[Soot-list] Instrumenting Android Apk

Steven Arzt Steven.Arzt at cased.de
Tue Apr 22 03:14:37 EDT 2014 

Hi Sarah,

 

With the command-line you gave, you only ran Soot without any custom
transformers. This means that Soot read in your APK file, and wrote it back
out without doing anything with it. If you want to change the semantics of
your Android application, you need to register a custom transformer that
tells Soot what to change. This is explained in our tutorial. In addition to
the paper you are referring to, we also have some additional material on our
blog: http://sseblog.ec-spride.de/tutorials/. In the tutorial, the
“MyBodyTransformer.java” file implements exactly such a transformer.
“Main.java” contains the main() method and “Settings.java” performs some
Soot initialization. You may also want to have a look at our tutorial slides
which also give a good introduction into the topic.

 

Best regards,

  Steven

 

 

M.Sc. M.Sc. Steven Arzt

Secure Software Engineering Group (SSE)

European Center for Security and Privacy by Design (EC SPRIDE) 

Mornewegstraße 32

D-64293 Darmstadt

Phone: +49 61 51 16-75426

Fax: +49 61 51 16-72118

eMail:  <mailto:steven.arzt at ec-spride.de> steven.arzt at ec-spride.de

Web: http://sse.ec-spride.de <http://sse.ec-spride.de/> 

 

 

 

 

Von: soot-list-bounces at CS.McGill.CA [mailto:soot-list-bounces at CS.McGill.CA]
Im Auftrag von H S
Gesendet: Montag, 21. April 2014 18:22
An: soot-list at sable.mcgill.ca
Betreff: [Soot-list] Instrumenting Android Apk

 

 

Hi,

I am trying to regenerate this project LINK
<https://github.com/secure-software-engineering/android-instrumentation-tuto
rial/tree/master/instrumentation/manual-instrumentation/RV2013_Soot_instrume
ntation/RV2013> . 

The only thing I have tried was issuing a command like: 

java -jar soot.jar soot.Main -allow-phantom-refs 

 -android-jars /opt/android-sdk-linux/platforms 

 -src-prec apk

  -process-dir ~/RV2013Examples/exampleApp/RV2013/bin/RV2013.apk 

 -output-format dex

Which gave an new apk in sootOutput directory. 

Now my question is that (1)what are all the steps to this manual Android
instrumentation. I read the article of "instrumenting easy as abc", but it
was not clear on this. 

(2) What are the usages of files MyBodyTransformer.java, Main.java, and
Settings.java, how one should include them in the project? 

 

Thanks,

Sarah 

 

 

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.CS.McGill.CA/pipermail/soot-list/attachments/20140422/210177b2/attachment.html

More information about the Soot-list mailing list