Free YouTube views likes and subscribers? Easily!
AnimalsBabiesBeautifulCatsCreativeCute Dogs EducationalFunnyHeartwarmingHolidaysIncredible
Inspirational Interesting LoveMusicNatureOopsPerformancePranksScienceSportsTechnologyUnexpected
 Kitten Videos  Dog Cartoons  Cover Music
Get Free YouTube Subscribers, Views and Likes

TROOPERS23: Beyond Java: Obfuscating Android Apps with Purely Native Code

Follow
LaurieWired

This is a live recording of a talk I gave at TROOPERS23 in Heidelburg, Germany. The presentation explores writing Android applications in purely native code to obfuscate app flowofcontrol. It also uses direct communication with the Android Binder to bypass traditional method invocations.

If you would like to follow along, the slides, tools, as well as additional references are hosted on my github page here:

https://github.com/LaurieWired/Androi...



Timestamps:
00:00 Intro
00:39 Analysis Materials
01:20 Agenda
02:30 Obfuscation Background
05:16 Purely Native Application
06:45 Finding the Entrypoint
08:36 Bypassing the Entrypoint
11:58 Masking the Entrypoint
15:55 Further Obfuscation
17:38 Java to C++ Translation
19:16 Hands On Translation
27:06 JNI Call Drawbacks
28:00 Hiding API Calls Via Binder
30:22 Bypassing Common Targets
32:20 Binder Invocation Backend
33:30 ServiceManager
35:00 Reflection
36:19 Finding Callable Services
38:34 Bound Invokable Services
40:26 Invocation via Binder (Hands On)
44:32 Invocation of Binder with C++
45:48 Test Time!
50:38 Success!
51:58 Further Steps
54:43 Questions?


laurieWIRED Twitter:
  / lauriewired  

laurieWIRED Github:
https://github.com/LaurieWired

laurieWIRED Website:
http://lauriewired.com

laurieWIRED HN:
https://news.ycombinator.com/user?id=...

laurieWIRED Reddit:
  / lauriewired  

posted by privodilinv


Hooking Native Android Methods with Frida
Hooking Native Android Methods with Frida
Dynamically Analyzing Linux Black Basta Ransomware
Dynamically Analyzing Linux Black Basta Ransomware
KMP vs. Flutter Who Will Win The CrossPlatform Battle?
KMP vs. Flutter Who Will Win The CrossPlatform Battle?
Deciphering Obfuscated JavaScript Malware
Deciphering Obfuscated JavaScript Malware
Just enough C to have fun
Just enough C to have fun
DEF CON 31 Runtime Riddles Abusing Manipulation Points in the Android Source Laurie Kirk
DEF CON 31 Runtime Riddles Abusing Manipulation Points in the Android Source Laurie Kirk
Triggering Android Intents
Triggering Android Intents
Reverse Engineering 101: How to Dissect and Master Any Platform
Reverse Engineering 101: How to Dissect and Master Any Platform
Java 21… and Beyond
Java 21… and Beyond
Exploring Info.plist: Essential Knowledge for iOS Reverse Engineering
Exploring Info.plist: Essential Knowledge for iOS Reverse Engineering
How a Clever 1960s Memory Trick Changed Computing
How a Clever 1960s Memory Trick Changed Computing
Using Strace to Trace Linux Syscalls
Using Strace to Trace Linux Syscalls
What is the Smallest Possible .EXE?
What is the Smallest Possible .EXE?
Ghidra Scripting to Speed Up Reverse Engineering
Ghidra Scripting to Speed Up Reverse Engineering
Let's Create a Compiler (Pt.1)
Let's Create a Compiler (Pt.1)
Mastering Memory: Allocation Techniques in C, C++, and ARM Assembly
Mastering Memory: Allocation Techniques in C, C++, and ARM Assembly
'Unmasking the Godfather Reverse Engineering the Latest Android Banking Trojan' by Laurie Kirk
'Unmasking the Godfather Reverse Engineering the Latest Android Banking Trojan' by Laurie Kirk
A Competition for Unreadable Code?
A Competition for Unreadable Code?
Gradle for Beginners (Build Types, Product Flavors, Build Variants, Source Sets)
Gradle for Beginners (Build Types, Product Flavors, Build Variants, Source Sets)
Compilers, How They Work, And Writing Them From Scratch
Compilers, How They Work, And Writing Them From Scratch
Recommended
Can A Date Of Your Dream Become A Date Of Your Nightmare?
Can A Date Of Your Dream Become A Date Of Your Nightmare?
01:12
Santa Claus Gives A Helping Hand
Santa Claus Gives A Helping Hand
02:19
Find Your Way Back To Santa!
Find Your Way Back To Santa!
04:03
Beauty & Beast: Cheap Version = Bad Version?
Beauty & Beast: Cheap Version = Bad Version?
04:27
Hilarious Monkey Kisses A Cat Against His Will
Hilarious Monkey Kisses A Cat Against His Will
00:52
The Blurring Difference Between Chicken & Chopin!
The Blurring Difference Between Chicken & Chopin!
01:04
Credit Card Thief Against Porta Potty
Credit Card Thief Against Porta Potty
01:39
iPhone 8 vs Samsung Galaxy S8 - Salt or Pepper?
iPhone 8 vs Samsung Galaxy S8 - Salt or Pepper?
06:43
AnimalsBabiesBeautifulCatsCreativeCute Dogs EducationalFunnyHeartwarmingHolidaysIncredible
Inspirational Interesting LoveMusicNatureOopsPerformancePranksScienceSportsTechnologyUnexpected
 Watch Cute Cats  Puppy Cartoons  Cover Song Competition
doovi © | 2014-2018
Watch Subscribers Stats
Buy YouTube Subscribers
Follow us at Facebook
Terms of Service
Follow us at YouTube
Powered by