, Remote access, File is stealing and Social Engeering attack is methods have been done discussing in the class.
Attacking the Android:
Installing Kali Linux on android to perform attacks
Installing Dsploit for running attack with android (MITM, XSS, traffic sniffing…. Etc.)
These slides were presented at GDG MeetUp in Bangalore which was held on 21st September 2013. Uploading the slides to help the people who wanted the slide Deck
"I haz you and pwn your maal" by Harsimran Walia @b44nz0r at c0c0n - International Cyber Security and Policing Conference http://is-ra.org/c0c0n/speakers.html
Fruit vs Zombies: Defeat Non-jailbroken iOS Malware by Claud XiaoShakacon
Since 2014, fifteen new malware or riskware families successfully attacked non-jailbroken iOS devices (e.g., WireLurker, Oneclickfraud, XcodeGhost, InstaAgent, ZergHelper, AceDeceiver), affected thousands of iOS apps and tens of millions users around the world. Ten of them even bypassed Apple’s code vetting and occurred at App Store. In this presentation, we will systematically study how could these malware, riskware and some Proof-of-Concepts infect non-jailbroken devices via practical vectors and approaches including abusing development certificates, bypassing code review by obfuscation, performing FairPlay MITM attack, abusing MDM solution, abusing private APIs, exploiting design flaws or app level vulnerabilities, and stealing privacy data. For each topic, we will introduce its implementation, explore real world cases, analyze its risky and consequences, explain Apple’s countermeasures, and discuss why some problems will still exist in near future. We will also share some stories of how we discovered those interesting iOS malware. Through this topic, audiences could make more effective policies to protect iOS devices in their organizations, build their own systems/tools to evaluate security risks in iOS apps, and hunt more iOS malware in the future.
• Introduction Of Android
• History Of Android
• Android Versions
• Android Architecture
• Features Of Android
• Advantages Of Android And Disadvantages
• Conclusion
Android is a mobile operating system developed by Google, based on the Linux kernel and designed primarily for touchscreen mobile devices such as smartphones and tablets. Android's user interface is mainly based on direct manipulation, using touch gestures that loosely correspond to real-world actions, such as swiping, tapping and pinching, to manipulate on-screen objects, along with a virtual keyboard for text input. In addition to touchscreen devices, Google has further developed Android TV for televisions, Android Auto for cars, and Android Wear for wrist watches, each with a specialized user interface. Variants of Android are also used on notebooks, game consoles, digital cameras, and other electronics.
Android has the largest installed base of all operating systems (OS) of any kind.Android has been the best selling OS on tablets since 2013, and on smartphones it is dominant by any metric.
Initially developed by Android, Inc., which Google bought in 2005,Android was unveiled in 2007 along with the founding of the Open Handset Alliance – a consortium of hardware, software, and telecommunication companies devoted to advancing open standards for mobile devices.As of July 2013, the Google Play store has had over one million Android applications ("apps") published – including many "business-class apps"that rival competing mobile platforms – and over 50 billion applications downloaded.An April–May 2013 survey of mobile application developers found that 71% of developers create applications for Android,and a 2015 survey found that 40% of full-time professional developers see Android as their priority target platform, which is comparable to Apple's iOS on 37% with both platforms far above others.In September 2015, Android had 1.4 billion monthly active devices.
Android's source code is released by Google under open source licenses, although most Android devices ultimately ship with a combination of open source and proprietary software, including proprietary software required for accessing Google services.Android is popular with technology companies that require a ready-made, low-cost and customizable operating system for high-tech devices.Its open nature has encouraged a large community of developers and enthusiasts to use the open-source code as a foundation for community-driven projects, which deliver updates to older devices, add new features for advanced users or bring Android to devices originally shipped with other operating systems. The success of Android has made it a target for patent (and copyright) litigation as part of the so-called "smartphone wars" between technology companies.
Android is a mobile operating system developed by Google, based on the Linux kernel and designed primarily for touchscreen mobile devices such as smartphones and tablets. Android's user interface is mainly based on direct manipulation, using touch gestures that loosely correspond to real-world actions, such as swiping, tapping and pinching, to manipulate on-screen objects, along with a virtual keyboard for text input. In addition to touchscreen devices, Google has further developed Android TV for televisions, Android Auto for cars, and Android Wear for wrist watches, each with a specialized user interface. Variants of Android are also used on notebooks, game consoles, digital cameras, and other electronics.
Android has the largest installed base of all operating systems (OS) of any kind.Android has been the best selling OS on tablets since 2013, and on smartphones it is dominant by any metric.
Initially developed by Android, Inc., which Google bought in 2005,Android was unveiled in 2007 along with the founding of the Open Handset Alliance – a consortium of hardware, software, and telecommunication companies devoted to advancing open standards for mobile devices.As of July 2013, the Google Play store has had over one million Android applications ("apps") published – including many "business-class apps"that rival competing mobile platforms – and over 50 billion applications downloaded.An April–May 2013 survey of mobile application developers found that 71% of developers create applications for Android,and a 2015 survey found that 40% of full-time professional developers see Android as their priority target platform, which is comparable to Apple's iOS on 37% with both platforms far above others.In September 2015, Android had 1.4 billion monthly active devices.
Android's source code is released by Google under open source licenses, although most Android devices ultimately ship with a combination of open source and proprietary software, including proprietary software required for accessing Google services.Android is popular with technology companies that require a ready-made, low-cost and customizable operating system for high-tech devices.Its open nature has encouraged a large community of developers and enthusiasts to use the open-source code as a foundation for community-driven projects, which deliver updates to older devices, add new features for advanced users or bring Android to devices originally shipped with other operating systems. The success of Android has made it a target for patent (and copyright) litigation as part of the so-called "smartphone wars" between technology companies.
Visual Studio 2015: novità per gli sviluppatori iOS, Android e Cross-PlatformStefano Ottaviani
Durante la conferenza Build, Microsoft ha presentato interessanti novità sullo sviluppo mobile e cross-platform. Alcune di queste riguardano gli sviluppatori iOS e Android, che avranno ulteriori strumenti a disposizione per aumentare la diffusione delle proprie app, riutilizzando il codice già scritto nativamente per queste due piattaforme (in Objective-C, Java, e magari in futuro anche Swift).
Alla luce di queste novità, faremo il punto della situazione sullo sviluppo mobile, discutendo le strategie per scegliere quale tecnologia usare per la nostra prossima app, tra sviluppo nativo o con tool come Xamarin e Apache Cordova.
This talk shows the possibilities of reversing Android applications. After an introduction about Android issues in the past, Tobias Ospelt explains how he managed to download several thousand Android applications from the Google Market, and which security issues are present in various apps. Apps can be decompiled, altered and recompiled, which means that for most apps it is very easy to steal code or to include malware. Some of the apps use obfuscation to disguise the code, but for example encryption keys can easily be extracted. Small game developers, as well as big companies are not aware of the risk that their code can be decompiled to java and disassembled to smali code. This is how a lot of protection mechanisms can be circumvented, such as licensing (cracking a Game) or corporate solutions (enforcing policies on the mobile). The talk shows how easy everybody can reverse android apps and how encryption keys can be extracted, even when the code is obfuscated. The material is a nice follow-up to the Android talk of Jesse Burns from last year at #days, although this talk is more focused on the apps and shows some more hacks/code/encryption/obfuscation/reversing.
Bio: Tobias Ospelt is working as a security expert and tester for Dreamlab Technologies AG in Bern. He is mainly involved in web application and mobile security penetration tests. Tobias Ospelt joined Dreamlab after having achieved his Master Degree focusing IT-Security, and after having worked as a Research Assistant at the Zurich University of Applied Sciences.
2013 Toorcon San Diego Building Custom Android Malware for Penetration TestingStephan Chenette
In this presentation Stephan will discuss some recent research that emerged he was asked to build malicious applications that bypassed custom security controls. He will walk through some of the basics of reversing malicious apps for android as well as common android malware techniques and methodologies. From the analysis of the wild android malware, he will discuss techniques and functionality to include when penetration testing against 3rd-party android security controls.
BIO
Stephan Chenette is the Director of Security Research and Development at IOActive where he conducts ongoing research to support internal and external security initiatives within the IOActive Labs. Stephan has been in involved in security research for the last 10 years and has presented at numerous conferences including: Blackhat, CanSecWest, RSA, EkoParty, RECon, AusCERT, ToorCon, SecTor, SOURCE, OWASP, B-Sides and PacSec. His specialty is in writing research tools for both the offensive and defensive front as well as investigating next generation emerging threats. He has released public analyses on various vulnerabilities and malware. Prior to joining IOActive, Stephan was the head security researcher at Websense for 6 years and a security software engineer for 4 years working in research and product development at eEye Digital Security.
How iOS and Android Handle Security WebinarDenim Group
This webinar takes a technical look at mobile security in iOS and Android and how each of the platforms handle security differently. During the webinar, Dan will cover numerous mobile security topics including mobile secure development, defeating platform environment restrictions and their respective permission models and how to protect network communications.
The 60-minute webinar will provide actionable information to help build a more secure mobile application development program with time for questions.
2024.06.01 Introducing a competency framework for languag learning materials ...Sandy Millin
http://sandymillin.wordpress.com/iateflwebinar2024
Published classroom materials form the basis of syllabuses, drive teacher professional development, and have a potentially huge influence on learners, teachers and education systems. All teachers also create their own materials, whether a few sentences on a blackboard, a highly-structured fully-realised online course, or anything in between. Despite this, the knowledge and skills needed to create effective language learning materials are rarely part of teacher training, and are mostly learnt by trial and error.
Knowledge and skills frameworks, generally called competency frameworks, for ELT teachers, trainers and managers have existed for a few years now. However, until I created one for my MA dissertation, there wasn’t one drawing together what we need to know and do to be able to effectively produce language learning materials.
This webinar will introduce you to my framework, highlighting the key competencies I identified from my research. It will also show how anybody involved in language teaching (any language, not just English!), teacher training, managing schools or developing language learning materials can benefit from using the framework.
Instructions for Submissions thorugh G- Classroom.pptxJheel Barad
This presentation provides a briefing on how to upload submissions and documents in Google Classroom. It was prepared as part of an orientation for new Sainik School in-service teacher trainees. As a training officer, my goal is to ensure that you are comfortable and proficient with this essential tool for managing assignments and fostering student engagement.
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdfTechSoup
In this webinar you will learn how your organization can access TechSoup's wide variety of product discount and donation programs. From hardware to software, we'll give you a tour of the tools available to help your nonprofit with productivity, collaboration, financial management, donor tracking, security, and more.
Operation “Blue Star” is the only event in the history of Independent India where the state went into war with its own people. Even after about 40 years it is not clear if it was culmination of states anger over people of the region, a political game of power or start of dictatorial chapter in the democratic setup.
The people of Punjab felt alienated from main stream due to denial of their just demands during a long democratic struggle since independence. As it happen all over the word, it led to militant struggle with great loss of lives of military, police and civilian personnel. Killing of Indira Gandhi and massacre of innocent Sikhs in Delhi and other India cities was also associated with this movement.
Model Attribute Check Company Auto PropertyCeline George
In Odoo, the multi-company feature allows you to manage multiple companies within a single Odoo database instance. Each company can have its own configurations while still sharing common resources such as products, customers, and suppliers.
We all have good and bad thoughts from time to time and situation to situation. We are bombarded daily with spiraling thoughts(both negative and positive) creating all-consuming feel , making us difficult to manage with associated suffering. Good thoughts are like our Mob Signal (Positive thought) amidst noise(negative thought) in the atmosphere. Negative thoughts like noise outweigh positive thoughts. These thoughts often create unwanted confusion, trouble, stress and frustration in our mind as well as chaos in our physical world. Negative thoughts are also known as “distorted thinking”.
How to Split Bills in the Odoo 17 POS ModuleCeline George
Bills have a main role in point of sale procedure. It will help to track sales, handling payments and giving receipts to customers. Bill splitting also has an important role in POS. For example, If some friends come together for dinner and if they want to divide the bill then it is possible by POS bill splitting. This slide will show how to split bills in odoo 17 POS.
The Roman Empire A Historical Colossus.pdfkaushalkr1407
The Roman Empire, a vast and enduring power, stands as one of history's most remarkable civilizations, leaving an indelible imprint on the world. It emerged from the Roman Republic, transitioning into an imperial powerhouse under the leadership of Augustus Caesar in 27 BCE. This transformation marked the beginning of an era defined by unprecedented territorial expansion, architectural marvels, and profound cultural influence.
The empire's roots lie in the city of Rome, founded, according to legend, by Romulus in 753 BCE. Over centuries, Rome evolved from a small settlement to a formidable republic, characterized by a complex political system with elected officials and checks on power. However, internal strife, class conflicts, and military ambitions paved the way for the end of the Republic. Julius Caesar’s dictatorship and subsequent assassination in 44 BCE created a power vacuum, leading to a civil war. Octavian, later Augustus, emerged victorious, heralding the Roman Empire’s birth.
Under Augustus, the empire experienced the Pax Romana, a 200-year period of relative peace and stability. Augustus reformed the military, established efficient administrative systems, and initiated grand construction projects. The empire's borders expanded, encompassing territories from Britain to Egypt and from Spain to the Euphrates. Roman legions, renowned for their discipline and engineering prowess, secured and maintained these vast territories, building roads, fortifications, and cities that facilitated control and integration.
The Roman Empire’s society was hierarchical, with a rigid class system. At the top were the patricians, wealthy elites who held significant political power. Below them were the plebeians, free citizens with limited political influence, and the vast numbers of slaves who formed the backbone of the economy. The family unit was central, governed by the paterfamilias, the male head who held absolute authority.
Culturally, the Romans were eclectic, absorbing and adapting elements from the civilizations they encountered, particularly the Greeks. Roman art, literature, and philosophy reflected this synthesis, creating a rich cultural tapestry. Latin, the Roman language, became the lingua franca of the Western world, influencing numerous modern languages.
Roman architecture and engineering achievements were monumental. They perfected the arch, vault, and dome, constructing enduring structures like the Colosseum, Pantheon, and aqueducts. These engineering marvels not only showcased Roman ingenuity but also served practical purposes, from public entertainment to water supply.
This is a presentation by Dada Robert in a Your Skill Boost masterclass organised by the Excellence Foundation for South Sudan (EFSS) on Saturday, the 25th and Sunday, the 26th of May 2024.
He discussed the concept of quality improvement, emphasizing its applicability to various aspects of life, including personal, project, and program improvements. He defined quality as doing the right thing at the right time in the right way to achieve the best possible results and discussed the concept of the "gap" between what we know and what we do, and how this gap represents the areas we need to improve. He explained the scientific approach to quality improvement, which involves systematic performance analysis, testing and learning, and implementing change ideas. He also highlighted the importance of client focus and a team approach to quality improvement.
3. Agenda
• Android OS Basics
• Inside the APK
• Android Security Model
• Reversing the codes
• Some case studies
• Making our own malware
• Malware = Money
• Mobile App Pentesting
4. What is Android
• Software Stack including OS,
middleware and applications
• Developed by Google and
OHA(Open Handset Alliance)
• Largest Market Share, more than
Symbian and IOS.
5. Why Android
• Everywhere! (TV, phones, tablets)
• Easy to expl0it + Open Source
• Runs on Linux 2.6.x kernel
• Uses SQLite database
• Huge community base
• Official market containing over 4,00,000 apps
8. Android Applications
• .apk (Android Package)
format
• Nothing more than a zip
file.
• Written exclusively in Java,
with native libraries in
C/C++.
• Composed of components
such as Activities, Services,
Broadcast Recievers, etc.
10. ACTIVITY
• Screen to let users interact
• Consists of views ( Buttons,
TextView, ImageView, Table
view, List view etc)
• “main” activity presented
on start
• Lifecycle is “LIFO”
11. ACTIVITY
• Follows the Activity
Lifecycle.
• Activity of one
application can be
accessed by other
application*.
• Permission has to be
granted
12. SERVICE
• Performs the work in the background
• Doesn’t comes with a UI
• Can be either stated or bound(or both)
• Example – playing music in the bg, network
activities, file i/o operations etc.
13. Other Components
• Broadcast Reciever
receives and responds to broadcast announcements
Incoming SMS , Screen Off etc.
• Intents
Binds individual components at runtime
• Content Providers
Stores and retrieves the application data
Data stored in an SQLite database
14. • Preinstalled on all
Android devices
• Contains over 4.5 billion
apps
• Anyone can publish
his/her app
15. Permissions.. WTF?
• Declared in
AndroidManifest.xml
• XML file containing all
the components and
permissions
• Can only use the
declared permissions
17. Android Security Model
• Each application is run within a Dalvik Virtual Machine
• With unique UID:GID
• By default no permission is granted
• Permissions required by an application have to be
approved by the user.
• Apk files must be signed with a certificate.
18. UID : 1000
Application 1
UID : 1001
Application 2
UID : 1003
Application 3
UID : 1004
Application 4
UID : 1005
Application 5
SYSTEM PROCESS ( UID : SYSTEM)
LINUX KERNEL
Dalvik VM Dalvik VM Dalvik VM
Dalvik VM Dalvik VM
Android Security Model
20. Created by Dan Bornstein
DVM vs JVM
Virtual System to run the android apps
Register based instead of stack based
Runs the dex(Dalvik Executable) files
30. GEINIMI
• Most sophisticated malware till date.
• Botnet like capabilities
• Multiple variants created on the same device
• Obfuscated code
• Strings decrypted at runtime
• All network data encrypted ( DES with a key - 012345678)
31. GEINIMI
• Three ways of starting (Using service or Broadcast Receivers
• Makes a connection with C&C server
• Identifies each device with unique IMEI & IMSI
• Can be in 5 states (Start, download, parse, transact, idle)
• Info Stealer
• Infected legitimate apps ( Sex Positions, MonkeyJump2 etc. )
(Another reason for not watching porn on mobile! )
32. GEINIMI(continued)
• Botnet Command Capabilities :
o call – Call a number
o Email – Send a email
o Smsrecord – Sends all the sms’es to the server
o Install – install an app
o Shell – get a shell
o Contactlist - get the contact list of the victim
o Wallpaper – change the wallpaper etc.
33. DREAMDROID
• Infected legitimate software
• Hosted at “Android Market”
• Came with exploits namely Exploid ( CVE-2009-1185 ) and
rageagainstthecage(CVE-2010-EASY)
• Multi Staged Payload
• XOR Encrypted data
• Another malware with Botnet capabilities
37. Vulnerable Applications
• GMail App(in <Android v2.1 vuln
to XSS :O
From field: “
onload=window.location=‘http://
google.com’ “@yahoo.com”
(Found by supernothing of
spareclockcycles.org)
• Use this to launch more exploits
such as the Data Stealing Bug or
Free Webkit Exploit
• Steal Emails & SD Card Files
38. Stored Passwords
• Browser passwords stored in database called
webview.db
• Got r00t?
#adbpull/data/data/com.android.browser/databases/webview.db
#sqlitewebview.db
>SELECT*FROMpassword;
39. Insecure Data Storage
# cd /data/data/com.evernote
# ls
cache
databases
shared_prefs
lib
# cd shared_prefs
# ls
com.evernote_preferences.xml
# cat com.evernote_preferences.xml
<?xml version='1.0' encoding='utf-8' standalone='yes' ?>
<map>
<string name="serviceHost"><string
name="username">myusername</string>
<boolean name="ACCOUNT_CHECKED" value="true" />
<string name="password">youcanthackme</string>
<int name="servicePort" value="0" />
<boolean name="NotifyUploadStatus" value="true" />
</map>
#
40. Is that all?
Webkit and platform vulnerabilities
Android 2.0 ,2.1, 2.1.1 WebKit Use-After-Free Exploit
Android 2.0/2.1 Use-After-Free Remote Code Execution on Webkit
Vulnerabilities in Apps, SQLi, XSS, etc.
Use platform vulns to get root & shell
SD card information leakage
XSSF Framework
ROOTSTRAP
Sniffing the network : )
Try MoshZuk & ANTI
41. Is that all?
Get the
Android
version
Run
matching
exploits
Install
malicious
app
Spread
Profit
42. [$]Where is the money?[$]
•Mobile App moolah by Jimmy Shah
•Premium Rates SMSes
•Make malwares for sale
•Click Fraud, BlackHat SEO, Traffic generation, PPC Ads
•Steal Accounts/CCs and sell them
•Get personal information and blackmail the owner
•Sign up to many services with your referral id
•Make a bank phishing app
[$$$]100% Illegal Ways to get rich! [$$$]
Your phone has been hacked!
Transfer $1000 to my account
Or else…….
Acc No : xxxxxxxxxxxxxxxxxxxx
43. [$$]Spread Yourself![$$]
• Forums
• P2P
• Send SMS’es/chat with your download link from the infected user’s phone
• Make a blog of cracked full version of famous android apps!
• Social Network viral scripts
• Android Market
• Amazon App Store
45. The game is over!
• Malware scanners developed for
this platform.
• Lookout(one of the best security
solutions), AVG, Quick Heal,
Kaspersky have come up with
their security solutions.
• Can detect most of the malwares
of this platform.
46. The game is over!
The game is not over yet!
• Can create a malware not detected by the scanners
• Most of them signature based, so, can easily be bypassed.
• Obfuscating code can bypass most of them.
• Disable the AV
• Encryption for network data.
• Use your own “blackhat” creativity!
48. MobileApp Pentesting FTW!
• Decompile the apk after pulling it from the phone.
adb pull /data/app(or app-private)/hello.apk
unzip hello.apk
dex2jar classes.dex
jdgui classes2jar.jar
or convert to smali and then analyse the code
adb pull /data/app/hello.apk
unzip hello.apk
java –jar baksmali.jar –o C:pentestapp classes.dex
OR
apktool d hello.apk
49. MobileApp Pentesting FTW!
• Start Emulator with Proxy
• Install the app in the emulator
• Use Wireshark, Fiddler & Burp Suite to monitor
traffic
• Run the app and check logcat
• WhisperMonitor – Android App to monitor
outgoing traffic
Emulator –avd MYAVD –http-proxy http://127.0.0.1:5001
avd install apptotest.apk
50. MobileApp Pentesting FTW!
Check the security mechanism and encryption used in a
banking or payment app for network data
Manifest Explorer
Strace for debugging system calls and signals
Check the location where the app stores the login credentials.