Publication: RAGnarok: Radare in Android Games
Loading...
Official URL
Full text at PDC
Publication Date
2021-09-20
Authors
Advisors (or tutors)
Editors
Journal Title
Journal ISSN
Volume Title
Publisher
Citations
Exportar
Abstract
En la actualidad, en tecnología, los procesos manuales que requieren de mucho esfuerzo y que resultan tediosos en su realización, son sustituidos por soluciones que automatizan dichos procesos y que tratan de reducir la implicación humana. En las pruebas de seguridad en aplicaciones de móvil, tenemos una parte de análisis estático, que es inspeccionar el código y el binario de la app en busca de vulnerabilidades, una tarea que podemos automatizar en cierta medida. Con RAGnarok se pretende realizar escaneos automáticos usando distintas herramientas en un mismo framework para filtrar aquello que se considere interesante y que pueda implicar una vulnerabilidad en la app. Además, facilitará la preparación del apk para su análisis.
Nowadays, within technology, manual processes that require a lot of effort and are tedious to carry out, are replaced by solutions that automate such processes and try to reduce human implication. During mobile security assessments, we have a static analysis part, which entails application’s source code and binary inspection looking for vulnerabilities, a task we can automate mostly. RAGnarok is pretended to be used as an automatic scan using several tools within the same framework to filter interesting strings which entail a risk for the application. Besides, it eases the process of having the apk ready for analysis.
Nowadays, within technology, manual processes that require a lot of effort and are tedious to carry out, are replaced by solutions that automate such processes and try to reduce human implication. During mobile security assessments, we have a static analysis part, which entails application’s source code and binary inspection looking for vulnerabilities, a task we can automate mostly. RAGnarok is pretended to be used as an automatic scan using several tools within the same framework to filter interesting strings which entail a risk for the application. Besides, it eases the process of having the apk ready for analysis.
Description
Trabajo de Fin de Grado en Desarrollo de videojuegos, Facultad de Informática UCM, Departamento de Arquitectura de Computadores y Automática, Curso 2020-2021.