Asynchrony-aware static analysis of Android applications

2016 ◽  
Author(s):  
Ashish Mishra ◽  
Aditya Kanade ◽  
Y. N. Srikant
Keyword(s):  
Static Analysis ◽  
Android Applications

AppScalpel: Combining static analysis and outlier detection to identify and prune undesirable usage of sensitive data in Android applications

2019 ◽  
Vol 341 ◽  
pp. 10-25 ◽  
Author(s):  
Zhaoyi Meng ◽  
Yan Xiong ◽  
Wenchao Huang ◽  
Lei Qin ◽  
Xin Jin ◽  
...  
Keyword(s):  
Outlier Detection ◽  
Static Analysis ◽  
Sensitive Data ◽  
Android Applications

scholarly journals A Neural Network Based Hybrid Approach for Analysing and Detecting Malware Threat in Android Applications

2018 ◽  
Vol 7 (4.6) ◽  
pp. 410
Author(s):  
Hetal Suresh ◽  
Joseph Raymond V
Keyword(s):  
Neural Network ◽  
Machine Learning ◽  
Static Analysis ◽  
Mobile Phones ◽  
Recurrent Neural Network ◽  
Hybrid Approach ◽  
Sensitive Data ◽  
Social Accounts ◽  
Android Applications ◽  
Do So

Mobile phones has become very integral part in our day to day life. In the digitalized world most of our day to day activities rely on mobile phone like banking activities, wallet payments, credentials, social accounts etc. Our system works in such a way that if there is an advantage to a technology there also exists a disadvantage. Every users have all their private and sensitive data in their mobile phones and download random applications from different platforms like play store, App store etc. There is a huge possibility that the applications downloaded are malicious applications. The existing system provides a solution for detection of such applications with the help of antivirus which has pre-built signatures that can be used to obtain an already existing malware which can be modified and manipulated by the hacker if they tend to do so. In this project, our purpose is to identify the malicious applications using Machine learning. By combining both static analysis and dynamic analysis we can use a Hybrid approach for analysing and detecting malware threats in android applications using Recurrent Neural Network (RNN). The main aim of this project will be to ensure that the application installed is benign, if it is not, it should block such applications and notify the user. 

scholarly journals AndroShield: Automated Android Applications Vulnerability Detection, a Hybrid Static and Dynamic Analysis Approach

Information ◽  
2019 ◽  
Vol 10 (10) ◽  
pp. 326 ◽  
Author(s):  
Amr Amin ◽  
Amgad Eldessouki ◽  
Menna Tullah Magdy ◽  
Nouran Abdeen ◽  
Hanan Hindy ◽  
...  
Keyword(s):  
Dynamic Analysis ◽  
Static Analysis ◽  
Mobile Applications ◽  
Web Application ◽  
Hybrid Approach ◽  
High Rate ◽  
Vulnerability Detection ◽  
Security Testing ◽  
Static And Dynamic Analysis ◽  
Android Applications

The security of mobile applications has become a major research field which is associated with a lot of challenges. The high rate of developing mobile applications has resulted in less secure applications. This is due to what is called the “rush to release” as defined by Ponemon Institute. Security testing—which is considered one of the main phases of the development life cycle—is either not performed or given minimal time; hence, there is a need for security testing automation. One of the techniques used is Automated Vulnerability Detection. Vulnerability detection is one of the security tests that aims at pinpointing potential security leaks. Fixing those leaks results in protecting smart-phones and tablet mobile device users against attacks. This paper focuses on building a hybrid approach of static and dynamic analysis for detecting the vulnerabilities of Android applications. This approach is capsuled in a usable platform (web application) to make it easy to use for both public users and professional developers. Static analysis, on one hand, performs code analysis. It does not require running the application to detect vulnerabilities. Dynamic analysis, on the other hand, detects the vulnerabilities that are dependent on the run-time behaviour of the application and cannot be detected using static analysis. The model is evaluated against different applications with different security vulnerabilities. Compared with other detection platforms, our model detects information leaks as well as insecure network requests alongside other commonly detected flaws that harm users’ privacy. The code is available through a GitHub repository for public contribution.

Efficient Privacy Leakage Discovery for Android Applications Based on Static Analysis

2016 ◽  
Vol 9 (3) ◽  
pp. 199-210 ◽  
Author(s):  
Songyang Wu ◽  
Yong Zhang ◽  
Xiong Xiong
Keyword(s):  
Static Analysis ◽  
Privacy Leakage ◽  
Android Applications

Random GUI Testing of Android Application Using Behavioral Model

2017 ◽  
Vol 27 (09n10) ◽  
pp. 1603-1612 ◽  
Author(s):  
Woramet Muangsiri ◽  
Shingo Takada
Keyword(s):  
Static Analysis ◽  
State Of The Art ◽  
Evaluation Criteria ◽  
Behavioral Model ◽  
Code Coverage ◽  
Gui Testing ◽  
Testing Tools ◽  
Current State ◽  
Android Applications ◽  
Manual Testing

Automated GUI testing based on behavioral model is one of the most efficient testing approaches. By mining user usage, test scenarios can be generated based on statistical models such as Markov chain. However, these works require static analysis before starting the exploration which requires too much prerequisites and time. To address these challenges, we propose a behavioral-based GUI testing approach for mobile applications that achieves faster and higher coverage. The proposed approach does not conduct static analysis. It creates a behavioral model from usage logs by applying a statistical model. The events within the behavioral model are mapped to GUI components in a GUI tree. Finally, it updates the model dynamically to increase the probability of an event that rarely or never occurs when users use the application. The proposed approach was evaluated on four open-source Android applications, and compared with the state-of-the-art tools and manual testing. The main evaluation criteria are code coverage and ability to find errors. The proposed approach performed better than the current state-of-the-art automated testing tools in most aspects.

scholarly journals EstiDroid: Estimate API Calls of Android Applications Using Static Analysis Technology

IEEE Access ◽  
2020 ◽  
Vol 8 ◽  
pp. 105384-105398
Author(s):  
Wenhao Fan ◽  
Daishuai Zhang ◽  
Ye Chen ◽  
Fan Wu ◽  
Yuan'an Liu
Keyword(s):  
Static Analysis ◽  
Android Applications

scholarly journals A Sound Flow-Sensitive Heap Abstraction for the Static Analysis of Android Applications

2017 ◽  
Author(s):  
Stefano Calzavara ◽  
Ilya Grishchenko ◽  
Adrien Koutsos ◽  
Matteo Maffei
Keyword(s):  
Static Analysis ◽  
Android Applications

Using static analysis for automatic assessment and mitigation of unwanted and malicious activities within Android applications

2011 ◽  
Author(s):  
Leonid Batyuk ◽  
Markus Herpich ◽  
Seyit Ahmet Camtepe ◽  
Karsten Raddatz ◽  
Aubrey-Derrick Schmidt ◽  
...  
Keyword(s):  
Static Analysis ◽  
Automatic Assessment ◽  
Android Applications
Sign in / Sign up

Export Citation Format

Share Document