Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OSS19 0x5b - Information Gathering #1239

Closed
cpholguera opened this issue May 30, 2019 · 1 comment
Closed

OSS19 0x5b - Information Gathering #1239

cpholguera opened this issue May 30, 2019 · 1 comment
Assignees
@cpholguera
Milestone
1.2 Android and i...

Comments

@cpholguera
Copy link
Collaborator

cpholguera commented May 30, 2019
edited
Loading

Create the "Information Gathering" section in 0x05b.

Complete the following sections:

  • Installed Apps: e.g. adb shell pm list packages
$ adb shell pm list packages
package:com.android.sdm.plugins.connmo
package:com.google.android.googlequicksearchbox
package:com.android.providers.calendar
package:com.android.providers.media
package:com.google.android.onetimeinitializer
package:com.google.android.ext.shared
package:com.android.wallpapercropper
package:sg.vp.owasp_mobile.omtg_android
  • App Basic Information: include things that we can obtain using tools like aapt, dumpsys.
    • Sandbox: how to get to adb shell ls /data/data/sg.vp.owasp_mobile.omtg_android? what's in there?
    • Permissions: from androidmanifest or aapt dump, e.g. aapt dump permissions omtg.apk. Consider differences, do some tests using several apps and evaluate results.
    • Native Libs: Consider getting them from the APK or from the device; Consider also getting them using Frida / objection / gdb when running. Talk about the differences and give an evaluation. e.g. on runtime you may have to wait / trigger some functionality before seen the library being loaded.

Some help for Native Libs:

bullhead:/ # ls /data/data/sg.vp.owasp_mobile.omtg_android/lib
libdatabase_sqlcipher.so libnative.so libsqlcipher_android.so libstlport_shared.so

Using objection it is also straightforward as you already land in the sandbox and can directly use cd and ls commands to look around:

$ objection -g sg.vp.owasp_mobile.omtg_android explore

...g.vp.owasp_mobile.omtg_android on (google: 8.1.0) [usb] # ls lib                                                                                                           
Type    Last Modified            Read    Write    Hidden    Size       Name
------  -----------------------  ------  -------  --------  ---------  ------------------------
File    2018-06-06 08:16:34 GMT  True    False    False     13.4 KiB   libnative.so
File    2018-06-06 08:16:34 GMT  True    False    False     181.9 KiB  libdatabase_sqlcipher.so
File    2018-06-06 08:16:34 GMT  True    False    False     357.3 KiB  libstlport_shared.so
File    2018-06-06 08:16:34 GMT  True    False    False     2.2 MiB    libsqlcipher_android.so

Consider adding more sections for App Basic Information. Always keeping in mind that they should be reflected in the iOS chapter, unless not applicable
@commjoen commjoen added this to the 1.2: Android and iOS updates milestone Jun 3, 2019
@cpholguera cpholguera self-assigned this Jun 5, 2019
@cpholguera cpholguera mentioned this issue Jun 6, 2019
Merged
@commjoen
Copy link
Collaborator

commjoen commented Jun 6, 2019

Closed by #1299

@commjoen commjoen closed this as completed Jun 6, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@cpholguera cpholguera

Labels
None yet
Projects
None yet
Milestone
1.2 Android and iOS updates
Development

No branches or pull requests
2 participants
@commjoen @cpholguera