This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP SeraphimDroid Project"

From OWASP
Jump to: navigation, search
m (added contributors and new features on the page)
 
(21 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
=Main=
 
=Main=
  
<div style="width:100%;height:90px;border:0,margin:0;overflow: hidden;">[[File:Incubator_big.jpg|link=OWASP_Project_Stages#tab=Incubator_Projects]]</div>
+
<div style="width:100%;height:90px;border:0,margin:0;overflow: hidden;">[[File:Lab_big.jpg|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Lab_Projects]]</div>
  
 
{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
 
{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
Line 16: Line 16:
 
* To protect user's privacy and secure the device against malicious features that may cost user money
 
* To protect user's privacy and secure the device against malicious features that may cost user money
 
* To educate user about threats and risks for their privacy, privacy of their data and security of their device.
 
* To educate user about threats and risks for their privacy, privacy of their data and security of their device.
 +
 +
{|
 +
{{#ev:youtube|WccEBFaBXOw}}
 +
|}
  
  
Line 65: Line 69:
  
 
==Donate for OWASP Seraphimdroid==
 
==Donate for OWASP Seraphimdroid==
<paypal>OWASP Seraphimdroid project</paypal>
+
<div class="center" style="width: auto; margin-left: auto; margin-right: auto;">{{#widget:PayPal Donation
 +
|target=_blank
 +
|budget=OWASP Seraphimdroid (Website Donation) }}</div>
  
 
==Mailing list==
 
==Mailing list==
Line 78: Line 84:
 
Nikola Milosevic [mailto:nikola.milosevic@owasp.org]
 
Nikola Milosevic [mailto:nikola.milosevic@owasp.org]
  
 +
Kartik Kholi [mailto:kartik.kholi@owasp.org]
  
 
== Related Projects ==
 
== Related Projects ==
Line 94: Line 101:
 
* Code: https://github.com/nikolamilosevic86/owasp-seraphimdroid
 
* Code: https://github.com/nikolamilosevic86/owasp-seraphimdroid
 
* Documents and publications:
 
* Documents and publications:
** User guide and Documentation: http://inspiratron.org/OWASPSeraphimdroid/SeraphimdroidDocumentation.pdf
+
** [http://inspiratron.org/OWASPSeraphimdroid/SeraphimdroidDocumentation.pdf User guide and Documentation]
 
** Article about android permissions, published by Digital Forensics magazine: http://inspiratron.org/AndroidSecurity.pdf
 
** Article about android permissions, published by Digital Forensics magazine: http://inspiratron.org/AndroidSecurity.pdf
 +
** Article describing deep learning based dynamic malware analysis and anomaly detection: https://arxiv.org/ftp/arxiv/papers/1910/1910.10660.pdf
  
 
==Classifications==
 
==Classifications==
Line 114: Line 122:
  
 
= News and Events =
 
= News and Events =
 +
*  (05.11.2019) We have participated this year in Google Summer of Code. The work done on dynamic malware analysis and anomaly detection on the device using deep learning is described in the following paper: https://arxiv.org/ftp/arxiv/papers/1910/1910.10660.pdf
 +
*  (15.3.2017) We published a part of our machine learning methodology in Elsevier's scientific publication: Milosevic, Nikola, Ali Dehghantanha, and Kim-Kwang Raymond Choo. "Machine learning aided Android malware classification." Computers & Electrical Engineering (2017). http://www.sciencedirect.com/science/article/pii/S0045790617303087
 +
*  (09.1.2017) OWASP Seraphimdroid was promoted to Lab project
 +
*  (28.8.2016) New version (v2.0) of OWASP Seraphimdroid is released on [https://play.google.com/store/apps/details?id=org.owasp.seraphimdroid Google play store]. Blog post about new features can be [http://inspiratron.org/blog/2016/08/28/educational-framework-added-to-owasp-seraphimdroid/ read here]
 
*  (6.9.2015) New version (v2.0) of OWASP Seraphimdroid is released on  [https://play.google.com/store/apps/details?id=org.owasp.seraphimdroid Google play store]. Blog post about new features can be [http://inspiratron.org/new-version-of-owasp-seraphimdroid-v2-0-is-published/ read here]
 
*  (6.9.2015) New version (v2.0) of OWASP Seraphimdroid is released on  [https://play.google.com/store/apps/details?id=org.owasp.seraphimdroid Google play store]. Blog post about new features can be [http://inspiratron.org/new-version-of-owasp-seraphimdroid-v2-0-is-published/ read here]
 
*  (10.7.2015) OWASP Seraphimdroid is participating at [https://www.owasp.org/index.php/Summer_Code_Sprint2015 OWASP Summer Code Sprint 2015]
 
*  (10.7.2015) OWASP Seraphimdroid is participating at [https://www.owasp.org/index.php/Summer_Code_Sprint2015 OWASP Summer Code Sprint 2015]
Line 135: Line 147:
 
==Features:==
 
==Features:==
 
* Permission scanner. Permission scanner will show you the list of all installed application and the permission they are using. Also app will describe potential malicious use of certain permissions. Seraphimdroid is using machine learning in order to predict whether application might be malicious (be a virus, Trojan, worm, rootkit, etc) or not and will notify the user. Currently, we use SVM/SMO model trained on M0Droid malware/goodware dataset, which performed with accuracy of 88%.  
 
* Permission scanner. Permission scanner will show you the list of all installed application and the permission they are using. Also app will describe potential malicious use of certain permissions. Seraphimdroid is using machine learning in order to predict whether application might be malicious (be a virus, Trojan, worm, rootkit, etc) or not and will notify the user. Currently, we use SVM/SMO model trained on M0Droid malware/goodware dataset, which performed with accuracy of 88%.  
 +
* Machine learning-based anomaly detection that notifies you when the behaviour of your phone (processor, memory and battery usage is abnormal), so you can take appropriate action.
 
* Application locker. With OWASP Seraphimdroid, you may lock access to certain or to all of your application with password
 
* Application locker. With OWASP Seraphimdroid, you may lock access to certain or to all of your application with password
 
* Service locker. This feature enables user to lock usage of WiFi, mobile network and Bluetooth with a password.
 
* Service locker. This feature enables user to lock usage of WiFi, mobile network and Bluetooth with a password.
Line 160: Line 173:
  
 
* Nikola Milosevic
 
* Nikola Milosevic
 +
* Junfan Huang
 +
* Kartik Kohli
 +
* Furquan Ahmed
 +
* Ali Tekeoglu
 
* Aleksandar Abu Samra
 
* Aleksandar Abu Samra
 
* Chetan Karande
 
* Chetan Karande
* Ali Tekeoglu
+
 
* Furquan Ahmed
 
* Kartik Kohli
 
  
 
==Corporate sponsors==
 
==Corporate sponsors==
Line 171: Line 186:
  
 
==Others==
 
==Others==
 +
 +
=Project/Feature ideas=
 +
 +
'''OWASP Seraphimdroid encourages students and University lecturers to contribute to the projects. We would like to encourage any BSc, 3rd year or master project ideas that would improve Seraphimdroid app. Project leaders are willing to co-supervise these projects. Please contact us if you are interested. At the end of the page are listed some of the potential project ideas, but we encourage you to send us your ideas as well.'''
 +
=== Behavioral malware and intrusion analysis  ===
 +
 +
'''Brief Explanation:'''
 +
 +
[[OWASP_SeraphimDroid_Project|OWASP Seraphimdroid]] is an Android mobile app which already has a capability to statically analyze malware using machine learning (weka toolkit) relying on permissions. However, this is usually not enough and we intend to improve this with behavioral analysis. There are a number of paper in scientific literature describing how to detect malware and intrusions by dynamically analyzing its behavior (system calls, battery consumption, etc.). The idea of this project is to find the best approach that can be implemented on the device and implement it.
 +
 +
'''Expected Results:'''
 +
 +
*  Reviewing scientific literature and find feasible approach we can take
 +
*  Implement and possibly improve the approach in Seraphimdroid
 +
*  Test the model and provide controls to switch algorithm on or off and possibly fine tune it
 +
*  Documenting approach as a technical report
 +
 +
'''Knowledge Prerequisites:'''
 +
* Java
 +
* Android
 +
* CSV, XML
 +
* Basic knowledge and interest in machine learning
 +
 +
'''Mentors:'''
 +
* [[User:Nikola_Milosevic|Nikola Milosevic]] - OWASP Seraphimdroid Project Leader
 +
 +
=== Framework for plugin development  ===
 +
 +
'''Brief Explanation:'''
 +
 +
[[OWASP_SeraphimDroid_Project|OWASP Seraphimdroid]] is well rounded security and privacy app, however, it lacks some components community can provide. We would like to provide community the way to develop plugins that can add features to OWASP Seraphimdroid app. However, the way of integrating external components into Android app may be challenge. The way of presenting GUI and integration between processes need to be examined and developed.
 +
 +
'''Expected Results:'''
 +
 +
*  Examining the way of integrating third party apps through some provided API to OWASP Seraphimdroid
 +
*  Providing GUI integration with third party components
 +
*  Develop at least one test plugin
 +
*  Document the development process and API
 +
 +
'''Knowledge Prerequisites:'''
 +
* Java
 +
* Android
 +
* CSV, XML
 +
 +
'''Mentors:'''
 +
* [[User:Nikola_Milosevic|Nikola Milosevic]] - OWASP Seraphimdroid Project Leader
  
 
= Road Map and Getting Involved =
 
= Road Map and Getting Involved =
Line 180: Line 241:
  
 
'''Involvement in the development and promotion of SeraphimDroid is actively encouraged! You do not have to be a security expert in order to contribute.'''
 
'''Involvement in the development and promotion of SeraphimDroid is actively encouraged! You do not have to be a security expert in order to contribute.'''
 +
 +
'''OWASP Seraphimdroid encourages students and University lecturers to contribute to the projects. We would like to encourage any BSc, 3rd year or master project ideas that would improve Seraphimdroid app. Project leaders are willing to co-supervise these projects. Please contact us if you are interested. At the end of the page are listed some of the potential project ideas, but we encourage you to send us your ideas as well. '''
  
  
Line 203: Line 266:
 
=Project About=
 
=Project About=
 
{{:Projects/OWASP_SeraphimDroid_Project}}  
 
{{:Projects/OWASP_SeraphimDroid_Project}}  
 +
 +
 +
  
 
__NOTOC__ <headertabs />  
 
__NOTOC__ <headertabs />  
  
 
[[Category:OWASP Project]]  [[Category:OWASP_Builders]] [[Category:OWASP_Defenders]]  [[Category:OWASP_Document]]
 
[[Category:OWASP Project]]  [[Category:OWASP_Builders]] [[Category:OWASP_Defenders]]  [[Category:OWASP_Document]]

Latest revision as of 11:36, 5 November 2019

Lab big.jpg

OWASP SeraphimDroid

Mission:

To create, as a community, an open platform for education and protection of Android users against privacy and security threats.

OWASP Seraphimdroid is a privacy and security protection app for Android devices. It enables users to protect their devices against malicious software (viruses, trojans, worms, etc.), phishing SMS, MMS messages, execution of dangerous USSD codes, theft and loosing. Also, it enables user to protect their privacy and to control the usage of applications and services via various kinds of locks.

OWASP Seraphimdroid has two aims:

  • To protect user's privacy and secure the device against malicious features that may cost user money
  • To educate user about threats and risks for their privacy, privacy of their data and security of their device.


OWASPSeraphimdroid.png

Introduction

Android users face many threats and risks. Since modern mobile devices are almost all the time exposed to the internet and other types of mobile networks, they are more exposed to the attacks. From the open WiFi networks that can be spoofed to the Trojan malware applications on the app stores, threats are everywhere around. Many of the attacks are successful because users are not aware of the risks and threats. They may act naive and expose themselves to the attacks even more. These attacks may lead to the identity theft, money theft, losing privacy or they devices may start acting as part of the botnet network.

In order to prevent attacks on the users, this project aims to develop a set of guidelines and application that will ensure that users are using their devices in a secure manner. Project is and always will remain open for everyone to participate and all project deliverables will be free and open source.


Project development is done on GitHub: https://github.com/nikolamilosevic86/owasp-seraphimdroid

Release of OWASP Seraphimdroid is available on Google Play: https://play.google.com/store/apps/details?id=org.owasp.seraphimdroid

Description

The aim of this project is to research all threats and risks for users of Android operating system. We want to develop, as a community an free and open source security and privacy protection application and a set of security guideline for Android users. The project tend to be research oriented and we are willing to innovate in Android security field using machine learning, heuristics and other innovative techniques in order to protect our users, their privacy and money. The project is community driven and everyone is open to participate. The main aim of OWASP SeraphimDroid application should keep user data and money safe.

So far the main features include:

  • Permission scanner. Permission scanner will show you the list of all installed application and the permission they are using. Also app will describe potential malicious use of certain permissions. Seraphimdroid is using machine learning in order to predict whether application might be malicious (be a virus, Trojan, worm, rootkit, etc) or not and will notify the user.
  • Application and service locker. With OWASP Seraphimdroid, user may lock access to certain or to all of your applications and system services (WiFi, network, BlueTooth) with password
  • Install lock. This feature can lock all installing and uninstalling action on your device. Great for parental control.
  • Outgoing call and SMS blocker. This feature will allow user to perform normally outgoing calls and SMS, but it will block outgoing calls and inform about outgoing SMS performed by trojan applications.
  • Geo-fencing. This feature allows user to set a location range where the device should be. If the device exits the range it may set up alarm or start sending messages to the defined number with its location.
  • Remote location. If user lost your phone, he is able to send SMS with a defined secret code as a content and his phone and it will reply with the location coordinates of the device.
  • Remote lock and lock

Licensing

GNU GPL v3 License (allows commercial use, but requires that modifications to your code stay open source, thus prohibiting proprietary forks of your project)


What is OWASP SeraphimDroid?

  • Free and open source project
  • Android security and privacy protection app
  • Educational platform (planned)

OWASP SeraphimDroid provides:

  • Documentation on how Android permissions can be misused
  • Security guide for Android users
  • Security Android application
  • Application that keeps user secure and teaches him about risks

Mailing list

Project mailing list


Presentations

Project Leader

Nikola Milosevic [1]

Kartik Kholi [2]

Related Projects

Ohloh

Quick Download

Classifications

Owasp-labs-trans-85.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files CODE.jpg

Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_SeraphimDroid_Project&oldid=255951"