In this ruptured episode of the Exploring Information Security podcast, Bill Sempf joins me to discuss how to break android apps.

Bill (@sempf) is an application security architect who loves the grind of security. He recent spoke at DerbyCon on "Breaking android app for fun and profit." Watching the talk prompted me to invite Bill on the show to dive in a little more. What I like about the talk is that it's almost entirely a demo that walks through the steps of setting up the test environment. You can find more content from Bill at his website and the OWASP .NET project.

In this episode we discuss:

• Whybreak an android app
• The skills needed to break android apps
• We start to get into some of the tools needed to break an android app
• What operating system to perform the tests on

More resources:

• ADB - The Android Debugger
• APKTOOL - Reverse engineering tool
• GenyMotion - Virtualization tool
• Virtuous Ten - GUI for app reversing and modification
• Qark - Android application scanner
• OWASP Top Ten Mobile Security Risks
• OWAPS Android Testing Cheat Sheet

[RSS Feed] [iTunes]