Nytro Posted May 4, 2014 Report Posted May 4, 2014 [h=2]Fino Android Security Assessment Tool[/h]February 2nd, 2014 Mourad Ben LakhouaSecurity assessment tools have several ways for conducting the technical analyses. Fino is another program that you can use to run dynamic analyses for Android based application. The tool allows injecting services in the application for controlling and monitoring the change. The android application we want to verify will be running in emulator that is called gadget or what we call usually a sandbox and dynamically verify all changes on the system. Next it is possible to run python scripts to get or modify the services. You may get all target activities by running “activities =app.find(‘android.app.Activity’)“ the idea of monitoring services with the injection can make you monitor the application from inside and you will have details about the android application with more accurate results. Fino design in the slide deck the full pdf file over here: http://events.ccc.de/congress/2012/Fahrplan/attachments/2237_SmallFootprintInspectionAndroid-slides.pdf You can download Fino on the following link: https://github.com/sysdream/finoSursa: Fino Android Security Assessment Tool | SecTechno Quote
M2G Posted May 4, 2014 Report Posted May 4, 2014 Asta a fost prezentat la Defcamp in 2013.Mai era ceva "vaccine" parca dar pe ala nu l-am gasit. Poate ca nu e public. Quote