On Thursday 14 Mar 2013 15:18:33 Michael Meyer wrote: > *** Jeff Wilson wrote: > > Thank you for your reply. Could you please elaborate on your statement > > "It's not so easy to do > > > > *active* scanning of such devices", with a few reasons to why this is > > > > so. > > By default an Android device has no open ports. Depending on the > Android version, the internet connection stops if the device goes > into standby, ...
Wearing my mobile researchers hat, it would in theory be posssible to write plugins to connect to the MDMs but unless said MDMs are open, it would take a fair bit of work. There are a fair few mobile OS / application specific flaws but only a small percentage are exploitable over the network. If a mobile app has an open port, it will likely be scanned by OpenVAS's port scanner and default plugins - I bet you'd get lucky with some apps - certainly we've seen exploitable directory traversal in such apps. In terms of custom support that *might* be useful, implementing the adb protocol to scan for that, adding support to drive Mercury, check for root/alpine etc could give wins. The take home for me would be that right now, a MDM is a much better way to get an accurate feel for the posture of mobile devices. Tim PS -- Tim Brown <mailto:[email protected]> <http://www.openvas.org/>
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Openvas-plugins mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
