Android OEM's applications (in)security and backdoors ... - QuarksLAB

More documents

Recommendations

Info

Android introduction Android security model Methodology Toward a backdoor without permission Post-exploitation Plan 1 Context and objectives 2 Android introduction 3 Android security model 4 Methodology A huge surface attack Vulnerability research 5 Toward a backdoor without permission 6 Post-exploitation 7 Scope of the vulnerabilities
Android introduction Android security model Methodology Toward a backdoor without permission Post-exploitation A huge surface attack The attack surface Important folders We want to do a backdoor targeting an Android smartphone Userland vulnerabilities (easy to find, easy to exploit) Folders customized by constructors on an Android smartphone: /system/app /system/framework /system/bin /system/lib The content of these folders may change between operators
Page 1 and 2: Android OEM’s applications (in)se
Page 3 and 4: Android introduction Android securi
Page 29: Android introduction Android securi
Page 80 and 81:
Android introduction Android securi
Page 82 and 83:
Page 84 and 85:
Page 86 and 87:
Page 88 and 89:
Page 90 and 91:
Page 92 and 93:
Page 94 and 95:
Page 96 and 97:
Page 98 and 99:
Page 100 and 101:
Page 102 and 103:
Page 104 and 105:
Page 106 and 107:
Page 108 and 109:
Page 110 and 111:
Page 112:
contact@quarkslab.com I @quarkslab.
show all

Android OEM's applications (in)security and backdoors ... - QuarksLAB

Create successful ePaper yourself

Delete template?

Save as template?