[MobSF]Documentation

 全稱：Mobile Security Framework 

要求：

靜態分析

• JDK需>1.7
• Mac OSX 用戶必須安裝Command-line tools for MAC OS X - 安裝連接：http://osxdaily.com/2014/02/12/install-command-line-tools-mac-os-x/
• .ipa靜態分析必須在mac osx中執行
• Windows App Static analysis requires a Windows Host or Windows VM for Mac and Linux. For Windows App Static Analysis, Read Windows App Static Analysis：https://github.com/MobSF/Mobile-Security-Framework-MobSF/blob/master/install/windows/readme.md

動態分析

• MobSF.ova文件需用VirtualBox運行
• MobSF arm模擬器需用Android Studio and a configured virtual device 運行. Intel HAXM is recommended. -Hardware Requirements: Min 4GB RAM, 5GB HDD/SSD and Virtualisation Support for running MobSF VM

下載：

• MobSF Android x86 4.4.2 VM (v0.3) ova file: https://goo.gl/QxgHZa
• MobSF Android arm Emulator 4.1.2 (v1.0) file https://goo.gl/LRrGs3
• No Access to Google Drive? Unofficial MobSF VM 0.2 ova file:https://pan.baidu.com/s/1jIzBsgA

安裝:

• Windows: Clone MobSF Repository to C:\
• Mac: Clone MobSF Repository to /Users/[username]/
• Linux: Clone MobSF Repository to /home/[username]/

配置靜態分析

• Windows： C:\Python27\python.exe -m pip install -r requirements.txt NOTE: If you face any issues, download and install the latest python 2.7.x
• Mac ： pip install -r requirements.txt --user
• Linux： sudo apt install build-essential libssl-dev libffi-dev python-dev pip install -r requirements.txt --user
• 須要安裝 wkhtmltopdf 才能生成pdf報告:https://github.com/JazzCore/python-pdfkit/wiki/Installing-wkhtmltopdf
• 在windows系統，需將wkhtmltopdf設爲環境變量

運行MobSF

• python manage.py runserver 指定端口號：python manage.pyrunserver PORT_NO 指定ip和端口號：python manage.py runserver IP:PORT_NO

配置動態分析：

• 四種途徑：
• Dynamic Analysis with MobSF Android 4.4.2 x86 VirtualBox VM - default (Fast, not all Apps work)：https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/1.-Documentation/#configuring-dynamic-analyzer-with-mobsf-android-442-x86-virtualbox-vm
• Dynamic Analysis with MobSF Android 4.1.2 arm Emulator - (Slow, Most Apps work)：https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/1.-Documentation/#configuring-dynamic-analyzer-with-with-mobsf-android-412-arm-emulator
• Dynamic Analysis using a Rooted Android 4.03 - 4.4 Device (Very Fast, All Apps work)：https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/1.-Documentation/#configuring-dynamic-analyzer-with-rooted-android-403---44-device
• Dynamic Analysis using a Rooted Android 4.03 - 4.4 VM (not tested)：https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/1.-Documentation#configuring-dynamic-analyzer-with-rooted-android-403---44-vm

升級MobSF:

• 升級時，須要轉移數據庫，不然報錯： [ERROR] Saving to DB (E:\Mobile-Security-Framework-MobSF\StaticAnalyzer\views\android\db_interaction.py, LINE 236 "static_db.save()"): table StaticAnalyzer_staticanalyzerandroid has no column named
• 轉移數據庫的命令： pythonmanage.py makemigrations pythonmanage.py migrate
• If the above changes didn't work, you might need to delete the file db.sqlite3, or run clean.sh in Mac/Linux. After that run the above commands. NOTE: This will remove the previously saved MobSF scan results.

被禁用的組件:

APKiD:

• 啓用前需安裝the rednaga fork of yara-python. git clonehttps://github.com/rednaga/yara-python cd yara-python pythonsetup.py install
• 啓用方法：在settings.py設置APKID_ENABLED 爲true

Mass Static Analysis

• https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/4.-Mass-Static-Analysis

Using Postgres DB instead of SQLite:

• https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/8.-Use-Postgres-Database-Instead-of-Sqlite3

家庭地址本支持：

• https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/5.-Home-Directory-Support

MobSF Static Analysis的docker鏡像

• https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/7.-Docker-Container-for-MobSF-Static-Analysis

REST API

• https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/3.-REST-API-Documentation

運行例子：

• 靜態分析：http://127.0.0.1:8000/runtest/
• api:http://127.0.0.1:8000/runapitest/

 

【來自https://github.com/MobSF/Mobile-Security-Framework-MobSF/wiki/1.-Documentation】