Book Image

Hacking Android

By : Srinivasa Rao Kotipalli
Book Image

Hacking Android

By: Srinivasa Rao Kotipalli

Overview of this book

With the mass explosion of Android mobile phones in the world, mobile devices have become an integral part of our everyday lives. Security of Android devices is a broad subject that should be part of our everyday lives to defend against ever-growing smartphone attacks. Everyone, starting with end users all the way up to developers and security professionals should care about android security. Hacking Android is a step-by-step guide that will get you started with Android security. You’ll begin your journey at the absolute basics, and then will slowly gear up to the concepts of Android rooting, application security assessments, malware, infecting APK files, and fuzzing. On this journey you’ll get to grips with various tools and techniques that can be used in your everyday pentests. You’ll gain the skills necessary to perform Android application vulnerability assessment and penetration testing and will create an Android pentesting lab.

Related Content you might be interested in

Current Title:

Small book image
Hacking Android
Srinivasa Rao Kotipalli
Jul, 2016 | 376 pages
No titles found
Table of Contents (17 chapters)
Hacking Android
Hacking Android
Credits
Credits
About the Authors
About the Authors
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Setting Up the Lab
Setting Up the Lab
Installing the required tools
Android Studio
Setting up an AVD
Configuring the AVD
ADB Primer
Summary
2
Android Rooting
Android Rooting
What is rooting?
Locked and unlocked boot loaders
Stock recovery and Custom recovery
Rooting Process and Custom ROM installation
Rooting a Samsung Note 2
Flashing the Custom ROM to the phone
Summary
3
Fundamental Building Blocks of Android Apps
Fundamental Building Blocks of Android Apps
Basics of Android apps
Android app components
Building DEX files from the command line
What happens when an app is run?
Understanding app sandboxing
Summary
4
Overview of Attacking Android Apps
Overview of Attacking Android Apps
Introduction to Android apps
Understanding the app's attack surface
Threats at the client side
Threats at the backend
Guidelines for testing and securing mobile apps
Automated tools
Identifying the attack surface
QARK (Quick Android Review Kit)
Summary
5
Data Storage and Its Security
Data Storage and Its Security
What is data storage?
Shared preferences
SQLite databases
Internal storage
External storage
User dictionary cache
Insecure data storage – NoSQL database
Backup techniques
Being safe
Summary
6
Server-Side Attacks
Server-Side Attacks
Different types of mobile apps and their threat model
Mobile applications server-side attack surface
Strategies for testing mobile backend
Summary
7
Client-Side Attacks – Static Analysis Techniques
Client-Side Attacks – Static Analysis Techniques
Attacking application components
Static analysis using QARK:
Summary
8
Client-Side Attacks – Dynamic Analysis Techniques
Client-Side Attacks – Dynamic Analysis Techniques
Automated Android app assessments using Drozer
Introduction to Cydia Substrate
Runtime monitoring and analysis using Introspy
Hooking using Xposed framework
Dynamic instrumentation using Frida
Logging based vulnerabilities
WebView attacks
Summary
9
Android Malware
Android Malware
What do Android malwares do?
Writing Android malwares
Registering permissions
Malware analysis
Tools for automated analysis
Summary
10
Attacks on Android Devices
Attacks on Android Devices
MitM attacks
Dangers with apps that provide network level access
Using existing exploits
Malware
Bypassing screen locks
Pulling data from the sdcard
Summary
Index
Index

MitM attacks

MitM attacks are one of the most common attacks on mobile devices, as users tend to connect to public Wi-Fi networks so often. Being able to perform MitM on a device not only provides data to the attacker when the user transmits it over an insecure network, but also provides a way to tamper with his communications and exploit vulnerabilities in certain scenarios. WebView addJavaScriptInterface vulnerability is one good example where the attacker needs to intercept communications and inject arbitrary JavaScript into the HTTP response in order to gain complete access to the victim's device. We will discuss how one can achieve code execution by exploiting addJavaScriptInterface vulnerability using the Metasploit framework in a later section of this chapter. This section shows one of the oldest attacks on the Internet that can be used to intercept HTTP communications using a tool called Ettercap.

In Chapter 1, Setting Up the Lab we mentioned that readers should have Kali Linux downloaded...

Previous Section
End of Section 2
Next Section