SeongJae Park, profile picture
Uploaded bySeongJae Park
PDF, PPTX5,290 views

Experimental android hacking using reflection

This document discusses using reflection in Android to access hidden and restricted features. It describes how Android separates interfaces for third-party and built-in apps. It then explains how reflection can be used to change the interface and allow third-party apps to access features usually only available to built-in apps, with examples of how to end a call via reflection. However, it notes reflection has limitations like performance overhead and may not work on all devices.

Download as PDF, PPTX
Experimental Android Hacking Using Reflection SeongJae Park, Heon Yeom, Seoul National University
Hidden Android Features Unsecure, Or Unmatured Features Hidden From Developers Need Such Features On Lots Of Researching
Rooting / System Modification ● Pros ○ Able to Use Hidden Features ○ No Limitation At All ● Cons ○ Environment Is Different With Real Market Device
How Android Hide Features 3rd Party Application Use SDK Framework Interface Built-in Application Uses Built-in Framework Interface SDK Framework Interface != Built-in Framework Interface
Android Basic Structure 3rd Party Developer Application Built-in Application SDK Framework Interface Built-in Framework Interface On-Device Framework Binder System Process System Process Device System Process
Java Reflection ● Examine or Modify Behavior Of Application ○ Type Checking ○ Debugging ○ Test
Java Reflection ● Pros ○ Unlimited Freedom ● Cons ○ Performance Overhead ○ Weak Security Available ○ Unexpected Side-Effect
Android Hacking Using Reflection Change SDK Framework Interface into OnDevice Framework Interface 3rd Party Developer Application Built-in Application SDK Framework Interface Built-in Framework Interface Reflection On-Device Framework
Android Hacking Using Reflection TelephonyMaanger telephonyManager = (TelephonyManager)getSystemService( Context.TELEPHONY_SERVICE); try { Class c = Class.forName(telephonyManager. getClass().getName()); Method m = c.getDeclaredMethod("getITelephony"); m.setAccessible(true); ITelephony telephony = (ITelephony)m.invoke( telephonyManager); telephony.endCall(); } catch (Throwable e) {}
Restriction Of Reflection Using Hack ● Performance Overhead ● May Not Success On Every Machine ○ Manufacturer’s Device Use Modified Android ● May Not Success On Latest Android

More Related Content

PPTX
Android reverse engineering
byMuhammad Dzikri Ramdhani
 
PPTX
Software Testing and Quality Assurance (Error, Bug, Fault)
byYogesh Late
 
PDF
Software testing
byMadeEasyCTC
 
PPT
Understanding Android Security
byAsanka Dilruk
 
DOCX
expBSIT (1) (1)
byTilli Buchanan
 
ODP
Android security in depth
bySander Alberink
 
PPTX
Understanding android security model
byPragati Rai
 
PPTX
Why do we test software?
byMd. Shafiuzzaman Hira
 
Android reverse engineering
byMuhammad Dzikri Ramdhani
 
Software Testing and Quality Assurance (Error, Bug, Fault)
byYogesh Late
 
Software testing
byMadeEasyCTC
 
Understanding Android Security
byAsanka Dilruk
 
expBSIT (1) (1)
byTilli Buchanan
 
Android security in depth
bySander Alberink
 
Understanding android security model
byPragati Rai
 
Why do we test software?
byMd. Shafiuzzaman Hira
 

What's hot

PDF
Introduction to Android Development and Security
byKelwin Yang
 
PPTX
Android security
byMobile Rtpl
 
PDF
Testing Android apps with Robotium
byStephen Gilmore
 
PPTX
Android security
byMidhun P Gopi
 
DOC
Resume jyoti gupta
byEr Jyoti Gupta
 
PDF
Building Custom Android Malware BruCON 2013
byStephan Chenette
 
PPT
Issue Tracking
bySoftware Sustainability Institute
 
PPT
Android Security
bySuminda Gunawardhana
 
PPTX
5 Ways to Reduce 3rd Party Developer Risk
bySecurity Innovation
 
Introduction to Android Development and Security
byKelwin Yang
 
Android security
byMobile Rtpl
 
Testing Android apps with Robotium
byStephen Gilmore
 
Android security
byMidhun P Gopi
 
Resume jyoti gupta
byEr Jyoti Gupta
 
Building Custom Android Malware BruCON 2013
byStephan Chenette
 
Issue Tracking
bySoftware Sustainability Institute
 
Android Security
bySuminda Gunawardhana
 
5 Ways to Reduce 3rd Party Developer Risk
bySecurity Innovation
 

Viewers also liked

PPTX
Deep or dark web
byShubham .
 
PDF
Learning by hacking - android application hacking tutorial
byLandice Fu
 
PPTX
Hyperloop
bymanikanta malla
 
PPTX
Kali Linux
byChanchal Dabriya
 
PPTX
Search Engine Powerpoint
by201014161
 
PDF
My Top 10 slides on presentations
byAlexei Kapterev
 
PDF
The Minimum Loveable Product
byThe Happy Startup School
 
PDF
How I got 2.5 Million views on Slideshare (by @nickdemey - Board of Innovation)
byBoard of Innovation
 
PDF
The Seven Deadly Social Media Sins
byXPLAIN
 
PDF
Five Killer Ways to Design The Same Slide
byCrispy Presentations
 
PPTX
How People Really Hold and Touch (their Phones)
bySteven Hoober
 
PDF
Upworthy: 10 Ways To Win The Internets
byUpworthy
 
PDF
What 33 Successful Entrepreneurs Learned From Failure
byReferralCandy
 
PDF
Design Your Career 2018
bySlides That Rock
 
PPTX
Why Content Marketing Fails
byRand Fishkin
 
PDF
The History of SEO
byHubSpot
 
PDF
How To (Really) Get Into Marketing
byEd Fry
 
PDF
The What If Technique presented by Motivate Design
byMotivate Design
 
PDF
Displaying Data
byBipul Deb Nath
 
PPTX
10 Powerful Body Language Tips for your next Presentation
bySOAP Presentations
 
Deep or dark web
byShubham .
 
Learning by hacking - android application hacking tutorial
byLandice Fu
 
Hyperloop
bymanikanta malla
 
Kali Linux
byChanchal Dabriya
 
Search Engine Powerpoint
by201014161
 
My Top 10 slides on presentations
byAlexei Kapterev
 
The Minimum Loveable Product
byThe Happy Startup School
 
How I got 2.5 Million views on Slideshare (by @nickdemey - Board of Innovation)
byBoard of Innovation
 
The Seven Deadly Social Media Sins
byXPLAIN
 
Five Killer Ways to Design The Same Slide
byCrispy Presentations
 
How People Really Hold and Touch (their Phones)
bySteven Hoober
 
Upworthy: 10 Ways To Win The Internets
byUpworthy
 
What 33 Successful Entrepreneurs Learned From Failure
byReferralCandy
 
Design Your Career 2018
bySlides That Rock
 
Why Content Marketing Fails
byRand Fishkin
 
The History of SEO
byHubSpot
 
How To (Really) Get Into Marketing
byEd Fry
 
The What If Technique presented by Motivate Design
byMotivate Design
 
Displaying Data
byBipul Deb Nath
 
10 Powerful Body Language Tips for your next Presentation
bySOAP Presentations
 

Similar to Experimental android hacking using reflection

PDF
Implementing security on android application
byIAEME Publication
 
PPTX
128-ch4.pptx
bySankalpKabra
 
PDF
CNIT 128 Ch 4: Android
bySam Bowne
 
PPTX
[Wroclaw #1] Android Security Workshop
byOWASP
 
PDF
ANDROID BASED WS SECURITY AND MVC BASED UI REPRESENTATION OF DATA
byIJCSEIT Journal
 
PDF
Malware Analysis
byMichaelRodriguesdosS1
 
PDF
Android Malware Analysis
byJongWon Kim
 
PDF
A case study of malware detection and removal in android apps
byijmnct
 
PPTX
Android
byMithilesh Rajbhar
 
PDF
Vulnerable Out of the Box: An Evaluation of Android Carrier Devices
byPriyanka Aash
 
PDF
Penetration Testing for Android Smartphones
byIOSR Journals
 
PDF
Android "Fight Club" : In pursuit of APPiness -- null Humla Delhi Chapter
byAbhinav Mishra
 
PPTX
Overview of Adroid Architecture.pptx
bydebasish duarah
 
PPTX
COVERT app
byitba9
 
PDF
CNIT 128 7. Attacking Android Applications (Part 3)
bySam Bowne
 
PPTX
Hacker Halted 2014 - Reverse Engineering the Android OS
byEC-Council
 
PDF
7. Attacking Android Applications (Part 2)
bySam Bowne
 
PDF
Unit 1 Kali Nethunter Android: OS, Debub Bridge
byChatanBawankar
 
PPT
android
byAnkur Yogi
 
PPTX
Android sandbox
byAnusha Chavan
 
Implementing security on android application
byIAEME Publication
 
128-ch4.pptx
bySankalpKabra
 
CNIT 128 Ch 4: Android
bySam Bowne
 
[Wroclaw #1] Android Security Workshop
byOWASP
 
ANDROID BASED WS SECURITY AND MVC BASED UI REPRESENTATION OF DATA
byIJCSEIT Journal
 
Malware Analysis
byMichaelRodriguesdosS1
 
Android Malware Analysis
byJongWon Kim
 
A case study of malware detection and removal in android apps
byijmnct
 
Android
byMithilesh Rajbhar
 
Vulnerable Out of the Box: An Evaluation of Android Carrier Devices
byPriyanka Aash
 
Penetration Testing for Android Smartphones
byIOSR Journals
 
Android "Fight Club" : In pursuit of APPiness -- null Humla Delhi Chapter
byAbhinav Mishra
 
Overview of Adroid Architecture.pptx
bydebasish duarah
 
COVERT app
byitba9
 
CNIT 128 7. Attacking Android Applications (Part 3)
bySam Bowne
 
Hacker Halted 2014 - Reverse Engineering the Android OS
byEC-Council
 
7. Attacking Android Applications (Part 2)
bySam Bowne
 
Unit 1 Kali Nethunter Android: OS, Debub Bridge
byChatanBawankar
 
android
byAnkur Yogi
 
Android sandbox
byAnusha Chavan
 

More from SeongJae Park

PDF
Biscuit: an operating system written in go
bySeongJae Park
 
PDF
GCMA: Guaranteed Contiguous Memory Allocator
bySeongJae Park
 
PDF
Linux Kernel Memory Model
bySeongJae Park
 
PDF
An Introduction to the Formalised Memory Model for Linux Kernel
bySeongJae Park
 
PDF
Design choices of golang for high scalability
bySeongJae Park
 
PDF
Brief introduction to kselftest
bySeongJae Park
 
PDF
Understanding of linux kernel memory model
bySeongJae Park
 
PDF
Let the contribution begin (EST futures)
bySeongJae Park
 
PDF
Porting golang development environment developed with golang
bySeongJae Park
 
PDF
gcma: guaranteed contiguous memory allocator
bySeongJae Park
 
PDF
An introduction to_golang.avi
bySeongJae Park
 
PDF
Develop Android/iOS app using golang
bySeongJae Park
 
PDF
Develop Android app using Golang
bySeongJae Park
 
PDF
Sw install with_without_docker
bySeongJae Park
 
PDF
Git inter-snapshot public
bySeongJae Park
 
PDF
(Live) build and run golang web server on android.avi
bySeongJae Park
 
PDF
Deep dark-side of git: How git works internally
bySeongJae Park
 
PDF
Deep dark side of git - prologue
bySeongJae Park
 
PDF
DO YOU WANT TO USE A VCS
bySeongJae Park
 
PDF
ash
bySeongJae Park
 
Biscuit: an operating system written in go
bySeongJae Park
 
GCMA: Guaranteed Contiguous Memory Allocator
bySeongJae Park
 
Linux Kernel Memory Model
bySeongJae Park
 
An Introduction to the Formalised Memory Model for Linux Kernel
bySeongJae Park
 
Design choices of golang for high scalability
bySeongJae Park
 
Brief introduction to kselftest
bySeongJae Park
 
Understanding of linux kernel memory model
bySeongJae Park
 
Let the contribution begin (EST futures)
bySeongJae Park
 
Porting golang development environment developed with golang
bySeongJae Park
 
gcma: guaranteed contiguous memory allocator
bySeongJae Park
 
An introduction to_golang.avi
bySeongJae Park
 
Develop Android/iOS app using golang
bySeongJae Park
 
Develop Android app using Golang
bySeongJae Park
 
Sw install with_without_docker
bySeongJae Park
 
Git inter-snapshot public
bySeongJae Park
 
(Live) build and run golang web server on android.avi
bySeongJae Park
 
Deep dark-side of git: How git works internally
bySeongJae Park
 
Deep dark side of git - prologue
bySeongJae Park
 
DO YOU WANT TO USE A VCS
bySeongJae Park
 
ash
bySeongJae Park
 

Recently uploaded

PDF
A 4-Terminal Approach to Validating Charge Conservation in MOSFET Compact Models
byEalwan Lee
 
PDF
Beyond Generative AI: Creating Demand for Compute in the 2030s
byReidar Wasenius
 
PDF
Expert Python App Development Company for Modern Enterprises
bySynapseIndia
 
PDF
Session 2 - Agentic Orchestration with UiPath Maestro
byDianaGray10
 
PDF
How Open Source opened the doors to Germany – The Opinsys story.pdf
byMindtrek
 
PPTX
This Could Have Been a Slack Message: Diagnosing and Treating Bad Meetings
byMike Clement
 
PDF
Combining AI with Red Teaming and Bug Bounty
byRamin Farajpour Cami
 
PDF
A fool with a tool is still a fool - Plone Conference 2025
byAndreas Jung
 
PDF
UnityNet Digital Sovereignty Checklist 2025-10-13
byLHelferty
 
PDF
Fairness and Bias in AI Ethics and Explainability
byShiwani Gupta
 
PDF
Cloud Infrastructure Security: Navigating Threats & Overcoming Challenges
byTeleglobal International
 
PPTX
WUG-DMV: Workfront Wizards: Tips & Tricks Exchange (Sept 2025)
byWUG-DC MARYLAND VIRGINIA
 
PDF
NDP Act GAID Simplified: From Confusion to Compliance
byMuiz Adeleke
 
PDF
Cassandra vs. ScyllaDB: Evolutionary Differences
byScyllaDB
 
PDF
AI assisted software — Cathedral or Bazaar?.pdf
byMindtrek
 
PDF
Unlocking Full-Stack Observability for AIOps: A Precisely Ironstream for Big ...
byPrecisely
 
PDF
Ask Me Anything About AI Assist: Practical Answers for Real Workflows
bySafe Software
 
PDF
Using Copilot with Microsoft Office Apps
byDeb Walther
 
PDF
What's New? ThousandEyes Features and Highlights: October 2025
byThousandEyes
 
PDF
NSSHOEU-J 4x35mm² Cable Specification.pdf
byAnhui Feichun Special Cable Co., Ltd.
 
A 4-Terminal Approach to Validating Charge Conservation in MOSFET Compact Models
byEalwan Lee
 
Beyond Generative AI: Creating Demand for Compute in the 2030s
byReidar Wasenius
 
Expert Python App Development Company for Modern Enterprises
bySynapseIndia
 
Session 2 - Agentic Orchestration with UiPath Maestro
byDianaGray10
 
How Open Source opened the doors to Germany – The Opinsys story.pdf
byMindtrek
 
This Could Have Been a Slack Message: Diagnosing and Treating Bad Meetings
byMike Clement
 
Combining AI with Red Teaming and Bug Bounty
byRamin Farajpour Cami
 
A fool with a tool is still a fool - Plone Conference 2025
byAndreas Jung
 
UnityNet Digital Sovereignty Checklist 2025-10-13
byLHelferty
 
Fairness and Bias in AI Ethics and Explainability
byShiwani Gupta
 
Cloud Infrastructure Security: Navigating Threats & Overcoming Challenges
byTeleglobal International
 
WUG-DMV: Workfront Wizards: Tips & Tricks Exchange (Sept 2025)
byWUG-DC MARYLAND VIRGINIA
 
NDP Act GAID Simplified: From Confusion to Compliance
byMuiz Adeleke
 
Cassandra vs. ScyllaDB: Evolutionary Differences
byScyllaDB
 
AI assisted software — Cathedral or Bazaar?.pdf
byMindtrek
 
Unlocking Full-Stack Observability for AIOps: A Precisely Ironstream for Big ...
byPrecisely
 
Ask Me Anything About AI Assist: Practical Answers for Real Workflows
bySafe Software
 
Using Copilot with Microsoft Office Apps
byDeb Walther
 
What's New? ThousandEyes Features and Highlights: October 2025
byThousandEyes
 
NSSHOEU-J 4x35mm² Cable Specification.pdf
byAnhui Feichun Special Cable Co., Ltd.
 

Experimental android hacking using reflection

  • 1.
    Experimental Android Hacking UsingReflection SeongJae Park, Heon Yeom, Seoul National University
  • 2.
    Hidden Android Features Unsecure,Or Unmatured Features Hidden From Developers Need Such Features On Lots Of Researching
  • 3.
    Rooting / SystemModification ● Pros ○ Able to Use Hidden Features ○ No Limitation At All ● Cons ○ Environment Is Different With Real Market Device
  • 4.
    How Android HideFeatures 3rd Party Application Use SDK Framework Interface Built-in Application Uses Built-in Framework Interface SDK Framework Interface != Built-in Framework Interface
  • 5.
    Android Basic Structure 3rdParty Developer Application Built-in Application SDK Framework Interface Built-in Framework Interface On-Device Framework Binder System Process System Process Device System Process
  • 6.
    Java Reflection ● Examineor Modify Behavior Of Application ○ Type Checking ○ Debugging ○ Test
  • 7.
    Java Reflection ● Pros ○Unlimited Freedom ● Cons ○ Performance Overhead ○ Weak Security Available ○ Unexpected Side-Effect
  • 8.
    Android Hacking UsingReflection Change SDK Framework Interface into OnDevice Framework Interface 3rd Party Developer Application Built-in Application SDK Framework Interface Built-in Framework Interface Reflection On-Device Framework
  • 9.
    Android Hacking UsingReflection TelephonyMaanger telephonyManager = (TelephonyManager)getSystemService( Context.TELEPHONY_SERVICE); try { Class c = Class.forName(telephonyManager. getClass().getName()); Method m = c.getDeclaredMethod("getITelephony"); m.setAccessible(true); ITelephony telephony = (ITelephony)m.invoke( telephonyManager); telephony.endCall(); } catch (Throwable e) {}
  • 10.
    Restriction Of ReflectionUsing Hack ● Performance Overhead ● May Not Success On Every Machine ○ Manufacturer’s Device Use Modified Android ● May Not Success On Latest Android