[DONE] 0x05c Tampering and Reverse Engineering on Android

OWASP / owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

https://mas.owasp.org/

Creative Commons Attribution Share Alike 4.0 International

11.75k stars 2.33k forks source link

[DONE] 0x05c Tampering and Reverse Engineering on Android #491

Closed muellerberndt closed 7 years ago

muellerberndt commented 7 years ago

See here:

https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05c-Reverse-Engineering-and-Tampering.md

Tasks:

Check and improve the chapter structure
Proofreading & consistency
Make sure examples are working
Link all examples to existing demo apps so they can be reproduced
Update Kernel module howto to Android 7

eclipse95 commented 7 years ago

Hello, As Panda (1.0) is deprecated, it could be interesting to update this part with Panda 2. I haven't tested Panda 2 yet.

muellerberndt commented 7 years ago

Good to know, thanks. Would you like to update it? :)

eclipse95 commented 7 years ago

Hello, I will try to test Panda 2, check functionalities and make the update if needed.

eclipse95 commented 7 years ago

Hello, Panda 2 has dropped "official" support for Android. It might stay possible to make working Android virtual device manually, but it would be painful and time consuming. I tried to do it but I experienced several problems for now.

EDIT: ~~So, I suggest to keep Panda 1 even if it's deprecated.~~