One Week Left to Get an 11" iPad Pro with Apple Pencil w/ OnDemand Training

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Obfuscated No More: Practical Steps for Defeating Android Obfuscation

  • Friday, May 05, 2017 at 11:00 AM EDT (2017-05-05 15:00:00 UTC)
  • Joshua Wright

You can now attend the webcast using your mobile device!

  

Overview

For a security analyst, understanding how a mobile app functions is necessary to identify and exploit vulnerabilities. For Android, reverse engineering tools such as Jadx and JD-GUI make it easy to look inside an application to learn how an app works. To defend against these tools, developers turn to Android obfuscation: free and commercial add-on tools that jumble, encrypt, and encode apps to thwart reverse engineering.

In this webcast, SANS Mobile Device Security and Ethical Hacking author Joshua Wright will give you an inside look at how Android obfuscation tools work, and their shortcomings. You'll learn how to combine the functionality of several free tools to undo the work of Android obfuscators, and how to incorporate obfuscated Android app analysis into your next mobile app assessment.

Speaker Bio

Joshua Wright

Joshua Wright is a senior technical analyst with Counter Hack, a company devoted to the development of information security challenges for education, evaluation and competition. Through his experiences as a penetration tester, Josh has worked with hundreds of organizations on attacking and defending mobile devices and wireless systems, ethically disclosing significant product and protocol security weaknesses to well-known organizations. As an open source software advocate, Josh has conducted cutting-edge research resulting in several software tools that are commonly used to evaluate the security of widely deployed technology targeting WiFi, Bluetooth, and ZigBee wireless systems, smart grid deployments, and the Android and Apple iOS mobile device platforms. As the technical lead of the innovative CyberCity, Josh also oversees and manages the development of critical training and educational missions for cyberwarriors in the US military, government agencies, and critical infrastructure providers.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.