Android Security

  1. Android Open Source Project (AOSP), https://source.android.com/source/

  2. Android 12, http://android.com/12/

  3. Android Code Search, https://cs.android.com

  4. Android 开源项目简介

  5. Android主要版本與使用分佈 (now only be available in Android Studio)

  6. Android market share by version

  7. Android API Level, https://developer.android.com/guide/topics/manifest/uses-sdk-element

  8. Android File Transfer, https://www.android.com/filetransfer/

  9. Android Studio, https://developer.android.com/studio/ , https://developer.android.com/studio/intro/?hl=zh-cn

  10. Android App Bundles (AAB), https://developer.android.com/guide/app-bundle , https://developer.android.com/platform/technology/app-bundle

  11. Android Studio download archives, https://developer.android.com/studio/archive

  12. Android Studio的應用程式除錯 (Debug your app)

  13. Android Compatibility 相容性, https://source.android.com/compatibility/

  14. AOSP Distribution 原始碼, https://android.googlesource.com

  15. Android Brand Guidelines, https://source.android.com/setup/start/brands

  16. Android 安全技術, https://source.android.com/security/

  17. Android 安全性公告, https://source.android.com/security/bulletin/

  18. Open Mobile Alliance (OMA) 開放移動聯盟, https://www.openmobilealliance.org/

  19. Pixel手機取得Android更新

  20. Android Flash Tool, https://flash.android.com/

  21. Android Pony EXpress (APEX), https://source.android.com/devices/tech/ota/apex

  22. Introducing Android Q Beta (2019年3月13日), https://android-developers.googleblog.com/2019/03/introducing-android-q-beta.html

  23. What's new in Android security (Google I/O '18), https://www.youtube.com/watch?v=r54roADX2MI

  24. Android生態系統安全性, https://transparencyreport.google.com/android-security/overview

  25. Sign your app, https://developer.android.com/studio/publish/app-signing

  26. Android Pie 引入 Keystore 新特性

  27. Android密鑰庫系統 (Android keystore system)

  28. How to Update your Android Kernel to Latest Linux Stable? Which Android runs which Linux kernel?

  29. Linux Kernel, https://www.kernel.org

  30. Building Kernels (編譯內核), https://source.android.com/setup/build/building-kernels

  31. 美國FBI花費1.3百萬美金破解iPhone 5C (FBI paid more than $1.3 million to break into San Bernardino iPhone), 2016.

  32. 2017年3月維基解密(WikiLeaks):美國中央情報局(CIA)的駭客部門,https://wikileaks.org/ciav7p1/

  33. 個人電腦2021年銷售量(Gartner) 個人電腦2020年銷售量(Gartner) 個人電腦2019年銷售量(Gartner) 個人電腦2018年銷售量(Gartner)

  34. 智慧型手機2021年銷售量(Gartner) 智慧型手機2020年銷售量(Gartner) 智慧型手機2019年銷售量(Gartner) 智慧型手機2019年銷售量(IDC) 智慧型手機2018年銷售量(Gartner) 智慧型手機2018年銷售量(IDC)

  35. Mobile Fact Sheet, June 2019, https://www.pewresearch.org/internet/fact-sheet/mobile/

  36. Made by Google 2018, https://www.youtube.com/watch?v=9wURy8AdsS4

  37. Security-Enhanced Linux in Android (SEAndroid), https://source.android.com/security/selinux, https://selinuxproject.org/ , https://github.com/SELinuxProject

  38. Vendor Native Development Kit (VNDK), https://source.android.com/devices/architecture/vndk

  39. Trusty TEE (Trusted Execution Environment), https://www.op-tee.org, https://open-tee.github.io

  40. Android Verified Boot, https://source.android.com/security/verifiedboot/

  41. Android Verified Boot (AVB) 2.0

  42. Android Partitions and Images (分區和映像), https://source.android.com/devices/bootloader/partitions-images

  43. Android Scoped Storage (分區存儲), https://www.youtube.com/watch?v=UnJ3amzJM94

  44. Android command line tools, https://developer.android.com/studio/command-line

  45. adb, http://developer.android.com/tools/help/adb.html。 adb devices; adb shell service list; adb shell cat /proc/cpuinfo; adb shell pm list packages; adb shell dumpsys; adb logcat; adb pull [-p] [-a] <remote> [<local>]; adb backup [-f <file>] [-apk|-noapk] [-obb|-noobb] [-shared|-noshared] [-all] [-system|-nosystem] [<packages...>]

  46. adb install -t test.apk, https://adbshell.com/commands/adb-install

  47. Android Backup Extractor, http://sourceforge.net/projects/adbextractor/.

  48. Flashing Devices, https://source.android.com/setup/build/running

  49. Moving Fastboot to User Space, https://source.android.com/devices/bootloader/fastbootd

  50. Flashing, Booting, and Updating, https://source.android.com/devices/bootloader/flashing-updating

  51. Android Device Mirroring: Vysor, Mobizen

  52. A/B (Seamless) System Updates, https://source.android.com/devices/tech/ota/ab

  53. Android Device Tree (DT), https://source.android.com/devices/architecture/dto

  54. Treble, https://source.android.com/devices/architecture/treble

  55. Android Direct Boot mode, https://developer.android.com/training/articles/direct-boot

  56. Project Strobe, https://www.blog.google/technology/safety-security/project-strobe/

  57. Project Mainline, https://android-developers.googleblog.com/2019/05/fresher-os-with-projects-treble-and-mainline.html

  58. Android Pony EXpress (APEX), https://source.android.com/devices/tech/ota/apex

  59. 常規系統映像 (Generic System Image, GSI)

  60. Android's shell and utilities, https://android.googlesource.com/platform/system/core/+/master/shell_and_utilities/README.md

  61. Google 行動服務 (Google Mobile Services, GMS), https://en.wikipedia.org/wiki/Google_mobile_services

  62. Android Profiler, Measure app performance with Android Profiler

  63. Android system tracing, https://developer.android.com/topic/performance/tracing/

  64. 基於安卓設備的Hacking

  65. AndroidX, https://developer.android.google.cn/jetpack/androidx/

  66. Compatibility Test Suite (CTS), https://source.android.com/compatibility/cts/

  67. Vendor Native Development Kit (VNDK), https://source.android.com/devices/architecture/vndk/

  68. SafetyNet, https://developer.android.com/training/safetynet/

  69. XDA, https://www.xda-developers.com/

  70. Bypassing the lock screen, /data/system/password.key, /data/data/com.android.providers.settings/databases/settings.db, /data/system/locksettings.db, /data/system.lockscreen.db

  71. Gatekeeper password, gatekeeper.pattern.key, gatekeeper.password.key

  72. Mobiledit, https://www.mobiledit.com/downloads

  73. nanddump, https://github.com/jakev/android-binaries/blob/master/nanddump

  74. Magnet ACQUIRE, https://www.magnetforensics.com/resources/magnet-acquire/

  75. Magnet AXIOM, https://www.magnetforensics.com/products/magnet-axiom/

  76. LiME (Linux Memory Extractor), https://github.com/504ensicsLabs/LiME

  77. Autopsy, https://www.autopsy.com/download/

  78. The Sleuth Kit, https://www.sleuthkit.org

  79. FTK Imager, https://accessdata.com/product-download

  80. SQLite Deleted Records Parser, https://github.com/mdegrazia/SQLite-Deleted-Records-Parser

  81. extundelete (recover deleted files from an ext4 partition), http://extundelete.sourceforge.net

  82. SIFT Workstation, https://digital-forensics.sans.org/community/downloads

  83. Epoch & Unix Timestamp Conversion Tools, https://www.epochconverter.com

  84. DCode, https://www.digital-detective.net/dcode/

  85. TestDisk & PhotoRec, https://www.cgsecurity.org/wiki/TestDisk_Download

  86. Installed apps: /data/system/packages.list, adb shell pm list packages -f

  87. Wi-Fi connection data: /data/misc/wifi/wpa_supplicant.conf, /data/misc/wifi/WifiConfigStore.xml

  88. Contacts/Calls: /data/data/com.android.providers.contacts

  89. SMS/MMS: /data/user_de/0/com.android.providers.telephony

  90. User dictionary: /data/data/com.android.providers.userdictionary

  91. Gmail: /data/data/com.google.android.gm

  92. Google Maps: /data/data/com.google.android.apps.maps

  93. file signatures, https://www.garykessler.net/library/file_sigs.html

  94. Julian Date, https://www.aavso.org/jd-calculator

  95. Linux File Systems for Windows, https://www.paragon-drivers.com/en/lfswin/

  96. Android malware identification, https://www.virustotal.com/

  97. VirusTotal Desktop Apps, https://support.virustotal.com/hc/en-us/articles/115002179065-Desktop-Apps

  98. YARA, https://yara.readthedocs.io/en/v3.8.1/ , https://github.com/virustotal/yara/releases/

  99. Forensic tools by Eric Zimmerman, https://ericzimmerman.github.io/#!index.md

  100. Joe Sandbox, https://www.joesandbox.com/#android

  101. axmldec (an Android binary XML decoder), https://github.com/ytsutano/axmldec/releases

  102. Android Cryptographic Primitives

  103. Android 密碼學算法, https://developer.android.com/guide/topics/security/cryptography

  104. Android 密碼學算法原始碼

  105. Full-Disk Encryption (FDE)

  106. File-Based Encryption (FBE)

  107. Adiantum encryption, https://source.android.com/security/encryption/adiantum

  108. Sony AOSP

  109. Android OS

  110. App線上檢測, VirusTotal, https://www.virustotal.com/

  111. Nikolay Elenkov | Twitter

  112. Android Security Architecture (by Nikolay Elenkov) 2015, https://www.youtube.com/watch?v=3asW-nBU-JU

  113. An introduction to Android application security testing (by Nikolay Elenkov) 2017, https://www.youtube.com/watch?v=hRuNHUwiQJA

  114. AndroidSecurity|Twitter

  115. Course: Android Internals and Security, by Prof. Prabhaker Mateti, Wright State University

  116. Karim Yaghmour, Embedded Android - Working with the AOSP, https://www.youtube.com/watch?v=LimC0XpeT0k

  117. Secure an Android Device, https://source.android.com/security?hl=en

  118. Android Enterprise Security White Paper

  119. Android Security & Privacy 2018 Year In Review, https://www.youtube.com/watch?v=6Ct1RBFjwI0

  120. Android Security 2017 Year in Review, What's New in Android Security (Google I/O '17)

  121. Android Security 2016 Year In Review, https://www.youtube.com/watch?v=QJXsurYoJ10

  122. Android boot animation開機動畫的格式(bootanimation format), https://android.googlesource.com/platform/frameworks/base/+/master/cmds/bootanimation/FORMAT.md

  123. Nexus 6P (Android 8)的開機動畫, /system/media/bootanimation.zip

  124. Pixel 2 (Android 10)的開機動畫, /product/media/bootanimation.zip

  125. Best Wireshark Alternatives for Android (September 2019)

  126. Android software

  127. Joshua J. Drake, “Researching Android Device Security with the Help of a Droid Army,” Black Hat USA 2014. https://www.youtube.com/watch?v=dIYeNgU5EAg

  128. GravityRAT針對Android設備的間諜行為分析

  129. NIST SP 800-124, Guidelines for Managing the Security of Mobile Devices in the Enterprise, Revision 2, March 2020.

  130. Open source software by the NSA, https://code.nsa.gov

  131. Fastboot error when flasing rom 'FAILED remote unknown command'

  132. Android SDK Platform Tools, https://developer.android.com/studio/releases/platform-tools

  133. SDK Platform Tools r27.0.0 for Mac

  134. Android逆向入門

  135. iOS安全逆向之旅--安全逆向環境搭建和工具使用介紹

  136. APK加固之靜態脫殼機編寫入門