Mobile Hacking Android Agenda  Einleitung Ziele  Einführung Terminologie   Schwachstellen  Tools – Intern – Marko Winkler / Mobile Hacking - Android 15.02.2017 2 Einführung - Terminologie Activities  activity represents a single screen with a user interface email app might have one activity that shows a list of new emails  another activity to compose an email,  and another activity for reading emails   each one is independent of the others  different app can start any one of these activities (if the email app allows it)  camera app can start the activity in the email app that composes new mail, in order for the user to share a picture – Intern – Marko Winkler / Mobile Hacking - Android 15.02.2017 4 Einführung - Terminologie Services  service is a component that runs in the background to perform long-running operations or to perform work for remote processes  does not provide a user interface service might play music in the background while the user is in a different app  might fetch data over the network without blocking user interaction with an activity  another component, such as an activity, can start the service and let it run or bind to it in order to  interact with it – Intern – Marko Winkler / Mobile Hacking - Android 15.02.2017 5 Einführung - Terminologie Content providers  content provider manages a shared set of app data  store the data in the file system, an SQLite database, on the web, or any other persistent storage location your app can access  through the content provider, other apps can query or even modify the data (if the content provider allows it) Android system provides a content provider that manages the user's contact information. As such,  any app with the proper permissions can query part of the content provider (such as ContactsContract.Data) to read and write information about a particular person – Intern – Marko Winkler / Mobile Hacking - Android 15.02.2017 6 Einführung - Terminologie Broadcast receivers  broadcast receiver is a component that responds to system-wide broadcast announcements broadcast announcing that the screen has turned off, the battery is low, or a picture was captured   let other apps know that some data has been downloaded to the device and is available for them to use  although broadcast receivers don't display a user interface  More commonly, though, a broadcast receiver is just a "gateway" to other components and is intended to do a very minimal amount of work  broadcast receiver is implemented as a subclass of BroadcastReceiver and each broadcast is delivered as an Intent object – Intern – Marko Winkler / Mobile Hacking - Android 15.02.2017 7 Einführung - Terminologie Intents  activities, services, and broadcast receivers—are activated by an asynchronous message called an intent  Intents bind individual components to each other at runtime  An intent is created with an Intent object, which defines a message to activate either a specific component or a specific type of component—an intent can be either explicit or implicit, respectively  For activities and services, an intent defines the action to perform for example, to "view" or "send" something   may specify the URI of the data to act on among other things that the component being started might need to know  – Intern – Marko Winkler / Mobile Hacking - Android 15.02.2017 8 Einführung - Terminologie Zusammenfassung  Activity: different app can start any one of these activities (if the email app allows it)   Service: another component, such as an activity, can start the service and let it run or bind to it in order to  interact with it  Content providers: through the content provider, other apps can query or even modify the data (if the content  provider allows it)  Broadcast receivers: More commonly, though, a broadcast receiver is just a "gateway" to other components  Quelle: https://developer.android.com/guide/components/fundamentals.html – Intern – Marko Winkler / Mobile Hacking - Android 15.02.2017 9 Einführung - Terminologie Zusammenfassung  Activity: different app can start any one of these activities (if the email app allows it)   Service: another component, such as an activity, can start the service and let it run or bind to it in order to  interact with it  Content providers: through the content provider, other apps can query or even modify the data (if the content  provider allows it)  Broadcast receivers: More commonly, though, a broadcast receiver is just a "gateway" to other components  Quelle: https://developer.android.com/guide/components/fundamentals.html – Intern – Marko Winkler / Mobile Hacking - Android 15.02.2017 10 Einführung - Terminologie Android Manifest  system must know that the component exists by reading the app's AndroidManifest.xml Identify any user permissions the app requires, such as Internet access or read-access to the user's  contacts. Declare the minimum API Level required by the app, based on which APIs the app uses.  Declare hardware and software features used or required by the app, such as a camera, bluetooth  services, or a multitouch screen. API libraries the app needs to be linked against (other than the Android framework APIs), such as  the Google Maps library. And more  – Intern – Marko Winkler / Mobile Hacking - Android 15.02.2017 11