ISAC Cambodia (InfoSec)
Tools

DROZER – Security and Attack Framework for Android

DROZER- SECURITY AND ATTACK FRAMEWORK FOR ANDROID

​ប្រព័ន្ធប្រតិបត្តិការ ​Android  បានក្លាយទៅជាប្រព័ន្ធមួយដ៏សំខាន់សម្រាប់អ្នកអភិវឌ្ឍន៍ ហើយយើងមើលឃើញនូវការកើនឡើងនៃកម្មវិធីជាច្រើនដែលដំណើរការនៅលើ mobile devices  ដែល ប្រើប្រាស់ android។ បច្ចេកវិទ្យាមានការការផ្លាស់ប្តូរ ហើយកម្មវិធីសន្តិសុខសម្រាប់ធ្វើតេស្ត ក័មានការកើនឡើងដែរ។

​Drozer គឺជាកម្មវិធីមួយដែលត្រូវបានប្រើប្រាស់សម្រាប់ធ្វើការត្រួតពិនិត្យទៅលើ Mobile, Secure Development of Applications, BYOD (Bring Your Own Device) approval និង Mobile Application Testing។

មានជំនាន់ពីរនៃ Drozer ដែលអ្នកអាចប្រើប្រាស់បាន គឺ ​Open Source និង Professional (ដែលមានលទ្ធភាពធ្វើការដោយស្វ័យប្រវត្តិបាន)។

ខាងក្រោមនេះគឺជាមុខងារមួយចំនួននៃកម្មវិធីនេះ៖

  • Find the attack surface
  • Test your Exposure to Public Exploits (this is useful for checking the security of BYOD)
  • Execute dynamic code on a device, to avoid the need to compile and install small test scripts.
  • Start Android emulators, provisioned with the drozer Agent and the app you want to investigate.
  • Simulate sensor input, such as GPS, to emulators to test the full attack surface.
  • View the attack surface as a graph. this will be helpful for the risk assessment reporting.

04-Screenshot_from_2013-09-09_06__25__39 05-drozer-simulate-sensor-input 03-drozer-formulate-intents-with-guidance 02-drozer-graphically-map-attack-surface 01-drozer-interact-with-package-manager

 

Drozer មាននូវធាតុផ្សំពីរបន្ថែមទៀត (two component agent) ដែលអាចត្រូវបានបញ្ចូល នៅក្នុងឧបករណ៍ andriod និងម៉ាស៊ីនមេ ដែលនឹងដំណើរការតេស្ត និងបញ្ជាពីចម្ងាយ។

ចូរធ្វើការទាញយកដូចខាងក្រោម៖

drozer (Windows Installer)
38.0 MB

http://flexydrive.com/d5ywyfo5dbqg

MD5: 6ea4beb229e8a074bf54b8408dc47217

drozer (Debian/Ubuntu Archive)
21.6 MB

http://flexydrive.com/vm5832fozwhs

MD5: 11858519a69ade4cda3fde2b9fd22dea

drozer (RPM)
21.6 MB

http://flexydrive.com/rpv5hvr8t2fl

MD5: 3c7c2b4953394db54562a1c43fce91e0

drozer (Python .egg)
21.8 MB

http://flexydrive.com/l7qo343f1rad

MD5: 27f0f3d90c6fe8b402cb31750b111f52

drozer (Agent .apk Only)
615 kB

http://flexydrive.com/yj1lsqxtjc6w

MD5: 3ce3b0e673d7a199186e8568fcabaab2

Resources
drozer Users’ Guide
http://flexydrive.com/gp67dlsp9snx

v2.3.1

Show More

Phannarith

Mr. OU Phannarith is one of the well-known cybersecurity experts in Cambodia and the region. He is the founder of the first leading information security website (www.secudemy.com) in Cambodia. He has been invited to present in global conferences, forums, and seminars and he was awarded in Information Security Leadership Achievements (ISLA) in 2016 by (ISC)2 and in December 2012 as one of the top 10 Chief Information Security Officers (CISO) in ASEAN by the International Data Group (IDG). Mr. OU has been the Professor specializing in Cybersecurity.

Related Articles

Back to top button