SlideShare a Scribd company logo

Android Security: Art of Exploitation

Download as PPTX, PDF
Satria Ady Pradana, profile picture
Satria Ady Pradana

The document discusses the evolving landscape of Android security from a hacker's perspective, emphasizing that security is a process rather than a product. It highlights the growth of technology and its impact on various aspects of life, along with the significant threats associated with a large user base of Android devices. The text also outlines the methods and tools for exploiting vulnerabilities in Android applications, emphasizing the importance of understanding these processes to effectively counteract security threats.

Technology
Related topics:
Information Security
1 of 36
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
Android Security A Hacker Perspective Reversing.ID Revealing the Truth through Breaking Things
Hi! I am Satria Ady Pradana Cyber Security Consultant @ Mitra Integrasi Informatika xathrya @xathrya Reversing.ID Revealing the Truth through Breaking Things
1. Define Security!
“ Security is a process, not a product.
Growth of Technology The Past and Present
 Back then, only few people or organizations can afford it. Now everyone can.  Everything has their electronic or digital equivalent.  Used by companies, government, military, or individuals to replace the manual works.  Nearly every aspect of our life has been affected by technology.  Things getting smarter.  Reduces in size.  More connected than before.
Cyberspace Around You It’s hard to not depend on IT technology.
Your Dependency to Digital Technology ◎Communication. ◎Entertainment. ◎Finansial. ◎Education. ◎News. ◎Etc.. Etc..
The Role of Mobile Devices Key Component for Digital Society in Consumers End.
https://www.statista.com/statistics/263441/global-smartphone-shipments-forecast/
http://www.businessinsider.sg/smartphone-market-share-android-ios-windows- blackberry-2016-8
Android Getting More Dominant
The Threats
“ With Great Userbase Comes Great Threats
https://www.statista.com/statistics/434880/cyber-crime-exploits/
Incidents Drived by Motives ◎Financials Gain ◎Political Gain ◎Revenge and Defamation ◎Thrill and Entertainment
“ Security is not a product. To deal with a threat, you need to know the correct process to countermeasure.
Android Security: Art of Exploitation
2. Android Hacking means....
Devices & Operating System Applications (Software)
Android Security: Art of Exploitation
Demo 1: Android RAT Remote Access Tool
Android Security: Art of Exploitation
3. Exploiting Android Application
The Joy of Android Apps Exploitation ◎The application is in your possession. ◎Basically it tell us to do anything. ◎Your Code is Mine
• Obtain the Sensitive Data • Get the Algorithm • Take over • Manipulate Our Goal (Mostly)
Exploitation is not always about taking over mobile devices! It is about taking advantage of vulnerability
Analysis Lab Anything you need to prepare
Set Up Tools and Environment  Android Device / Emulator  Disassembler  Decompiler  HTTP / TCP Proxy for MITM  Packet Sniffer  Dynamic Binary Instrumentation
Analysis Technique Anything you need to know
C O D E D A T A  Static Analysis  Dynamic Analysis  Dynamic Binary Instrumentation  Traffic Analysis  Taint Analysis
Vulnerable Point Where should I look?
Demo 2: Exploiting Vulnerable Apps
4. Real Life Cyber Security Activity
Android Application is not Stand Alone!
Thanks! Any questions?

More Related Content

PDF
Recent Technologies in Electronics & Communication and Computer Science
Dr. Shivananda Koteshwar
 
PPS
UX for Internet of things == Experience of Things
Puneet Arora
 
PPTX
Uniken Presentation for IT Minister @iSPIRT Event - Conclave for India as Pro...
ProductNation/iSPIRT
 
PDF
SentinelOne - NOAH19 Tel Aviv
NOAH Advisors
 
PPTX
Sensors, Wearables and the Internet of Things: A Revolution in the Making
Matt Turck
 
PDF
Internet of things: New Technology and its Impact on Business Models
Kate Carruthers
 
PDF
When the Internet of Things becomes the Security of Things
Confident Technologies
 
PPTX
Security Everywhere in the Digital Economy
Connected Futures
 
Recent Technologies in Electronics & Communication and Computer Science
Dr. Shivananda Koteshwar
 
UX for Internet of things == Experience of Things
Puneet Arora
 
Uniken Presentation for IT Minister @iSPIRT Event - Conclave for India as Pro...
ProductNation/iSPIRT
 
SentinelOne - NOAH19 Tel Aviv
NOAH Advisors
 
Sensors, Wearables and the Internet of Things: A Revolution in the Making
Matt Turck
 
Internet of things: New Technology and its Impact on Business Models
Kate Carruthers
 
When the Internet of Things becomes the Security of Things
Confident Technologies
 
Security Everywhere in the Digital Economy
Connected Futures
 

What's hot (20)

PPTX
Internet of Things (IOT) - The Tipping Point
Dr. Mazlan Abbas
 
PDF
Top 5 Smart Technology Trends We'll See in 2020
JayKumar304
 
PDF
How small devices make the biggest impact on the iot
GlobalTechCouncil
 
PPTX
IoT Can Revolutionize Healthcare, But Security Is Key
Algoworks Inc
 
PPTX
Getting ‘Smart’er – Collaboration and the Internet of Everything
Cisco Collaboration
 
PDF
Internet of things - 2020
Deepak Mankotia
 
PDF
Balancing Transformation in Digital Government: Cyber Risks vs. IT Rewards - ...
scoopnewsgroup
 
PDF
IOT 101 - A primer on Internet of Things
Nagarro
 
PDF
How to Build an IoT Startup - Syam @IEEE TENSYMP 2015
Syam Madanapalli
 
PDF
Confronting the risks of artificial Intelligence
Mauricio Rivadeneira
 
PDF
Towards a Responsible Internet of Things
Jeff Katz
 
PDF
Internet of Things
We Are Social
 
PDF
Mihai Raneti, Founder & CEO of CyberSwarm Inc.-Cybersecurity for the future: ...
Codiax
 
PDF
Internet of Things
videos
 
PPTX
IoT
Mphasis
 
PPTX
Microfunding mobile microfinance
Selma Alparslan
 
PPTX
Internet of Things - Asked and Answered
ADCBarcode
 
PDF
iot-bringing-trust-to-iot[1]
Haider Iqbal
 
PPTX
future trends future opportunities oct2017
legislative yuan
 
PDF
CIOs Are At A Crossroads
Jive Software an Aurea company
 
Internet of Things (IOT) - The Tipping Point
Dr. Mazlan Abbas
 
Top 5 Smart Technology Trends We'll See in 2020
JayKumar304
 
How small devices make the biggest impact on the iot
GlobalTechCouncil
 
IoT Can Revolutionize Healthcare, But Security Is Key
Algoworks Inc
 
Getting ‘Smart’er – Collaboration and the Internet of Everything
Cisco Collaboration
 
Internet of things - 2020
Deepak Mankotia
 
Balancing Transformation in Digital Government: Cyber Risks vs. IT Rewards - ...
scoopnewsgroup
 
IOT 101 - A primer on Internet of Things
Nagarro
 
How to Build an IoT Startup - Syam @IEEE TENSYMP 2015
Syam Madanapalli
 
Confronting the risks of artificial Intelligence
Mauricio Rivadeneira
 
Towards a Responsible Internet of Things
Jeff Katz
 
Internet of Things
We Are Social
 
Mihai Raneti, Founder & CEO of CyberSwarm Inc.-Cybersecurity for the future: ...
Codiax
 
Internet of Things
videos
 
IoT
Mphasis
 
Microfunding mobile microfinance
Selma Alparslan
 
Internet of Things - Asked and Answered
ADCBarcode
 
iot-bringing-trust-to-iot[1]
Haider Iqbal
 
future trends future opportunities oct2017
legislative yuan
 
CIOs Are At A Crossroads
Jive Software an Aurea company
 
Ad

Similar to Android Security: Art of Exploitation (20)

PPTX
Android Security : A Hacker's Perspective
Satria Ady Pradana
 
PDF
Techvorm com-android-security-issues-solutions
Saad Ahmad
 
PDF
Mobile security article
Kulani Mahadewa
 
PDF
Mobile Apps and Security Attacks: An Introduction
Nagarro
 
PPTX
Android security
Midhun P Gopi
 
PDF
Article on Mobile Security
Tharaka Mahadewa
 
PDF
Securing Mobile Apps - Appfest Version
Subho Halder
 
PDF
Five mobile security challenges facing the enterprise
NowSecure
 
PDF
Building an Android Scale Incident Response Process
Priyanka Aash
 
PDF
Whitepaper - CISO Guide_6pp
Eric Zhuo
 
PDF
Mobile Security & Analytics: What Works and What Doesn't
Skycure
 
PDF
Data Security Solutions @ Lithuania CIO Forum 2015 - Mobility will happen by ...
Andris Soroka
 
PDF
11 Reasons Why Your Company Could Be In Danger
Copper Mobile, Inc.
 
PDF
SECURITY AND HACKING ANDROID MOBILE DEVELOPMENT .pdf
IRENE PATRIC
 
PDF
Cyber safety
Arjun Chetry
 
PPTX
Mobile security
Stefaan
 
PDF
Android App Hacking - Erez Metula, AppSec
DroidConTLV
 
PPT
Mobile code mining for discovery and exploits nullcongoa2013
Blueinfy Solutions
 
PDF
Evolutionand impactofhiddenmobilethreats wandera
Anjoum .
 
PPTX
Smartphone and mobile device safety & security
AlbanMichael
 
Android Security : A Hacker's Perspective
Satria Ady Pradana
 
Techvorm com-android-security-issues-solutions
Saad Ahmad
 
Mobile security article
Kulani Mahadewa
 
Mobile Apps and Security Attacks: An Introduction
Nagarro
 
Android security
Midhun P Gopi
 
Article on Mobile Security
Tharaka Mahadewa
 
Securing Mobile Apps - Appfest Version
Subho Halder
 
Five mobile security challenges facing the enterprise
NowSecure
 
Building an Android Scale Incident Response Process
Priyanka Aash
 
Whitepaper - CISO Guide_6pp
Eric Zhuo
 
Mobile Security & Analytics: What Works and What Doesn't
Skycure
 
Data Security Solutions @ Lithuania CIO Forum 2015 - Mobility will happen by ...
Andris Soroka
 
11 Reasons Why Your Company Could Be In Danger
Copper Mobile, Inc.
 
SECURITY AND HACKING ANDROID MOBILE DEVELOPMENT .pdf
IRENE PATRIC
 
Cyber safety
Arjun Chetry
 
Mobile security
Stefaan
 
Android App Hacking - Erez Metula, AppSec
DroidConTLV
 
Mobile code mining for discovery and exploits nullcongoa2013
Blueinfy Solutions
 
Evolutionand impactofhiddenmobilethreats wandera
Anjoum .
 
Smartphone and mobile device safety & security
AlbanMichael
 
Ad

More from Satria Ady Pradana (20)

PPTX
Malware for Red Team
Satria Ady Pradana
 
PPTX
Down The Rabbit Hole, From Networker to Security Professional
Satria Ady Pradana
 
PPTX
MITM: Tales of Trust and Betrayal
Satria Ady Pradana
 
PPTX
Berkarir di Cyber Security
Satria Ady Pradana
 
PPTX
IOT Security FUN-damental
Satria Ady Pradana
 
PPTX
Python-Assisted Red-Teaming Operation
Satria Ady Pradana
 
PPTX
IoT Security - Preparing for the Worst
Satria Ady Pradana
 
PDF
Silabus Training Reverse Engineering
Satria Ady Pradana
 
PPTX
Practical Security - Modern Day Software
Satria Ady Pradana
 
PPTX
Firmware Reverse Engineering
Satria Ady Pradana
 
PPTX
Reverse Engineering: The Crash Course
Satria Ady Pradana
 
PPTX
The Offensive Python: Practical Python for Penetration Testing
Satria Ady Pradana
 
PPTX
From Reversing to Exploitation: Android Application Security in Essence
Satria Ady Pradana
 
PPTX
Bypass Security Checking with Frida
Satria Ady Pradana
 
PPTX
Malware: To The Realm of Malicious Code (Training)
Satria Ady Pradana
 
PPTX
Reverse Engineering: Protecting and Breaking the Software (Workshop)
Satria Ady Pradana
 
PPTX
Reverse Engineering: Protecting and Breaking the Software
Satria Ady Pradana
 
PPTX
Memory Forensic: Investigating Memory Artefact (Workshop)
Satria Ady Pradana
 
PPTX
Memory Forensic: Investigating Memory Artefact
Satria Ady Pradana
 
PPTX
Another Side of Hacking
Satria Ady Pradana
 
Malware for Red Team
Satria Ady Pradana
 
Down The Rabbit Hole, From Networker to Security Professional
Satria Ady Pradana
 
MITM: Tales of Trust and Betrayal
Satria Ady Pradana
 
Berkarir di Cyber Security
Satria Ady Pradana
 
IOT Security FUN-damental
Satria Ady Pradana
 
Python-Assisted Red-Teaming Operation
Satria Ady Pradana
 
IoT Security - Preparing for the Worst
Satria Ady Pradana
 
Silabus Training Reverse Engineering
Satria Ady Pradana
 
Practical Security - Modern Day Software
Satria Ady Pradana
 
Firmware Reverse Engineering
Satria Ady Pradana
 
Reverse Engineering: The Crash Course
Satria Ady Pradana
 
The Offensive Python: Practical Python for Penetration Testing
Satria Ady Pradana
 
From Reversing to Exploitation: Android Application Security in Essence
Satria Ady Pradana
 
Bypass Security Checking with Frida
Satria Ady Pradana
 
Malware: To The Realm of Malicious Code (Training)
Satria Ady Pradana
 
Reverse Engineering: Protecting and Breaking the Software (Workshop)
Satria Ady Pradana
 
Reverse Engineering: Protecting and Breaking the Software
Satria Ady Pradana
 
Memory Forensic: Investigating Memory Artefact (Workshop)
Satria Ady Pradana
 
Memory Forensic: Investigating Memory Artefact
Satria Ady Pradana
 
Another Side of Hacking
Satria Ady Pradana
 

Recently uploaded (20)

PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
KodekX | Application Modernization Development
KodekX
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Approach and Philosophy of On baking technology
30anthuong17
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 

Android Security: Art of Exploitation

Editor's Notes

  • #10: Termasuk mobile phone. Mobile phone dan gadget adalah perangkat penting yang mendukung ekosistem cyber. - kecil, ringan, terhubung dengan internet, customizable.
  • #14: Begitu maraknya pemakaian teknologi menciptakan ancaman. Kenapa? Apa saja ancamannya?
  • #32: Static Dynamic