WIKI

13.10文件删除代码检测

(1)描述

检查app是否有调用删除文件的代码

(2)检测方法

检测类型:静态分析

Example Java code:

  File file = new File("tmp.doc");

  boolean deleted = file.delete();  

 

Example Bytecode code:

  new-instance v1, Ljava/io/File;

 

    const-string v2, "tmp.doc"

 

    invoke-direct {v1, v2}, Ljava/io/File;-><init>(Ljava/lang/String;)V

 

    .line 55

    .local v1, "file":Ljava/io/File;

    invoke-virtual {v1}, Ljava/io/File;->delete()Z

(3)风险等级

提示