SOLUTIONS
> Side Channel Analysis
Ready-to-use side channel tools to assess cryptography algorithms.
> Laser & EM Fault Injection
Make sure your chip withstands different techniques of physical fault injections.
> Firmware Security Analysis
Qualify embedded code binaries without physical devices and benches.
> Security Failure Analysis
Photoemission analysis to explore internal information in a chip.
> Vulnerability Research
Dynamic analyses at a system level for investigating potential vulnerabilities.
TECHNOLOGIES
> Data Science Platform
esDynamic is a complete data focused platform to leverage the know-how of your team for complex analyses.
> esFirmware Engine
Assess the security of the firmware of IoT devices against logical and physical attacks.
> REVEN Engine
Record and replay vulnerability researches within reverse engineering processes and tools.
PROFESSIONAL SERVICES
> Cybersecurity Training
Grow your expertise with training modules driven by a coach.
EXPERTISE
> Mobile App Security
Know the threats and risks of your Mobile App.
> DevSecOps
Integrate the security protections verification in your CI/CD pipeline.
SOLUTIONS
> Automated Mobile App Security Testing
esChecker SaaS: automating the security testing of your mobile app binary.
> Mobile App Penetration Testing
Testing the resiliency of your Mobile App, SDK or RASP tool.
> Backend Penetration Testing
Testing the resiliency of your Web App, API or Backend Systems.
PROFESSIONAL SERVICES
> Coaching for Mobile App Developers
Providing insights into the mobile app threats and how attackers work by a learning-by-doing approach.
OUR COMPANY
> Events
CARREERS
> Meet our experts
> Open positions
Join our team!
FOLLOW US
Twitter
Linkedin
Youtube
Github
Gitlab
Dynamic Analysis of an Android application
This modules focuses on dynamic analysis techniques. It is split in two parts: the first one is focused on tools and techniques that can be used for the Java code, and the second one for the native code. Trainees will learn how to debug an application using different alternatives, and also how to instrument the code using FRIDA.
Covered Topics
What you will learn:
- Dynamic analysis techniques to analyse a code being executed at runtime
- Perform remote debugging of an application using Android Studio, IDA Pro
- Dynamic code hooking (Java and Native) with FRIDA
Exercises
"This is a CrackMe-like challenge where flags have to be found by only applying dynamic analysis tools and techniques.
You will have to analyse an application at runtime by debugging the code and by instrumenting it using FRIDA.
Requirements
- Knowledge of the anatomy of an Android app (if not, Module 1 required)
- Knowledge of the SMALI syntax (if not, Module 1 required)
- Knowledge of the Java and C/C++ programming languages
- Being at ease with Linux-based environment system
- Knowledge of the Java programming language
- Beginner level with the tools: GHIDRA, Android Studio, jeb (or any free alternative, like jadx)
- You will need your own physical device to run applications. The device must be run under Android greater or equal to version 6.
Practical informations
Overall duration: 5 to 10 days
Schedule: 9.30AM - 13PM (CET/CEST) - virtual/in person
Number of trainees: 2 trainees max.
