Put android-vts on F-droid

AndroidVTS / android-vts

Android Vulnerability Test Suite - In the spirit of open data collection, and with the help of the community, let's take a pulse on the state of Android security. NowSecure presents an on-device app to test for recent device vulnerabilities.

Other

1.01k stars 272 forks source link

Put android-vts on F-droid #38

Open mimi89999 opened 8 years ago

David-Guillot commented 8 years ago

:+1: (don't have Google Play Services on my device)

matthieuy commented 8 years ago

:+1: or, in a first time, a link to download the APK will be nice.

Fuzion24 commented 8 years ago

I removed the binary from the repo, but I can add it back for this purpose until an F-Droid release happens.

Fuzion24 commented 8 years ago

Binary located here: https://github.com/nowsecure/android-vts/blob/master/bin/androidVTS.apk

matthieuy commented 8 years ago

Thanks a lot ! If you don't want to keep binary in repo, you can use the Release function : https://github.com/blog/1547-release-your-software ;-)

Fuzion24 commented 8 years ago

Nice suggestion. Moved release to here: https://github.com/nowsecure/android-vts/releases/tag/v.3

matthieuy commented 8 years ago

Someone propose it in F-droid : https://f-droid.org/forums/topic/android-vts-vulnerability-test-suite-2/

renekliment commented 8 years ago

+1 on this

SecUpwN commented 8 years ago

Awesome, I just wanted to propose this since it solves #101. Thanks for aleady doing so, @mimi89999!

ralphtheninja commented 8 years ago

:100:

mimi89999 commented 8 years ago

https://gitlab.com/fdroid/fdroiddata/issues/374

nailyk-fr commented 7 years ago

idk if this issue is still up-to-date but after asking f-droid maintainers problem is built-in binaries (like the zip) Noticed all the binaries have generation process described. If they can be included into the build process android-vts can be built by f-droid bot.

ale5000-git commented 7 years ago

@dweinstein @Fuzion24 Can you please provide the sources of all binaries inside android-vts/app/src/main/assets/? This would allow to publish it on F-Droid and it will also fix #133.

Fuzion24 commented 7 years ago

I no longer have the resources to maintain this project. The source for the binaries inside assets is in the repo. However, just recompiling and redistributing this application on F-Droid is not sufficient. It takes a non-negligible amount of time and effort to choose critical CVEs and develop effective tests for them which can happen inside the restricted app sandbox.

It's a fair assumption that any device which isn't running the latest Android version and has the latest security patch level is insecure.

nailyk-fr commented 7 years ago

Hi, I just setup an alternative fdroid repo. Still need some changes. Feels free to comment/report issues repo here. This will allow users to download this great app. I will setup the jenkins to build once a week. (Manual trigger still possible)

For AndroidVTS devs: If it is a problem that I build and release your app contact me and I will remove everything.