As per my last article(Android Application Penetration testing Part 1), (Android Application Penetration testing Part 2), (Android Application Penetration test part-3) we had look on basic architecture and penetration testing tools and ADB. Now let’s see some entry points for android application Penetration testing.
From the perspective of security the manifest file is usually the first thing that a penetration tester will check on an engagement.
Android Manifest File
- It provides all details about android application
- It names the java package for the application
- It declares all permissions
- It describes android applications components
- It contains declaration of minimum level of API which application requires
- minimum Android version required to run the program
- services
No comments:
Post a Comment