Record and replay of android native code execution
MetadataShow full item record
Android devices are becoming increasingly popular but at the same time, constantly attracting cyber criminals. Record and replay is a popular technique for debugging and testing, and also widely used to analyze desktop malwares. Recently, several records and replay techniques have proposed to aid debugging of Android apps. However, they are not suitable to replay Android malware. Recent Android malware are increasingly utilizing native code execution that can be dynamically downloaded and run by the app to avoid detection. Existing Android record and replay techniques cannot properly replay native code executions. Therefore, in this project, we aim to develop a deterministic record and replay system to analyze native code execution. Our approach can be used to understand the complete behaviors of Android applications containing native code.