https://github.com/rafaeltoledo/android-security

An app showcase of some techniques to improve Android app security
https://github.com/rafaeltoledo/android-security

android android-security app-security security

Last synced: 3 months ago
JSON representation

An app showcase of some techniques to improve Android app security

• Host: GitHub
• URL: https://github.com/rafaeltoledo/android-security
• Owner: rafaeltoledo
• License: apache-2.0
• Created: 2017-05-02T13:59:54.000Z (about 7 years ago)
• Default Branch: master
• Last Pushed: 2017-05-09T15:14:31.000Z (about 7 years ago)
• Last Synced: 2024-01-21T08:38:32.775Z (6 months ago)
• Topics: android, android-security, app-security, security
• Language: Java
• Homepage:
• Size: 132 KB
• Stars: 136
• Watchers: 8
• Forks: 20
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE.txt

Lists

• awesome-mobile-security - Android-security
• awesome-mobile-CTF - Android security sandbox
• awesome-mobile-security - Android-security
• awesome-mobile-security - Android-security
• awesome-android-security - Android-security

README

        
# Android Security Sandbox

A sandbox app with some tools and code to help you to better secure your Android apps.

[Related presentation - pt-BR](https://speakerdeck.com/rafaeltoledo/seguranca-no-android-1)

## This sample includes

1. Obfuscation using Proguard and `android-proguard-optimize` rules

2. Encrypted database storage using [SQLCipher](https://www.zetetic.net/sqlcipher/sqlcipher-for-android)

3. Encrypted key-value storage using [Hawk](https://github.com/orhanobut/hawk), powered by [Conceal](https://facebook.github.io/conceal/)

4. Device checking using [SafetyNet](https://developers.google.com/android/reference/com/google/android/gms/safetynet/SafetyNet)

5. Root detection using [RootBeer](https://github.com/scottyab/rootbeer)

6. HTTP pinning using [OkHttp](https://github.com/square/okhttp/wiki/HTTPS)

7. Other environment checks, like *Debug*, *Emulator*, *Installation Source*, and *Tampering*