Mono: a monitoring system for mobile network forensics

Mono: a monitoring system for mobile network forensics

We present in this report a study and implementation of a monitoring system for Android applications. We have first analyzed the requirements of the system; then, we have defined a set of specifications; and, finally, we have proposed a technical solution. The proposed system is called Mono and is d...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
1. Verfasser: Canal, Guillaume
Format: Dissertation
Sprache:eng
Schlagworte:
Android
Computer security
Comunicacions mòbils, Sistemes de
Digital forensics
Enginyeria de la telecomunicació
IOS
Mobile
Mobile communication systems
Monitoring System
Network forensics
Packet capture
Seguretat informàtica
VPN
Àrees temàtiques de la UPC
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:We present in this report a study and implementation of a monitoring system for Android applications. We have first analyzed the requirements of the system; then, we have defined a set of specifications; and, finally, we have proposed a technical solution. The proposed system is called Mono and is designed to capture traffic and retrieve information of interest for a forensics analyst about a given application (e.g. files accessed, etc.). It is composed of three elements: - an Android application implementing a VPN client - a VPN server with a public IP address that can capture, decrypt (under certain conditions) and store packets. It also runs a web server - a web interface to examine in real-time the traffic of the VPN tunnel. This first version of the Mono system, is available on GitHub under the MIT license (https://github.com/gcanal/Mono)