During the BSides Dublin 2021 event, RandoriSec delivered 2 workshops:
This repository contains the materials used during the workshops.
If you want to follow those workshops, you need to use a Virtual Machine (or a physical one!) containing at least the following tools:
- Android Studio
- apktool
- JADX
- Ghidra
- Objection
- Frida
For the attendees of BSides Dublin, you have to perform the following actions BEFORE the workshop:
For PC users, you can use the free version of VMWare Player (or VMWare Workstation if you have a valid license key):
For Mac users, you should use VMWare Fusion:
If an error message appears saying the OVA file didn't pass the OVF specifications, please click Retry. It should work :)
After the import of the OVA file, you have to edit the Virtual Machine hardware settings of the Mobexler machine in order to enable Virtualize Intel VT-x/EPT or AMD-V/RVI.
Boot the virtual machine and then you need to execute the following commands:
sudo apt update
sudo apt install qemu-kvm
sudo adduser Mobexler kvm
reboot
We also recommend to install the VMWare tools:
sudo apt install open-vm-tools-desktop
Do NOT forget to reboot the virtual machine before going to the next step.
DO NOT LAUNCH Android Studio with the GUI but instead with the terminal. The Android Studio program needs to be executed with Mobexler privileges. Here is the command to execute:
/usr/local/android-studio/bin/studio.sh
Then, you can create an Android emulator with the AVD Manager. For this workshop, you need to select the following options for your emulator:
- Hardware: Nexus 5X
- System image
- Release name: Nougat
- API Level: 25
- ABI: x86_64
- Target: Android 7.1.1 (Google APIs)
- Name: Nougat
If you need more details about the different steps, you can consult this blogpost: Setting-up Mobexler with VMWare and Android Studio.