Android Penetration Testing Notes

10 January, 201811 January, 2018

https://www.youtube.com/playlist?list=PLWPirh4EWFpESLreb04c4eZoCvJQJrC6H

Android Penetration Testing

Android Application Development Process

Android Applications Components

Setting Up A testing Lap

Santoku OS

https://santoku-linux.com

vitrualbox

genymotion

Android Debug Bridge

Android Startup Process

Unzipping Archive

Reversing (decompiling) Android Application

Dex File

DEX file Structure

Hex Dump – cannot analyze so Dexdump or 010 Editor

JD-Gui

OWASP MOBILE TOP 10

Analyzing Traffic

Passive and Active

Damn Insecure and Vulnerable Application(DIVA)

INSECURE LOGGING
HARDCODING ISSUES
INSECURE DATA STORAGE
DATABASE INSECURE STORAGE
TEMPORARY FILESTORAGE
EXTERNAL INSECURE DATA STORAGE
SQL INJECTION
ABUSING WEB VIEW
ACCESS CONTROL ISSUES
AUTHENTICATION BASED ACCESS CONTROL ISSUES
LEAKING CONTENT PROVIDER
HARDCODING ISSUES JNI

Leave a Reply Cancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

iOS Dev Weekly - Issue 650 - Mar 1st 2024 1 March, 2024
Comment People often ask me about a new app idea they want to build, and one thing I always try to think about is, “Is this app boring enough?” Obviously, “boring” is subjective, but the number of success stories I have heard over the years where the problem isn’t glamorous and the solution doesn’t leverage […]
iOS Dev Weekly - Issue 649 - Feb 23rd 2024 23 February, 2024
Comment I know it's possibly a less popular opinion recently, but I still love and appreciate developers who put their time and attention to platform fit on Apple platforms. I also love it when Apple makes it easier for developers to pay attention to platform fit through their APIs. The big win in this area […]
iOS Dev Weekly - Issue 648 - Feb 16th 2024 16 February, 2024
Comment Did you see Chris Eidhof's announcement of The SwiftUI Field Guide this week? At first glance, you might take a quick look and think it's a well-illustrated guide to SwiftUI, but it's so much more than that. It's a fully dynamic and interactive guide to many aspects of the SwiftUI layout system. You'll even […]
iOS Dev Weekly - Issue 647 - Feb 9th 2024 9 February, 2024
Comment From Stuart Varrall's recent article on Inspiring Apple Vision Pro Apps: Apps such as Mercury Weather and Longplay change the information displayed in a window depending on the size. Every iOS-based platform so far has imposed a space limitation on apps. On iPhone, it's a challenge to design apps that need to present lots […]
iOS Dev Weekly - Issue 646 - Feb 2nd 2024 2 February, 2024
Comment From John Gruber’s excellent summary of last week’s DMA proposal: The Core Technology Fee (CTF) disrupts the free/freemium model used by Apple’s biggest rivals and competitors. Meta’s apps are all free: WhatsApp, Instagram, Facebook, and now Threads. Meta has paid Apple effectively nothing for those apps, ever. The YouTube app offers IAP subscriptions but […]
iOS Dev Weekly - Issue 645 - Jan 26th 2024 26 January, 2024
Comment I've been enjoying all the memories of the Mac that have been everywhere this week as we reach the 40th birthday of Macintosh. My favourite story was sent out only via email from the Steve Jobs Archive, but there have been stories and videos everywhere. I've written about the first Mac I ever purchased […]
iOS Dev Weekly - Issue 644 - Jan 19th 2024 19 January, 2024
Comment Happy Vision Pro pre-order day, at least it is if you live in 🇺🇸! I'd like nothing more than to write more about visionOS today, but there was some more significant news announced earlier this week. Apple's announcement of court-mandated changes to the rules allowing links to external sites with alternative purchase methods. I […]
iOS Dev Weekly - Issue 643 - Jan 12th 2024 12 January, 2024
Comment Get ready! 😍 The time for wondering when “early next year” might happen is over, as Apple announced availability for its newest platform earlier this week, and it’s only three weeks away! 🎉 Does that mean you can submit apps to the store already? Yes, it does, and if you can’t wait to see […]
iOS Dev Weekly - Issue 642 - Jan 5th 2024 5 January, 2024
Comment Happy New Year everyone! I hope you are all feeling rested and enthusiastic for the year ahead. It might be a notable one, too, with the debut of you know what. I don’t want to start the year thinking about shiny new products, though. I want to make an offer to the community around […]
iOS Dev Weekly - Issue 641 - Dec 29th 2023 29 December, 2023
Comment Here we are at the end of another year, and as tradition now dictates, that means it’s time for the “Best Of And Finally…” issue! There’s no double-anonymized voting system going on with how I picked this “best of“. I just opened up every issue of the newsletter I published during 2023, read the […]