Android Security and Penetration Testing

6.

Common Android Vulnerabilities (OWASP Mobile Top 10)

6.1.

M1: Improper Platform Usage

6.1.1.

Misuse of Platform Features

6.1.1.1.

6.1.1.2.

Permission Abuse

6.1.2.

Insecure Intent Usage

6.1.2.1.

Implicit Intents

6.1.2.2.

Intent Spoofing

6.1.3.

Keychain Misuse

6.1.4.

6.2.

M2: Insecure Data Storage

6.2.1.

Unencrypted Storage

6.2.1.1.

SQLite Databases

6.2.1.2.

SharedPreferences

6.2.1.3.

Internal Storage

6.2.2.

Insecure External Storage Usage

6.2.2.1.

SD Card Storage

6.2.2.2.

Public Directories

6.2.3.

Logging Sensitive Data

6.2.4.

6.2.5.

Copy/Paste Buffer Leaks

6.3.

M3: Insecure Communication

6.3.1.

Lack of Transport Encryption

6.3.1.1.

6.3.1.2.

Unencrypted Protocols

6.3.2.

Weak SSL/TLS Configuration

6.3.2.1.

Deprecated Protocols

6.3.2.2.

Weak Cipher Suites

6.3.3.

Certificate Validation Issues

6.3.4.

6.4.

M4: Insecure Authentication

6.4.1.

Weak Authentication Mechanisms

6.4.1.1.

Poor Password Policies

6.4.1.2.

Weak Biometric Implementation

6.4.2.

Credential Leakage

6.4.2.1.

Hardcoded Credentials

6.4.2.2.

Credential Storage Issues

6.4.3.

Session Management Flaws

6.4.4.

Broken Multi-factor Authentication

6.5.

M5: Insufficient Cryptography

6.5.1.

Use of Deprecated Algorithms

6.5.1.1.

6.5.1.2.

6.5.2.

Poor Key Management

6.5.2.1.

6.5.2.2.

Weak Key Generation

6.5.3.

Insecure Random Number Generation

6.5.4.

Custom Cryptographic Implementations

6.6.

M6: Insecure Authorization

6.6.1.

Broken Access Controls

6.6.1.1.

Privilege Escalation

6.6.1.2.

Horizontal Privilege Escalation

6.6.2.

Client-side Authorization

6.6.3.

Insecure Direct Object References

6.6.4.

Function Level Access Control Issues

6.7.

M7: Client Code Quality

6.7.1.

Code Injection Vulnerabilities

6.7.1.1.

6.7.1.2.

Command Injection

6.7.2.

6.7.2.1.

Business Logic Bypass

6.7.2.2.

Race Conditions

6.7.3.

Memory Corruption Issues

6.7.4.

Input Validation Failures

6.8.

M8: Code Tampering

6.8.1.

Lack of Integrity Checks

6.8.1.1.

Missing Code Signing Verification

6.8.1.2.

Runtime Application Self Protection (RASP) Absence

6.8.2.

Tamper Detection Bypass

6.8.3.

Binary Patching

6.8.4.

6.9.

M9: Reverse Engineering

6.9.1.

Lack of Obfuscation

6.9.1.1.

Clear Text Code

6.9.1.2.

Readable String Resources

6.9.2.

Exposure of Sensitive Logic

6.9.2.1.

Algorithm Disclosure

6.9.2.2.

Business Logic Exposure

6.9.3.

Debug Information Leakage

6.9.4.

Symbol Table Exposure

6.10.

M10: Extraneous Functionality

6.10.1.

Debug Code in Production

6.10.1.1.

6.10.1.2.

6.10.2.

Unintended Backdoors

6.10.2.1.

Hidden Functionality

6.10.2.2.

Developer Backdoors

6.10.3.

Unused Code Paths

6.10.4.

Administrative Interfaces

Previous

5. Network Traffic Analysis

Go to top

Next

7. Advanced Security Topics