Hi guys this is yash aka yinsain again with a duly awaited post.
THIS IS FOR EDUCATIONAL PURPOSES, I STAND NO INVOLVEMENT IN WHAT YOU DO WITH THE INFORMATION PROVIDED.
Nowdays most of the people around us are in favour of using an android device in the name of a smartphone well after all its a smart choice too.
First thing that people think of while using a smart phone is staying online and updated.
But how safe is it, people are scribbling down their credentials on this tiny device to stay in contact but till date nothing has changed, every app or even a system requires a lookup file to authenticate whether the true user is thr or not.
passwords still are the strongest and the weakest security link in whole infosec thing.
Whenever even a kid even hears about hacking first thing that comes to his/her heart is password of an email-id, well here i will show you how to get in one without using a password.
So we will focus our this post on the same and then we will blend into other security aspects of what can be risky and what cant.
Two possible scenarios are there
--> either you have a brand new phone or a phone that you use as a casual guy nothing hardcore or test-head and by mistake you install a malicious apk that roots your phone for gainig priviledges, this is how most of these things are working.
the infamous GINGERBREAK exploit that created a chaos because of it being used in other malicious apk.
--> or you might be having a rooted phone like me, that you rooted down for your experiments,,
but how aware are you, of all possible dangerous factors.
So lets start with a rooted phone because in both of the cases above end point is this only.
I will be using my real phone only, no emulator to show this, so in this post,
my details will be visible.
Lets plug this phone in debugging mode and spawn the shell.
layout is pretty standard.
now lets move towards the attractive folder data and again in data inside the previous one.
now issue ls command it will show you a long list of installed apk's data folders.
now we can easily navigate to our folder of our desired app.
Our grapes reside inside the com.google.android.gm folder so go into that and then into databases again issue ls command.
As you can see my email id is thr in a folder name.
but the useful db file is downloads.db for android 2.1 and for my specific cyanogemod7rc2 its mailstore.ydeep18@gmail.com.db, we will copy that out to sdcard for further inspection.
cp mailstore.ydeep18@gmail.com.db /sdcard
as this phone is rooted so acces denied problem will be there just like it wont cause a problem for any attacker who has gained root shell on your device.
now we have our db file, now how to open it, well i did this while is was in kota in a hostel so i had no pc around me for an year, so i downloaded an app on my phone only to perform this.
APP :: aSQLiteManager
Lets start first with the phone
so open up your aSQLiteManager
and with all your guts click on data to kno thr truth....
and there it is all your synchronised email, now say who needs a password.
and continously scrolling sideways
'
As you can see, how lethal this can be.
PREVENTIONS
:: please check permissions needed by your application before installing
:: never leave your unattented. This works 90% of the time.
I will soon post other stuff for android forensics
THanks for reading
B-)
THIS IS FOR EDUCATIONAL PURPOSES, I STAND NO INVOLVEMENT IN WHAT YOU DO WITH THE INFORMATION PROVIDED.
Nowdays most of the people around us are in favour of using an android device in the name of a smartphone well after all its a smart choice too.
First thing that people think of while using a smart phone is staying online and updated.
But how safe is it, people are scribbling down their credentials on this tiny device to stay in contact but till date nothing has changed, every app or even a system requires a lookup file to authenticate whether the true user is thr or not.
passwords still are the strongest and the weakest security link in whole infosec thing.
Whenever even a kid even hears about hacking first thing that comes to his/her heart is password of an email-id, well here i will show you how to get in one without using a password.
So we will focus our this post on the same and then we will blend into other security aspects of what can be risky and what cant.
Two possible scenarios are there
--> either you have a brand new phone or a phone that you use as a casual guy nothing hardcore or test-head and by mistake you install a malicious apk that roots your phone for gainig priviledges, this is how most of these things are working.
the infamous GINGERBREAK exploit that created a chaos because of it being used in other malicious apk.
--> or you might be having a rooted phone like me, that you rooted down for your experiments,,
but how aware are you, of all possible dangerous factors.
So lets start with a rooted phone because in both of the cases above end point is this only.
I will be using my real phone only, no emulator to show this, so in this post,
my details will be visible.
Lets plug this phone in debugging mode and spawn the shell.
layout is pretty standard.
now lets move towards the attractive folder data and again in data inside the previous one.
now issue ls command it will show you a long list of installed apk's data folders.
now we can easily navigate to our folder of our desired app.
but the useful db file is downloads.db for android 2.1 and for my specific cyanogemod7rc2 its mailstore.ydeep18@gmail.com.db, we will copy that out to sdcard for further inspection.
cp mailstore.ydeep18@gmail.com.db /sdcard
as this phone is rooted so acces denied problem will be there just like it wont cause a problem for any attacker who has gained root shell on your device.
now we have our db file, now how to open it, well i did this while is was in kota in a hostel so i had no pc around me for an year, so i downloaded an app on my phone only to perform this.
APP :: aSQLiteManager
Lets start first with the phone
so open up your aSQLiteManager
open db file, the mailstore one.
select whichever you wanna view, but i kno the juicy one is messages. so lets open that
and there it is all your synchronised email, now say who needs a password.
and continously scrolling sideways
As you can see, how lethal this can be.
PREVENTIONS
:: please check permissions needed by your application before installing
:: never leave your unattented. This works 90% of the time.
I will soon post other stuff for android forensics
THanks for reading
B-)
No comments:
Post a Comment