Reverse Engineering Android Applications

Interesting article by Carl Benedict, introducing and dicussing Android applications, development and dissection, using some tools for reverse enginnering. Good focus on the Android permission-based system and how it allows access to resources, and where to alter these controls.

“Under the Hood: Reversing Android Applications”
Carl Benedict, 20 January 2012
Infosec Institute Resources
http://resources.infosecinstitute.com/reversing-android-applications/ – last access 23 January 2012 – ( Full Article )

Tools:

pktool – a tool used for manipulating .apk files, http://code.google.com/p/android-apktool/

jad – a Java decompiler (Windows only), http://www.varaneckas.com/jad

JD-Core + JD-GUI – another Java decompiler, supporting newer Java versions and features, http://java.decompiler.free.fr

dex2jar – a tool for converting .dex files to .class files, http://code.google.com/p/dex2jar/downloads/list (dex2jar)

/cobramark3

January 23, 2012 | Categories: Analysis, Android | Tags: Android API, Android applications, AndroidManifest.xml configuration, Dalvik executables, Dalvik virtual machine, dex2jar, jad, Java applications, JD-Core + JD-GUI, pktool | Comments Off on Reverse Engineering Android Applications