How to check insecure deep links using drozer step by step
Deep links are URLs that are used to directly open a specific activity or component within an app, bypassing the app's launcher activity. Insecure deep links can be used by an attacker to gain unauthorized access to sensitive information or perform other malicious actions within the app.
Steps to check for insecure deep links using drozer:
-
Install drozer on your system and connect your android device to your computer
-
Run the command "drozer console connect" to connect to the device
-
Run the command "run app.activity.info -a " to list all the activities that are exported by the app.
-
Look for activities that have the intent-filter android.intent.action.VIEW or android.intent.category.BROWSABLE
-
Run the command "run app.activity.start --component " to start the activity directly
-
Observe if the activity can be started with or without authentication
-
Observe if the activity can be started with or without additional privilege
-
Check if the activity contains any sensitive information
how to check insecure deep links using adb step by step
Steps to check for insecure deep links using adb:
-
Connect your android device to your computer
-
Open command prompt and navigate to the platform-tools folder in the android sdk
-
Run the command "adb shell dumpsys activity" to list all the activities that are exported by the app.
-
Look for activities that have the intent-filter android.intent.action.VIEW or android.intent.category.BROWSABLE
-
Run the command "adb shell am start -a android.intent.action.VIEW -c android.intent.category.BROWSABLE -d " to start the activity directly
-
Observe if the activity can be started with or without authentication
-
Observe if the activity can be started with or without additional privilege
-
Check if the activity contains any sensitive information