mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-13 22:54:53 +03:00

Files

T

mukul975 c21af3347e Complete folder anatomy for all 649 cybersecurity skills + update LICENSE to Mahipal

- Add scripts/agent.py and references/api-reference.md to all remaining skills
- Update all 648 LICENSE files: copyright now reads 'Mahipal'
- Add implementing-security-monitoring-with-datadog (new skill with full anatomy)
- All 649 skills now have: SKILL.md, LICENSE, scripts/agent.py, references/api-reference.md

2026-03-11 00:22:12 +01:00

1.4 KiB

Raw Blame History

API Reference — Performing Dynamic Analysis of Android App

Libraries Used

frida: Dynamic instrumentation for runtime hooking and SSL pinning detection
subprocess: ADB commands for package management, traffic capture, component analysis

CLI Interface

python agent.py [--device <id>] packages
python agent.py [--device <id>] ssl --package <pkg>
python agent.py [--device <id>] components --package <pkg>
python agent.py [--device <id>] storage --package <pkg>
python agent.py [--device <id>] network [--duration 30]

Core Functions

`check_ssl_pinning(package_name, device_id)`

Uses Frida to hook TrustManagerImpl and OkHostnameVerifier to detect SSL pinning.

`analyze_exported_components(package_name, device_id)`

Runs dumpsys package to enumerate exported activities, services, receivers, providers.

`check_data_storage(package_name, device_id)`

Checks shared_prefs and world-readable files via run-as for insecure storage.

`capture_network_traffic(device_id, duration, output)`

Runs tcpdump on device and pulls pcap via ADB.

Frida API Calls

frida.get_usb_device() — Connect to USB device
device.spawn([package]) — Launch app
session.create_script(js) — Inject JavaScript
script.on("message", callback) — Receive hook results

Dependencies

pip install frida frida-tools
# ADB must be installed and device connected

1.4 KiB Raw Blame History