Detect Attacks on Signing-Bug in Android

SAAF-Developers / saaf

The Static Android Analysis Framework.

Other

36 stars 18 forks source link

Detect Attacks on Signing-Bug in Android #4

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago

It would be nice, if SAAF could detect that an APK tries to 
exploit a known bug in androids signing functionality:

http://bluebox.com/corporate-blog/bluebox-uncovers-android-master-key/

Original issue reported on code.google.com by linux.ni...@gmail.com on 15 Jul 2013 at 2:07