Unofficial Android Links

Similar Work

  • Unofficial Android FAQ

Background Info

  • Android (Operating System)
  • Open Handset Alliance
  • ARM Architecture
  • Analysis of Android - note that this is a bit weak
  • Understanding Google Android Programming Terminology

Security Overview, Analysis and Research

  • Security Overview
  • Manifest.permission file
  • AndroidManifest.XML file
  • Pulling a John Connor; Defeating Android
  • iSEC - Securing Android Apps
  • iSEC - Android Exploratory - Black Hat 2009
  • Overview of Android Security
  • Towards Formal Analysis of the Permissions-Based Security Model for Android

Security Threats

  • Threats against stored SMS in Micropayment Schemes
  • Mabir worm
  • SMS security analysis
  • Flaw in SMS processing - article 1
  • Flaw in SMS processing - article 2
  • Charlie Miller's 2009 BlackHat Paper on SMS processing flaw
  • iPhone Privacy Threats
  • more iPhone security issues - could they exist in Android too?
  • Android Rootkit is just a phone call away

Development Tools & Information

  • ADB
  • SDK
  • SDK on Mac OS Snow Leopard
  • Hello World tutorial
  • open-source site for much of the software
  • Application Fundamentals
  • Content class
  • Intent class
  • adding components to the SDK
  • Android Virtual Devices
  • Javadoc package index
  • Android Asset Packaging Tool
  • How-to work with Android source Code
  • DroidWeb: Installing Android 2.0 on a Mac

Reverse Engineering

  • Dedexer Disassembler
  • Smali/Baksmali Assembler and Disassembler
  • How to decompile DEX files
  • UNDX source (decompiler; neat but doesn't really work yet)
  • UNDX homepage
  • Matasano's kivlad decompiler

Implementation Details

  • Dexopt (ODEX files)
  • Optimized DEX files
  • Using ServiceDirectory
  • Android's native libc, Bionic
  • OpenBinder, the IPC mechanism
  • The Six Million Dollar libc
  • Android Under the Hood
  • Content Providers
  • documentation on Binder, the main IPC mechanism

Dalvik VM

  • Dalvik VM
  • Dalvik Virtual Machine
  • Virtual Machine Showdown: Stack vs Registers
  • With Android and Dalvik at Google I/O
  • Dalvik VM Internals

Related Technologies

  • Wireless Application Protocol
  • WBXML
  • YAFFS NAND-specific Flash filesystem Intro
  • YAFFS homepage
  • YAFFS
  • XMLVM overview
  • A Standalone Android Runtime
  • A Standalone Android Runtime - Look Ma, no Dalvik
  • A Standalone Android Runtime - The ServiceManager

Licensing Issues

  • Why Google Chose the Apache Software License Over GPLv2
  • Dalvik: how Google routed around Sun's IP-based licensing restrictions on Java ME
  • Google and Sun may butt heads over Android

Useful Android Software

  • 0xdroid is community-developed Android distribution by 0xlab
  • Dropbear SSH package
  • Android Busybox
  • Busybox
  • Connectbot SSH package
  • A Linux Developer Rant against Android
  • Root My Droid
  • ARM rsync binary for android
  • Native SSHd on Android
  • Debian & Android Together on G1
  • Debian Installer for Android
  • Nandroid v2.0 - best Android backup utility

Unofficial Android Apps

  • Android-Market.co, free games and apps

Exploits

Rage Against the Cage

  • discussion 1
  • discussion 2
  • discussion 3

psneuter

  • Cyanogen psneuter downgrade
  • psneuter source

HTC EVO Rooting

  • EVO root wiki
  • unrevoked3

Groups

  • XDA developers