, The Lifetime of Android API Vulnerabilities: Case Study on the JavaScript-to-Java Interface, vol.9379, pp.126-138, 2015.
, AndroidRank: Androidrank market data, 2018.
Phishing attacks on modern android, Proceedings of the ACM Conference on Computer and Communications Security (CCS), 2018. ,
A Local Cross-Site Scripting Attack against Android Phones, pp.1-6, 2011. ,
BridgeTaint: A Bi-Directional Dynamic Taint Tracking Method for JavaScript Bridges in Android Hybrid Applications, IEEE Trans. Inf. Forensics Secur, vol.14, issue.3, pp.677-692, 2019. ,
,
, Proceedings of the 2017 International Conference on Cryptography, Security and Privacy -ICCSP '17, pp.56-61, 2017.
Cross-Site Scripting attacks on Android webView, International Journal of Computer Science and Network, vol.2, issue.2, pp.1-5, 2013. ,
DroidCIA: A novel detection method of code injection attacks on HTML5-based mobile apps, Proc. -14th IEEE Int, vol.1, pp.1014-1021, 2015. ,
,
, Bifocals: Analyzing WebView Vulnerabilities in Android Applications, vol.8267, pp.138-159, 2014.
, , 2018.
contributors: mitmproxy: A free and open source interactive HTTPS proxy, 2010. ,
RetireJS -Scanner detecting the use of JavaScript libraries with known vulnerabilities, 2019. ,
, Smali -Assembler/Disassembler for the dex format, 2019.
, A Tale of Two Cities : How WebView Induces Bugs to Android Applications, vol.1, pp.702-713, 2018.
, Code Injection Attacks on HTML5-based Mobile Apps. Proc. 2014 ACM SIGSAC Conf. Comput. Commun. Secur. -CCS '14 pp, pp.66-77, 2014.
HybriDroid: static analysis framework for Android hybrid applications, Proc. 31st IEEE/ACM Int. Conf. Autom. Softw. Eng. -ASE, pp.250-261, 2016. ,
Static analysis of android apps: A systematic literature review, Inf. Softw. Technol, vol.88, pp.67-95, 2017. ,
, Unleashing the Walking Dead : Understanding Cross-App Remote Infections on Mobile WebViews. Ccs pp, pp.829-844, 2017.
DroidBot: A lightweight UI-guided test input generator for android, 2017 IEEE/ACM 39th International Conference on Software Engineering Companion, pp.23-26, 2017. ,
, Attacks on WebView in the Android system. Proceedings of the 27th Annual Computer Security Applications Conference on -ACSAC '11 p, p.343, 2011.
A View to a Kill: WebView Exploitation, Leet, 2013. ,
, OWASP: Using components with known vulnerabilities, 2013.
, , 2018.
BabelView: Evaluating the Impact of Code Injection Attacks in Mobile Webviews, 2017. ,
Survey of Cross-site Scripting Attack in Android Apps, Sandbox attribute, vol.4, p.29, 2014. ,
Apktool A tool for reverse engineering Android apk files, 2018. ,
New deep learning method to detect code injection attacks on hybrid applications, Journal of Systems and Software, vol.137, pp.67-77, 2018. ,