3.3 Analyze local storage
Last updated
Was this helpful?
Last updated
Was this helpful?
Within sql-shell:
list existing tables within db:
list table schema:
or
open within
/data/data/com.x.x.x/
shared_prefs/
(search for keysets -> used to encrypt files --> might be encrypted as well, if handled properly)
cache/
database/
/sdcard/Android/com.x.x.x/
Hardcoded cryptographics key
Cleartext credentials stored in .config/.xml & sqlite-/realm-DB
Misplaced files (i.e. creds.txt stored on SD-Card)
Wrong file permissions set (also have a look @ 1.4)