2 Days left to get an iPad, Galaxy Tab A, or Take $300 Off with Online Training!


To attend this webcast, login to your SANS Account or create your Account.

Obfuscated No More: Practical Steps for Defeating Android Obfuscation

  • Friday, May 5th, 2017 at 11:00 AM EDT (15:00:00 UTC)
  • Joshua Wright
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!


For a security analyst, understanding how a mobile app functions is necessary to identify and exploit vulnerabilities. For Android, reverse engineering tools such as Jadx and JD-GUI make it easy to look inside an application to learn how an app works. To defend against these tools, developers turn to Android obfuscation: free and commercial add-on tools that jumble, encrypt, and encode apps to thwart reverse engineering.

In this webcast, SANS Mobile Device Security and Ethical Hacking author Joshua Wright will give you an inside look at how Android obfuscation tools work, and their shortcomings. You'll learn how to combine the functionality of several free tools to undo the work of Android obfuscators, and how to incorporate obfuscated Android app analysis into your next mobile app assessment.

Speaker Bio

Joshua Wright

Joshua Wright is a senior technical analyst with Counter Hack, a company devoted to the development of information security challenges for education, evaluation and competition. Through his experiences as a penetration tester, Josh has worked with hundreds of organizations on attacking and defending mobile devices and wireless systems, ethically disclosing significant product and protocol security weaknesses to well-known organizations. As an open source software advocate, Josh has conducted cutting-edge research resulting in several software tools that are commonly used to evaluate the security of widely deployed technology targeting WiFi, Bluetooth, and ZigBee wireless systems, smart grid deployments, and the Android and Apple iOS mobile device platforms. As the technical lead of the innovative CyberCity, Josh also oversees and manages the development of critical training and educational missions for cyberwarriors in the US military, government agencies, and critical infrastructure providers.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.