SlideShare a Scribd company logo

Android Security : A Hacker's Perspective

Download as PPTX, PDF
Satria Ady Pradana, profile picture
Satria Ady Pradana

The document discusses Android security from a hacker's perspective, emphasizing that security is a continuous process influenced by technological growth. It outlines the dependency on digital technology and the threats associated with Android, such as cybercrime driven by various motives. The document also covers the process of exploiting Android applications, including tools and methodologies necessary for vulnerability analysis.

Technology
Related topics:
Information Security Cyber-Security
1 of 36
Downloaded 16 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
Android Security A Hacker Perspective Reversing.ID Komunitas Reverse Engineering Indonesia
Hi! I am Satria Ady Pradana Cyber Security Consultant @ Mitra Integrasi Informatika xathrya.sabertooth @xathrya Reversing.ID Komunitas Reverse Engineering Indonesia
1. Define Security!
“ Security is a process, not a product.
Growth of Technology The Past and Present
 Back then, only few people or organizations can afford it. Now everyone can.  Everything has their electronic or digital equivalent.  Used by companies, government, military, or individuals to replace the manual works.  Nearly every aspect of our life has been affected by technology.  Things getting smarter.  Reduces in size.  More connected than before.
Cyberspace Around You It’s hard to not depend on IT technology.
Your Dependency to Digital Technology ◎Communication. ◎Entertainment. ◎Finansial. ◎Education. ◎News. ◎Etc.. Etc..
The Role of Mobile Devices Key Component for Digital Society in Consumers End.
https://www.statista.com/statistics/263441/global-smartphone-shipments-forecast/
http://www.businessinsider.sg/smartphone-market-share-android-ios-windows- blackberry-2016-8
Android Getting More Dominant
The Threats
“ With Great Userbase Comes Great Threats
https://www.statista.com/statistics/434880/cyber-crime-exploits/
Incidents Caused by Motives ◎Financials Gain ◎Political Gain ◎Revenge and Defamation ◎Thrill and Entertainment
“ Security is not a product. To deal with a threat, you need to know the correct process to countermeasure.
Android Security : A Hacker's Perspective
2. Android Hacking means....
Devices & Operating System Applications (Software)
Android Security : A Hacker's Perspective
Demo 1: Android RAT Remote Access Tool
Android Security : A Hacker's Perspective
3. Exploiting Android Application
The Joy of Android Apps Exploitation ◎The application is in your possession. ◎Basically it tell us to do anything. ◎Your Code is Mine
• Obtain the Sensitive Data • Get the Algorithm • Take over • Manipulate Our Goal (Mostly)
Exploitation is not always about taking over mobile devices! It is about taking advantage of vulnerability
Analysis Lab Anything you need to prepare
Set Up Tools and Environment  Android Device / Emulator  Disassembler  Decompiler  HTTP / TCP Proxy for MITM  Packet Sniffer  Dynamic Binary Instrumentation
Analysis Technique Anything you need to know
C O D E D A T A  Static Analysis  Dynamic Analysis  Dynamic Binary Instrumentation  Traffic Analysis  Taint Analysis
Vulnerable Point Where should I look?
Demo 2: Exploiting Vulnerable Apps
4. Real Life Cyber Security Activity
Android Application is not Stand Alone!
Thanks! Any questions?

More Related Content

PPTX
From Reversing to Exploitation: Android Application Security in Essence
Satria Ady Pradana
 
PPTX
CDIC 2013-Mobile Application Pentest Workshop
Prathan Phongthiproek
 
PDF
Case Study on supply chain attack-how an rce in jenkins leads to data breache...
idsecconf
 
ODP
Null who and_where (1)
Prajwal Panchmahalkar
 
PPTX
Open Source Insight: AI for Open Source Management, IoT Time Bombs, Ready for...
Black Duck by Synopsys
 
PDF
Clear and Present Danger
Ping Identity
 
PDF
hacking_ble_smartwatch @idsecconf2019 cirebon
Rama Nanda
 
PPTX
Hacking & Securing of iOS Apps by Saurabh Mishra
OWASP Delhi
 
From Reversing to Exploitation: Android Application Security in Essence
Satria Ady Pradana
 
CDIC 2013-Mobile Application Pentest Workshop
Prathan Phongthiproek
 
Case Study on supply chain attack-how an rce in jenkins leads to data breache...
idsecconf
 
Null who and_where (1)
Prajwal Panchmahalkar
 
Open Source Insight: AI for Open Source Management, IoT Time Bombs, Ready for...
Black Duck by Synopsys
 
Clear and Present Danger
Ping Identity
 
hacking_ble_smartwatch @idsecconf2019 cirebon
Rama Nanda
 
Hacking & Securing of iOS Apps by Saurabh Mishra
OWASP Delhi
 

What's hot (20)

PPTX
Hacker Proof: Building Secure Software
Cesar Cerrudo
 
PDF
OA_Cyber security course with AI
Object Automation
 
PPTX
Cyber Security in AI (Artificial Intelligence)
Harsh Bhanushali
 
PDF
Bankinfonews
Vikram Kalkat
 
PPTX
IDENTITY IN THE WORLD OF IOT
ForgeRock
 
PDF
[CB20] Cleaning up the mess: discovery, monitoring, analysis, and notificatio...
CODE BLUE
 
PDF
The good, the bad, and the ugly on integration ai with cybersecurity
Mohammad Khreesha
 
PPTX
Managing Identity without Boundaries
Ping Identity
 
PDF
Hitchhikers Guide to the Identiverse - How Federated Business will Rule the W...
Ping Identity
 
PPTX
Product security by Blockchain, AI and Security Certs
LabSharegroup
 
PDF
Out Go The Lights: An enlightening discussion of IoT automation security By D...
EC-Council
 
PPTX
Use of Artificial Intelligence in Cyber Security - Avantika University
Avantika University
 
PDF
Is AI going to provide safety for us?
DLabs
 
PDF
Cyber Defense Automation
♟Sergej Epp
 
PPT
You Can't Spell Enterprise Security without MFA
Ping Identity
 
PPT
Identity-Defined Privacay & Security for Internet of Things
Ping Identity
 
PDF
Cyber Kill Chain: Web Application Exploitation
Prathan Phongthiproek
 
PDF
ARTIFICIAL INTELLIGENCE IN CYBER-SECURITY
venkatvajradhar1
 
PPTX
Passwordless auth
Lesha Bhansali
 
PDF
Artificial Intelligence for Cyber Security
Priyanshu Ratnakar
 
Hacker Proof: Building Secure Software
Cesar Cerrudo
 
OA_Cyber security course with AI
Object Automation
 
Cyber Security in AI (Artificial Intelligence)
Harsh Bhanushali
 
Bankinfonews
Vikram Kalkat
 
IDENTITY IN THE WORLD OF IOT
ForgeRock
 
[CB20] Cleaning up the mess: discovery, monitoring, analysis, and notificatio...
CODE BLUE
 
The good, the bad, and the ugly on integration ai with cybersecurity
Mohammad Khreesha
 
Managing Identity without Boundaries
Ping Identity
 
Hitchhikers Guide to the Identiverse - How Federated Business will Rule the W...
Ping Identity
 
Product security by Blockchain, AI and Security Certs
LabSharegroup
 
Out Go The Lights: An enlightening discussion of IoT automation security By D...
EC-Council
 
Use of Artificial Intelligence in Cyber Security - Avantika University
Avantika University
 
Is AI going to provide safety for us?
DLabs
 
Cyber Defense Automation
♟Sergej Epp
 
You Can't Spell Enterprise Security without MFA
Ping Identity
 
Identity-Defined Privacay & Security for Internet of Things
Ping Identity
 
Cyber Kill Chain: Web Application Exploitation
Prathan Phongthiproek
 
ARTIFICIAL INTELLIGENCE IN CYBER-SECURITY
venkatvajradhar1
 
Passwordless auth
Lesha Bhansali
 
Artificial Intelligence for Cyber Security
Priyanshu Ratnakar
 

Similar to Android Security : A Hacker's Perspective (20)

PPTX
Android Security: Art of Exploitation
Satria Ady Pradana
 
PDF
Understanding and Solving Common IoT Security Problems.pdf
SeasiaInfotech2
 
PDF
A Survey Report on : Security & Challenges in Internet of Things
ijsrd.com
 
PDF
Volume2 chapter1 security
at MicroFocus Italy ❖✔
 
DOCX
India and Its Wall of Data Security
eTailing India
 
PDF
Internet of Things (Iot) Based Smart Environment and its Applications
ijtsrd
 
DOCX
India and its wall of data security
Ashish Jhalani
 
PPTX
iot ppt.pptx
prashantkumarchinama
 
PDF
DataQuest_Sairam
Sairam Vedam
 
PDF
IoT and security
IET India
 
PPTX
IoT
Mphasis
 
PPTX
Internet of Things
Mphasis
 
PDF
Cyber Security in UAE - Trends That You Should Never Forget
Techugo
 
PDF
CII Whitepaper India Cyber Risk & Resilience Review 2018
Confederation of Indian Industry
 
DOCX
Team 3_Final Project.docx
MarcusBrown87
 
PDF
Telefónica security io_t_final
Christopher Wang
 
PPTX
iot 3.pptx
AradhyaKumar7
 
PDF
IMPROVE SECURITY IN SMART CITIES BASED ON IOT, SOLVE CYBER ELECTRONIC ATTACKS...
IJNSA Journal
 
PDF
Top Cyber Security Course in India - GICSEH.pdf
GICSEH
 
PDF
Internet of Things Challenges and Solutions
ijtsrd
 
Android Security: Art of Exploitation
Satria Ady Pradana
 
Understanding and Solving Common IoT Security Problems.pdf
SeasiaInfotech2
 
A Survey Report on : Security & Challenges in Internet of Things
ijsrd.com
 
Volume2 chapter1 security
at MicroFocus Italy ❖✔
 
India and Its Wall of Data Security
eTailing India
 
Internet of Things (Iot) Based Smart Environment and its Applications
ijtsrd
 
India and its wall of data security
Ashish Jhalani
 
iot ppt.pptx
prashantkumarchinama
 
DataQuest_Sairam
Sairam Vedam
 
IoT and security
IET India
 
IoT
Mphasis
 
Internet of Things
Mphasis
 
Cyber Security in UAE - Trends That You Should Never Forget
Techugo
 
CII Whitepaper India Cyber Risk & Resilience Review 2018
Confederation of Indian Industry
 
Team 3_Final Project.docx
MarcusBrown87
 
Telefónica security io_t_final
Christopher Wang
 
iot 3.pptx
AradhyaKumar7
 
IMPROVE SECURITY IN SMART CITIES BASED ON IOT, SOLVE CYBER ELECTRONIC ATTACKS...
IJNSA Journal
 
Top Cyber Security Course in India - GICSEH.pdf
GICSEH
 
Internet of Things Challenges and Solutions
ijtsrd
 

More from Satria Ady Pradana (17)

PPTX
Rekayasa Balik - Sebuah Hikayat dari Dunia Digital
Satria Ady Pradana
 
PPTX
The Offensive Python - Practical Python for Penetration Testing
Satria Ady Pradana
 
PPTX
From Reversing to Exploitation
Satria Ady Pradana
 
PPTX
Bypass Security Checking with Frida
Satria Ady Pradana
 
PPTX
(Training) Malware - To the Realm of Malicious Code
Satria Ady Pradana
 
PPTX
(Workshop) Reverse Engineering - Protecting and Breaking the Software
Satria Ady Pradana
 
PPTX
Reverse Engineering - Protecting and Breaking the Software
Satria Ady Pradana
 
PPTX
(Workshop) Memory Forensic - Investigating Memory Artefact
Satria Ady Pradana
 
PPTX
Memory Forensic - Investigating Memory Artefact
Satria Ady Pradana
 
PPTX
Another Side of Hacking
Satria Ady Pradana
 
PPTX
Drac lab automatic malware analysis & repository
Satria Ady Pradana
 
PPTX
Web Security Workshop : A Jumpstart
Satria Ady Pradana
 
PPTX
Dracos forensic flavor
Satria Ady Pradana
 
PPTX
Path of Cyber Security
Satria Ady Pradana
 
PPTX
Docker and-daily-devops
Satria Ady Pradana
 
PDF
Defense of the assets
Satria Ady Pradana
 
PPTX
Tugas Akhir 13510030 - Analisis Keamanan Dalam Pengembangan Sistem Transaksi ...
Satria Ady Pradana
 
Rekayasa Balik - Sebuah Hikayat dari Dunia Digital
Satria Ady Pradana
 
The Offensive Python - Practical Python for Penetration Testing
Satria Ady Pradana
 
From Reversing to Exploitation
Satria Ady Pradana
 
Bypass Security Checking with Frida
Satria Ady Pradana
 
(Training) Malware - To the Realm of Malicious Code
Satria Ady Pradana
 
(Workshop) Reverse Engineering - Protecting and Breaking the Software
Satria Ady Pradana
 
Reverse Engineering - Protecting and Breaking the Software
Satria Ady Pradana
 
(Workshop) Memory Forensic - Investigating Memory Artefact
Satria Ady Pradana
 
Memory Forensic - Investigating Memory Artefact
Satria Ady Pradana
 
Another Side of Hacking
Satria Ady Pradana
 
Drac lab automatic malware analysis & repository
Satria Ady Pradana
 
Web Security Workshop : A Jumpstart
Satria Ady Pradana
 
Dracos forensic flavor
Satria Ady Pradana
 
Path of Cyber Security
Satria Ady Pradana
 
Docker and-daily-devops
Satria Ady Pradana
 
Defense of the assets
Satria Ady Pradana
 
Tugas Akhir 13510030 - Analisis Keamanan Dalam Pengembangan Sistem Transaksi ...
Satria Ady Pradana
 

Recently uploaded (20)

PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
KodekX | Application Modernization Development
KodekX
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Approach and Philosophy of On baking technology
30anthuong17
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 

Android Security : A Hacker's Perspective

Editor's Notes

  • #10: Termasuk mobile phone. Mobile phone dan gadget adalah perangkat penting yang mendukung ekosistem cyber. - kecil, ringan, terhubung dengan internet, customizable.
  • #14: Begitu maraknya pemakaian teknologi menciptakan ancaman. Kenapa? Apa saja ancamannya?
  • #32: Static Dynamic