Skip to content

The unofficial release of the tool we used in the EuroS&P 2017 paper: Open Doors for Bob and Mallory: Open Port Usage in Android Apps and Security Implications.

Notifications You must be signed in to change notification settings

jiayunhan/OPAnalyzer

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

OPAnalyzer

Working repository for the EuroS&P 17 paper: Open door for Bob and Mallory.

Java Analyzer: The Java layer analysis is built based on the Amandroid Project. Thanks to the authors of Amandroid. OPAnalyzer adds the open port specific taint tracking into the code base, together with the constraints analysis. Our analysis was built based on old version of Amandroid, and latest version can be found here. Please follow the instruction on Amandroid website to setup the environment and run the analysis.

The Native code analysis uses the IDA Pro as backend, and runs inter-procedure taint analysis to find control-flow jumps from native code layer to Java layer. It takes .so files extracted from APKs as input, and outpute the taint paths from open port to system() calls

The ThreadController is a Java-based multi-thread controller that aims at parallelizing the download/decode/install/analysis of tens of thousands of APK files.

The runtime-analysis automates the process of downloading APK files from our internal data store, install on the test device, and extract the runtime open port information from proc file, which provides us more insights into the potential vulnerabilities.

This is just an unofficial release, and more documents and instructions will be added later.

About

The unofficial release of the tool we used in the EuroS&P 2017 paper: Open Doors for Bob and Mallory: Open Port Usage in Android Apps and Security Implications.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published