Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Don't show risk data from .jar file contents #34

Open
michaelballantyne opened this issue Apr 22, 2014 · 2 comments
Open

Don't show risk data from .jar file contents #34

michaelballantyne opened this issue Apr 22, 2014 · 2 comments
Assignees
@camsoupa

Comments

@michaelballantyne
Copy link

See NetPhone for an example. It includes android-support-v4.jar and all the top ranked methods are from the lib, so the real stuff gets drowned out.
@michaelballantyne
Copy link
Author

But! We do want to flag calls into the jar files. Any such call might be considered dangerous.

@maggieddie
Copy link

  1. Please watch out the new apps may use the android-suport-v7.jar till date.
  2. AnaDroid only computes risk ranks in application code and third-party libraries, where 100% of the malware are located in all the challenges.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@camsoupa camsoupa

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@michaelballantyne @camsoupa @maggieddie