The objective of this assignment is to perform dynamic analysis of an Android APK file using the Mobile Security Framework $($MobSF$).$ Students will execute the application in a controlled environment to identify runtime behaviors, network interactions, and potential security risks.

Instructions:

Setup:

Download and install the MobSF framework, Gennymotion, Python, etc. as per the instrcutions and hands$-$on sessions done in class on your local machine.

Use any existing APK or Obtain an Android APK file for analysis. You can use sample APKs provided by MobSF or choose an APK from a reputable source for analysis.

Ensure that you have a virtual Android device or physical device available for dynamic analysis.

Dynamic Analysis:

Open MobSF and upload the APK file for analysis.

Configure MobSF to perform dynamic analysis.

Execute the APK in a controlled environment $($virtual or physical device$).$

Monitor network interactions, API calls, file system access, and other runtime behaviors.

Use MobSF's dynamic analysis tools and plugins to capture and analyze runtime data.

Report Creation:

Create a detailed report summarizing the findings from the dynamic analysis.

Include sections such as:

Introduction $($APK name, version, purpose$)$

Methodology $($tools used, analysis approach$)$

Dynamic Analysis Results $($network traffic, API calls, sensitive data handling$)$

Security Risks $($identified vulnerabilities and their impact$)$

Recommendations $($suggestions for mitigating identified risks$)$