Android Security and Penetration Testing

  1. Static Analysis (SAST)
    1. Deconstructing the APK File
      1. Understanding the APK Structure
        1. AndroidManifest.xml
          1. classes.dex
            1. resources.arsc
              1. res/ Folder
                1. lib/ Folder
                  1. assets/ Folder
                    1. META-INF/ Folder
                    2. Extracting APK Contents
                      1. Using Unzip
                        1. Using APKTool
                          1. File System Analysis
                        2. Decompiling and Disassembling
                          1. Using APKTool for Disassembly
                            1. Smali Code Analysis
                              1. Resource Extraction
                                1. Rebuilding APKs
                                2. Converting DEX to JAR
                                  1. Using dex2jar
                                    1. Handling Multiple DEX Files
                                    2. Decompiling JAR to Java Source
                                      1. Using JADX
                                        1. Using JD-GUI
                                          1. Handling Obfuscated Code
                                        2. Analyzing the Android Manifest
                                          1. Identifying App Components
                                            1. Activities
                                              1. Exported Activities
                                                1. Intent Filters
                                                2. Services
                                                  1. Exported Services
                                                    1. Service Types
                                                    2. Broadcast Receivers
                                                      1. Exported Receivers
                                                        1. Intent Filters
                                                        2. Content Providers
                                                          1. Exported Providers
                                                            1. URI Patterns
                                                          2. Reviewing Permissions
                                                            1. Dangerous Permissions
                                                              1. Unused Permissions
                                                                1. Custom Permissions
                                                                2. Checking for Exported Components
                                                                  1. Exported Attribute Analysis
                                                                    1. Security Risks of Exported Components
                                                                      1. Intent Filter Vulnerabilities
                                                                      2. Identifying Hardcoded API Keys and Secrets
                                                                        1. Manifest Inspection
                                                                          1. Resource File Analysis
                                                                            1. String Resource Examination
                                                                            2. Analyzing URL Schemes
                                                                              1. Custom Scheme Registration
                                                                                1. Intent Filter Analysis
                                                                              2. Source Code and Resource Analysis
                                                                                1. Searching for Hardcoded Credentials and Sensitive Information
                                                                                  1. API Keys
                                                                                    1. Passwords
                                                                                      1. Endpoints
                                                                                        1. Database Credentials
                                                                                        2. Identifying Insecure Cryptographic Implementations
                                                                                          1. Weak Algorithms
                                                                                            1. Hardcoded Keys
                                                                                              1. Poor Key Management
                                                                                                1. Insecure Random Number Generation
                                                                                                2. Reviewing Native Libraries for Vulnerabilities
                                                                                                  1. Buffer Overflows
                                                                                                    1. Unsafe JNI Usage
                                                                                                      1. Memory Corruption Issues
                                                                                                      2. Checking for Debugging Code and Logs
                                                                                                        1. Debug Flags
                                                                                                          1. Logging Sensitive Data
                                                                                                            1. Test Code in Production
                                                                                                            2. Analyzing WebView Usage
                                                                                                              1. JavaScript Enabled
                                                                                                                1. File Access Settings
                                                                                                                  1. Mixed Content Handling
                                                                                                                2. Automated Static Analysis
                                                                                                                  1. Using MobSF for Automated Scanning
                                                                                                                    1. Upload and Analysis Process
                                                                                                                      1. Configuration Options
                                                                                                                      2. Interpreting Automated Analysis Reports
                                                                                                                        1. Identifying False Positives
                                                                                                                          1. Prioritizing Findings
                                                                                                                            1. Understanding Severity Levels
                                                                                                                            2. Custom Rule Development
                                                                                                                              1. SAST Rule Creation
                                                                                                                                1. Pattern Matching
                                                                                                                                2. Integration with CI/CD Pipelines

                                                                                                                              Previous

                                                                                                                              2. Setting Up a Penetration Testing Environment

                                                                                                                              Go to top

                                                                                                                              Next

                                                                                                                              4. Dynamic Analysis (DAST)