dtf
content for performing light analysis on Shared Object ("SO") and binary ("ELF") files on your device.
Will pull all binaries from typical binary directories.
Will pull all SO files from typical library directories.
Quick analysis on SO file. Useful for looking for:
ioctl
,socket
/connect
/listen
, functions- Extracting potential JNI functions
- Evidence of device driver (
/dev/*
) usage