Magnifying glass on Android apps: static and dynamic analysis


A deep introduction over android apps inspection using both static and dynamic analysis

Activity website:

Add Event to Calendar: vCal | iCal

Time & Place

27 Oct 2016 from 09:00 to 11:00
corso svizzera 185, Torino, Italy Italy

Target Audience

students, penetration testers, developers, security guys


In this talk, I introduce approaches and challenges of the analysis of Android apps. Over the last years, Android apps are become very popular on both official and non-official stores. To address the problem of security verification and malware analysis, various tools has been proposed for the analysis of apps using either static or dynamic analysis.
Apps' security is not the only threat, in fact in the recent past Android malware has become more and more common. In fact different samples have been found also in the official Google store.
Although the automatic analysis is helpful, it is not always enough. Sometime the analysis could require an extra manual effort to identify malicious hidden code or to trigger potentially vulnerable paths.
During this talk I will introduce hybrid approaches which permit to overcome current limitations and achieve a more complete analysis.