Android Security Audit Mobiseclab

On Android app Analytics, there are a lot of localization software to do,

However, today we introduce an online security audit, malware (Android app) detection and analysis tools, Mobiseclab,

Because the introduction of this tool is relatively small, but in fact there are many people in silent use. No, no, no, no. Number of apps upload:

Well, since a short period of time [the earliest sample is actually this year's October 1] so much, see so many are other people's samples, we should try it ourselves:

0x00

First of all, you have to have an account, go to http://akana.mobiseclab.org/register.jsp here can register, notice here is need to invite code, below also have hint, need you to the laboratory mailbox send a sincere mail, then, They'll assign you an invitation code to reply to your email address [pay attention to writing English!]

Then you can register and then ...

0x01

This is a personal analysis list, and the upload in the upper right corner can be used to upload the app continuously.

The first column state indicates the processing status, the analysis type is currently only malware analysis, and there is a secure assessment (security assessment) that is not yet open to the outside.

The right side of the action bar is a few different operations, here will first show you the website to give the report, and then take everyone to see the anti-compilation content →→

Here we will first click on the "GET report" under the Operation Action menu to see an overview of the analysis of this app:

OK. The reports here are labeled with color blocks and their ratings. We have a general overview, and below you can enter a more comfortable IDE.

Click "Enter IAE" can go to the overall anti-compilation of the app information, here is a visual IDE to present, I believe that the programming of children's shoes are more familiar.

The left-hand side is two menus, one is the project browse, the other is the issues, that is, the risk point. Here is a simple screenshot of the picture:

Here is a list of possible risk issues, click on each block, will go into the corresponding code, convenient analysis and debugging [click on the image to see the big picture].

Also, in terms of code, there are corresponding functions, variable shortcut actions:

Here the Visual IDE experience is very good, including search, jump, prompt to do is very good, OK, with such a weapon, small partners can try their own analysis.

Article to the end of this, the next with you to take specific samples to analyze, step by step to see, wirelessly app is how step by step erosion users ...

Finally attach url:http://akana.mobiseclab.org/

Android Security Audit Mobiseclab