Android APP安全评估工具 Drozer - 使用介绍
2016-10-27 14:17
886 查看
一、列出drozer当前可用的所有模块dz> list
获取所有安装包列表 run app.package.list
通过输入安装包的部分关键字查找包全称 run app.package.list -f 安装包部分关键字
获取特定安装包信息 run app.package.info -a 安装包名称
查找APP是否存在漏洞 run app.package.attacksurface 安装包名称
dz> run app.package.attacksurface com.hipu.yidian
Attack Surface:
6 activities exported
8 broadcast receivers exported
1 content providers exported
4 services exported
获取activiity信息 run app.activity.info -a 安装包名称
dz> list app.activity.forintent Find activities that can handle the given intent app.activity.info Gets information about exported activities. app.activity.start Start an Activity app.broadcast.info Get information about broadcast receivers app.broadcast.send Send broadcast using an intent app.broadcast.sniff Register a broadcast receiver that can sniff particular intents app.package.attacksurface Get attack surface of package app.package.backup Lists packages that use the backup API (returns true on FLAG_ALLOW_BACKUP) app.package.debuggable Find debuggable packages app.package.info Get information about installed packages app.package.launchintent Get launch intent of package app.package.list List Packages app.package.manifest Get AndroidManifest.xml of package app.package.native Find Native libraries embedded in the application. app.package.shareduid Look for packages with shared UIDs app.provider.columns List columns in content provider app.provider.delete Delete from a content provider app.provider.download Download a file from a content provider that supports files app.provider.finduri Find referenced content URIs in a package app.provider.info Get information about exported content providers app.provider.insert Insert into a Content Provider app.provider.query Query a content provider app.provider.read Read from a content provider that supports files app.provider.update Update a record in a content provider app.service.info Get information about exported services app.service.send Send a Message to a service, and display the reply app.service.start Start Service app.service.stop Stop Service auxiliary.webcontentresolver Start a web service interface to content providers. exploit.jdwp.check Open @jdwp-control and see which apps connect exploit.pilfer.general.apnprovider Reads APN content provider exploit.pilfer.general.settingsprovider Reads Settings content provider information.datetime Print Date/Time information.deviceinfo Get verbose device information information.permissions Get a list of all permissions used by packages on the device scanner.activity.browsable Get all BROWSABLE activities that can be invoked from the web browser scanner.misc.native Find native components included in packages scanner.misc.readablefiles Find world-readable files in the given folder scanner.misc.secretcodes Search for secret codes that can be used from the dialer scanner.misc.sflagbinaries Find suid/sgid binaries in the given folder (default is /system). scanner.misc.writablefiles Find world-writable files in the given folder scanner.provider.finduris Search for content providers that can be queried from our context. scanner.provider.injection Test content providers for SQL injection vulnerabilities. scanner.provider.sqltables Find tables accessible through SQL injection vulnerabilities. scanner.provider.traversal Test content providers for basic directory traversal vulnerabilities. shell.exec Execute a single Linux command. shell.send Send an ASH shell to a remote listener. shell.start Enter into an interactive Linux shell. tools.file.download Download a File tools.file.md5sum Get md5 Checksum of file tools.file.size Get size of file tools.file.upload Upload a File tools.setup.busybox Install Busybox. tools.setup.minimalsu Prepare 'minimal-su' binary installation on the device. dz>
获取所有安装包列表 run app.package.list
dz> run app.package.list android (Android 绯荤粺) com.adobe.flashplayer (Adobe Flash Player 11.1) com.adups.fota (OTA鍗囩骇) com.adups.fota.sysoper (FotaReboot) com.android.backupconfirm (com.android.backupconfirm) ... com.svox.pico (Pico TTS) com.tencent.mm (寰俊) com.wlan.wland (com.wlan.wland)
通过输入安装包的部分关键字查找包全称 run app.package.list -f 安装包部分关键字
dz> run app.package.list -f qihoo com.qihoo.wifi (360WiFi) dz> run app.package.list -f yidian com.hipu.yidian (一点资讯)
获取特定安装包信息 run app.package.info -a 安装包名称
dz> run app.package.info -a com.ips.wallet Package: com.ips.wallet Application Label: IPSWallet Process Name: com.ips.wallet Version: 1.0 Data Directory: /data/data/com.ips.wallet APK Path: /data/app/com.ips.wallet-1.apk UID: 10080 GID: [3003, 1015, 1006, 1028] Shared Libraries: null Shared User ID: null Uses Permissions: - android.permission.INTERNET - android.permission.ACCESS_NETWORK_STATE - android.permission.READ_PHONE_STATE - android.permission.ACCESS_WIFI_STATE - android.permission.MOUNT_UNMOUNT_FILESYSTEMS - android.permission.WRITE_EXTERNAL_STORAGE - android.permission.CAMERA - android.permission.RECEIVE_USER_PRESENT - android.permission.READ_EXTERNAL_STORAGE Defines Permissions: - None
查找APP是否存在漏洞 run app.package.attacksurface 安装包名称
dz> run app.package.attacksurface com.hipu.yidian
Attack Surface:
6 activities exported
8 broadcast receivers exported
1 content providers exported
4 services exported
获取activiity信息 run app.activity.info -a 安装包名称
dz> run app.activity.info -a com.hipu.yidian Package: com.hipu.yidian com.hipu.yidian.wxapi.WXEntryActivity Permission: null com.yidian.news.ui.guide.UserGuideActivity Permission: null com.yidian.news.ui.lists.ContentListActivity Permission: null com.yidian.news.ui.content.NewsActivity Permission: null com.xiaomi.account.openauth.AuthorizeActivity Permission: null com.tencent.tauth.AuthActivity Permission: null dz>
相关文章推荐
- Android APP安全评估工具 Drozer - 安装介绍
- Drozer – Android APP安全评估工具(附测试案例)
- Android APP安全评估工具Drozer PC端重要代码解析
- Windows端Drozer使用(Android APP应用安全评估框架)
- Drozer – Android APP安全评估工具小测
- Drozer--Android APP安全评估工具
- Drozer – Android APP安全评估工具(附测试案例)
- 分享好东西:android抓包工具fiddler使用介绍 抓取 手机APP 中资源。
- 抓包工具Charles简单使用介绍(可抓取Android中app的请求)
- J哥---------分享好东西:android抓包工具fiddler使用介绍 抓取 手机APP 中资源。
- 抓包工具Charles简单使用介绍(可抓取Android中app的请求)
- 抓包工具Charles简单使用介绍(可抓取Android中app的请求)
- 《Android攻防实战》读书笔记——Android安全评估工具——Drozer (日后学习)
- Drozer二 亲测------测试android应用程序漏洞的安全评估工具---Drozer配置安装篇
- android安全框架工具drozer使用指南
- 抓包工具Charles简单使用介绍(可抓取Android中app的请求)
- android app测试使用过的测试工具总结(持续更新)
- 【移动安全】Android 测试工具Monkey介绍
- android抓包工具fiddler使用介绍 抓取 手机APP 中资源。
- achartengine(Google给android提供的绘图工具包)的介绍和使用