目前最全面的Android安全工具清单

Google谷歌硬件怪兽
根据Google发布的2016年Android系统生态安全报告,第三方Android应用市场的安全性相比Google Play要糟糕得多,木马、后门、提权、短信欺诈、间谍软件等五种恶意软件的数量都呈现大幅增长态势,其中间谍软件和后门程序增幅超过200%,第三方Android应用市场的恶意软件“浓度”比Google高出数十倍。
在第三方Android应用市场主导的中国市场,用户面对日益严峻的移动安全形势,Android安全问题首当其冲。下面是目前较为全面的一个Android安全相关工具资源清单,希望能对移动安全专业人士有所帮助。

工具类

在线分析工具:

  1. AndroTotal

静态分析工具

  1. Androwarn – detect and warn the user about potential malicious behaviours developped by an Android application.

APP漏洞扫描器

  1. QARK – QARK by LinkedIn is for app developers to scan app for security issues
  • AndroBugs
  • Nogotofail
  • Devknox – Autocorrect security issues as if it was spell check from your IDE
  • JAADAS – Joint intraprocedure and interprocedure program analysis tool to find vulnerabilities in Android apps, built on Soot and Scala

动态分析工具

  1. Android DBI frameowork
  2. Androl4b– A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis
  • Android Malware Analysis Toolkit – (linux distro) Earlier it use to be an online analyzer
  • Mobile-Security-Framework MobSF – Mobile Security Framework is an intelligent, all-in-one open source mobile application (Android/iOS) automated pen-testing framework capable of performing static, dynamic analysis and web API testing.
  • AppUse – custom build for pentesting
  • Cobradroid – custom image for malware analysis
  • ViaLab Community Edition
  • Droidbox
  • Mercury
  • Drozer
  • Xposed – equivalent of doing Stub based code injection but without any modifications to the binary
  • Inspeckage – Android Package Inspector – dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)
  • Android Hooker – Dynamic Java code instrumentation (requires the Substrate Framework)
  • ProbeDroid – Dynamic Java code instrumentation
  • Android Tamer – Virtual / Live Platform for Android Security Professionals
  • DECAF – Dynamic Executable Code Analysis Framework based on QEMU (DroidScope is now an extension to DECAF)
  • CuckooDroid – Android extension for Cuckoo sandbox
  • Mem – Memory analysis of Android (root required)
  • Crowdroid – unable to find the actual tool
  • AuditdAndroid – android port of auditd, not under active development anymore
  • Android Security Evaluation Framework – not under active development anymore
  • Android Reverse Engineering – ARE (android reverse engineering) not under active development anymore
  • Aurasium – Practical security policy enforcement for Android apps via bytecode rewriting and in-place reference monitor.
  • Android Linux Kernel modules
  • Appie – Appie is a software package that has been pre-configured to function as an Android Pentesting Environment.It is completely portable and can be carried on USB stick or smartphone.This is a one stop answer for all the tools needed in Android Application Security Assessment and an awesome alternative to existing virtual machines.
  • StaDynA – a system supporting security app analysis in the presence of dynamic code update features (dynamic class loading and reflection). This tool combines static and dynamic analysis of Android applications in order to reveal the hidden/updated behavior and extend static analysis results with this information.
  • DroidAnalytics – incomplete
  • Vezir Project – Virtual Machine for Mobile Application Pentesting and Mobile Malware Analysis
  • MARA – Mobile Application Reverse engineering and Analysis Framework
  • NowSecure Lab Automated – Enterprise tool for mobile app security testing both Android and iOS mobile apps. Lab Automated features dynamic and static analysis on real devices in the cloud to return results in minutes.
  • Taintdroid – requires AOSP compilation

逆向工程

  1. Smali/Baksmali – apk decompilation

模糊测试

  1. IntentFuzzer

APP重新打包侦测工具

  1. FSquaDRA – a tool for detection of repackaged Android applications based on app resources hash comparison.

应用市场爬虫工具

  1. Google play crawler (Java)

其他工具

  1. smalihook

学术研究与出版物

研究论文

  1. Exploit Database

书籍

  1. SEI CERT Android Secure Coding Standard

其他

  1. OWASP Mobile Security Testing Guide Manual

漏洞与bug

榜单与清单

  1. Android Security Bulletins

恶意软件

  1. androguard – Database Android Malwares wiki

漏洞奖金项目

  1. Android Security Reward Program

安全问题汇报方法

  1. Android – reporting security issues

 

本列表最后更新日期:2017年5月17日

第一时间获取面向IT决策者的独家深度资讯,敬请关注IT经理网微信号:ctociocom

   

除非注明,本站文章均为原创或编译,未经许可严禁转载。

相关文章:


关于作者