Android APP is currently stored data in the following manner
In this manner, the security authentication method of storing data can be referred to: https: //www.52pojie.cn/thread-621516-1-1.html
1, mobile phone need to obtain root privileges
Entity phone, through third-party tools, root failure, and later used the term "a god simulator", open it with root privileges (see: https://jingyan.baidu.com/article/4d58d5415616069dd4e9c0ec.html)
2, on the computer, adb devices simulator identification Android
After opening USB debugging, the switching paths to nox cmd bin directory, as follows:
If not enough, the simulator can restart reference: https: //www.yeshen.com/faqs/H15tDZ6YW
root@shamu:/ # cd data/data
root@shamu:/data/data # ls
com.android.backupconfirm
com.android.bluetooth
com.android.browser
3, then see if there is / data / data / installer / shared_prefs directory
root@shamu:/data/data/com.*.*# ls
app_tbs
app_textures
app_webview
cache
code_cache
databases
files
lib
shared_prefs
In cmd, use the adb pull the contents of the folder copy to your computer (D: \ homework there is a need to directory)
D:\Program Files\Nox\bin>adb pull /data/data/com.work.onlineschool/shared_prefs D:\homework
/data/data/com.work.onlineschool/shared_prefs/: 33 files pulled. 0 files skipped. 0.2 MB/s (34649 bytes in 0.215s)
4、检查SharedPreferences是否泄漏敏感信息
5、检查其他目录下是否泄漏敏感信息