N/APosted on - 05/24/2015
I want to check all the data in my android phone for security vulnerabilities. I have heard that I can execute tcpdump for a day or more and collect all the data. What are the third party software available for verification? How to view and verify the collected PCAP? How to identify the source of the alert if I indeed get one from the report? Can I identify the app which caused the alert? I can verify the files as I have Linux but don’t know how to proceed with this multiple unknown things.
Checking security level of my phone-lollypop OS
Before you can use tcpdump on an Android Smartphone, you must have several things first. First, you need to have a rooted Android device. Second, you need to install a terminal access application on your device. And lastly, the tcpdump app for Android. Rooting is the Android equivalent of jailbreaking in iOS. It is a method of unlocking the mobile operating system so you can install unapproved or unsigned apps, replace the firmware, update the operating system, overclock or underclock the processor, customize anything, and others.
The first requirement is a rooted device. This means your Android device needs to be rooted first. Before you decide whether you want to root your device or not, remember that rooting an Android invalidates the device’s warranty. This means, when you root your device and something bad happened, you shoulder all the expenses for the repairs because the warranty is no longer valid.
To properly root your Android, visit Kingo Android Root. After successfully rooting your Android, visit Google Play Store then search for without quotes “terminal emulator”, “shell terminal”, or “command prompt”. Or simply install Terminal Emulator for Android. It requires Android 1.6 or higher. Once you have a terminal emulator on your device, visit Android tcpdump Downloads then download and install the latest version of tcpdump.