ALL-IN-ONE PLATFORM
esDynamic
Manage your attack workflows in a powerful and collaborative platform.
Expertise Modules
Executable catalog of attacks and techniques.
Infrastructure
Integrate your lab equipment and remotely manage your bench.
Lab equipments
Upgrade your lab with the latest hardware technologies.
PHYSICAL ATTACKS
Side Channel Attacks
Evaluate cryptography algorithms from data acquitition to result visualisation.
Fault Injection Attacks
Laser, Electromagnetic or Glitch to exploit a physical disruption.
Security Failure Analysis
Explore photoemission and thermal laser stimulation techniques.
EXPERTISE SERVICES
Evaluation Lab
Our team is ready to provide expert analysis of your hardware.
Starter Kits
Build know-how via built-in use cases developed on modern chips.
Cybersecurity Training
Grow expertise with hands-on training modules guided by a coach.
ALL-IN-ONE PLATFORM
esReverse
Static, dynamic and stress testing in a powerful and collaborative platform.
Extension: Intel x86, x64
Dynamic analyses for x86/x64 binaries with dedicated emulation frameworks.
Extension: ARM 32, 64
Dynamic analyses for ARM binaries with dedicated emulation frameworks.
DIFFERENT USAGES
Penetration Testing
Identify and exploit system vulnerabilities in a single platform.
Vulnerability Research
Uncover and address security gaps faster and more efficiently.
Malevolent Code Analysis
Effectively detect and neutralise harmful software.
Digital Forensics
Collaboratively analyse data to ensure thorough investigation.
EXPERTISE SERVICES
Software Assessment
Our team is ready to provide expert analysis of your binary code.
Cybersecurity training
Grow expertise with hands-on training modules guided by a coach.
INDUSTRIES
Semiconductor
Security Labs
Governmental agencies
Academics
ABOUT US
Why eShard?
Our team
Careers
FOLLOW US
Linkedin
Twitter
Youtube
Gitlab
Github
Static Analysis of an Android application
This module mainly focuses on static analysis of an Android application. It is split in two parts: the first one focuses on the static analysis of the java code, and the second one on the native code. During this module, you will learn how to find entry points from where one can perform further analyses from the Java code to the Native one. Different techniques and tools will be demonstrated so you can practice.
Covered Topics
What you will learn:
- Disassemble and decompile an application to start reviewing the code
- Surface analysis, finding entry points and low hanging fruits
- Patching an application
- Use Android Studio to review your code and apply some best practices while reverse engineering the code
- Tips for reviewing obfuscated code
Exercises
A CrackMe-like challenge is provided as a practical exercise.
Different flags have to be found with only one condition: the trainee has to only perform static analysis to reverse engineer the application and retrieve those flags.
You will have to extract and decompile or disassemble the code to review it.
You will have to apply the tips that were provided while using Android Studio to review the code, especially, obfuscated ones.
Requirements
- Knowledge of the anatomy of an Android app (if not, Module 1 required)
- Knowledge of the SMALI syntax (if not, Module 1 required)
- Knowledge of the Java and C/C++ programming languages
- Being at ease with Linux-based environment system
- Knowledge of the Java programming language
- Beginner level with the tools: GHIDRA, Android Studio, jeb (or any free alternative, like jadx)
Practical information
Overall duration: 5 to 10 days
Schedule: 9:30am - 13pm (CET/CEST) - virtual/in person
Number of trainees: 2 trainees max.
