WIKI

13.7 获取IMEI Device ID敏感信息代码检测

(1)描述

检查app是否有执行获取IMEIDevice ID敏感信息的代码

(2)检测方法

检测类型:静态分析

Example Java code:

  TelephonyManager tm = (TelephonyManager)getSystemService(Context.TELEPHONY_SERVICE);

  String DEVICE_ID = tm.getDeviceId();

  

Example Bytecode code:

    .local v1, "tm":Landroid/telephony/TelephonyManager;

    invoke-virtual {v1}, Landroid/telephony/TelephonyManager;->getDeviceId()Ljava/lang/String;

    move-result-object v0

    .local v0, "DEVICE_ID":Ljava/lang/String;

    return-void

 

(3)风险等级

提示