363 results about "Android app" patented technology

The invention discloses an Android malicious application detection method and system based on multi-feature fusion. The method comprises the following steps that: carrying out decompilation on an Android application sample to obtain a decompilation file; extracting static features from the decompilation file; operating the Android application sample in an Android simulator to extract dynamic features; carrying out feature mapping on the static features and the dynamic features by the text Hash mapping part of a locality sensitive Hash algorithm, mapping to a low-dimensional feature space to obtain a fused feature vector; and on the basis of the fused feature vector, utilizing a machine learning classification algorithm to train to obtain a classifier, and utilizing the classifier to carry out classification detection. By use of the method, the high-dimensional feature analysis problem of a malicious code rare sample family can be solved, and detection accuracy is improved.

The invention discloses a reinforcement protection method, sever and system for android app. The method comprises the following steps: obtaining an initial android package APK of the android app; decompiling the initial APK, extracting protected method codes from the initial APK, and filling an extraction position with nop; encrypting the extracted protected method codes according to an appointed encryption and decryption strategy to generate a reinforcement configuration file; adding the appointed encryption and decryption strategy, the reinforcement configuration file and a reinforcement protection program into the decompiled APK, and compiling to generate a reinforcement APK of the android app. According to the technical scheme provided by the invention, protected methods can be dynamically encrypted and decrypted, and complete dex mapping does not exist in a memory at any moment, so that a complete dex file is prevented from being obtained in a memory dump manner and the probability of repacking and redistribution of the android app due to reverse analysis is greatly reduced.

The invention discloses a thermal repair method, device, server and system for an Android application. The method includes the steps that a patch pack of the designated Android application is acquired, wherein the patch pack includes a repaired designated class file in the designated Android application; when the designated Android application is started, the patch pack is loaded; when the designated Android application needs to call a designated class file, the repaired designated class file is called from the patch pack to perform corresponding functions. Thus, compared with the prior art, according to the scheme, a series of steps of repacking a designated Android application, conducting testing, exchanging packs to various application markets and channels, reminding a user to conduct upgrading, reminding the user to conduct downloading, conducting coverage installation of the Android application with a new installation pack and the like by a publisher are not needed in the repair process, thermal repair of the Android application can be achieved through one patch pack without changing the original Android application, and thus the repair cost of the Android application is greatly reduced.

The embodiment of the invention discloses a method of running an Android application across systems, a terminal and a storage medium. The method includes: receiving an instruction of starting an engine running the Android application across the systems, and executing starting operations of the engine in a Windows system according to the instruction; converting Android system instructions, which are included by an Android system, into equivalent Windows system instructions in a process after the engine is started; running the Android system through a manner of executing the equivalent Windows system instructions; parsing the to-be-executed Android application to obtain instructions included by an executable file of the Android application; running the Android application through a manner ofexecuting the instructions obtained by parsing; and when an instruction of initiating a system call request is obtained by parsing, executing call operations for a system call function realized in the engine and a realized Android system kernel function, wherein the calling operations are used for completing a function of which realization is requested by the Android application through the system call request.

The invention discloses a method for statically detecting a malicious code in an android APP (Application). The method comprises the following steps of preprocessing android software, and disassembling the android APP to obtain a java source code by virtue of decompiling software; performing a series of lexical and syntactic analysis on the java source code to obtain user interface text information; judging whether the APP has a malicious behavior or not according to the matching degree of the user interface text information and a calling interface in the APP. According to the method, various technical means such as lexical analysis and syntactic analysis can be adopted for scanning an APP file to generate a disassembling code of the APP under the condition of not running a code, and then the disassembling code is read to master a function of the APP, so that the malicious code in the android APP is detected.

The invention discloses a broadcast sending method for sending a broadcast by an Android application or a system process. The method comprises: S1, whether a broadcast is sent is monitored; S2, if so, broadcast information is recorded; S3, according to the broadcast information, whether the current broadcast meets a preset sending condition is determined; and S4, if so, the broadcast is forwarded. With the method and apparatus, a sent broadcast can be determined and a broadcast meeting a preset condition can be forwarded, so that a needless broadcast can be shielded.

The invention belongs to the technical field of program information security monitoring, and particularly relates to an Android application used application program vulnerability detection and analysis method based on code library security specifications. The method comprises the following steps: building a security specification model, i.e., describing the security specifications of the code library by using formalized rule languages; designing a static program analyzer for performing automatic verification based on the security specification model; applying the static program analyzer to two phases, i.e., compilation of application programs and examination of the application programs in an application market, and detecting security vulnerabilities. According to the detection and analysis method provided by the invention, the security risk in the program can be prevented.

The invention discloses a system and method for remotely controlling an Android APP. The system comprises a webpage terminal, a master control server and a mobile device provided with an auxiliary function APP, a TCP/IP long connection is established between the master control server and the auxiliary function APP, wherein the webpage terminal issues a binding authorization instruction and a control instruction to the auxiliary function APP of the mobile device through the master control server so as to control other controlled APPs of the mobile device; the master control server sends the corresponding binding authorization instruction and the control instruction to the auxiliary function APP of the corresponding mobile device and meanwhile feeds back an authorization condition of the binding authorization instruction and an execution result of the control instruction to the webpage terminal; and the auxiliary function APP of the mobile device is used for obtaining the binding authorization instruction and the control instruction sent by the master control server and controlling the other controlled APPs of the mobile device according to the control instruction. By adoption of the system provided by the invention, the webpage terminal controls any APP or system function on the mobile terminal, so that the system is more user friendly and is more applicable to the demands of operators.

The invention discloses an identification method and device of an Android application. The identification method of the Android application comprises the following steps: extracting at least one type of information associated with behaviors in an apk (Android Package) file of a target application, wherein the apk is the Android Package; extracting an operation code of the information, and processing the operation code to obtain a characteristic value; according to a preset classified information base, comparing the characteristic value with a corresponding characteristic value of an application of a known category in the classified information base; and if the characteristic value is the same with the corresponding characteristic value of the known category, determining that the target application and the application of the known category belong to the same category. The identification device of the Android application comprises an information extraction module, an operation code processing module and an identification module. Similar applications can be effectively identified to bring convenience for users.

The invention discloses a malicious code detection method for Android applications. The server side analyzes the pre-extracted application feature values ​​through a random forest algorithm, thereby establishing a relationship database between applications and malicious codes. Get the data to match and get the test result. Using the advantages of random forest analysis, combined with the idea of ​​application and malicious code classification, a model of application malicious code detection is established based on this method, which can quickly classify and detect existing application malicious code, and can detect new variant malicious codes. The application has certain analysis and detection capabilities, which can meet the ever-changing needs of Android system applications, speed up the detection of malicious applications and codes, and improve the ability to respond to unknown malicious applications.

The invention discloses a broadcast agent method and device for Android applications. The method includes the steps that a virtual machine environment is established, cloned applications of one or more designated Android applications in an Android system are put in a virtual machine, and the cloned application of each designated Android application and the corresponding designated Android application can operate in parallel; a resident service of the virtual machine agents the cloned applications of the designated Android applications in the virtual machine to receive broadcast messages, and the broadcast messages are forwarded to broadcast receivers of the cloned applications of the corresponding designated Android applications according to a preset strategy. According to the scheme, when the same application is operated in parallel by a user in the Android system, the defects that the broadcast messages cannot be received due to repeated registration information of the broadcast receivers, and even programs cannot operate are avoided.

The invention discloses an offshore inspection supervision system based on unmanned aerial vehicle aerial photography. The system is composed of four main parts: an unmanned aerial vehicle data acquisition terminal, a cloud server, an enterprise server and a client. A PC client and an Android client form an unmanned aerial vehicle marine inspection comprehensive supervision platform. The functionsof data real-time access forwarding, geographic information management, trajectory tracking, aerial video live broadcasting, historical trajectory and video playback, data statistical analysis and emergency management, Android APP real-time supervision and the like of the marine inspection unmanned aerial vehicle can be achieved. The marine environment is supervised in real time through the unmanned aerial vehicle aerial photography, so the supervision range is wide, the inspection efficiency is high, the cost loss is small, and the problems that a traditional inspection system is short in inspection visual range, slow in response, poor in small ship supervision capacity, low in efficiency, not timely in dispatching and commanding and the like are solved.

The invention discloses a pirated Android application screening method and a pirated Android application screening system. The system includes an Android application channel monitoring system for collecting basic information of Android applications from distribution channels of Android applications, an Android application channel monitoring system for downloading Android application installation packages, and an Android application data storage center for centralized storage of Android application basic information and Android application installation packages. , used to build an Android application database containing an Android application information table containing application name, application introduction information and version information based on the massive Android application data of the Android application data storage center, and used to select the to-be-monitored from the pre-built genuine Android application information table Genuine Android application, screen out all suspected Android applications associated with the genuine Android application to be monitored from the Android application information table, and check the genuine application, old version application, and pirated application in the suspected Android application according to the set Android application version judgment conditions. An Android application differentiation analysis system for screening.

The invention discloses a zooming optimization method for an Android application window in an Android running environment. A time difference between a size adjustment of a Linux application window in a Linux system and a size adjustment of the Android application window in xDroid is reduced by optimizing a response mechanism of xDroidUI to a Resize message, and then the inconsistency of adjustment of the Linux application window and the Android application window during zooming of the Android application window is effectively reduced.

The invention discloses a micro service updating method and system based on difference analysis of key elements, through the analysis of bytecode in micro-service, the key elements that need to be analyzed are selected, and through the analysis of the similarities between the old version and the new version of Android applications to determine whether the version of Android applications has changed destructively relative to micro-services, and in the event of disruptive change, by analyzing the similarities between the old and new versions of Android apps, judging whether the key elements havechanged destructively, to locate the key elements that need to be modified in the microservice, and gives a list of recommended modifications for each key element that needs to be modified, furthermore, the microservice is updated according to the modification recommendation list, which avoids the unnecessary modification of the microservice and the modification of the key elements in the microservice when the non-destructive change of the Android application version occurs, reduces the waste of resources and improves the upgrading efficiency of the microservice.

The invention discloses an android application process management method and device. The method comprises the steps of declaring in advance the reserved process adaptable to all assembly types in the android system; constructing a virtual machine environment, adding one or more avatar applications of the designated android application into the virtual machine for the running; when the avatar applications of the designated android application need to run a target assembly, selecting the reserved process adaptable to the assembly type of the target assembly from the reserved process declared in advance, distributing the target assembly to the selected reserved process for the running. According to the android application process management method and device, the reserved process is declared for the assemblies of different assembly types separately. When an avatar application needs to run a certain assembly, the method provides a corresponding reserved process. The management method of reserved process is more flexible and convenient, and is highly reliable and effective to the avatar system not registered in the android system, and can perfectly achieve the parallel running of the designated android application and the corresponding avatar applications in the android system.

The invention specifically relates to an android APP equipment fingerprint generation method applied to security risk control. The method includes the following steps: S1, setting an equipment identifier to 1 for a real machine, and setting the equipment identifier to 2 for a simulator; S2, generating a 32-bit equipment unique code as an equipment unique code of the method; S3, extracting a key kof an APP program, arranging the key k and the equipment unique code in parallel to form a new sequence, calculating a corresponding md5 value based on the new sequence obtained by group arrangement,and taking the last three bits of the md5 value as a security code of the method; and S4, sequentially arranging the equipment identifier, the equipment unique code and the security code together to form a 36-bit character which is a fingerprint of the equipment. According to the method, results cannot be changed by the influence of recalculation; and the equipment fingerprint produced by the method has uniqueness and tamper-proof performance.

The invention provides an operation method and device for an android application based on the android system distribution technology. The method comprises the following steps: a client side captures an operation event of external equipment on a display interface of an android application; the client side invokes a network interface and uploads the captured operation event to a server; the server receives the operation event uploaded by the client side, and operates the android application corresponding to the invented operation event in the server, so as to generate a display interface I; the server convents the display interface I into stream media data, and sends the stream media data to the client side; the client side generates a display interface II according to the received stream media data. According to the method provided by the embodiment of the invention, memory space of the client side can be saved, and the running can be more convenient and faster.

The invention discloses a method for hot update of Android App based on Hook technology, comprising: generating update clusters and push information at the server end; client App receives the push information, downloads and updates the update cluster in the update cluster according to the current version For the update package corresponding to the version, in the process of installing the update package, when encountering the Hook mark in the update package, replace the marking method in the method stack with the update package according to the indication of the Hook mark. In this method, the update of the update package is implemented according to the inserted Hook tag, and can be updated in a targeted manner, so that the duration of the update process is relatively short. In addition, the present invention also provides a system for hot updating of Android App based on Hook technology, and the effect is as described above.