SlideShare a Scribd company logo

Android Hacking

A
antitree

The document discusses tools and techniques related to analyzing Android applications. It provides an overview of the Android operating system architecture and outlines various static and dynamic analysis methods. These include decompiling applications with Apktool and Dex2jar, reviewing manifest files, monitoring network traffic with Wireshark, and using tools like Burp Suite and Mallory. The document also highlights common mobile security issues discovered through analysis and provides recommendations for securing Android devices and applications.

Technology
1 of 40
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
Most read
28
Most read
29
30
31
32
Most read
33
34
35
36
37
38
39
40
Tools and Techniques Related To 1
 RIT Alum  Intrepidus Group  Interlock Rochester  Rochester 2600  TOOOL  BSidesROC @antitree antitree.com 2
 Android Introduction  Tools For Hackers  Analysis Techniques  Examples  How to be “secure” 3
Other, Honeycomb Cupcake 1% Donut 6% 1% 2% Blackberry, 9% Eclair 15% Gingerbread 25% iOS, 28% Android, 56% Froyo 56% 4
Android Hacking
 Linux 2.6  Dalvik Virtual Machine – new instance for each app  DEX – Dalvik byte code  APK - zip  AndroidManifest.xml Dalvik Java APK Byte Code 6
Linux Angry Birds app_42 Dalvik VM Instances
 Intents – inter process communication  Activities - screen  Content Providers – sqlite3 database  Services – background processes  Broadcasts – send and receive info to other apps 8
• Dynamic Network Analysis • Static Code Review • File System Auditing 9
 Android SDK  ADB  DDMS  Emulator  Apktool  Smali/Baksmali  Dex2jar  Java Decompiler (e.g. JAD or JD-GUI)  Mallory  Burpsuite  Wireshark 10
 Java source code vs Smali files vs DEX vs jar vs pseudocode  Android development  Java  Linux 11
12
 Watch Traffic flow through a MITM  Things to look for:  Information being passed in the clear  SSL usage and whether it’s done correctly  Results of modifying requests and responses  Authentication process 13
Wireless Router Emulator PPTP server DDWRT/TOMATOE Android SDK PPTPD Usually need a clunky device Sometimes doesn’t act the Dedicated server way you want it 14
#!/bin/bash # firewall script to intercept all traffic from ppp0 and redirect to local port # all credit to the great algorythm echo 1 > /proc/sys/net/ipv4/ip_forward iptables -F iptables -X iptables -t nat -F iptables -t nat -X iptables -t mangle -F iptables -t mangle -X iptables -P INPUT ACCEPT iptables -P FORWARD ACCEPT iptables -P OUTPUT ACCEPT iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE iptables -t nat -A PREROUTING -j REDIRECT -i ppp0 -p tcp --dport 80 -m tcp --to-ports 8080 iptables -t nat -A PREROUTING -j REDIRECT -i ppp0 -p tcp --dport 443 -m tcp --to- ports 8080 15
 Wireshark  Initial traffic fingerprinting  Burpsuite  Great for HTTP/S traffic  Mallory  Great for nonspecific protocols 16
17
 Audit how data is stored  Things to look for:  Incorrect permissions  Storage location (data, sdcard, asec)  Tools  Adb shell  Standard linux commands  [Root exploit and busybox] 18
19
20
 See how the app works through pseudocode  Things to look for:  Overall understanding of the app  Cryptographic functions  Debug/Testing functions  Client side authentication 21
 Tools:  Apktool d com.antitree.app  Smali path/to/smali/files/  Dex2jar out.dex  Jd-gui out_dex2jar.jar APK DEX Jar Pseudocode Smali 22
Reverse engineering is neat
24
25
But what does it mean? 26
 Skype: 4/11  Permissions error allowed a malicious app to access contacts and personal information  Google: 6/11  Session information passed in the clear made it susceptible to hijacking  Dropbox: 8/11  An attempt to share data granted any app to the ability to make file public 27
 HTC: 10/11  Spyware Logging app found to be accessible to any app with the network connection permission ▪ GPS coordinates ▪ MEID, MDN ▪ phone logs ▪ MUCH more  *#*#HTCLOG#*#* 28
100,000 installations 29
 File System Permissions Set to 777  Access saved sessions  Modify included binaries  Why: Lazy permissions  How discovered: file system permission review 30
SSHUNTUNNEL
 Shares information  Controls permissions  Tool: Android Manifest Auditor Code Name: The Jaku 32
33
1. Insecure Data Storage 2. Weak Server Side Controls 3. Insufficient Transport Layer Protection 4. Client Side Injection 5. Poor Authorization and Authentication 6. Improper Session Handling 7. Security Decisions Via Untrusted Inputs 8. Side Channel Data Leakage 9. Broken Cryptography 10. Sensitive Information Disclosure 34
 Deploy mobile device management solution  Zenprise, MobileIron, (Google?)  Train your users – don’t give in  Audit your devices  Are users following best practices?  What apps are installed?  Require mobile security solution  Lookout, WaveSecure, NetQin 35
 Audit your apps!  Check permissions  Check source code  Analyze your traffic  Think before you Root  Security Software  Remote wipe  Malware detection 36
Coincidence? 37
Slides and app available at www.antitree.com 38
 http://www.intrepidusgroup.com/insight/  http://code.google.com/p/android-apktool/  http://code.google.com/p/smali/  http://code.google.com/p/dex2jar/  http://java.decompiler.free.fr/?q=jdgui  http://developer.android.com/sdk 39
40

More Related Content

PDF
Android Security & Penetration Testing
Subho Halder
 
PPTX
OSI Layer Security
Nurkholish Halim
 
PDF
Android Security
Lars Jacobs
 
PPTX
Xss attack
Manjushree Mashal
 
PPT
Types of attacks and threads
srivijaymanickam
 
PPTX
Android Application Penetration Testing - Mohammed Adam
Mohammed Adam
 
PDF
Mobile Application Security
cclark_isec
 
PPTX
Cyber security presentation
Parab Mishra
 
Android Security & Penetration Testing
Subho Halder
 
OSI Layer Security
Nurkholish Halim
 
Android Security
Lars Jacobs
 
Xss attack
Manjushree Mashal
 
Types of attacks and threads
srivijaymanickam
 
Android Application Penetration Testing - Mohammed Adam
Mohammed Adam
 
Mobile Application Security
cclark_isec
 
Cyber security presentation
Parab Mishra
 

What's hot (20)

PPT
Javascript
Manav Prasad
 
PPTX
Cyber Security
Bhandari Hìmáñßhü
 
PPTX
Mobile Application Security
Ishan Girdhar
 
PPT
Port scanning
Hemanth Pasumarthi
 
PPTX
Presentation on Core java
mahir jain
 
PPTX
Virus and malware presentation
Amjad Bhutto
 
PPTX
Hacking and securing ios applications
Satish b
 
PPTX
Social Networking Security
S. M. Shakib Limon
 
PDF
Mobile Security
MarketingArrowECS_CZ
 
PPT
Hacking web applications
Adeel Javaid
 
PPT
Introduction To OWASP
Marco Morana
 
PPTX
User authentication
CAS
 
PDF
Web Application Security 101
Cybersecurity Education and Research Centre
 
PPTX
Vulnerabilities in modern web applications
Niyas Nazar
 
PPTX
A5: Security Misconfiguration
Tariq Islam
 
PPTX
Network security ppt
OECLIB Odisha Electronics Control Library
 
PPTX
Owasp mobile top 10
Pawel Rzepa
 
PDF
Web Application Security and Awareness
Abdul Rahman Sherzad
 
PPTX
Different types of attacks in internet
Rohan Bharadwaj
 
PPTX
QSpiders - Jdk Jvm Jre and Jit
Qspiders - Software Testing Training Institute
 
Javascript
Manav Prasad
 
Cyber Security
Bhandari Hìmáñßhü
 
Mobile Application Security
Ishan Girdhar
 
Port scanning
Hemanth Pasumarthi
 
Presentation on Core java
mahir jain
 
Virus and malware presentation
Amjad Bhutto
 
Hacking and securing ios applications
Satish b
 
Social Networking Security
S. M. Shakib Limon
 
Mobile Security
MarketingArrowECS_CZ
 
Hacking web applications
Adeel Javaid
 
Introduction To OWASP
Marco Morana
 
User authentication
CAS
 
Web Application Security 101
Cybersecurity Education and Research Centre
 
Vulnerabilities in modern web applications
Niyas Nazar
 
A5: Security Misconfiguration
Tariq Islam
 
Network security ppt
OECLIB Odisha Electronics Control Library
 
Owasp mobile top 10
Pawel Rzepa
 
Web Application Security and Awareness
Abdul Rahman Sherzad
 
Different types of attacks in internet
Rohan Bharadwaj
 
QSpiders - Jdk Jvm Jre and Jit
Qspiders - Software Testing Training Institute
 

Viewers also liked (20)

PDF
Mobile Hacking
Novizul Evendi
 
PPTX
Hacking ppt
giridhar_sadasivuni
 
PPT
Mobile phone Data Hacking
Md Abu Syeem Dipu
 
PDF
Hacking Android OS
Jimmy Software
 
PDF
Growth Hacking For Mobile - Hack 2 Validate & Hack 2 Grow
andreehuk
 
PPTX
Android Hacking + Pentesting
Sina Manavi
 
PPTX
Android– forensics and security testing
Santhosh Kumar
 
PDF
The art of android hacking
Abhinav Mishra
 
PDF
Android Forensics: Exploring Android Internals and Android Apps
Moe Tanabian
 
PDF
Stealing sensitive data from android phones the hacker way
n|u - The Open Security Community
 
PPT
WhatsApp Forensic
Animesh Shaw
 
PPTX
Hacking Mobile Apps
Sophos Benelux
 
PDF
Learning by hacking - android application hacking tutorial
Landice Fu
 
PPTX
ethical hacking in the modern times
jeshin jose
 
PPTX
Introduction To Ethical Hacking
Neel Kamal
 
PPTX
Ethical hacking presentation
Suryansh Srivastava
 
PDF
Booting Android: bootloaders, fastboot and boot images
Chris Simmonds
 
PPTX
Hacking & its types
Sai Sakoji
 
PDF
ZaCon 4 (2012) - Game Hacking
HypnZA
 
PPT
Viruses
/ /
 
Mobile Hacking
Novizul Evendi
 
Hacking ppt
giridhar_sadasivuni
 
Mobile phone Data Hacking
Md Abu Syeem Dipu
 
Hacking Android OS
Jimmy Software
 
Growth Hacking For Mobile - Hack 2 Validate & Hack 2 Grow
andreehuk
 
Android Hacking + Pentesting
Sina Manavi
 
Android– forensics and security testing
Santhosh Kumar
 
The art of android hacking
Abhinav Mishra
 
Android Forensics: Exploring Android Internals and Android Apps
Moe Tanabian
 
Stealing sensitive data from android phones the hacker way
n|u - The Open Security Community
 
WhatsApp Forensic
Animesh Shaw
 
Hacking Mobile Apps
Sophos Benelux
 
Learning by hacking - android application hacking tutorial
Landice Fu
 
ethical hacking in the modern times
jeshin jose
 
Introduction To Ethical Hacking
Neel Kamal
 
Ethical hacking presentation
Suryansh Srivastava
 
Booting Android: bootloaders, fastboot and boot images
Chris Simmonds
 
Hacking & its types
Sai Sakoji
 
ZaCon 4 (2012) - Game Hacking
HypnZA
 
Viruses
/ /
 

Similar to Android Hacking (20)

PPTX
Mobile application security
Shubhneet Goel
 
PDF
hashdays 2011: Tobias Ospelt - Reversing Android Apps - Hacking and cracking ...
Area41
 
PPTX
Android Penetration Testing - Day 3
Mohammed Adam
 
PPTX
Android village @nullcon 2012
hakersinfo
 
PPTX
Manish Chasta - Securing Android Applications
Positive Hack Days
 
PDF
Smart Bombs: Mobile Vulnerability and Exploitation
SecureState
 
PPTX
Hacker Halted 2014 - Reverse Engineering the Android OS
EC-Council
 
PPT
Securely Deploying Android Device - ISSA (Ireland)
Angelill0
 
PPTX
Pentesting Android Apps
Abdelhamid Limami
 
PDF
Introduction to Android Development and Security
Kelwin Yang
 
PDF
Pentesting Mobile Applications (Prashant Verma)
ClubHack
 
PPT
Mobile code mining for discovery and exploits nullcongoa2013
Blueinfy Solutions
 
PDF
Jaime Blasco & Pablo Rincón - Lost in translation: WTF is happening inside m...
RootedCON
 
PDF
Wtf is happening_inside_my_android_phone_public
Jaime Blasco
 
PDF
Hacking your Android (slides)
Justin Hoang
 
PDF
Smart Bombs: Mobile Vulnerability and Exploitation
Tom Eston
 
PDF
Hacking your Droid (Aditya Gupta)
ClubHack
 
PDF
Info security - mobile approach
EY Belgium
 
PPTX
In app search 1
Xiaoping Feng
 
PDF
Android Pentesting
n|u - The Open Security Community
 
Mobile application security
Shubhneet Goel
 
hashdays 2011: Tobias Ospelt - Reversing Android Apps - Hacking and cracking ...
Area41
 
Android Penetration Testing - Day 3
Mohammed Adam
 
Android village @nullcon 2012
hakersinfo
 
Manish Chasta - Securing Android Applications
Positive Hack Days
 
Smart Bombs: Mobile Vulnerability and Exploitation
SecureState
 
Hacker Halted 2014 - Reverse Engineering the Android OS
EC-Council
 
Securely Deploying Android Device - ISSA (Ireland)
Angelill0
 
Pentesting Android Apps
Abdelhamid Limami
 
Introduction to Android Development and Security
Kelwin Yang
 
Pentesting Mobile Applications (Prashant Verma)
ClubHack
 
Mobile code mining for discovery and exploits nullcongoa2013
Blueinfy Solutions
 
Jaime Blasco & Pablo Rincón - Lost in translation: WTF is happening inside m...
RootedCON
 
Wtf is happening_inside_my_android_phone_public
Jaime Blasco
 
Hacking your Android (slides)
Justin Hoang
 
Smart Bombs: Mobile Vulnerability and Exploitation
Tom Eston
 
Hacking your Droid (Aditya Gupta)
ClubHack
 
Info security - mobile approach
EY Belgium
 
In app search 1
Xiaoping Feng
 
Android Pentesting
n|u - The Open Security Community
 

More from antitree (20)

ODP
Hardening ssh configurations
antitree
 
ODP
State of wifi_2016
antitree
 
PDF
Just Mouse Jack Init
antitree
 
ODP
Introduction to ethereum_public
antitree
 
PPTX
Docker Security
antitree
 
PPTX
Reinventing anon email
antitree
 
PPTX
0x20 hack
antitree
 
PPTX
Laverna vs etherpad
antitree
 
PPTX
Meek and domain fronting public
antitree
 
PPTX
Nsa and vpn
antitree
 
PPTX
Salander v bond 2600
antitree
 
PPTX
Salander v bond b sides detroit final v3
antitree
 
PPTX
Pentesting embedded
antitree
 
PPTX
Tor
antitree
 
PPTX
Corporate Intelligence: Bridging the security and intelligence community
antitree
 
PPTX
28c3 in 15
antitree
 
PPTX
Lock picking barcamp
antitree
 
PPTX
Lock picking 2600
antitree
 
PPTX
Anti tree firesheep
antitree
 
PPTX
Image based automation
antitree
 
Hardening ssh configurations
antitree
 
State of wifi_2016
antitree
 
Just Mouse Jack Init
antitree
 
Introduction to ethereum_public
antitree
 
Docker Security
antitree
 
Reinventing anon email
antitree
 
0x20 hack
antitree
 
Laverna vs etherpad
antitree
 
Meek and domain fronting public
antitree
 
Nsa and vpn
antitree
 
Salander v bond 2600
antitree
 
Salander v bond b sides detroit final v3
antitree
 
Pentesting embedded
antitree
 
Tor
antitree
 
Corporate Intelligence: Bridging the security and intelligence community
antitree
 
28c3 in 15
antitree
 
Lock picking barcamp
antitree
 
Lock picking 2600
antitree
 
Anti tree firesheep
antitree
 
Image based automation
antitree
 

Recently uploaded (20)

PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
KodekX | Application Modernization Development
KodekX
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Cloud computing and distributed systems.
kkkkkhan
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Teaching material agriculture food technology
LiaRayya
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
KodekX | Application Modernization Development
KodekX
 

Android Hacking

  • 1. Tools and Techniques Related To 1
  • 2. RIT Alum  Intrepidus Group  Interlock Rochester  Rochester 2600  TOOOL  BSidesROC @antitree antitree.com 2
  • 3. Android Introduction  Tools For Hackers  Analysis Techniques  Examples  How to be “secure” 3
  • 4. Other, Honeycomb Cupcake 1% Donut 6% 1% 2% Blackberry, 9% Eclair 15% Gingerbread 25% iOS, 28% Android, 56% Froyo 56% 4
  • 6. Linux 2.6  Dalvik Virtual Machine – new instance for each app  DEX – Dalvik byte code  APK - zip  AndroidManifest.xml Dalvik Java APK Byte Code 6
  • 7. Linux Angry Birds app_42 Dalvik VM Instances
  • 8. Intents – inter process communication  Activities - screen  Content Providers – sqlite3 database  Services – background processes  Broadcasts – send and receive info to other apps 8
  • 9. Dynamic Network Analysis • Static Code Review • File System Auditing 9
  • 10. Android SDK  ADB  DDMS  Emulator  Apktool  Smali/Baksmali  Dex2jar  Java Decompiler (e.g. JAD or JD-GUI)  Mallory  Burpsuite  Wireshark 10
  • 11. Java source code vs Smali files vs DEX vs jar vs pseudocode  Android development  Java  Linux 11
  • 12. 12
  • 13. Watch Traffic flow through a MITM  Things to look for:  Information being passed in the clear  SSL usage and whether it’s done correctly  Results of modifying requests and responses  Authentication process 13
  • 14. Wireless Router Emulator PPTP server DDWRT/TOMATOE Android SDK PPTPD Usually need a clunky device Sometimes doesn’t act the Dedicated server way you want it 14
  • 15. #!/bin/bash # firewall script to intercept all traffic from ppp0 and redirect to local port # all credit to the great algorythm echo 1 > /proc/sys/net/ipv4/ip_forward iptables -F iptables -X iptables -t nat -F iptables -t nat -X iptables -t mangle -F iptables -t mangle -X iptables -P INPUT ACCEPT iptables -P FORWARD ACCEPT iptables -P OUTPUT ACCEPT iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE iptables -t nat -A PREROUTING -j REDIRECT -i ppp0 -p tcp --dport 80 -m tcp --to-ports 8080 iptables -t nat -A PREROUTING -j REDIRECT -i ppp0 -p tcp --dport 443 -m tcp --to- ports 8080 15
  • 16. Wireshark  Initial traffic fingerprinting  Burpsuite  Great for HTTP/S traffic  Mallory  Great for nonspecific protocols 16
  • 17. 17
  • 18. Audit how data is stored  Things to look for:  Incorrect permissions  Storage location (data, sdcard, asec)  Tools  Adb shell  Standard linux commands  [Root exploit and busybox] 18
  • 19. 19
  • 20. 20
  • 21. See how the app works through pseudocode  Things to look for:  Overall understanding of the app  Cryptographic functions  Debug/Testing functions  Client side authentication 21
  • 22. Tools:  Apktool d com.antitree.app  Smali path/to/smali/files/  Dex2jar out.dex  Jd-gui out_dex2jar.jar APK DEX Jar Pseudocode Smali 22
  • 24. 24
  • 25. 25
  • 26. But what does it mean? 26
  • 27. Skype: 4/11  Permissions error allowed a malicious app to access contacts and personal information  Google: 6/11  Session information passed in the clear made it susceptible to hijacking  Dropbox: 8/11  An attempt to share data granted any app to the ability to make file public 27
  • 28. HTC: 10/11  Spyware Logging app found to be accessible to any app with the network connection permission ▪ GPS coordinates ▪ MEID, MDN ▪ phone logs ▪ MUCH more  *#*#HTCLOG#*#* 28
  • 30. File System Permissions Set to 777  Access saved sessions  Modify included binaries  Why: Lazy permissions  How discovered: file system permission review 30
  • 32. Shares information  Controls permissions  Tool: Android Manifest Auditor Code Name: The Jaku 32
  • 33. 33
  • 34. 1. Insecure Data Storage 2. Weak Server Side Controls 3. Insufficient Transport Layer Protection 4. Client Side Injection 5. Poor Authorization and Authentication 6. Improper Session Handling 7. Security Decisions Via Untrusted Inputs 8. Side Channel Data Leakage 9. Broken Cryptography 10. Sensitive Information Disclosure 34
  • 35. Deploy mobile device management solution  Zenprise, MobileIron, (Google?)  Train your users – don’t give in  Audit your devices  Are users following best practices?  What apps are installed?  Require mobile security solution  Lookout, WaveSecure, NetQin 35
  • 36. Audit your apps!  Check permissions  Check source code  Analyze your traffic  Think before you Root  Security Software  Remote wipe  Malware detection 36
  • 38. Slides and app available at www.antitree.com 38
  • 39. http://www.intrepidusgroup.com/insight/  http://code.google.com/p/android-apktool/  http://code.google.com/p/smali/  http://code.google.com/p/dex2jar/  http://java.decompiler.free.fr/?q=jdgui  http://developer.android.com/sdk 39
  • 40. 40