Drozer
If the past is any help with our predictions, developing in Android will become more complex with more APIs and more frameworks gradually introduced, similar to the way the complexity of Java and .Net has grown in the past decade.
As part of your process, it makes sense to use a tool that has the latest exploits baked in to help with penetration testing of your apps. One such tool is Drozer from MWR, which is available at https://www.mwrinfosecurity.com/products/drozer/.
To run a test Drozer, take the following steps:
1. Download and install Drozer.
2. Install the Drozer agent on your emulator or device that comes with the download:
adb install agent.apk.
3. Use port forwarding to connect to the agent, as in the following command:
Get Bulletproof Android™: Practical Advice for Building Secure Apps now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
