diff --git a/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/AndroidManifest.xml b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/AndroidManifest.xml
new file mode 100644
index 0000000000..8d6fa6e91f
--- /dev/null
+++ b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/AndroidManifest.xml
@@ -0,0 +1,33 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/AndroidManifest_reversed.xml b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/AndroidManifest_reversed.xml
new file mode 100644
index 0000000000..b8cfe1bcad
--- /dev/null
+++ b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/AndroidManifest_reversed.xml
@@ -0,0 +1,38 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/MASTG-DEMO-0023.md b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/MASTG-DEMO-0023.md
new file mode 100644
index 0000000000..6f1f9c5586
--- /dev/null
+++ b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/MASTG-DEMO-0023.md
@@ -0,0 +1,34 @@
+---
+platform: android
+title: Application using unsafe permissions.
+id: MASTG-DEMO-0023
+code: [java]
+---
+
+### Sample
+
+{{ AndroidManifest.xml }}
+
+### Steps
+
+Let's run our @MASTG-TOOL-0110 rule against the sample manifest file.
+
+{{ ../../../../rules/mastg-android-unsafe-app-permissions.yaml }}
+
+{{ run.sh }}
+
+### Observation
+
+The rule has identified five instances in the AndroidManifest file where the application requires unsafe permissions.
+
+{{ output.txt }}
+
+### Evaluation
+
+The reported instances include:
+
+- Line 5 uses `INTERNET` permissions.
+- Line 6 uses `WRITE_EXTERNAL_STORAGE` permissions.
+- Line 7 uses `READ_CONTACTS` permissions.
+- Line 8 uses `READ_EXTERNAL_STORAGE` permissions.
+- Line 9 uses `ACCESS_FINE_LOCATION` permissions.
diff --git a/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/MastgTest.kt b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/MastgTest.kt
new file mode 100644
index 0000000000..6a356ae6d7
--- /dev/null
+++ b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/MastgTest.kt
@@ -0,0 +1,15 @@
+package org.owasp.mastestapp
+
+import android.util.Log
+import android.content.Context
+
+class MastgTest (private val context: Context){
+
+ fun mastgTest(): String {
+ val sensitiveString = "Hello from the OWASP MASTG Test app."
+
+ Log.d("MASTG-TEST", sensitiveString)
+ return sensitiveString
+ }
+
+}
\ No newline at end of file
diff --git a/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/MastgTest_reversed.java b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/MastgTest_reversed.java
new file mode 100644
index 0000000000..339a7e26e7
--- /dev/null
+++ b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/MastgTest_reversed.java
@@ -0,0 +1,24 @@
+package org.owasp.mastestapp;
+
+import android.content.Context;
+import android.util.Log;
+import kotlin.Metadata;
+import kotlin.jvm.internal.Intrinsics;
+
+/* compiled from: MastgTest.kt */
+@Metadata(d1 = {"\u0000\u0018\n\u0002\u0018\u0002\n\u0002\u0010\u0000\n\u0000\n\u0002\u0018\u0002\n\u0002\b\u0002\n\u0002\u0010\u000e\n\u0000\b\u0007\u0018\u00002\u00020\u0001B\r\u0012\u0006\u0010\u0002\u001a\u00020\u0003¢\u0006\u0002\u0010\u0004J\u0006\u0010\u0005\u001a\u00020\u0006R\u000e\u0010\u0002\u001a\u00020\u0003X\u0082\u0004¢\u0006\u0002\n\u0000¨\u0006\u0007"}, d2 = {"Lorg/owasp/mastestapp/MastgTest;", "", "context", "Landroid/content/Context;", "(Landroid/content/Context;)V", "mastgTest", "", "app_debug"}, k = 1, mv = {1, 9, 0}, xi = 48)
+/* loaded from: classes4.dex */
+public final class MastgTest {
+ public static final int $stable = 8;
+ private final Context context;
+
+ public MastgTest(Context context) {
+ Intrinsics.checkNotNullParameter(context, "context");
+ this.context = context;
+ }
+
+ public final String mastgTest() {
+ Log.d("MASTG-TEST", "Hello from the OWASP MASTG Test app.");
+ return "Hello from the OWASP MASTG Test app.";
+ }
+}
diff --git a/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/output.txt b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/output.txt
new file mode 100644
index 0000000000..2911adec07
--- /dev/null
+++ b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/output.txt
@@ -0,0 +1,31 @@
+
+
+┌─────────────────┐
+│ 5 Code Findings │
+└─────────────────┘
+
+ AndroidManifest.xml
+ ❯❱ detect-unsafe-android-permissions
+ Sensitive Android permission found: android.permission.INTERNET
+
+ 5┆
+ ⋮┆----------------------------------------
+ ❯❱ detect-unsafe-android-permissions
+ Sensitive Android permission found: android.permission.WRITE_EXTERNAL_STORAGE
+
+ 6┆
+ ⋮┆----------------------------------------
+ ❯❱ detect-unsafe-android-permissions
+ Sensitive Android permission found: android.permission.READ_CONTACTS
+
+ 7┆
+ ⋮┆----------------------------------------
+ ❯❱ detect-unsafe-android-permissions
+ Sensitive Android permission found: android.permission.READ_EXTERNAL_STORAGE
+
+ 8┆
+ ⋮┆----------------------------------------
+ ❯❱ detect-unsafe-android-permissions
+ Sensitive Android permission found: android.permission.ACCESS_FINE_LOCATION
+
+ 9┆
\ No newline at end of file
diff --git a/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/run.sh b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/run.sh
new file mode 100644
index 0000000000..743e487c89
--- /dev/null
+++ b/demos/android/MASVS-PLATFORM/MASTG-DEMO-0023/run.sh
@@ -0,0 +1 @@
+NO_COLOR=true semgrep -c ../../../../rules/mastg-android-unsafe-app-permissons.yaml ./AndroidManifest.xml --text -o output.txt
\ No newline at end of file
diff --git a/rules/mastg-android-unsafe-app-permissions.yaml b/rules/mastg-android-unsafe-app-permissions.yaml
new file mode 100644
index 0000000000..90fd8cc76e
--- /dev/null
+++ b/rules/mastg-android-unsafe-app-permissions.yaml
@@ -0,0 +1,41 @@
+rules:
+ - id: detect-unsafe-android-permissions
+ languages: [xml]
+ message: "Sensitive Android permission found: $PERMISSION"
+ severity: WARNING
+ patterns:
+ - pattern: |
+
+ metavariables:
+ PERMISSION:
+ regex: |
+ (android\.permission\.READ_CALENDAR|
+ android\.permission\.WRITE_CALENDAR|
+ android\.permission\.CAMERA|
+ android\.permission\.READ_CONTACTS|
+ android\.permission\.WRITE_CONTACTS|
+ android\.permission\.GET_ACCOUNTS|
+ android\.permission\.ACCESS_FINE_LOCATION|
+ android\.permission\.ACCESS_COARSE_LOCATION|
+ android\.permission\.RECORD_AUDIO|
+ android\.permission\.READ_PHONE_STATE|
+ android\.permission\.READ_PHONE_NUMBERS|
+ android\.permission\.CALL_PHONE|
+ android\.permission\.ANSWER_PHONE_CALLS|
+ android\.permission\.READ_CALL_LOG|
+ android\.permission\.WRITE_CALL_LOG|
+ android\.permission\.ADD_VOICEMAIL|
+ android\.permission\.USE_SIP|
+ android\.permission\.PROCESS_OUTGOING_CALLS|
+ android\.permission\.BODY_SENSORS|
+ android\.permission\.SEND_SMS|
+ android\.permission\.RECEIVE_SMS|
+ android\.permission\.READ_SMS|
+ android\.permission\.RECEIVE_WAP_PUSH|
+ android\.permission\.RECEIVE_MMS|
+ android\.permission\.READ_EXTERNAL_STORAGE|
+ android\.permission\.WRITE_EXTERNAL_STORAGE|
+ android\.permission\.ACCESS_MEDIA_LOCATION|
+ android\.permission\.ACCEPT_HANDOVER|
+ android\.permission\.ACCESS_BACKGROUND_LOCATION|
+ android\.permission\.ACTIVITY_RECOGNITION)
diff --git a/techniques/android/MASTG-TECH-0118.md b/techniques/android/MASTG-TECH-0118.md
new file mode 100644
index 0000000000..5bdd483099
--- /dev/null
+++ b/techniques/android/MASTG-TECH-0118.md
@@ -0,0 +1,82 @@
+---
+title: Obtaining App Permissions from Android Applications
+platform: android
+---
+
+Obtaining App Permissions from Android Applications. There are several ways to obtain permissions from an Android application. Below are the tools and techniques commonly used:
+
+## Using @MASTG-TOOL-0018
+
+You can use Jadx or Jadx-GUI to decompile APK files and access the AndroidManifest.xml file. This allows you to view the permissions declared in the application and inspect their usage in the code. Jadx is particularly useful for static analysis as it can also decompile application code, helping identify how permissions are utilized within the app logic.
+
+Steps:
+
+1. Open the APK file in Jadx or Jadx-GUI.
+2. Navigate to the AndroidManifest.xml file to view the declared permissions.
+
+## Using @MASTG-TOOL-0011
+
+You can also decompile an APK using APKTool to extract the AndroidManifest.xml file.
+
+```bash
+apktool d org.owasp.mastestapp.apk
+```
+
+This command decompresses the APK and extracts all resources, including the manifest file, which lists the permissions.
+APKTool is useful for detailed reverse engineering and modifying app resources if needed.
+
+## Using @MASTG-TOOL-0124
+
+Besides manually inspecting the AndroidManifest.xml file, you can use the Android Asset Packaging Tool (AAPT) to examine the permissions of an APK file. AAPT is included in the Android SDK within the build-tools folder.
+
+```bash
+$ aapt d permissions org.owasp.mastestapp.apk
+package: org.owasp.mastestapp
+uses-permission: name='android.permission.INTERNET'
+uses-permission: name='android.permission.CAMERA'
+uses-permission: name='android.permission.WRITE_EXTERNAL_STORAGE'
+uses-permission: name='android.permission.READ_CONTACTS'
+uses-permission: name='android.permission.READ_EXTERNAL_STORAGE'
+permission: org.owasp.mastestapp.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
+uses-permission: name='org.owasp.mastestapp.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION'
+
+This command lists all the permissions requested by the app in a concise format, saving time compared to manual inspection.
+```
+
+## Using @MASTG-TOOL-0004
+
+Android's built-in debugging tool, ADB (Android Debug Bridge), provides a way to view permissions directly from a device or emulator.
+
+```bash
+$ adb shell dumpsys package org.owasp.mastestapp | grep permission
+ declared permissions:
+ requested permissions:
+ android.permission.INTERNET
+ android.permission.CAMERA
+ android.permission.WRITE_EXTERNAL_STORAGE
+ android.permission.READ_CONTACTS
+ android.permission.READ_EXTERNAL_STORAGE
+ install permissions:
+ android.permission.INTERNET: granted=true
+ runtime permissions:
+ android.permission.READ_EXTERNAL_STORAGE: granted=false, flags=[ RESTRICTION_INSTALLER_EXEMPT]
+ android.permission.CAMERA: granted=false
+ android.permission.WRITE_EXTERNAL_STORAGE: granted=false, flags=[ RESTRICTION_INSTALLER_EXEMPT]
+ android.permission.READ_CONTACTS: granted=false
+```
+
+This command retrieves the permissions declared in the app, as well as runtime-granted permissions if the app is installed on a device. It is especially useful during dynamic analysis or when testing an app in a live environment.
+
+## Using @MASTG-TOOL-0031
+
+Apart from enforcing custom permissions via the application manifest file, you can also check permissions using dynamic instrumentation. This is not recommended, however, because it is more error-prone and can be bypassed more easily with, e.g., runtime instrumentation. It is recommended that the ContextCompat.checkSelfPermission method is called to check if an activity has a specified permission. You can use this frida script from the [frida codeshare](https://codeshare.frida.re/@ScreaMy7/hookpermissions/) to check for runtime permissions.
+
+```bash
+frida -U -l hookpermissions.js -f org.owasp.mastestapp
+```
+
+Additional Notes:
+
+- Permission Scope: Pay attention to runtime permissions (introduced in Android 6.0) versus manifest-declared permissions. Some permissions require explicit user approval at runtime.
+
+- Refer to this [listed permissions](https://stackoverflow.com/questions/36936914/list-of-android-permissions-normal-permissions-and-dangerous-permissions-in-api) that are considered dangerous.
diff --git a/tests-beta/android/MASVS-PLATFORM/MASTG-TEST-0x24.md b/tests-beta/android/MASVS-PLATFORM/MASTG-TEST-0x24.md
new file mode 100644
index 0000000000..65d54c25f2
--- /dev/null
+++ b/tests-beta/android/MASVS-PLATFORM/MASTG-TEST-0x24.md
@@ -0,0 +1,22 @@
+---
+platform: android
+title: Testing for App Permissions
+id: MASTG-TEST-0x24
+weakness: MASWE-0116
+---
+
+## Overview
+
+Testing for app permissions in Android involves evaluating how an application requests, uses, and manages permissions to ensure they do not lead to security vulnerabilities. Proper permission management should protect sensitive user data and ensure that the application complies with Android's security model. The test aims to detect misconfigurations and unnecessary permissions.
+
+## Steps
+
+There are multiple tools that can help in finding permissions in use by an application. Refer @MASTG-TECH-0118 to and use any of the mentioned tools.
+
+## Observation
+
+The output shows the list of permissions used by the application.
+
+## Evaluation
+
+ Please refer to this [permissions overview](https://developer.android.com/guide/topics/permissions/overview) for descriptions of the listed permissions that are considered dangerous.
diff --git a/tests/android/MASVS-PLATFORM/MASTG-TEST-0024.md b/tests/android/MASVS-PLATFORM/MASTG-TEST-0024.md
index 93c9574b7c..e78e6698bf 100644
--- a/tests/android/MASVS-PLATFORM/MASTG-TEST-0024.md
+++ b/tests/android/MASVS-PLATFORM/MASTG-TEST-0024.md
@@ -8,6 +8,9 @@ title: Testing for App Permissions
masvs_v1_levels:
- L1
- L2
+status: deprecated
+covered_by: [MASTG-TEST-0x24]
+deprecation_note: New version available in MASTG V2
---
## Overview