Android security checklist: WebView
Tags
attack-pattern: Data Domains - T1583.001 Domains - T1584.001 Javascript - T1059.007 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID d6b4b7c9-cdd5-4e22-aae7-3e6c31536e2e
Fingerprint 3521dc5bbf25534e
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 29, 2021, midnight
Added to db Jan. 18, 2023, 8:40 p.m.
Last updated Nov. 17, 2024, 6:30 p.m.
Headline Android security checklist: WebView
Title Android security checklist: WebView
Detected Hints/Tags/Attributes 45/1/33
Source URLs
Redirection Url
Details Source https://blog.oversecured.com/Android-security-checklist-webview/
URL Provider
Details Provider Source level domain
Details oversecured.com blog.oversecured.com
Attributes
Details Type #Events CTI Value
Details Domain 78 
attacker.com
Details Domain 1 
legitimate.com
Details Domain 20 
android.net
Details Domain 10 
mainactivity.java
Details Domain 1 
testactivity.java
Details Domain 60 
java.net
Details Domain 707 
google.com
Details Domain 11 
req.open
Details Domain 57 
com.google.android
Details Domain 831 
example.com
Details Domain 1 
pickeractivity.java
Details Email 1 
legitimate.com@attacker.com
Details Email 1 
attacker.com//@legitimate.com
Details File 172 
androidmanifest.xml
Details File 13 
exploit.html
Details File 10 
mainactivity.java
Details File 1 
testactivity.java
Details File 34 
net.url
Details File 5 
user.db
Details File 7 
window.url
Details File 1 
pickeractivity.java
Details File 1 
secrets.xml
Details Url 9 
https://attacker.com
Details Url 1 
file://legitimate.com/sdcard/exploit.html
Details Url 1 
https://legitimate.com@attacker.com
Details Url 1 
https://attacker.com\\\\@legitimate.com
Details Url 1 
https://attacker.com//@legitimate.com
Details Url 39 
https://google.com
Details Url 1 
https://legitimate.com
Details Url 1 
https://legitimate.com/?page=
Details Url 1 
https://attacker.com/?leaked_token=
Details Url 1 
https://attacker.com/?data=
Details Url 1 
http://example.com/?data=