guest ::
| Home > Conference materials > Papers > Advanced Penetration Testing Of Obfuscated Android Applications |
Original title:
Advanced Penetration Testing Of Obfuscated Android Applications
Authors: Michalec, Pavol
Document type: Papers
Language: eng
Publisher: Vysoké učení technické v Brně, Fakulta elektrotechniky a komunikačních technologií
Abstract: Android applications are susceptible to security vulnerabilities just like any other application. To minimize the risk and detect any potential vulnerabilities, penetration tests are conducted. However, many clients are not willing or are not capable to provide unobfuscated version of the application with security defenses disabled. It is up to the testers to bypass all these restrictions and properly test the application. Bypassing all the restrictions takes considerable ammount of time, thus making the test more expensive. This paper describes methodology for dealing with obfuscation as quickly as possible without creating unnecessary code or introducing additional tools.
Keywords: Allatori; Android; obfuscation; owasp; penetration testing; security
Host item entry: Proceedings I of the 26st Conference STUDENT EEICT 2020: General papers, ISBN 978-80-214-5867-3
Institution: Brno University of Technology (web)
Document availability information: Fulltext is available in the Brno University of Technology Digital Library.
Original record: http://hdl.handle.net/11012/200556
Permalink: http://www.nusl.cz/ntk/nusl-447608
The record appears in these collections:
Universities and colleges > Public universities > Brno University of Technology
Conference materials > Papers
Authors: Michalec, Pavol
Document type: Papers
Language: eng
Publisher: Vysoké učení technické v Brně, Fakulta elektrotechniky a komunikačních technologií
Abstract: Android applications are susceptible to security vulnerabilities just like any other application. To minimize the risk and detect any potential vulnerabilities, penetration tests are conducted. However, many clients are not willing or are not capable to provide unobfuscated version of the application with security defenses disabled. It is up to the testers to bypass all these restrictions and properly test the application. Bypassing all the restrictions takes considerable ammount of time, thus making the test more expensive. This paper describes methodology for dealing with obfuscation as quickly as possible without creating unnecessary code or introducing additional tools.
Keywords: Allatori; Android; obfuscation; owasp; penetration testing; security
Host item entry: Proceedings I of the 26st Conference STUDENT EEICT 2020: General papers, ISBN 978-80-214-5867-3
Institution: Brno University of Technology (web)
Document availability information: Fulltext is available in the Brno University of Technology Digital Library.
Original record: http://hdl.handle.net/11012/200556
Permalink: http://www.nusl.cz/ntk/nusl-447608
The record appears in these collections:
Universities and colleges > Public universities > Brno University of Technology
Conference materials > Papers
Record created 2021-07-25, last modified 2021-08-22