these-android-re/thesis
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions
thesis/2_background/0_intro.typ
Jean-Marie Mineau 7f1a5430fb
All checks were successful
/ test_checkout (push) Successful in 1m37s
Details
notes
2025-09-20 21:08:32 +02:00

49 lines
3.3 KiB
Typst
Raw Blame History

#import "../lib.typ": API, ie, todo
== Introduction
In order to understand the challenges of reverse engineering Android applications, we first need to understand some key concepts and specificities of Android.
In particular, the format in wich application are distributed, as well as the runtime environment that runs those application, are very specific to Android.
To handle those specificities, a reverse engineer must appropriate tools.
Some of those tools are used recurrently, either by the reverse engineer themself, or as basis for other more complexe tools that implement more advance analysis techniques.
Among those techniques, the ones that do not require to run the application are called static analysis.
Over the time, many of those tools have been released.
To compare those different tools, different benchmarks have been proposed, highlighting different strenght and weeknesses of each tools.
Unfortunately static analysis has its limits.
One such limit is that it cannot analysis what is not inside the application.
Platform classes are classes that are present directly on the smartphone, and not in the application.
Some of those classes are well known and taken into account by analysis tools, but the rest of those classes, often called _hidden #API;_, are not.
In addition to platform classes, classes that are loaded dynamically (#ie at runtime) are also not always available to static analysis.
This led static analysis tools to disregard the class loading process altogether, leaving the subject relativelly unexplored.
When static analysis fails, for instance because of dynamic class loading, the reverse engineer will fallback dynamic analysis.
Dynamic analysis is the counterpart of static analysis: the analysis is based on the analysis of the excecution of the application.
Depending on the context, the reverse engineer will then alternate between different techniques, using previous results to improve the next iteration.
Regrettably, analysis tools mostly return results in an ad hoc format, making it difficult to make other tools aware of the retrieved information.
Some tools however encode their result in the form of a new augmented Android application.
The idea beeing that any Android analysis tools must be able to handle an Android application in the first place, so it will have access to those new information.
In this section, explore in more details those different aspects of Android reverse engineering.
#todo[Plan d'annonce]
#todo[Petit intro back platform classes, séparé de soa]
#todo[Petit intro class loading séparé de soa]
#todo[Bien séparer background et st-o-a]
#todo[bien dédier des sections/sous section aux 3 problemes]
#todo[synthese a la fin de chaque section soa des problemes]
#todo[Problematique avant soa]
#todo[
plan:
- 2.1 intro
- 2.2 bases d'Android et RE (completer un peu pour souligner les besoins qui menes au pbs)
- 2.3 Problématiques du RE (reprendre l'intro avec ce qui a été dit dans 2.2)
apktool et androguard sont réutilisé, ca fait supposé qu'il y a peut être un peu de réutilisation
on peut charger des classes, et dans le code d'android, on vois qu'en fait le classes loading est beaucoup plus important que ca
c'est connus que cl + statique + ref = nono, tout les outils présentes leurs solutions d'une certaine facons
- 2.4 State of the Art
]
Reference in a new issue View git blame Copy permalink