SlideShare uma empresa Scribd logo

Zarafa SummerCamp 2012 - Android Workshop

Transferir como PPTX, PDF
Z
Zarafa
Arte e fotografiaTecnologia
1 de 16
Freek Kauffmann Paul Lammertsma Workshop Build an app that reveals security holes on Android
Before we start 1. Connect to the open wireless network 2. Android setting: allow non-market applications 3. Download AIDE from Google Play
APPS!
Android • What are the security principles of Android? – POSIX based (Linux) – User IDs and File Access – Permissions – Application signing (identifies developer) – Sandboxing (application isolation)
Android • Implications of rooting your device? – You can modify the Operating System – You can replace all applications – Access all application data – Grant/revoke permissions – Send data to and from the phone • Others (malicious software?) can do the same!*
Android • Facebook SDK exploit (April, David Poll) – Logcat – Let’s hack this!
We’ll make an app that… • Steals Facebook login from bonafide apps – Draw Something Free – Hootsuite – Facebook Marketplace (Oodle) – Soundhound – LauncherPro – Sleepy Jack – Airport City, Diamonds Blaze and others by Game Insight
github https://github.com/pflammertsma/FacebookThief.git
https://github.com/pflammertsma/FacebookThief.git continues on next slide…
Facebook Thief Tap to enable the background service
Freek Kauffmann Paul Lammertsma freek.kauffmann@itq.nl paul@pixplicity.com

Recomendados

Free software
Free softwareFree software
Free softwareJoel May
 
Zarafa SummerCamp 2012 - Steve Hardy Friday Keynote
Zarafa SummerCamp 2012 - Steve Hardy Friday KeynoteZarafa SummerCamp 2012 - Steve Hardy Friday Keynote
Zarafa SummerCamp 2012 - Steve Hardy Friday KeynoteZarafa
 
Zarafa SummerCamp 2012 - Project approach when migrating to Zarafa
Zarafa SummerCamp 2012 - Project approach when migrating to ZarafaZarafa SummerCamp 2012 - Project approach when migrating to Zarafa
Zarafa SummerCamp 2012 - Project approach when migrating to ZarafaZarafa
 
Zarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter GantenZarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter GantenZarafa
 
Zarafa SummerCamp 2012 - Yubikey integration
Zarafa SummerCamp 2012 - Yubikey integrationZarafa SummerCamp 2012 - Yubikey integration
Zarafa SummerCamp 2012 - Yubikey integrationZarafa
 
Zarafa SummerCamp 2012 - Deploying Zarafa Archiver
Zarafa SummerCamp 2012 - Deploying Zarafa ArchiverZarafa SummerCamp 2012 - Deploying Zarafa Archiver
Zarafa SummerCamp 2012 - Deploying Zarafa ArchiverZarafa
 
Zarafa Archiver workshop
Zarafa Archiver workshopZarafa Archiver workshop
Zarafa Archiver workshopZarafa
 
Zarafa SummerCamp 2012 - Exchange Web Services, technical information
Zarafa SummerCamp 2012 - Exchange Web Services, technical informationZarafa SummerCamp 2012 - Exchange Web Services, technical information
Zarafa SummerCamp 2012 - Exchange Web Services, technical informationZarafa
 

Recomendados

Free software
Free softwareFree software
Free softwareJoel May
 
Zarafa SummerCamp 2012 - Steve Hardy Friday Keynote
Zarafa SummerCamp 2012 - Steve Hardy Friday KeynoteZarafa SummerCamp 2012 - Steve Hardy Friday Keynote
Zarafa SummerCamp 2012 - Steve Hardy Friday KeynoteZarafa
 
Zarafa SummerCamp 2012 - Project approach when migrating to Zarafa
Zarafa SummerCamp 2012 - Project approach when migrating to ZarafaZarafa SummerCamp 2012 - Project approach when migrating to Zarafa
Zarafa SummerCamp 2012 - Project approach when migrating to ZarafaZarafa
 
Zarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter GantenZarafa SummerCamp 2012 - Keynote Peter Ganten
Zarafa SummerCamp 2012 - Keynote Peter GantenZarafa
 
Zarafa SummerCamp 2012 - Yubikey integration
Zarafa SummerCamp 2012 - Yubikey integrationZarafa SummerCamp 2012 - Yubikey integration
Zarafa SummerCamp 2012 - Yubikey integrationZarafa
 
Zarafa SummerCamp 2012 - Deploying Zarafa Archiver
Zarafa SummerCamp 2012 - Deploying Zarafa ArchiverZarafa SummerCamp 2012 - Deploying Zarafa Archiver
Zarafa SummerCamp 2012 - Deploying Zarafa ArchiverZarafa
 
Zarafa Archiver workshop
Zarafa Archiver workshopZarafa Archiver workshop
Zarafa Archiver workshopZarafa
 
Zarafa SummerCamp 2012 - Exchange Web Services, technical information
Zarafa SummerCamp 2012 - Exchange Web Services, technical informationZarafa SummerCamp 2012 - Exchange Web Services, technical information
Zarafa SummerCamp 2012 - Exchange Web Services, technical informationZarafa
 
Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...
Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...
Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...Zarafa
 
Z-Push debugging
Z-Push debuggingZ-Push debugging
Z-Push debuggingZarafa
 
Zarafa Tour 2014: "Where Zarafa can make a difference"
Zarafa Tour 2014: "Where Zarafa can make a difference"Zarafa Tour 2014: "Where Zarafa can make a difference"
Zarafa Tour 2014: "Where Zarafa can make a difference"B.A.
 
Z-Admin
Z-AdminZ-Admin
Z-AdminZarafa
 
Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0
Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0
Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0Zarafa
 
Zarafa SummerCamp 2012 - Basic Introduction WebApp plugin development
Zarafa SummerCamp 2012 - Basic Introduction WebApp plugin developmentZarafa SummerCamp 2012 - Basic Introduction WebApp plugin development
Zarafa SummerCamp 2012 - Basic Introduction WebApp plugin developmentZarafa
 
How security broken? - Android internals and malware infection possibilities
How security broken? - Android internals and malware infection possibilitiesHow security broken? - Android internals and malware infection possibilities
How security broken? - Android internals and malware infection possibilitiesFFRI, Inc.
 
Managing Open Source Licenses (Geeks Anonymes)
Managing Open Source Licenses (Geeks Anonymes)Managing Open Source Licenses (Geeks Anonymes)
Managing Open Source Licenses (Geeks Anonymes)Geeks Anonymes
 
Thou Shalt not Print: Why Software Freedom Matters
Thou Shalt not Print: Why Software Freedom MattersThou Shalt not Print: Why Software Freedom Matters
Thou Shalt not Print: Why Software Freedom MattersSameer Verma
 
TeQuiz - a Tech Quiz
TeQuiz - a Tech QuizTeQuiz - a Tech Quiz
TeQuiz - a Tech QuizYogesh Ks
 
2019052286_FUCHSIA_OS_PPT (1).pptx
2019052286_FUCHSIA_OS_PPT (1).pptx2019052286_FUCHSIA_OS_PPT (1).pptx
2019052286_FUCHSIA_OS_PPT (1).pptxKrunalMangukiya
 
Smart Bombs: Mobile Vulnerability and Exploitation
Smart Bombs: Mobile Vulnerability and ExploitationSmart Bombs: Mobile Vulnerability and Exploitation
Smart Bombs: Mobile Vulnerability and ExploitationTom Eston
 
Not another *$#@ app: How to avoid IoT fatigue
Not another *$#@ app: How to avoid IoT fatigueNot another *$#@ app: How to avoid IoT fatigue
Not another *$#@ app: How to avoid IoT fatigueRamin Firoozye
 
The Android vs. Apple iOS Security Showdown
The Android vs. Apple iOS Security Showdown The Android vs. Apple iOS Security Showdown
The Android vs. Apple iOS Security Showdown Tom Eston
 
CNIT 128 5: Mobile malware
CNIT 128 5: Mobile malwareCNIT 128 5: Mobile malware
CNIT 128 5: Mobile malwareSam Bowne
 
Fuchsia os
Fuchsia osFuchsia os
Fuchsia osSukanta Som
 
An Overview of the Android Things Security (FFRI Monthly Research Jan 2017)
An Overview of the Android Things Security (FFRI Monthly Research Jan 2017) An Overview of the Android Things Security (FFRI Monthly Research Jan 2017)
An Overview of the Android Things Security (FFRI Monthly Research Jan 2017) FFRI, Inc.
 
ANDROID SECURITY
ANDROID SECURITYANDROID SECURITY
ANDROID SECURITYyogeshraut090
 
Android application security unveiled
Android application security unveiledAndroid application security unveiled
Android application security unveiledJan Hodermarsky
 
Unix Project
Unix Project Unix Project
Unix Project Mohammad Aaqib
 
Mobile security
Mobile securityMobile security
Mobile securityStefaan
 
Malware Goes to the Movies - Briefing
Malware Goes to the Movies - BriefingMalware Goes to the Movies - Briefing
Malware Goes to the Movies - BriefingAleksandr Yampolskiy
 

Mais conteúdo relacionado

Destaque

Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...
Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...
Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...Zarafa
 
Z-Push debugging
Z-Push debuggingZ-Push debugging
Z-Push debuggingZarafa
 
Zarafa Tour 2014: "Where Zarafa can make a difference"
Zarafa Tour 2014: "Where Zarafa can make a difference"Zarafa Tour 2014: "Where Zarafa can make a difference"
Zarafa Tour 2014: "Where Zarafa can make a difference"B.A.
 
Z-Admin
Z-AdminZ-Admin
Z-AdminZarafa
 
Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0
Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0
Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0Zarafa
 
Zarafa SummerCamp 2012 - Basic Introduction WebApp plugin development
Zarafa SummerCamp 2012 - Basic Introduction WebApp plugin developmentZarafa SummerCamp 2012 - Basic Introduction WebApp plugin development
Zarafa SummerCamp 2012 - Basic Introduction WebApp plugin developmentZarafa
 

Destaque (6)

Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...
Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...
Zarafa SummerCamp 2012 - Tips & tricks for running Zarafa is larger scale env...
 
Z-Push debugging
Z-Push debuggingZ-Push debugging
Z-Push debugging
 
Zarafa Tour 2014: "Where Zarafa can make a difference"
Zarafa Tour 2014: "Where Zarafa can make a difference"Zarafa Tour 2014: "Where Zarafa can make a difference"
Zarafa Tour 2014: "Where Zarafa can make a difference"
 
Z-Admin
Z-AdminZ-Admin
Z-Admin
 
Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0
Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0
Zarafa SummerCamp 2012 - Keynote Sebastian Kummer - Z-Push 2.0
 
Zarafa SummerCamp 2012 - Basic Introduction WebApp plugin development
Zarafa SummerCamp 2012 - Basic Introduction WebApp plugin developmentZarafa SummerCamp 2012 - Basic Introduction WebApp plugin development
Zarafa SummerCamp 2012 - Basic Introduction WebApp plugin development
 

Semelhante a Zarafa SummerCamp 2012 - Android Workshop

How security broken? - Android internals and malware infection possibilities
How security broken? - Android internals and malware infection possibilitiesHow security broken? - Android internals and malware infection possibilities
How security broken? - Android internals and malware infection possibilitiesFFRI, Inc.
 
Managing Open Source Licenses (Geeks Anonymes)
Managing Open Source Licenses (Geeks Anonymes)Managing Open Source Licenses (Geeks Anonymes)
Managing Open Source Licenses (Geeks Anonymes)Geeks Anonymes
 
Thou Shalt not Print: Why Software Freedom Matters
Thou Shalt not Print: Why Software Freedom MattersThou Shalt not Print: Why Software Freedom Matters
Thou Shalt not Print: Why Software Freedom MattersSameer Verma
 
TeQuiz - a Tech Quiz
TeQuiz - a Tech QuizTeQuiz - a Tech Quiz
TeQuiz - a Tech QuizYogesh Ks
 
2019052286_FUCHSIA_OS_PPT (1).pptx
2019052286_FUCHSIA_OS_PPT (1).pptx2019052286_FUCHSIA_OS_PPT (1).pptx
2019052286_FUCHSIA_OS_PPT (1).pptxKrunalMangukiya
 
Smart Bombs: Mobile Vulnerability and Exploitation
Smart Bombs: Mobile Vulnerability and ExploitationSmart Bombs: Mobile Vulnerability and Exploitation
Smart Bombs: Mobile Vulnerability and ExploitationTom Eston
 
Not another *$#@ app: How to avoid IoT fatigue
Not another *$#@ app: How to avoid IoT fatigueNot another *$#@ app: How to avoid IoT fatigue
Not another *$#@ app: How to avoid IoT fatigueRamin Firoozye
 
The Android vs. Apple iOS Security Showdown
The Android vs. Apple iOS Security Showdown The Android vs. Apple iOS Security Showdown
The Android vs. Apple iOS Security Showdown Tom Eston
 
CNIT 128 5: Mobile malware
CNIT 128 5: Mobile malwareCNIT 128 5: Mobile malware
CNIT 128 5: Mobile malwareSam Bowne
 
An Overview of the Android Things Security (FFRI Monthly Research Jan 2017)
An Overview of the Android Things Security (FFRI Monthly Research Jan 2017) An Overview of the Android Things Security (FFRI Monthly Research Jan 2017)
An Overview of the Android Things Security (FFRI Monthly Research Jan 2017) FFRI, Inc.
 
Android application security unveiled
Android application security unveiledAndroid application security unveiled
Android application security unveiledJan Hodermarsky
 
Mobile security
Mobile securityMobile security
Mobile securityStefaan
 
Malware Goes to the Movies - Briefing
Malware Goes to the Movies - BriefingMalware Goes to the Movies - Briefing
Malware Goes to the Movies - BriefingAleksandr Yampolskiy
 
Develop mobile apps on Ethereum in 30 minutes
Develop mobile apps on Ethereum in 30 minutesDevelop mobile apps on Ethereum in 30 minutes
Develop mobile apps on Ethereum in 30 minutesAnshul Bhagi
 

Semelhante a Zarafa SummerCamp 2012 - Android Workshop (20)

How security broken? - Android internals and malware infection possibilities
How security broken? - Android internals and malware infection possibilitiesHow security broken? - Android internals and malware infection possibilities
How security broken? - Android internals and malware infection possibilities
 
Managing Open Source Licenses (Geeks Anonymes)
Managing Open Source Licenses (Geeks Anonymes)Managing Open Source Licenses (Geeks Anonymes)
Managing Open Source Licenses (Geeks Anonymes)
 
Thou Shalt not Print: Why Software Freedom Matters
Thou Shalt not Print: Why Software Freedom MattersThou Shalt not Print: Why Software Freedom Matters
Thou Shalt not Print: Why Software Freedom Matters
 
TeQuiz - a Tech Quiz
TeQuiz - a Tech QuizTeQuiz - a Tech Quiz
TeQuiz - a Tech Quiz
 
2019052286_FUCHSIA_OS_PPT (1).pptx
2019052286_FUCHSIA_OS_PPT (1).pptx2019052286_FUCHSIA_OS_PPT (1).pptx
2019052286_FUCHSIA_OS_PPT (1).pptx
 
Smart Bombs: Mobile Vulnerability and Exploitation
Smart Bombs: Mobile Vulnerability and ExploitationSmart Bombs: Mobile Vulnerability and Exploitation
Smart Bombs: Mobile Vulnerability and Exploitation
 
Not another *$#@ app: How to avoid IoT fatigue
Not another *$#@ app: How to avoid IoT fatigueNot another *$#@ app: How to avoid IoT fatigue
Not another *$#@ app: How to avoid IoT fatigue
 
The Android vs. Apple iOS Security Showdown
The Android vs. Apple iOS Security Showdown The Android vs. Apple iOS Security Showdown
The Android vs. Apple iOS Security Showdown
 
CNIT 128 5: Mobile malware
CNIT 128 5: Mobile malwareCNIT 128 5: Mobile malware
CNIT 128 5: Mobile malware
 
Fuchsia os
Fuchsia osFuchsia os
Fuchsia os
 
An Overview of the Android Things Security (FFRI Monthly Research Jan 2017)
An Overview of the Android Things Security (FFRI Monthly Research Jan 2017) An Overview of the Android Things Security (FFRI Monthly Research Jan 2017)
An Overview of the Android Things Security (FFRI Monthly Research Jan 2017)
 
ANDROID SECURITY
ANDROID SECURITYANDROID SECURITY
ANDROID SECURITY
 
Android application security unveiled
Android application security unveiledAndroid application security unveiled
Android application security unveiled
 
Unix Project
Unix Project Unix Project
Unix Project
 
Mobile security
Mobile securityMobile security
Mobile security
 
Malware Goes to the Movies - Briefing
Malware Goes to the Movies - BriefingMalware Goes to the Movies - Briefing
Malware Goes to the Movies - Briefing
 
Introduction to FOSS
Introduction to FOSSIntroduction to FOSS
Introduction to FOSS
 
Develop mobile apps on Ethereum in 30 minutes
Develop mobile apps on Ethereum in 30 minutesDevelop mobile apps on Ethereum in 30 minutes
Develop mobile apps on Ethereum in 30 minutes
 
CIA Hacking Organization in the Nutshell
CIA Hacking Organization in the NutshellCIA Hacking Organization in the Nutshell
CIA Hacking Organization in the Nutshell
 
Quiz part 2
Quiz part 2Quiz part 2
Quiz part 2
 

Mais de Zarafa

Zararfa SummerCamp 2012 - HA, multi-tenancy and SSO in Zentyal 2 and 3.pdf
Zararfa SummerCamp 2012 - HA, multi-tenancy and SSO in Zentyal 2 and 3.pdfZararfa SummerCamp 2012 - HA, multi-tenancy and SSO in Zentyal 2 and 3.pdf
Zararfa SummerCamp 2012 - HA, multi-tenancy and SSO in Zentyal 2 and 3.pdfZarafa
 
Zararfa SummerCamp 2012 - Debian packaging Giraffe and D-push
Zararfa SummerCamp 2012 - Debian packaging Giraffe and D-pushZararfa SummerCamp 2012 - Debian packaging Giraffe and D-push
Zararfa SummerCamp 2012 - Debian packaging Giraffe and D-pushZarafa
 
Zararfa SummerCamp 2012 - Fedora update & PAM-MAPI Zarafa Ready certified com...
Zararfa SummerCamp 2012 - Fedora update & PAM-MAPI Zarafa Ready certified com...Zararfa SummerCamp 2012 - Fedora update & PAM-MAPI Zarafa Ready certified com...
Zararfa SummerCamp 2012 - Fedora update & PAM-MAPI Zarafa Ready certified com...Zarafa
 
Zararfa SummerCamp 2012 - Community update and Zarafa Development Process
Zararfa SummerCamp 2012 - Community update and Zarafa Development ProcessZararfa SummerCamp 2012 - Community update and Zarafa Development Process
Zararfa SummerCamp 2012 - Community update and Zarafa Development ProcessZarafa
 
Zararfa summer camp 2012 interesting tips & tricks when migrating to zarafa
Zararfa summer camp 2012 interesting tips & tricks when migrating to zarafaZararfa summer camp 2012 interesting tips & tricks when migrating to zarafa
Zararfa summer camp 2012 interesting tips & tricks when migrating to zarafaZarafa
 
Zarafa SummerCamp 2012 - Keynote Steve Hardy - 3 Cool innovations
Zarafa SummerCamp 2012 - Keynote Steve Hardy - 3 Cool innovationsZarafa SummerCamp 2012 - Keynote Steve Hardy - 3 Cool innovations
Zarafa SummerCamp 2012 - Keynote Steve Hardy - 3 Cool innovationsZarafa
 
Zarafa SummerCamp 2012 - Open Generation Gap
Zarafa SummerCamp 2012 - Open Generation GapZarafa SummerCamp 2012 - Open Generation Gap
Zarafa SummerCamp 2012 - Open Generation GapZarafa
 
Zarafa SummerCamp 2012 - Zarafa Cluster using a reverse proxy
Zarafa SummerCamp 2012 - Zarafa Cluster using a reverse proxyZarafa SummerCamp 2012 - Zarafa Cluster using a reverse proxy
Zarafa SummerCamp 2012 - Zarafa Cluster using a reverse proxyZarafa
 
Zarafa SummerCamp 2012 - Zarafa 7.1 features
Zarafa SummerCamp 2012 - Zarafa 7.1 featuresZarafa SummerCamp 2012 - Zarafa 7.1 features
Zarafa SummerCamp 2012 - Zarafa 7.1 featuresZarafa
 
Zarafa SummerCamp 2012 - Z-push 2.0 changes for administrators
Zarafa SummerCamp 2012 - Z-push 2.0 changes for administratorsZarafa SummerCamp 2012 - Z-push 2.0 changes for administrators
Zarafa SummerCamp 2012 - Z-push 2.0 changes for administratorsZarafa
 
Zararfa SummerCamp 2012 - Performing fast backups in large scale environments...
Zararfa SummerCamp 2012 - Performing fast backups in large scale environments...Zararfa SummerCamp 2012 - Performing fast backups in large scale environments...
Zararfa SummerCamp 2012 - Performing fast backups in large scale environments...Zarafa
 
Zarafa SummerCamp 2012 - Exchange Web Services on Zarafa
Zarafa SummerCamp 2012 - Exchange Web Services on ZarafaZarafa SummerCamp 2012 - Exchange Web Services on Zarafa
Zarafa SummerCamp 2012 - Exchange Web Services on ZarafaZarafa
 
Zarafa SummerCamp 2012 - Communication - how engineers can outperform
Zarafa SummerCamp 2012 - Communication - how engineers can outperformZarafa SummerCamp 2012 - Communication - how engineers can outperform
Zarafa SummerCamp 2012 - Communication - how engineers can outperformZarafa
 
Zararfa SummerCamp 2012 - From RHEL to RHEV to Cloud
Zararfa SummerCamp 2012 - From RHEL to RHEV to CloudZararfa SummerCamp 2012 - From RHEL to RHEV to Cloud
Zararfa SummerCamp 2012 - From RHEL to RHEV to CloudZarafa
 
Zararfa SummerCamp 2012 - One solution of two vendors solves plenty needs
Zararfa SummerCamp 2012 - One solution of two vendors solves plenty needsZararfa SummerCamp 2012 - One solution of two vendors solves plenty needs
Zararfa SummerCamp 2012 - One solution of two vendors solves plenty needsZarafa
 
Zarafa SummerCamp 2012 - Zarafa in the Capgemini Open Cloud
Zarafa SummerCamp 2012 - Zarafa in the Capgemini Open CloudZarafa SummerCamp 2012 - Zarafa in the Capgemini Open Cloud
Zarafa SummerCamp 2012 - Zarafa in the Capgemini Open CloudZarafa
 
Zarafa SummerCamp 2012 - DMS ECM - simply for everyone
Zarafa SummerCamp 2012 - DMS ECM - simply for everyoneZarafa SummerCamp 2012 - DMS ECM - simply for everyone
Zarafa SummerCamp 2012 - DMS ECM - simply for everyoneZarafa
 
Zarafa SummerCamp 2012 - WebApp introduction and roadmap
Zarafa SummerCamp 2012 - WebApp introduction and roadmapZarafa SummerCamp 2012 - WebApp introduction and roadmap
Zarafa SummerCamp 2012 - WebApp introduction and roadmapZarafa
 
Zarafa SummerCamp 2012 - Project Approach when Migrating from Exchange to Zarafa
Zarafa SummerCamp 2012 - Project Approach when Migrating from Exchange to ZarafaZarafa SummerCamp 2012 - Project Approach when Migrating from Exchange to Zarafa
Zarafa SummerCamp 2012 - Project Approach when Migrating from Exchange to ZarafaZarafa
 
Zarafa SummerCamp 2012 - Migrating from Windows Servers to Linux with Zentyal...
Zarafa SummerCamp 2012 - Migrating from Windows Servers to Linux with Zentyal...Zarafa SummerCamp 2012 - Migrating from Windows Servers to Linux with Zentyal...
Zarafa SummerCamp 2012 - Migrating from Windows Servers to Linux with Zentyal...Zarafa
 

Mais de Zarafa (20)

Zararfa SummerCamp 2012 - HA, multi-tenancy and SSO in Zentyal 2 and 3.pdf
Zararfa SummerCamp 2012 - HA, multi-tenancy and SSO in Zentyal 2 and 3.pdfZararfa SummerCamp 2012 - HA, multi-tenancy and SSO in Zentyal 2 and 3.pdf
Zararfa SummerCamp 2012 - HA, multi-tenancy and SSO in Zentyal 2 and 3.pdf
 
Zararfa SummerCamp 2012 - Debian packaging Giraffe and D-push
Zararfa SummerCamp 2012 - Debian packaging Giraffe and D-pushZararfa SummerCamp 2012 - Debian packaging Giraffe and D-push
Zararfa SummerCamp 2012 - Debian packaging Giraffe and D-push
 
Zararfa SummerCamp 2012 - Fedora update & PAM-MAPI Zarafa Ready certified com...
Zararfa SummerCamp 2012 - Fedora update & PAM-MAPI Zarafa Ready certified com...Zararfa SummerCamp 2012 - Fedora update & PAM-MAPI Zarafa Ready certified com...
Zararfa SummerCamp 2012 - Fedora update & PAM-MAPI Zarafa Ready certified com...
 
Zararfa SummerCamp 2012 - Community update and Zarafa Development Process
Zararfa SummerCamp 2012 - Community update and Zarafa Development ProcessZararfa SummerCamp 2012 - Community update and Zarafa Development Process
Zararfa SummerCamp 2012 - Community update and Zarafa Development Process
 
Zararfa summer camp 2012 interesting tips & tricks when migrating to zarafa
Zararfa summer camp 2012 interesting tips & tricks when migrating to zarafaZararfa summer camp 2012 interesting tips & tricks when migrating to zarafa
Zararfa summer camp 2012 interesting tips & tricks when migrating to zarafa
 
Zarafa SummerCamp 2012 - Keynote Steve Hardy - 3 Cool innovations
Zarafa SummerCamp 2012 - Keynote Steve Hardy - 3 Cool innovationsZarafa SummerCamp 2012 - Keynote Steve Hardy - 3 Cool innovations
Zarafa SummerCamp 2012 - Keynote Steve Hardy - 3 Cool innovations
 
Zarafa SummerCamp 2012 - Open Generation Gap
Zarafa SummerCamp 2012 - Open Generation GapZarafa SummerCamp 2012 - Open Generation Gap
Zarafa SummerCamp 2012 - Open Generation Gap
 
Zarafa SummerCamp 2012 - Zarafa Cluster using a reverse proxy
Zarafa SummerCamp 2012 - Zarafa Cluster using a reverse proxyZarafa SummerCamp 2012 - Zarafa Cluster using a reverse proxy
Zarafa SummerCamp 2012 - Zarafa Cluster using a reverse proxy
 
Zarafa SummerCamp 2012 - Zarafa 7.1 features
Zarafa SummerCamp 2012 - Zarafa 7.1 featuresZarafa SummerCamp 2012 - Zarafa 7.1 features
Zarafa SummerCamp 2012 - Zarafa 7.1 features
 
Zarafa SummerCamp 2012 - Z-push 2.0 changes for administrators
Zarafa SummerCamp 2012 - Z-push 2.0 changes for administratorsZarafa SummerCamp 2012 - Z-push 2.0 changes for administrators
Zarafa SummerCamp 2012 - Z-push 2.0 changes for administrators
 
Zararfa SummerCamp 2012 - Performing fast backups in large scale environments...
Zararfa SummerCamp 2012 - Performing fast backups in large scale environments...Zararfa SummerCamp 2012 - Performing fast backups in large scale environments...
Zararfa SummerCamp 2012 - Performing fast backups in large scale environments...
 
Zarafa SummerCamp 2012 - Exchange Web Services on Zarafa
Zarafa SummerCamp 2012 - Exchange Web Services on ZarafaZarafa SummerCamp 2012 - Exchange Web Services on Zarafa
Zarafa SummerCamp 2012 - Exchange Web Services on Zarafa
 
Zarafa SummerCamp 2012 - Communication - how engineers can outperform
Zarafa SummerCamp 2012 - Communication - how engineers can outperformZarafa SummerCamp 2012 - Communication - how engineers can outperform
Zarafa SummerCamp 2012 - Communication - how engineers can outperform
 
Zararfa SummerCamp 2012 - From RHEL to RHEV to Cloud
Zararfa SummerCamp 2012 - From RHEL to RHEV to CloudZararfa SummerCamp 2012 - From RHEL to RHEV to Cloud
Zararfa SummerCamp 2012 - From RHEL to RHEV to Cloud
 
Zararfa SummerCamp 2012 - One solution of two vendors solves plenty needs
Zararfa SummerCamp 2012 - One solution of two vendors solves plenty needsZararfa SummerCamp 2012 - One solution of two vendors solves plenty needs
Zararfa SummerCamp 2012 - One solution of two vendors solves plenty needs
 
Zarafa SummerCamp 2012 - Zarafa in the Capgemini Open Cloud
Zarafa SummerCamp 2012 - Zarafa in the Capgemini Open CloudZarafa SummerCamp 2012 - Zarafa in the Capgemini Open Cloud
Zarafa SummerCamp 2012 - Zarafa in the Capgemini Open Cloud
 
Zarafa SummerCamp 2012 - DMS ECM - simply for everyone
Zarafa SummerCamp 2012 - DMS ECM - simply for everyoneZarafa SummerCamp 2012 - DMS ECM - simply for everyone
Zarafa SummerCamp 2012 - DMS ECM - simply for everyone
 
Zarafa SummerCamp 2012 - WebApp introduction and roadmap
Zarafa SummerCamp 2012 - WebApp introduction and roadmapZarafa SummerCamp 2012 - WebApp introduction and roadmap
Zarafa SummerCamp 2012 - WebApp introduction and roadmap
 
Zarafa SummerCamp 2012 - Project Approach when Migrating from Exchange to Zarafa
Zarafa SummerCamp 2012 - Project Approach when Migrating from Exchange to ZarafaZarafa SummerCamp 2012 - Project Approach when Migrating from Exchange to Zarafa
Zarafa SummerCamp 2012 - Project Approach when Migrating from Exchange to Zarafa
 
Zarafa SummerCamp 2012 - Migrating from Windows Servers to Linux with Zentyal...
Zarafa SummerCamp 2012 - Migrating from Windows Servers to Linux with Zentyal...Zarafa SummerCamp 2012 - Migrating from Windows Servers to Linux with Zentyal...
Zarafa SummerCamp 2012 - Migrating from Windows Servers to Linux with Zentyal...
 

Último

Abu Dhabi Housewife Call Girls +971509530047 Abu Dhabi Call Girls
Abu Dhabi Housewife Call Girls +971509530047 Abu Dhabi Call GirlsAbu Dhabi Housewife Call Girls +971509530047 Abu Dhabi Call Girls
Abu Dhabi Housewife Call Girls +971509530047 Abu Dhabi Call Girlshayawit234
 
Indian Escorts In Al Mankhool 0509430017 Escort Agency in Al Mankhool
Indian Escorts In Al Mankhool 0509430017 Escort Agency in Al MankhoolIndian Escorts In Al Mankhool 0509430017 Escort Agency in Al Mankhool
Indian Escorts In Al Mankhool 0509430017 Escort Agency in Al Mankhoolqueenbanni425
 
Rückenfigur ... back figure in paintings.ppsx
Rückenfigur ... back figure in paintings.ppsxRückenfigur ... back figure in paintings.ppsx
Rückenfigur ... back figure in paintings.ppsxguimera
 
My Morning Routine - Storyboard Sequence
My Morning Routine - Storyboard SequenceMy Morning Routine - Storyboard Sequence
My Morning Routine - Storyboard Sequenceartbysarahrodriguezg
 
Costume Breakdown for Olivia Cox 23.pdf
Costume Breakdown for Olivia Cox 23.pdfCostume Breakdown for Olivia Cox 23.pdf
Costume Breakdown for Olivia Cox 23.pdfLauraFagan6
 
Escort Service in Al Qusais +971509530047 UAE
Escort Service in Al Qusais +971509530047 UAEEscort Service in Al Qusais +971509530047 UAE
Escort Service in Al Qusais +971509530047 UAEvecevep119
 
Mapeh Music QUARTER FOUR Grade nine haha
Mapeh Music QUARTER FOUR Grade nine hahaMapeh Music QUARTER FOUR Grade nine haha
Mapeh Music QUARTER FOUR Grade nine hahaJoshuaAcido2
 
New_Cross_Over (Comedy storyboard sample)
New_Cross_Over (Comedy storyboard sample)New_Cross_Over (Comedy storyboard sample)
New_Cross_Over (Comedy storyboard sample)DavonBrooks
 
Yvette Heiser -How to go viral with your photography?
Yvette Heiser -How to go viral with your photography?Yvette Heiser -How to go viral with your photography?
Yvette Heiser -How to go viral with your photography?Yvette Heiser
 
San Jon Motel, Motel/Residence, San Jon, NM
San Jon Motel, Motel/Residence, San Jon, NMSan Jon Motel, Motel/Residence, San Jon, NM
San Jon Motel, Motel/Residence, San Jon, NMroute66connected
 
Roadrunner Motel, Motel/Residence. Tucumcari, NM
Roadrunner Motel, Motel/Residence. Tucumcari, NMRoadrunner Motel, Motel/Residence. Tucumcari, NM
Roadrunner Motel, Motel/Residence. Tucumcari, NMroute66connected
 
Jvc Call Girl +971528604116 Indian Call Girl in Jvc By Dubai Call Girl
Jvc Call Girl +971528604116 Indian Call Girl in Jvc By Dubai Call GirlJvc Call Girl +971528604116 Indian Call Girl in Jvc By Dubai Call Girl
Jvc Call Girl +971528604116 Indian Call Girl in Jvc By Dubai Call Girllijeho2176
 
Element of art, Transcreation and usions and overlapping and interrelated ele...
Element of art, Transcreation and usions and overlapping and interrelated ele...Element of art, Transcreation and usions and overlapping and interrelated ele...
Element of art, Transcreation and usions and overlapping and interrelated ele...jheramypagoyoiman801
 
Hiway Motel, Motel/Residence, Albuquerque NM
Hiway Motel, Motel/Residence, Albuquerque NMHiway Motel, Motel/Residence, Albuquerque NM
Hiway Motel, Motel/Residence, Albuquerque NMroute66connected
 
layered-cardboard-sculptures-miika-nyyssonen.pdf
layered-cardboard-sculptures-miika-nyyssonen.pdflayered-cardboard-sculptures-miika-nyyssonen.pdf
layered-cardboard-sculptures-miika-nyyssonen.pdfbaroquemodernist
 
UNIT 5-6 anh văn chuyên nganhhhhhhh.docx
UNIT 5-6 anh văn chuyên nganhhhhhhh.docxUNIT 5-6 anh văn chuyên nganhhhhhhh.docx
UNIT 5-6 anh văn chuyên nganhhhhhhh.docxssuser519b4b
 
Bai tap thuc hanh Anh 6 Mai Lan Huong.docx
Bai tap thuc hanh Anh 6 Mai Lan Huong.docxBai tap thuc hanh Anh 6 Mai Lan Huong.docx
Bai tap thuc hanh Anh 6 Mai Lan Huong.docxbichthuyt81
 
SLIDESHARE. ART OF THE ROMANTIC PERIOD/ROMANTICISM Art
SLIDESHARE. ART OF THE ROMANTIC PERIOD/ROMANTICISM ArtSLIDESHARE. ART OF THE ROMANTIC PERIOD/ROMANTICISM Art
SLIDESHARE. ART OF THE ROMANTIC PERIOD/ROMANTICISM ArtChum26
 
Escort Service in Al Jaddaf +971509530047 UAE
Escort Service in Al Jaddaf +971509530047 UAEEscort Service in Al Jaddaf +971509530047 UAE
Escort Service in Al Jaddaf +971509530047 UAEvecevep119
 

Último (20)

Abu Dhabi Housewife Call Girls +971509530047 Abu Dhabi Call Girls
Abu Dhabi Housewife Call Girls +971509530047 Abu Dhabi Call GirlsAbu Dhabi Housewife Call Girls +971509530047 Abu Dhabi Call Girls
Abu Dhabi Housewife Call Girls +971509530047 Abu Dhabi Call Girls
 
Indian Escorts In Al Mankhool 0509430017 Escort Agency in Al Mankhool
Indian Escorts In Al Mankhool 0509430017 Escort Agency in Al MankhoolIndian Escorts In Al Mankhool 0509430017 Escort Agency in Al Mankhool
Indian Escorts In Al Mankhool 0509430017 Escort Agency in Al Mankhool
 
Rückenfigur ... back figure in paintings.ppsx
Rückenfigur ... back figure in paintings.ppsxRückenfigur ... back figure in paintings.ppsx
Rückenfigur ... back figure in paintings.ppsx
 
My Morning Routine - Storyboard Sequence
My Morning Routine - Storyboard SequenceMy Morning Routine - Storyboard Sequence
My Morning Routine - Storyboard Sequence
 
Costume Breakdown for Olivia Cox 23.pdf
Costume Breakdown for Olivia Cox 23.pdfCostume Breakdown for Olivia Cox 23.pdf
Costume Breakdown for Olivia Cox 23.pdf
 
Escort Service in Al Qusais +971509530047 UAE
Escort Service in Al Qusais +971509530047 UAEEscort Service in Al Qusais +971509530047 UAE
Escort Service in Al Qusais +971509530047 UAE
 
Mapeh Music QUARTER FOUR Grade nine haha
Mapeh Music QUARTER FOUR Grade nine hahaMapeh Music QUARTER FOUR Grade nine haha
Mapeh Music QUARTER FOUR Grade nine haha
 
New_Cross_Over (Comedy storyboard sample)
New_Cross_Over (Comedy storyboard sample)New_Cross_Over (Comedy storyboard sample)
New_Cross_Over (Comedy storyboard sample)
 
Yvette Heiser -How to go viral with your photography?
Yvette Heiser -How to go viral with your photography?Yvette Heiser -How to go viral with your photography?
Yvette Heiser -How to go viral with your photography?
 
San Jon Motel, Motel/Residence, San Jon, NM
San Jon Motel, Motel/Residence, San Jon, NMSan Jon Motel, Motel/Residence, San Jon, NM
San Jon Motel, Motel/Residence, San Jon, NM
 
Roadrunner Motel, Motel/Residence. Tucumcari, NM
Roadrunner Motel, Motel/Residence. Tucumcari, NMRoadrunner Motel, Motel/Residence. Tucumcari, NM
Roadrunner Motel, Motel/Residence. Tucumcari, NM
 
Jvc Call Girl +971528604116 Indian Call Girl in Jvc By Dubai Call Girl
Jvc Call Girl +971528604116 Indian Call Girl in Jvc By Dubai Call GirlJvc Call Girl +971528604116 Indian Call Girl in Jvc By Dubai Call Girl
Jvc Call Girl +971528604116 Indian Call Girl in Jvc By Dubai Call Girl
 
School :)
School :)School :)
School :)
 
Element of art, Transcreation and usions and overlapping and interrelated ele...
Element of art, Transcreation and usions and overlapping and interrelated ele...Element of art, Transcreation and usions and overlapping and interrelated ele...
Element of art, Transcreation and usions and overlapping and interrelated ele...
 
Hiway Motel, Motel/Residence, Albuquerque NM
Hiway Motel, Motel/Residence, Albuquerque NMHiway Motel, Motel/Residence, Albuquerque NM
Hiway Motel, Motel/Residence, Albuquerque NM
 
layered-cardboard-sculptures-miika-nyyssonen.pdf
layered-cardboard-sculptures-miika-nyyssonen.pdflayered-cardboard-sculptures-miika-nyyssonen.pdf
layered-cardboard-sculptures-miika-nyyssonen.pdf
 
UNIT 5-6 anh văn chuyên nganhhhhhhh.docx
UNIT 5-6 anh văn chuyên nganhhhhhhh.docxUNIT 5-6 anh văn chuyên nganhhhhhhh.docx
UNIT 5-6 anh văn chuyên nganhhhhhhh.docx
 
Bai tap thuc hanh Anh 6 Mai Lan Huong.docx
Bai tap thuc hanh Anh 6 Mai Lan Huong.docxBai tap thuc hanh Anh 6 Mai Lan Huong.docx
Bai tap thuc hanh Anh 6 Mai Lan Huong.docx
 
SLIDESHARE. ART OF THE ROMANTIC PERIOD/ROMANTICISM Art
SLIDESHARE. ART OF THE ROMANTIC PERIOD/ROMANTICISM ArtSLIDESHARE. ART OF THE ROMANTIC PERIOD/ROMANTICISM Art
SLIDESHARE. ART OF THE ROMANTIC PERIOD/ROMANTICISM Art
 
Escort Service in Al Jaddaf +971509530047 UAE
Escort Service in Al Jaddaf +971509530047 UAEEscort Service in Al Jaddaf +971509530047 UAE
Escort Service in Al Jaddaf +971509530047 UAE
 

Zarafa SummerCamp 2012 - Android Workshop

  • 1. Freek Kauffmann Paul Lammertsma Workshop Build an app that reveals security holes on Android
  • 2. Before we start 1. Connect to the open wireless network 2. Android setting: allow non-market applications 3. Download AIDE from Google Play
  • 3.
  • 4.
  • 5.
  • 6.
  • 8. Android • What are the security principles of Android? – POSIX based (Linux) – User IDs and File Access – Permissions – Application signing (identifies developer) – Sandboxing (application isolation)
  • 9. Android • Implications of rooting your device? – You can modify the Operating System – You can replace all applications – Access all application data – Grant/revoke permissions – Send data to and from the phone • Others (malicious software?) can do the same!*
  • 10. Android • Facebook SDK exploit (April, David Poll) – Logcat – Let’s hack this!
  • 11. We’ll make an app that… • Steals Facebook login from bonafide apps – Draw Something Free – Hootsuite – Facebook Marketplace (Oodle) – Soundhound – LauncherPro – Sleepy Jack – Airport City, Diamonds Blaze and others by Game Insight
  • 14.
  • 15. Facebook Thief Tap to enable the background service
  • 16. Freek Kauffmann Paul Lammertsma freek.kauffmann@itq.nl paul@pixplicity.com

Notas do Editor

  1. ZSC speakers / speakersonly
  2. 2:We’ll be installing an app outside of Google Play (because we’re building it from source!); don’t forget to restore the setting after the workshop
  3. Sindsdien allerlei apps – van lollig tot onmogelijkRepudo – speelse app – KLM wereldweken, uniek nummer van Anouk, gratis Android telefoonSmart calls – Voorbeeld van het onmogelijkeSlechte Dekking – Spierballen van Android
  4. *) although most rooting methods install Superuser, an app that shows a permission prompt when a `su` command executes
  5. David Poll (Parse.com): “Logcat is not a safe place to put sensitive data, but it's easy to mistakenly assume that only developers will see this.”
  6. Audience: test any app that uses Facebook to log in (i.e. Facebook app)
  7. Copy the link, don’t visit it!Don’t forget it’s ‘https’Don’t forget the ‘.git’ at the endMind the capitalization