Category: Android

Androguard usage

Androguard is a python tool for analyzing Android applications. It can decompile and analyze APK files.   Install Androguard Androguard is written in python 2.7. The first step in installing Androguard is determining the path to python 2.7 and creating a virtual environment. The virtual environment is a container and has its own installation directories…


OWASP Uncrackable – Android Level3

This is the solution of the OWASP Uncrackable Android Level3. The binary can be found under https://github.com/OWASP/owasp-mstg/tree/master/Crackmes. In my previous post I detailed: how to patch an apk file with apktool how to patch a binary with IdaPro how to debug an android binary with gdb I will not detail these steps here. This challenge…


OWASP Uncrackable – Android Level2

This is the solution of the OWASP Uncrackable Android Level2. The binary can be found under https://github.com/OWASP/owasp-mstg/tree/master/Crackmes.   I started the analysis with loading the apk file into Jadx-GUI. I opened the MainActivity first. The system loads a native library called foo. The native function init is called in the onInit of the MainActivity. The…


How I rooted my Android Tablet?

First I set the ‘Enable USB Debugging option’. I opened the Settings and tapped on the ‘About phone’. Then I tapped several times on the ‘Build Number’. This enabled the Developer option, from where I could enable the ‘Enable USB Debugging option’ I opened the http://kingroot.net site in a browser and downloaded the apk. Then I…


Useful tools for Android pentest

1. apktool With apktool, we can decompile and recompile again the Android application file. apktool d <relative path of apk file>  –  decompile the apk file, (for the dex file, use ‘unzip <apk file>’ instead) apktool b <relative path of apk file> -o <path to the new apk file>  –  compile the apk file  …