Ever wondered what's behind the scenes in Android apps? It's time to uncover the secrets with our hands-on workshop, "ARM-ing for Android". This workshop is designed to simplify the complex world of Android native library reverse engineering - a topic crucial to Android security but often overlooked due to the scarcity of accessible resources.
Starting with a fun and easy-to-understand introduction to the ARM assembly language, we will equip you with essential knowledge and skills needed to tackle this challenging area. This part is important because understanding the ARM assembly language is the first step towards mastering native library reverse engineering.
But we don't just stop at theory. You'll get a chance to apply your newfound skills in a thrilling Capture-The-Flag (CTF) event. We have prepared four Android apps for you to examine. Each of these apps contains hidden layers - the kind of 'secrets' you'd encounter in real-life scenarios.
The highlight of our workshop is our focus on teaching key aspects of reverse engineering native libraries. We believe that practical understanding is essential in this field. Therefore, our workshop structure is designed as follows:Understanding ARM Assembly, Dive into Native Libraries, Reverse Engineering Native Libraries, CTF Challenge.
By attending our workshop, you're not just learning a new skill, you're contributing to the safety and security of Android apps everywhere. So, join us, uncover the secrets of Android native libraries, and take a step towards a safer digital world.
Prerequisite:
Notice:
Agenda language: English
Ravi Rajput is well-known for his work in automotive security and discovering vulnerabilities in systems. He has spent over eight years in this area, mainly focusing on making vehicles safer. Currently, he's involved in four research projects on vehicle security. Before this, he led a group called Null Ahmedabad, dedicated to cyber security.
Ravi has a knack for public speaking and often shares his knowledge at various conferences. He has spoken at UnitedCon, Null, Bounty Bash, Bsides in cities like Delhi, Maharashtra, and Ahmedabad. He discusses various topics, such as reverse engineering, exploit development, web reconnaissance, as well as complex subjects like post-exploitation, persistence, and antivirus evasion.
One of his notable achievements was presenting at BlackHat Asia 2023, a well-regarded conference in the security world. At this event, he launched AutoHackOS, a unique system designed for testing car security. This added to his recognition in the industry.