Comments (7)
nkbai
commented on July 22, 2024
已合并
from appshark.
firmianay
commented on July 22, 2024
好像被误关了QAQ
from appshark.
nkbai
commented on July 22, 2024
APIMode现在只是单纯的找API,是不是可以根据API-Permission的映射关系,如果扫描结果为空,但权限清单中包含该permission,就判断存在权限滥用
{ "获取蓝牙设备信息": { "desc": { "category": "camille", "detail": "获取蓝牙设备信息", "name": "获取蓝牙设备信息", "complianceCategory": "ComplianceInfo" }, "permission": "android.permission.BLUETOOTH_CONNECT", // 新增 "sink": { "<android.bluetooth.BluetoothAdapter: * getName(*)>": {}, "<android.bluetooth.BluetoothDevice: * getAddress(*)>": {}, "<android.bluetooth.BluetoothDevice: * getName(*)>": {} }, "APIMode": true } }
对于输出结果的影响呢?文档描述,解释一下?
from appshark.
firmianay
commented on July 22, 2024
结果像这样,UsePermissions从数组改成了字典,每个权限标记为"used""unused""unknown"这三种。其中最重要的工作就是维护API-Permission的映射关系
"UsePermissions": {
"com.example.myvultest.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION": "unknown",
"android.permission.ACCESS_WIFI_STATE": "used",
"android.permission.READ_EXTERNAL_STORAGE": "unused"
},
from appshark.
nkbai
commented on July 22, 2024
这个映射关系不需要appshark来维护?规则里面明确指明api关联的权限? 感觉这样意义不大。
from appshark.
firmianay
commented on July 22, 2024
不需要,appshark只是引擎,因为还有些是自定义权限,不好公开,放在规则里就行。
相当于一次性加载上百条这种规则,扫出所有命中的函数,如果不改引擎,最终的results.json可能会很大很大,但其实我们想要的只是标记出多余申请的权限,这些命中的函数打印出来没用。
如果permission这个字段为空,一切行为还跟以前一样。
from appshark.
nkbai
commented on July 22, 2024
如果是这样,直接对appshark的结果进行二次处理可能更合适
from appshark.
Related Issues (20)
- 来自一个强迫症 HOT 1
- 扫描时如何筛选函数的参数 HOT 2
- 多规则扫描显示json解析出错 HOT 2
- AndroidManifest.xml 权限保护级别解析错误 HOT 1
- [Appshark-UI] - init.sql file
- 设置类型漏洞的检测问题 HOT 11
- 复杂一点的应用会报OOM HOT 1
- switch-case语句的result.json只有第一个case的label部分 HOT 1
- 添加规则对应的安卓版本 HOT 1
- SignInfo没有具体实现 HOT 2
- 函数签名的返回类型解析错误 HOT 2
- 如何区分source的原始对象和传播中被污染的对象 HOT 12
- 污点链没有传播到List中对象的属性 HOT 1
- 如何在sanitizer过滤导出组件,未导出组件不检测 HOT 5
- Appshark扫描优化 HOT 1
- SliceMode不能正确找到入口 HOT 4
- 污点传播不支持gson.fromJson HOT 3
- Lambda表达式断链问题 HOT 2
- 不支持ARouter路由框架导致断链 HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from appshark.