Introduction to Drozer (framework for Android security assessments)

Drozer is a framework for Android security assessments developed by MWR labs. It is one of the best tools available for Android Security Assessments. According to their official documentation, “Drozer allows you to assume the role of an Android app and to interact with other apps, through Android’s Inter-Process Communication (IPC) mechanism, and the underlying operating system”.

When dealing with most of the automated security assessment tools in the Web world, we need to provide the target application details, go and have a cup of coffee, and come back to get the report. Unlike regularly automated scanners.

Drozer is interactive in nature. To perform a security assessment using Drozer, the user has to run the commands on a console on his workstation. It sends them to the agent sitting on the device to execute the relevant task.

The frameworks help to provide confidence that Android apps and devices being developed by, or deployed across, your organisation do not pose an unacceptable level of risk. By allowing you to interact with the Dalvik VM, other apps’ IPC endpoints and the underlying OS.

The framework provides tools to help you use and share public exploits for Android. For remote exploits, it can generate shellcode to help you to deploy the drozer Agent as a remote administrator tool, with maximum leverage on the device.

Related posts

How to Improve Your Cyber Resilience by Strengthening User Privileges

The Dark Side of Viral Content: How Negative Reviews Can Snowball

Testing Gaming Monetization: Walking the Line Between Profit and Player Experience