book

Android Security

by Anmol Misra, Abhishek Dubey

April 2016

Beginner to intermediate

280 pages

5h 4m

English

Auerbach Publications

Read now

Unlock full access

Preliminaries
Dedication
Foreword
Preface
About the BookAssumptionsAudienceSupportStructure
About the Authors
Anmol MisraAbhishek Dubey
Acknowledgments
Chapter 1 Introduction
1.1 Why Android1.2 Evolution of Mobile Threats1.3 Android Overview1.4 Android Marketplaces1.5 SummaryFigure 1.1Figure 1.2Figure 1.3Figure 1.4Figure 1.5Figure 1.6Figure 1.7Figure 1.8Figure 1.9Figure 1.10Figure 1.11Figure 1.12Table 1.1
Chapter 2 Android Architecture
2.1 Android Architecture Overview2.1.1 Linux Kernel2.1.2 Libraries2.1.3 Android Runtime2.1.4 Application Framework2.1.5 Applications2.2 Android Start Up and Zygote2.3 Android SDK and Tools2.3.1 Downloading and Installing the Android SDK2.3.2 Developing with Eclipse and ADT2.3.3 Android Tools2.3.4 DDMS2.3.5 ADB2.3.6 ProGuard2.4 Anatomy of the Hello World Application2.4.1 Understanding Hello World2.5 SummaryFigure 2.1Figure 2.2Figure 2.3Figure 2.4Figure 2.5Figure 2.6Figure 2.7Figure 2.8Figure 2.9Figure 2.10Figure 2.11Figure 2.12Figure 2.13Figure 2.14Figure 2.15Table 2.1Table 2.2Table 2.3Table 2.4Table 2.5Table 2.6
Chapter 3 Android Application Architecture
3.1 Application Components3.1.1 Activities3.1.2 Intents3.1.3 Broadcast Receivers3.1.4 Services3.1.5 Content Providers3.2 Activity Lifecycles3.3 SummaryFigure 3.1Figure 3.2Figure 3.3Figure 3.4Figure 3.5Figure 3.6Figure 3.7Figure 3.8Figure 3.9Figure 3.10Figure 3.11Figure 3.12Table 3.1Table 3.2Table 3.3
Chapter 4 Android (in)Security
4.1 Android Security Model4.2 Permission EnforcementLinux4.3 Androids Manifest Permissions4.3.1 Requesting Permissions4.3.2 Putting It All Together4.4 Mobile Security Issues4.4.1 Device4.4.2 Patching4.4.3 External Storage4.4.4 Keyboards4.4.5 Data Privacy4.4.6 Application Security4.4.7 Legacy Code4.5 Recent Android AttacksA Walkthrough4.5.1 Analysis of DroidDream Variant4.5.2 Analysis of Zsone4.5.3 Analysis of Zitmo Trojan4.6 SummaryFigure 4.1Figure 4.2Figure 4.3Figure 4.4Figure 4.5Figure 4.6Figure 4.7Figure 4.8Figure 4.9Figure 4.10Figure 4.11Figure 4.12Figure 4.13Figure 4.14Figure 4.15Figure 4.16Table 4.1

Chapter 5 Pen Testing Android
5.1 Penetration Testing Methodology5.1.1 External Penetration Test5.1.2 Internal Penetration Test5.1.3 Penetration Test Methodologies5.1.4 Static Analysis5.1.5 Steps to Pen Test Android OS and Devices5.2 Tools for Penetration Testing Android5.2.1 Nmap5.2.2 BusyBox5.2.3 Wireshark5.2.4 Vulnerabilities in the Android OS5.3 Penetration TestingAndroid Applications5.3.1 Android Applications5.3.2 Application Security5.4 Miscellaneous Issues5.4.1 Data Storage on Internal, External, and Cloud5.5 SummaryFigure 5.1Figure 5.2Figure 5.3Figure 5.4Figure 5.5Figure 5.6Figure 5.7Figure 5.8Figure 5.9Figure 5.10Figure 5.11Figure 5.12Figure 5.13 (a)Figure 5.13 (b)Table 5.1
Chapter 6 Reverse Engineering Android Applications
6.1 Introduction6.2 What is Malware?6.3 Identifying Android Malware6.4 Reverse Engineering Methodology for Android Applications6.5 SummaryFigure 6.1Figure 6.2Figure 6.3Figure 6.4Figure 6.5Figure 6.6Figure 6.7Figure 6.8Figure 6.9Figure 6.10Figure 6.11Figure 6.12Figure 6.13Figure 6.14Figure 6.15Figure 6.16Figure 6.17Figure 6.18Figure 6.19Figure 6.20Figure 6.21Figure 6.22Figure 6.23Figure 6.24Figure 6.25Table 6.1Table 6.2Table 6.3Table 6.4
Chapter 7 Modifying the Behavior of Android Applications without Source Code
7.1 Introduction7.1.1 To Add Malicious Behavior7.1.2 To Eliminate Malicious Behavior7.1.3 To Bypass Intended Functionality7.2 DEX File Format7.3 Case Study: Modifying the Behavior of an Application7.4 Real World Example 1Google Wallet Vulnerability7.5 Real World Example 2Skype Vulnerability (CVE-2011-1717)7.6 Defensive Strategies7.6.1 Perform Code Obfuscation7.6.2 Perform Server Side Processing7.6.3 Perform Iterative Hashing and Use Salt7.6.4 Choose the Right Location for Sensitive Information7.6.5 Cryptography7.6.6 Conclusion7.7 SummaryFigure 7.1Figure 7.2Figure 7.3Figure 7.4Figure 7.5Figure 7.6Figure 7.7Figure 7.8Figure 7.9Figure 7.10Figure 7.11Figure 7.12Figure 7.13Figure 7.14Figure 7.15Figure 7.16Figure 7.17Figure 7.18Figure 7.19Figure 7.20
Chapter 8 Hacking Android
8.1 Introduction8.2 Android File System8.2.1 Mount Points8.2.2 File Systems8.2.3 Directory Structure8.3 Android Application Data8.3.1 Storage Options8.3.2 /data/data8.4 Rooting Android Devices8.5 Imaging Android8.6 Accessing Application Databases8.7 Extracting Data from Android Devices8.8 SummaryFigure 8.1Figure 8.2Figure 8.3Figure 8.4Figure 8.5Figure 8.6Figure 8.7Figure 8.8Figure 8.9Figure 8.10Figure 8.11Figure 8.12Figure 8.13Figure 8.14Figure 8.15Figure 8.16Figure 8.17Table 8.1Table 8.2Table 8.3Table 8.4
Chapter 9 Securing Android for the Enterprise Environment
9.1 Android in Enterprise9.1.1 Security Concerns for Android in EnterpriseLack of Physical Control of DevicesUse of User-Owned Untrusted DevicesConnecting to Unapproved and Untrusted NetworksUse of Untrusted ApplicationsConnections with Untrusted SystemsUnknown ContentUse of GPS (location-related services)Lack of Control of Patching Applications and OS9.1.2 End-User Awareness9.1.3 Compliance/Audit Considerations9.1.4 Recommended Security Practices for Mobile Devices9.2 Hardening Android9.2.1 Deploying Android SecurelyUnauthorized Device AccessSetting Up a Screen LockSetting up the SIM LockRemote WipeOther SettingsEncryption9.2.2 Device Administration9.3 SummaryFigure 9.1Figure 9.2Figure 9.3Figure 9.4Figure 9.5Figure 9.6Figure 9.7Figure 9.8Figure 9.9Figure 9.10Figure 9.11Figure 9.12
Chapter 10 Browser Security and Future Threat Landscape
10.1 Mobile HTML Security10.1.1 Cross-Site Scripting10.1.2 SQL Injection10.1.3 Cross-Site Request Forgery10.1.4 Phishing10.2 Mobile Browser Security10.2.1 Browser VulnerabilitiesDrive-by Downloads10.3 The Future Landscape10.3.1 The Phone as a Spying/Tracking Device10.3.2 Controlling Corporate Networks and Other Devices through Mobile Devices10.3.3 Mobile Wallets and NFC10.4 SummaryFigure 10.1Figure 10.2Figure 10.3Figure 10.4Table 10.1Table 10.2
Appendix A
Table A.1
Appendix B: JEB Disassembler and Decompiler Overview
B.1 ViewsB.2 Code ViewsB.3 Keyboard ShortcutsB.4 OptionsFigure B.1Figure B.2Figure B.3Table B.1
Appendix C: Cracking the SecureApp.Apk Application
Glossary
Chapter 1Chapter 2Chapter 3Chapter 4Chapter 5Chapter 6Chapter 7Chapter 8Chapter 9Chapter 10

Content preview from Android Security

Chapter 6

Reverse Engineering Android Applications

In this chapter, we will cover malware basicshow to identify malware, malware behavior, and malware features. We will then discuss a custom Android BOT application created by the authors and demonstrate to the reader how potential malware can bypass Android built-in checks.

The Android BOT walkthrough will include stealing a users browser history and Short Message Service (SMS) as well as call logs, and it attempts to drain the phones battery. We will also present a sample application to show the readers how to reverse engineer or analyze malicious applications. After completing this chapter, the reader will be able to write Android BOT in Java. The reader will also become familiar with reverse ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781439896464

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Android Security

by Anmol Misra, Abhishek Dubey

Reverse Engineering Android Applications

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.