Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/rafaeltoledo/android-security
An app showcase of some techniques to improve Android app security
https://github.com/rafaeltoledo/android-security
android android-security app-security security
Last synced: 3 months ago
JSON representation
An app showcase of some techniques to improve Android app security
- Host: GitHub
- URL: https://github.com/rafaeltoledo/android-security
- Owner: rafaeltoledo
- License: apache-2.0
- Created: 2017-05-02T13:59:54.000Z (about 7 years ago)
- Default Branch: master
- Last Pushed: 2017-05-09T15:14:31.000Z (about 7 years ago)
- Last Synced: 2024-01-21T08:38:32.775Z (6 months ago)
- Topics: android, android-security, app-security, security
- Language: Java
- Homepage:
- Size: 132 KB
- Stars: 136
- Watchers: 8
- Forks: 20
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE.txt
Lists
- awesome-mobile-security - Android-security
- awesome-mobile-CTF - Android security sandbox
- awesome-mobile-security - Android-security
- awesome-mobile-security - Android-security
- awesome-android-security - Android-security
README
# Android Security Sandbox
A sandbox app with some tools and code to help you to better secure your Android apps.
[Related presentation - pt-BR](https://speakerdeck.com/rafaeltoledo/seguranca-no-android-1)
## This sample includes
1. Obfuscation using Proguard and `android-proguard-optimize` rules
2. Encrypted database storage using [SQLCipher](https://www.zetetic.net/sqlcipher/sqlcipher-for-android)
3. Encrypted key-value storage using [Hawk](https://github.com/orhanobut/hawk), powered by [Conceal](https://facebook.github.io/conceal/)
4. Device checking using [SafetyNet](https://developers.google.com/android/reference/com/google/android/gms/safetynet/SafetyNet)
5. Root detection using [RootBeer](https://github.com/scottyab/rootbeer)
6. HTTP pinning using [OkHttp](https://github.com/square/okhttp/wiki/HTTPS)
7. Other environment checks, like *Debug*, *Emulator*, *Installation Source*, and *Tampering*