Indian Journal of Science and Technology

Open Access Open Access  Restricted Access Subscription Access

Detecting Blacklisted IP Access from Android Phone


Affiliations
1 Institute of Forensic Science, Gujarat Forensic Sciences University,Gandhinagar –382007,Gujarat, India
 

Objectives: To develop a method to detect access of blacklisted IP from Android. Methods/Statistical Analysis: Android Operating System source code under AOSP was modified and customized to achieve objective of the work. Work was tested on various simulators with variety of black listed and whitel listed IP to confirm outcome. Findings: A well-defined method was derived and verified based on the results of tests carried out during the work. Outcome of the work is an implementation on Android operating system, which customizes the way device connects to an IP through internet. The customization done on operating system helps in identifying interaction of any black listed IP to or from an android device. A supporting python script is also written to automate steps related to interception and interpretation. As being open source, the solution is also extendable to accommodate more features in the same domain. Application / Improvements: The method developed during this research can be used in behavioral analysis of android malware.

Keywords

Android, Android Malware, Black Listed IP, Malicious Website, Malware, Malware Analysis.
User

Abstract Views: 155

PDF Views: 0




  • Detecting Blacklisted IP Access from Android Phone

Abstract Views: 155  |  PDF Views: 0

Authors

Parag H Rughani
Institute of Forensic Science, Gujarat Forensic Sciences University,Gandhinagar –382007,Gujarat, India

Abstract


Objectives: To develop a method to detect access of blacklisted IP from Android. Methods/Statistical Analysis: Android Operating System source code under AOSP was modified and customized to achieve objective of the work. Work was tested on various simulators with variety of black listed and whitel listed IP to confirm outcome. Findings: A well-defined method was derived and verified based on the results of tests carried out during the work. Outcome of the work is an implementation on Android operating system, which customizes the way device connects to an IP through internet. The customization done on operating system helps in identifying interaction of any black listed IP to or from an android device. A supporting python script is also written to automate steps related to interception and interpretation. As being open source, the solution is also extendable to accommodate more features in the same domain. Application / Improvements: The method developed during this research can be used in behavioral analysis of android malware.

Keywords


Android, Android Malware, Black Listed IP, Malicious Website, Malware, Malware Analysis.



DOI: https://doi.org/10.17485/ijst%2F2016%2Fv9i48%2F138345