• Complain

Aditya Gupta - Learning Pentesting for Android

Here you can read online Aditya Gupta - Learning Pentesting for Android full text of the book (entire story) in english for free. Download pdf and epub, get meaning, cover and reviews about this ebook. year: 2014, publisher: Packt Publishing - ebooks Account, genre: Computer. Description of the work, (preface) as well as reviews are available. Best literature library LitArk.com created for fans of good reading and offers a wide selection of genres:

Romance novel Science fiction Adventure Detective Science History Home and family Prose Art Politics Computer Non-fiction Religion Business Children Humor

Choose a favorite category and find really read worthwhile books. Enjoy immersion in the world of imagination, feel the emotions of the characters or learn something new for yourself, make an fascinating discovery.

Aditya Gupta Learning Pentesting for Android
  • Book:
    Learning Pentesting for Android
  • Author:
  • Publisher:
    Packt Publishing - ebooks Account
  • Genre:
  • Year:
    2014
  • Rating:
    5 / 5
  • Favourites:
    Add to favourites
  • Your mark:
    • 100
    • 1
    • 2
    • 3
    • 4
    • 5

Learning Pentesting for Android: summary, description and annotation

We offer to read an annotation, description, summary or preface (depends on what the author of the book "Learning Pentesting for Android" wrote himself). If you haven't found the necessary information about the book — write in the comments, we will try to find it.

This is an easy-to-follow guide, full of hands-on and real-world examples of applications. Each of the vulnerabilities discussed in the book is accompanied with the practical approach to the vulnerability, and the underlying security issue.
This book is intended for all those who are looking to get started in Android security or Android application penetration testing. You don t need to be an Android developer to learn from this book, but it is highly recommended that developers have some

Aditya Gupta: author's other books


Who wrote Learning Pentesting for Android? Find out the surname, the name of the author of the book and a list of all author's works by series.

Learning Pentesting for Android — read online for free the complete book (whole text) full work

Below is the text of the book, divided by pages. System saving the place of the last page read, allows you to conveniently read the book "Learning Pentesting for Android" online for free, without having to search again every time where you left off. Put a bookmark, and you can go to the page where you finished reading at any time.

Light

Font size:

Reset

Interval:

Bookmark:

Make
Learning Pentesting for Android Devices

Table of Contents
Learning Pentesting for Android Devices

Learning Pentesting for Android Devices

Copyright 2014 Packt Publishing

All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews.

Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author, nor Packt Publishing, and its dealers and distributors will be held liable for any damages caused or alleged to be caused directly or indirectly by this book.

Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information.

First published: March 2014

Production Reference: 1190314

Published by Packt Publishing Ltd.

Livery Place

35 Livery Street

Birmingham B3 2PB, UK.

ISBN 978-1-78328-898-4

www.packtpub.com

Cover Image by Michal Jasej (<>)

Credits

Author

Aditya Gupta

Reviewers

Seyton Bradford

Rui Gonalo

Glauco Mrdano

Elad Shapira

Acquisition Editors

Nikhil Chinnari

Kartikey Pandey

Content Development Editor

Priya Singh

Technical Editors

Manan Badani

Shashank Desai

Akashdeep Kundu

Copy Editors

Sayanee Mukherjee

Karuna Narayanan

Alfida Paiva

Laxmi Subramanian

Project Coordinator

Jomin Varghese

Proofreaders

Maria Gould

Ameesha Green

Paul Hindle

Indexer

Hemangini Bari

Graphics

Sheetal Aute

Yuvraj Mannari

Production Coordinator

Kyle Albuquerque

Cover Work

Kyle Albuquerque

Foreword

Mobile phones are a necessity in our lives and the majority of us have become completely dependent on them in our daily lives.

The majority of mobile phones today are running on the Android OS. The main reason for this is the ever growing community of developers and massive number of applications released for the Android OS.

However, one mustn't make the mistake of thinking that Android is only used in mobile devices. The Android operating system is commonly used in cars, cameras, refrigerators, televisions, game consoles, smart watches, smart glass, and many other gadgets too.

This massive usage is not risk free and the main concern is security. One cannot tell whether the applications that are based on the Android operating system are secure. How can a common user tell if the application they are using is not malicious? Are those applications developed in a way that can be exploited by attackers? This is an important question that must be addressed.

We can describe the general picture and challenge in information security by saying that 99.9 percent secure is 100 percent vulnerable.

Knowledge is power, and we as security researchers and developers must be in a state of constant learning and researching in order to be up to date with recent attack vectors and trends in matter to stay in the arena and in order to try and predict, as much as possible, the future in that field.

This is a never-ending process that relies on valuable resources and materials to make it more efficient.

I first met Aditya at the ClubHack conference back in 2011, where both of us gave presentations about mobile security. Immediately after that, I realized that he is an asset when it comes to dealing with mobile security and practically, when dealing with the assessment of mobile applications.

The book is an easy read and contains valuable information that, in my opinion, every security researcher and developer who chooses to enter the mobile security field must learn and be aware of. For example, the basics of Android, its security model, architecture, permission model, and how the OS operates.

The tools mentioned in the book are the ones that are used by mobile security researchers in the industry and by the mobile security community.

On a personal note, my favorite chapters were the ones that discuss Android forensics, which are described as follows:

  • , Android Forensics , as it goes deeper into the Android filesystem and the reader learns how to extract data from the filesystem
  • Lesser-known Android attack vectors from , Lesser-known Android Attacks , as the chapter discusses infection vectors, and in particular the WebView component
  • , ARM Exploitation that focuses on ARM-based exploitation for the Android platform

Enjoy researching and the educational learning process!

Elad Shapira

Mobile Security Researcher

About the Author

Aditya Gupta is the founder and trainer of Attify, a mobile security firm, and leading mobile security expert and evangelist. Apart from being the lead developer and co-creator of Android framework for exploitation, he has done a lot of in-depth research on the security of mobile devices, including Android, iOS, and Blackberry, as well as BYOD Enterprise Security.

He has also discovered serious web application security flaws in websites such as Google, Facebook, PayPal, Apple, Microsoft, Adobe, Skype, and many more.

In his previous work at Rediff.com, his main responsibilities were to look after web application security and lead security automation. He also developed several internal security tools for the organization to handle the security issues.

In his work with XYSEC, he was committed to perform VAPT and mobile security analysis. He has also worked with various organizations and private clients in India, as well as providing them with training and services on mobile security and exploitation, Exploit Development, and advanced web application hacking.

He is also a member of Nullan open security community in India, and an active member and contributor to the regular meetups and Humla sessions at the Bangalore and Mumbai Chapter.

He also gives talks and trainings at various security conferences from time to time, such as BlackHat, Syscan, Toorcon, PhDays, OWASP AppSec, ClubHack, Nullcon, and ISACA.

Right now he provides application auditing services and training. He can be contacted at <> or @adi1391 on Twitter.

Acknowledgments

This book wouldn't be in your hands without the contribution of some of the people who worked day and night to make this a success. First of all, a great thanks to the entire team at Packt Publishing especially Ankita, Nikhil, and Priya, for keeping up with me all the time and helping me with the book in every way possible.

I would also like to thank my family members for motivating me from time to time, and also for taking care of my poor health due to all work and no sleep for months. Thanks Dad, Mom, and Upasana Di.

A special thanks to some of my special friends Harpreet Jolly, Mandal, Baman, Cim Stordal, Rani Rituja, Dev Kar, Palak, Balu Thomas, Silky, and my Rediff Team: Amol, Ramesh, Sumit, Venkata, Shantanu, and Mudit.

Next page
Light

Font size:

Reset

Interval:

Bookmark:

Make

Similar books «Learning Pentesting for Android»

Look at similar books to Learning Pentesting for Android. We have selected literature similar in name and meaning in the hope of providing readers with more options to find new, interesting, not yet read works.


Reviews about «Learning Pentesting for Android»

Discussion, reviews of the book Learning Pentesting for Android and just readers' own opinions. Leave your comments, write what you think about the work, its meaning or the main characters. Specify what exactly you liked and what you didn't like, and why you think so.