Publicité

Web-based Security Analysis Tool for Android Applications

Tandhy Simanjuntak
Security Consultant, GSEC à Cigital, Inc
5 Nov 2014
Web-based Security Analysis Tool for Android Applications

Check these out next

What are the top 10 web security risks?
What are the top 10 web security risks?
Jacklin Berry
Peerlyst Delhi NCR Chapter Meet
Peerlyst Delhi NCR Chapter Meet
Abhinav Mishra
Why security is the kidney not the tail of the dog v3
Why security is the kidney not the tail of the dog v3
Ernest Staats
An overview of web security
An overview of web security
Bee_Ware
Mobile Apps & Connected Healthcare: Managing 3rd-Party Mobile App Risk
Mobile Apps & Connected Healthcare: Managing 3rd-Party Mobile App Risk
NowSecure
[1.1] Почему вам стоит поучаствовать в жизни OWASP Russia - Александр Антух
[1.1] Почему вам стоит поучаствовать в жизни OWASP Russia - Александр Антух
OWASP Russia
Vetting Mobile Apps for Corporate Use: Security Essentials
Vetting Mobile Apps for Corporate Use: Security Essentials
NowSecure
Sympathy for the Developer
Sympathy for the Developer
Sarah Gibson
1 sur 1

Web-based Security Analysis Tool for Android Applications

5 Nov 2014
Télécharger pour lire hors ligne
Technologie

a web-based security analysis tool for android applications poster session at Advanced Cyber Security Center Annual Conference 2014, Boston, Nov 5th, 2014.

Tandhy Simanjuntak
Security Consultant, GSEC à Cigital, Inc
Publicité
Publicité
Publicité

Recommandé

Leverage Big Data in Cybersecurity Leverage Big Data in Cybersecurity
Leverage Big Data in Cybersecurity DefCamp111 vues15 diapositives
Seminar enkripsi unsyiah 15 nov 2013Seminar enkripsi unsyiah 15 nov 2013
Seminar enkripsi unsyiah 15 nov 2013IGN MANTRA588 vues28 diapositives
I am the Cavalry (The Cavalry Is Us) Sourceconf September 2015I am the Cavalry (The Cavalry Is Us) Sourceconf September 2015
I am the Cavalry (The Cavalry Is Us) Sourceconf September 2015Claus Cramon Houmann447 vues36 diapositives
Application Security Risk RatingApplication Security Risk Rating
Application Security Risk RatingVaibhav Gupta2.4K vues23 diapositives
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...Tao Xie947 vues46 diapositives
ISACA 2016 Annual Conference SA_State of Risk_Tunde Ogunkoya_DeltaGRiC_Consul...ISACA 2016 Annual Conference SA_State of Risk_Tunde Ogunkoya_DeltaGRiC_Consul...
ISACA 2016 Annual Conference SA_State of Risk_Tunde Ogunkoya_DeltaGRiC_Consul...Tunde Ogunkoya265 vues30 diapositives

Contenu connexe

Similaire à Web-based Security Analysis Tool for Android Applications(20)

What are the top 10 web security risks?What are the top 10 web security risks?
What are the top 10 web security risks?
Jacklin Berry112 vues
Peerlyst Delhi NCR Chapter MeetPeerlyst Delhi NCR Chapter Meet
Peerlyst Delhi NCR Chapter Meet
Abhinav Mishra1.3K vues
Why security is the kidney not the tail of the dog v3Why security is the kidney not the tail of the dog v3
Why security is the kidney not the tail of the dog v3
Ernest Staats249 vues
An overview of web securityAn overview of web security
An overview of web security
Bee_Ware3.3K vues
Mobile Apps & Connected Healthcare: Managing 3rd-Party Mobile App RiskMobile Apps & Connected Healthcare: Managing 3rd-Party Mobile App Risk
Mobile Apps & Connected Healthcare: Managing 3rd-Party Mobile App Risk
NowSecure162 vues
[1.1] Почему вам стоит поучаствовать в жизни OWASP Russia - Александр Антух[1.1] Почему вам стоит поучаствовать в жизни OWASP Russia - Александр Антух
[1.1] Почему вам стоит поучаствовать в жизни OWASP Russia - Александр Антух
OWASP Russia502 vues
Vetting Mobile Apps for Corporate Use: Security EssentialsVetting Mobile Apps for Corporate Use: Security Essentials
Vetting Mobile Apps for Corporate Use: Security Essentials
NowSecure528 vues
Sympathy for the DeveloperSympathy for the Developer
Sympathy for the Developer
Sarah Gibson492 vues
Intelligent Software Engineering: Synergy between AI and Software Engineering...Intelligent Software Engineering: Synergy between AI and Software Engineering...
Intelligent Software Engineering: Synergy between AI and Software Engineering...
Tao Xie898 vues
State of Web Application Security by Ponemon InstituteState of Web Application Security by Ponemon Institute
State of Web Application Security by Ponemon Institute
Jeremiah Grossman2K vues
Artificial Intelligence and Machine Learning by Praveen HanchinalArtificial Intelligence and Machine Learning by Praveen Hanchinal
Artificial Intelligence and Machine Learning by Praveen Hanchinal
Praveen Hanchinal319 vues
RSA 2015 Blending the Automated and the Manual: Making Application Vulnerabil...RSA 2015 Blending the Automated and the Manual: Making Application Vulnerabil...
RSA 2015 Blending the Automated and the Manual: Making Application Vulnerabil...
Denim Group3.5K vues
Inside-Out-Newsletter 2020-21.pdfInside-Out-Newsletter 2020-21.pdf
Inside-Out-Newsletter 2020-21.pdf
Savipriya Raghavendra2.3K vues
Web App Attacks - Stats & RemediationWeb App Attacks - Stats & Remediation
Web App Attacks - Stats & Remediation
Qualys13.4K vues
iViZ Security : On Demand Penetration TestingiViZ Security : On Demand Penetration Testing
iViZ Security : On Demand Penetration Testing
iViZ Techno Solutions895 vues
Innovation in Cybersecurity [Montreal 2018 CRIAQ RDV Forum]Innovation in Cybersecurity [Montreal 2018 CRIAQ RDV Forum]
Innovation in Cybersecurity [Montreal 2018 CRIAQ RDV Forum]
Interset 396 vues
API Security SurveyAPI Security Survey
API Security Survey
Imperva7.3K vues
Artificial intelligence by praveen hanchinalArtificial intelligence by praveen hanchinal
Artificial intelligence by praveen hanchinal
Praveen Hanchinal2.1K vues
Positive Technologies Application InspectorPositive Technologies Application Inspector
Positive Technologies Application Inspector
qqlan1.6K vues
Web Application Security Vulnerability Management FrameworkWeb Application Security Vulnerability Management Framework
Web Application Security Vulnerability Management Framework
jpubal3.5K vues

Dernier(20)

Multicore Stranded Conductor and Sheathed 450-750 V Fire Resistant Cables by ...Multicore Stranded Conductor and Sheathed 450-750 V Fire Resistant Cables by ...
Multicore Stranded Conductor and Sheathed 450-750 V Fire Resistant Cables by ...
Karupaswamy10 vue
videographyppt.pptxvideographyppt.pptx
videographyppt.pptx
AamirMaqsood80 vue
Stay Ahead of the Competition: The Advantages of Hiring a Digital Marketing E...Stay Ahead of the Competition: The Advantages of Hiring a Digital Marketing E...
Stay Ahead of the Competition: The Advantages of Hiring a Digital Marketing E...
AlisonTaylor860 vue
University of Engineering and Technology.docxUniversity of Engineering and Technology.docx
University of Engineering and Technology.docx
MuhammadumairKhan740 vue
LanGCHAIN FrameworkLanGCHAIN Framework
LanGCHAIN Framework
Keymate.AI0 vue
GAAD_EVENT_V3.pptxGAAD_EVENT_V3.pptx
GAAD_EVENT_V3.pptx
SumanDamera10 vue
BG CSLTTT C1.pptxBG CSLTTT C1.pptx
BG CSLTTT C1.pptx
MnhQuang140 vue
Delta Energy - Company ProfileDelta Energy - Company Profile
Delta Energy - Company Profile
bilalansari970 vue
FC-7664PRO alarm panel professional security systemFC-7664PRO alarm panel professional security system
FC-7664PRO alarm panel professional security system
Vedard Security Alarm System Store0 vue
University of Engineering and Technology.docxUniversity of Engineering and Technology.docx
University of Engineering and Technology.docx
MuhammadumairKhan740 vue
ARDUINO_presentation_by_Bamidele samuel.pptARDUINO_presentation_by_Bamidele samuel.ppt
ARDUINO_presentation_by_Bamidele samuel.ppt
SAMTECH ELECTRONICS CONCEPT 0 vue
Wilab-NWDAF-datasheet.pdfWilab-NWDAF-datasheet.pdf
Wilab-NWDAF-datasheet.pdf
FabianToh20 vue
Cybersecurity jobs abnd job architectureCybersecurity jobs abnd job architecture
Cybersecurity jobs abnd job architecture
SFIA User Forum0 vue
6+1 Technical Tips for Tech Startups (2023 Edition)6+1 Technical Tips for Tech Startups (2023 Edition)
6+1 Technical Tips for Tech Startups (2023 Edition)
Ahmed Misbah0 vue
Ini Spesifikasi dan Harga Zenbook S 13 OLED (UX5304)Ini Spesifikasi dan Harga Zenbook S 13 OLED (UX5304)
Ini Spesifikasi dan Harga Zenbook S 13 OLED (UX5304)
Dot Semarang0 vue
EU opportunities inputs for FIWARE summit.pptxEU opportunities inputs for FIWARE summit.pptx
EU opportunities inputs for FIWARE summit.pptx
FIWARE0 vue
chandigarh smart city chandigarh smart city
chandigarh smart city
TarunGangoli10 vue
在哪里可以办英国大学文凭《英博夏尔大学毕业证成绩单仿制》在哪里可以办英国大学文凭《英博夏尔大学毕业证成绩单仿制》
在哪里可以办英国大学文凭《英博夏尔大学毕业证成绩单仿制》
nukotk0 vue
76075-technology powerpoint presentation ideas.pptx76075-technology powerpoint presentation ideas.pptx
76075-technology powerpoint presentation ideas.pptx
MuhammadumairKhan740 vue
Biking on the edge - Jerome Mies - SRD23Biking on the edge - Jerome Mies - SRD23
Biking on the edge - Jerome Mies - SRD23
SURF Events0 vue
Publicité

Web-based Security Analysis Tool for Android Applications

  1. WebVbasedhSecurityhAnalysishToolh forhAndroidhApplications ComputerhSciencehDepartmentPhMetropolitanhCollege NebiyuhFelekePhTandhyhSimanjuntakPhWenjiehShiPhYutinghZhangPhLouhChitkushevhh naberraPhtandhyPhwjshiPhdanazhPhltc@bu.edu Architecture OnNgoingIWork OurITool EveryhfifthhAndroidVbasedhdevicehwithhKasperskyhsolutionshwash attackedhbyhmalwarehduringhreportedhperiod OtherIWebNbasedIAnalysisITools Motivation www.idc.com www.kaspersky.com www.kaspersky.com Anubis AIwebIportalIofIandroidIapplicationsIsecurity ApplicationISecurityIAnalysisIbasedIonICategory ImplicitIOpenIomponentsIinIFinanceIandIMedicalIApplications PercentageIofITotalIOverIPrivilegeIApplicationsIbasedIonICategory ProposedIWork AIframeworkItoIanalyzeItheIsecurityIofIandroidIapplicationsIthroughIstaticIanalysis ProposeIandIimplementIaInumberIofImetricsIcomplementaryItoIthoseIinImanyIexistingIwebNbasedIanalysisItools: IdentifyIOverIPrivilege IdentifyIReNDelegation IdentifyIDangerousIPermissionsICombinationI IdentifyIOpenIComponents IdentifyIHiddenIFileIandICodeILoading IdentifyIRootIExploitIandIMaliciousIDomain AnalysishToolhPage SearchhToolhPage ApplicationISecurityIEvolutionIAnalysis IdentifyIandIclassifyIapplicationsIwithIsimilar functionalityIbasedIonIapplicationsEIdescriptionsIusingI keywordIanalysis InvestigateItheIassociationIbetweenIkeywordsIand otherIsecurityImetricsIsuchIasIpermissions PerformIbothIindividualIandIcollectiveIanalysis ReNdelegation OpenIComponents OverNprivilege DangerousIPermissionsICombination HiddenIFiles MaliciousIDomains RootIExploit CodeILoading TypesIofIMetricsIChangedI DistributionhofhAddedhVulnerabilities DistributionhofhDeletedhVulnerabilities ProposedIWork IdentifyImoreIsecurityImetricsIthatIcanIbe usedIforIevolutionIanalysis,IincludingIthose usedIinIotherIexistingItools InvestigateItheIpossibleIsecurityIevolution patternsIofIapplications InvestigateItheIpossibleIsecurityIpatternsIofI applicationsIwithIsimilarIfunctionality NumberIofITypesIofIMetricsIChangedI PercentageIofIDatasetI MetricsIinclude: DetailsIofIThreeIMetricsI TypeIofIMetricsI PercentageIofIDatasetI NumberIofIAddedIVulnerabilitiesI PercentageIofIApplicableIDatasetI PercentageIofIApplicableIDatasetI NumberIofIDeletedIVulnerabilitiesI TotalIDownloadedIApplicationsIbasedIonICategory IPercentageIofIRootIExploitIApplicationsIbasedIonICategory TotalINumberI Category TotalIPercentageI Category TotalIPercentageI Category InvestigateIpossibleIupdateIattacks, particularlyIthroughIanomalyIdetection
Publicité