SlideShare a Scribd company logo

Android application penetration testing

R
Roshan Kumar Gami

The document outlines tutorials for ethical hacking and penetration testing of Android applications, emphasizing that the information is for educational purposes only and should not be used illegally. It provides setup instructions for using Kali Linux and an Android emulator, as well as tools like Drozer for app testing. Additionally, it details the usage of ADB commands for various operations on Android devices and introduces the Damn Insecure and Vulnerable App (DIVA) for learning about application security flaws.

Engineering
Related topics:
Information Security
1 of 18
Download to read offline
1
2
Most read
3
4
5
Most read
6
7
8
9
10
11
Most read
12
13
14
15
16
17
18
Android Application Penetration Testing ETHICAL HACKING All tutorials are for informational and educational purposes only. If you plan to use the information for illegal purposes, I request you to please leave this training now. We cannot be held responsible for any misuse of the given information.
About Host Roshan Gami Penetration Tester | Bug Bounty Hunter
Environment Setup Android Device 192.168.0.247 Kali Machine: 192.168.0.149
Installation !! ● Install VirtuaBox ○ How to Install VirtualBox on Windows 10 ● Install kali linux on VirtualBox ○ How to Install Kali linux on VirtualBox ○ Download Kali Linux ISO file: Kali Linux ISO ● Install Android Emulator on VirtualBox ○ How to Install Android on Virtualbox ○ Download Android ISO file: Android 9 ISO
What is DIVA ? ● DIVA (Damn insecure and vulnerable App) is an App intentionally designed to be insecure. ● The aim of the App is to teach developers/QA/security professionals, flaws that are generally present in the Apps due poor or insecure coding practices. ● You want to either learn App pentesting or secure coding and I sincerely hope that DIVA solves your purpose.
DIVA Installation 1. Download file: a. http://www.payatu.com/wp-content/uploads/2016/01/diva-beta.tar.gz b. tar zxcf diva-beta.tar.gz c. tar zxcf diva-beta.tar d. Please refer to adb page to install the APK i. Adb install diva-beta.apk
Tools used in this session 1. Adb 2. Apktool 3. unzip 4. Dex2jar 5. JD-GUI 6. sqlitebrowser 7. Drozer 8. Cutter
Android Components ● Activity ● Content Providers ● Services ● BroadCast Receivers
Activity
Content Providers
ADB command basics - 1 1. Adb connect <IP>:<port> 1. E.g. adb connect 193.168.31.102 2. Adb devices 3. Adb shell: To access the shell of the android machine 4. To automate we can use command adb shell <command> 1. e.g. adb shell ps -ef 2. e.g. adb shell ls /data/data 5. Adb logcat: A centralized repository for logging android application logs.
ADB command basics - 2 1. Adb pull <file-name> : Get a file from the phone to local machine 1. Adb pull /data/app/ssto-pb.apk 2. Adb push <file-name> <mobile location> : To push a file from local machine to mobile phone. 1. Adb push virus.apk /data/app/ 3. Application Installation command: 1. adb install <app name.apk> 2. adb install -r <app name.apk> [The -r option allows you to re-install or update an existing app on your device] 3. adb install -s <app name.apk> [The -s option lets you install app to SD card if the app supports move to SD card feature]
ADB command basics - 3 1. Uninstall android application: 1. adb uninstall <app name.apk> 2. Run any command with root level privileges. 1. Adb root 3. Stop adb server: 1. Adb kill-server 4. Start adb server: 1. Adb start-server
Drozer
Setup Drozer Drozer contains two parts: 1. Agent Installation a. Download the apk file or install it from the play store: drozer-agent b. Abd install drozer-agent*.apk c. Start the application and press ON button. d. The agent by default will be running on 31415 port number. 2. Server installation a. This will be installed and run on the Attackers machine(Kali Linux) b. Download python whl file https://github.com/mwrlabs/drozer/releases/download/2.4.4/drozer-2.4.4-py2-none-any.whl c. Run this file: python -m pip install drozer-2.4.4-py2-none-any.whl d. Check drozer: i. Adb connect <ip-of-Android-device> ii. Adb forward tcp:31415 tcp:31415 iii. Drozer console connect
Drozer Approach: 1. Identify the target package name a. Run app.package.list 2. Gather information a. Run app.package.info -a <package-name> 3. Look at the Attack surfaces a. run app.package.attacksurface <package-name> 4. Exploit Activities | Content Providers | Services a. Next slide
Exploit Activities | Content Providers | Services 1. For Activities a. Get information about exported activities i. Run app.activity.info <package-name> b. Start the Activity i. Run app.activity.start --component <PACKAGE-NAME> <ACTIVITY-NAME> 2. For Providers a. Get information about exported content providers i. Run app.provider.info -a <PACKAGE-NAME> b. Find referenced content URIs in a package i. Run app.provider.finduri <PACKAGE-NAME> c. Query a content provider i. Run app.provider.query <CONTENT-URL>
Questions ???

More Related Content

PPTX
Android pentesting
Mykhailo Antonishyn
 
PPTX
Pentesting Android Apps
Abdelhamid Limami
 
PDF
Android pentesting
Mykhailo Antonishyn
 
PDF
APIsecure 2023 - Android Applications and API Hacking, Gabrielle Botbol
apidays
 
PDF
Getting started with Android pentesting
Minali Arora
 
PDF
Android application security testing
Mykhailo Antonishyn
 
PPTX
Mobile Application Security Testing (Static Code Analysis) of Android App
Abhilash Venkata
 
PPTX
Mobile security part 1(Android Apps Pentesting)- Romansh yadav
Romansh Yadav
 
Android pentesting
Mykhailo Antonishyn
 
Pentesting Android Apps
Abdelhamid Limami
 
Android pentesting
Mykhailo Antonishyn
 
APIsecure 2023 - Android Applications and API Hacking, Gabrielle Botbol
apidays
 
Getting started with Android pentesting
Minali Arora
 
Android application security testing
Mykhailo Antonishyn
 
Mobile Application Security Testing (Static Code Analysis) of Android App
Abhilash Venkata
 
Mobile security part 1(Android Apps Pentesting)- Romansh yadav
Romansh Yadav
 

What's hot (20)

PPTX
Android Application Penetration Testing - Mohammed Adam
Mohammed Adam
 
PDF
Android Pentesting
n|u - The Open Security Community
 
PPTX
Android pentesting the hackers-meetup
kunwaratul hax0r
 
PDF
Android Security & Penetration Testing
Subho Halder
 
PPTX
Owasp mobile top 10
Pawel Rzepa
 
PPTX
Phone Hacking: A lucrative, but largely hidden history
David Rogers
 
PDF
Android reverse engineering: understanding third-party applications. OWASP EU...
Internet Security Auditors
 
PDF
Mobile Application Security
cclark_isec
 
PPTX
Pentesting Android Applications
Cláudio André
 
PDF
Security Testing Mobile Applications
Denim Group
 
PPTX
Android Hacking + Pentesting
Sina Manavi
 
PPTX
Mobile Application Security
Ishan Girdhar
 
PPTX
Mobile Application Testing Training Presentation
MobiGnosis
 
PPTX
Mobile security
Naveen Kumar
 
PPTX
Mobile security
priyanka pandey
 
PPTX
Mobile Application Testing by Javed Ansari
Javed Ansari
 
PDF
Mobile Malware
Martin Holovský
 
PPTX
Dynamic Security Analysis & Static Security Analysis for Android Apps.
VodqaBLR
 
PPTX
Nmap
Sreekanth Narendran
 
PDF
Mobile Security
MarketingArrowECS_CZ
 
Android Application Penetration Testing - Mohammed Adam
Mohammed Adam
 
Android Pentesting
n|u - The Open Security Community
 
Android pentesting the hackers-meetup
kunwaratul hax0r
 
Android Security & Penetration Testing
Subho Halder
 
Owasp mobile top 10
Pawel Rzepa
 
Phone Hacking: A lucrative, but largely hidden history
David Rogers
 
Android reverse engineering: understanding third-party applications. OWASP EU...
Internet Security Auditors
 
Mobile Application Security
cclark_isec
 
Pentesting Android Applications
Cláudio André
 
Security Testing Mobile Applications
Denim Group
 
Android Hacking + Pentesting
Sina Manavi
 
Mobile Application Security
Ishan Girdhar
 
Mobile Application Testing Training Presentation
MobiGnosis
 
Mobile security
Naveen Kumar
 
Mobile security
priyanka pandey
 
Mobile Application Testing by Javed Ansari
Javed Ansari
 
Mobile Malware
Martin Holovský
 
Dynamic Security Analysis & Static Security Analysis for Android Apps.
VodqaBLR
 
Nmap
Sreekanth Narendran
 
Mobile Security
MarketingArrowECS_CZ
 
Ad

Similar to Android application penetration testing (20)

PDF
Null Dubai Humla_Romansh_Yadav_Android_app_pentesting
Romansh Yadav
 
PDF
Unit 1 Kali Nethunter Android: OS, Debub Bridge
ChatanBawankar
 
PDF
Unit Kali NetHunter is the official Kali Linux penetration testing platform f...
ChatanBawankar
 
PPTX
Making it Rain Android Shells - How 30,000+ Android devices are exposed to th...
Steph Jensen
 
PPTX
Android - ADB
Yossi Gruner
 
PPTX
Developing a Simple Python Tool for Website Vulnerability Scanning
Boston Institute of Analytics
 
PDF
CNIT 128 6. Analyzing Android Applications (Part 1)
Sam Bowne
 
PDF
Building Custom Android Malware BruCON 2013
Stephan Chenette
 
PPTX
Mastering the Android Shell: A Comprehensive Project Report
Boston Institute of Analytics
 
PDF
Android_Malware_IOAsis_2014_Analysis.pdf
jjb117343
 
PPT
ethical hacking-mobile hacking methods.ppt
Jayaprasanna4
 
PDF
Hacking your Android (slides)
Justin Hoang
 
PDF
Null Mumbai Meet_Android Reverse Engineering by Samrat Das
nullowaspmumbai
 
PPTX
Hacker Halted 2014 - Reverse Engineering the Android OS
EC-Council
 
PPTX
Mobile application security
Shubhneet Goel
 
PDF
3 getting to know the android tools - en-us
Juarez Junior
 
PPTX
Security Vulnerabilities in Mobile Applications (Kristaps Felzenbergs)
TestDevLab
 
PDF
2013 Toorcon San Diego Building Custom Android Malware for Penetration Testing
Stephan Chenette
 
PPT
Android basics – Key Codes – ADB – Rooting Android – Boot Process – File Syst...
ManiMaran230751
 
PDF
hashdays 2011: Tobias Ospelt - Reversing Android Apps - Hacking and cracking ...
Area41
 
Null Dubai Humla_Romansh_Yadav_Android_app_pentesting
Romansh Yadav
 
Unit 1 Kali Nethunter Android: OS, Debub Bridge
ChatanBawankar
 
Unit Kali NetHunter is the official Kali Linux penetration testing platform f...
ChatanBawankar
 
Making it Rain Android Shells - How 30,000+ Android devices are exposed to th...
Steph Jensen
 
Android - ADB
Yossi Gruner
 
Developing a Simple Python Tool for Website Vulnerability Scanning
Boston Institute of Analytics
 
CNIT 128 6. Analyzing Android Applications (Part 1)
Sam Bowne
 
Building Custom Android Malware BruCON 2013
Stephan Chenette
 
Mastering the Android Shell: A Comprehensive Project Report
Boston Institute of Analytics
 
Android_Malware_IOAsis_2014_Analysis.pdf
jjb117343
 
ethical hacking-mobile hacking methods.ppt
Jayaprasanna4
 
Hacking your Android (slides)
Justin Hoang
 
Null Mumbai Meet_Android Reverse Engineering by Samrat Das
nullowaspmumbai
 
Hacker Halted 2014 - Reverse Engineering the Android OS
EC-Council
 
Mobile application security
Shubhneet Goel
 
3 getting to know the android tools - en-us
Juarez Junior
 
Security Vulnerabilities in Mobile Applications (Kristaps Felzenbergs)
TestDevLab
 
2013 Toorcon San Diego Building Custom Android Malware for Penetration Testing
Stephan Chenette
 
Android basics – Key Codes – ADB – Rooting Android – Boot Process – File Syst...
ManiMaran230751
 
hashdays 2011: Tobias Ospelt - Reversing Android Apps - Hacking and cracking ...
Area41
 
Ad

Recently uploaded (20)

PDF
Structs to JSON How Go Powers REST APIs.pdf
Emily Achieng
 
PDF
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
PDF
Well-logging-methods_new................
ZafriFarid
 
PDF
Digital Logic Computer Design lecture notes
CHINNASUNKAIAH1
 
DOCX
573137875-Attendance-Management-System-original
AYUSHMANAV
 
PPTX
CYBER-CRIMES AND SECURITY A guide to understanding
Davies Chacko
 
PPTX
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
PPT
Project quality management in manufacturing
BarMusaTetik
 
PPTX
UNIT-1 - COAL BASED THERMAL POWER PLANTS
Chandra Kumar S
 
PPTX
KTU 2019 -S7-MCN 401 MODULE 2-VINAY.pptx
VinayB68
 
PPTX
IOT PPTs Week 10 Lecture Material.pptx of NPTEL Smart Cities contd
ssusera400e8
 
PDF
July 2025 - Top 10 Read Articles in International Journal of Software Enginee...
sebastianku31
 
PPTX
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
PPTX
Foundation to blockchain - A guide to Blockchain Tech
Davies Chacko
 
PPTX
Sustainable Sites - Green Building Construction
mhdumerali
 
PPTX
UNIT 4 Total Quality Management .pptx
gokuld13012005
 
PPTX
MET 305 2019 SCHEME MODULE 2 COMPLETE.pptx
VinayB68
 
PPTX
Welding lecture in detail for understanding
sahilpoonia10
 
DOCX
ASol_English-Language-Literature-Set-1-27-02-2023-converted.docx
AYUSHMANAV
 
PPTX
Engineering Ethics, Safety and Environment [Autosaved] (1).pptx
MehrabTaseenTalukder
 
Structs to JSON How Go Powers REST APIs.pdf
Emily Achieng
 
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
Well-logging-methods_new................
ZafriFarid
 
Digital Logic Computer Design lecture notes
CHINNASUNKAIAH1
 
573137875-Attendance-Management-System-original
AYUSHMANAV
 
CYBER-CRIMES AND SECURITY A guide to understanding
Davies Chacko
 
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
Project quality management in manufacturing
BarMusaTetik
 
UNIT-1 - COAL BASED THERMAL POWER PLANTS
Chandra Kumar S
 
KTU 2019 -S7-MCN 401 MODULE 2-VINAY.pptx
VinayB68
 
IOT PPTs Week 10 Lecture Material.pptx of NPTEL Smart Cities contd
ssusera400e8
 
July 2025 - Top 10 Read Articles in International Journal of Software Enginee...
sebastianku31
 
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
Foundation to blockchain - A guide to Blockchain Tech
Davies Chacko
 
Sustainable Sites - Green Building Construction
mhdumerali
 
UNIT 4 Total Quality Management .pptx
gokuld13012005
 
MET 305 2019 SCHEME MODULE 2 COMPLETE.pptx
VinayB68
 
Welding lecture in detail for understanding
sahilpoonia10
 
ASol_English-Language-Literature-Set-1-27-02-2023-converted.docx
AYUSHMANAV
 
Engineering Ethics, Safety and Environment [Autosaved] (1).pptx
MehrabTaseenTalukder
 

Android application penetration testing

  • 1. Android Application Penetration Testing ETHICAL HACKING All tutorials are for informational and educational purposes only. If you plan to use the information for illegal purposes, I request you to please leave this training now. We cannot be held responsible for any misuse of the given information.
  • 2. About Host Roshan Gami Penetration Tester | Bug Bounty Hunter
  • 4. Installation !! ● Install VirtuaBox ○ How to Install VirtualBox on Windows 10 ● Install kali linux on VirtualBox ○ How to Install Kali linux on VirtualBox ○ Download Kali Linux ISO file: Kali Linux ISO ● Install Android Emulator on VirtualBox ○ How to Install Android on Virtualbox ○ Download Android ISO file: Android 9 ISO
  • 5. What is DIVA ? ● DIVA (Damn insecure and vulnerable App) is an App intentionally designed to be insecure. ● The aim of the App is to teach developers/QA/security professionals, flaws that are generally present in the Apps due poor or insecure coding practices. ● You want to either learn App pentesting or secure coding and I sincerely hope that DIVA solves your purpose.
  • 6. DIVA Installation 1. Download file: a. http://www.payatu.com/wp-content/uploads/2016/01/diva-beta.tar.gz b. tar zxcf diva-beta.tar.gz c. tar zxcf diva-beta.tar d. Please refer to adb page to install the APK i. Adb install diva-beta.apk
  • 7. Tools used in this session 1. Adb 2. Apktool 3. unzip 4. Dex2jar 5. JD-GUI 6. sqlitebrowser 7. Drozer 8. Cutter
  • 8. Android Components ● Activity ● Content Providers ● Services ● BroadCast Receivers
  • 11. ADB command basics - 1 1. Adb connect <IP>:<port> 1. E.g. adb connect 193.168.31.102 2. Adb devices 3. Adb shell: To access the shell of the android machine 4. To automate we can use command adb shell <command> 1. e.g. adb shell ps -ef 2. e.g. adb shell ls /data/data 5. Adb logcat: A centralized repository for logging android application logs.
  • 12. ADB command basics - 2 1. Adb pull <file-name> : Get a file from the phone to local machine 1. Adb pull /data/app/ssto-pb.apk 2. Adb push <file-name> <mobile location> : To push a file from local machine to mobile phone. 1. Adb push virus.apk /data/app/ 3. Application Installation command: 1. adb install <app name.apk> 2. adb install -r <app name.apk> [The -r option allows you to re-install or update an existing app on your device] 3. adb install -s <app name.apk> [The -s option lets you install app to SD card if the app supports move to SD card feature]
  • 13. ADB command basics - 3 1. Uninstall android application: 1. adb uninstall <app name.apk> 2. Run any command with root level privileges. 1. Adb root 3. Stop adb server: 1. Adb kill-server 4. Start adb server: 1. Adb start-server
  • 15. Setup Drozer Drozer contains two parts: 1. Agent Installation a. Download the apk file or install it from the play store: drozer-agent b. Abd install drozer-agent*.apk c. Start the application and press ON button. d. The agent by default will be running on 31415 port number. 2. Server installation a. This will be installed and run on the Attackers machine(Kali Linux) b. Download python whl file https://github.com/mwrlabs/drozer/releases/download/2.4.4/drozer-2.4.4-py2-none-any.whl c. Run this file: python -m pip install drozer-2.4.4-py2-none-any.whl d. Check drozer: i. Adb connect <ip-of-Android-device> ii. Adb forward tcp:31415 tcp:31415 iii. Drozer console connect
  • 16. Drozer Approach: 1. Identify the target package name a. Run app.package.list 2. Gather information a. Run app.package.info -a <package-name> 3. Look at the Attack surfaces a. run app.package.attacksurface <package-name> 4. Exploit Activities | Content Providers | Services a. Next slide
  • 17. Exploit Activities | Content Providers | Services 1. For Activities a. Get information about exported activities i. Run app.activity.info <package-name> b. Start the Activity i. Run app.activity.start --component <PACKAGE-NAME> <ACTIVITY-NAME> 2. For Providers a. Get information about exported content providers i. Run app.provider.info -a <PACKAGE-NAME> b. Find referenced content URIs in a package i. Run app.provider.finduri <PACKAGE-NAME> c. Query a content provider i. Run app.provider.query <CONTENT-URL>