QARK: Android App Exploit and Static Code Analysis Tool
Offered By: OWASP Foundation via YouTube
Course Description
Overview
Explore QARK, a powerful Android app security analysis and exploitation tool, in this AppSecUSA 2015 conference talk. Learn how QARK combines static code analysis, source-sink mapping, and automatic exploitation to help developers protect their apps and assist pentesters in identifying vulnerabilities. Discover how this metasploit-style framework for Android apps can review applications from source or APK, highlight version-specific issues, detail attack surfaces, and create on-demand proof-of-concept attack applications. Gain insights from security experts Tushar Dalvi and Tony Trummer as they demonstrate QARK's capabilities in identifying misconfigurations, citing relevant research, and simplifying the process of securing Android applications.
Syllabus
Tushar Dalvi & Tony Trummer - QARK: Android App Exploit and SCA Tool - AppSecUSA 2015
Taught by
OWASP Foundation
Related Courses
Secure Android App DevelopmentUniversity of Southampton via FutureLearn DevSecOps: Building a Secure Continuous Delivery Pipeline
LinkedIn Learning Microsoft DevOps Solutions: Developing Security and Compliance
Pluralsight Using Security Analysis Tools to Protect ASP.NET and ASP.NET Core Applications
Pluralsight DevOps with GitHub and Azure: Implementing Software Supply Chain Security with GitHub
Pluralsight