No permissions prompt after Firefox hijack - Security Discussion

Obviously I did a scan with a few play store apps. Found nothing.
But...
How can a non root app detect a rootkit?
The reason I'm investigating is that I was browsing with Firefox and hit some sites which where able to get past the popup blocker and disable the browser controls. Unfortunately at the time I had 3rd party sources install enabled. From around this point onwards I now don't get any prompts regards permissions when I install any app.
I'd like to scan but apps don't seem very low level to me. There should be a reviewed binary I can transfer via adb and run command line as root?

Related

Permisions Program

Like to know if there is a program that can let me change the permissions for each application individual. For example when i install angry birds to let me choose, at the installation or after the setup, not to let it connect to internet or access my phone calls etc.
A quick search in the playstore shows an app called permissions denied. Root access is required and states that it does not work on all devices.
This one is not on the app store. Google an app called Lucky Patcher.
Just run the app, it will list all the installed apps you have, tap the app you want to change permissions for, select Open Menu of Patches, select Change Permissions, select the permissions you wish to change, reboot.
Believe you need root for this.
At the first two days that i bought the tf300 i installed and uninstalled many applications. And one of them had a feature to control the permissions on all the installed apps of the tf300. And i can't remember whta app was to install it again.
Found it
Ok thanks for the Help. Finally it was lucky patcher i was looking, but the Permissions denied app that the other guy suggested me, was fine too.
Thanks again.
I use LBE Privacy Guard and think its the best app to change permissions.
Every time i installed app it ask my to change permissions.
You can also stop send anonymus usage and error report.
DROIDWALL is a firewall that limits network traffic.
You can use white lists (disallows all programs, you select which you want to communicate) or black list (allows all programs, you select which to not communicate).
You need root to use this program.
It's in the Play store.

[Q][ROOT] Towelroot troubleshooting

I cannot for the life of me figure out where I am going wrong.
Youtube videos and all online tutorials and guides suggest it should be as simple as going to towelroot.com, clicking the lambda, getting a prompt to download the .apk, install it, let it run, let the phone reboot, and install SuperSU.
But for whatever reason, that doesn't work for me. If I click the lambda in Chrome, I get a prompt to choose what browser to open it in, and selecting Chrome just asks me again after it opens a new tab. It never downloads. If I choose to open it in firefox, FF will render in the browser as if it were a text file. Going back to Chrome, if I long-hold the icon and choose "Save Link", I can get a copy of tr.apk downloaded. Alright, so far so good. Let's just run it... right? WRONG. "Can not open file". My other .apk's like F-Droid opened absolutely fantastically fine.
OK, I'll work around this using a .apk installer. Go over to Google Play, grab "APK Installer" (1.4 mb or so one), run that, select the .apk file to install aaaannnnddd, I get to the usual screen showing what's asking to be installed and what permissions it wants. Yay! I've seen this page before! Aaannd... The Install button cannot be pressed. It cannot be pressed in landscape or portrait. Only cancel works.
I have not found anyone else with all my searching that has had the same difficulties as me. Hell, as the forum checked my title to find similar threads, there's http://forum.xda-developers.com/showthread.php?t=2785869 which shows this guy managed to install towelroot just yesterday.
Anyone have any clue what to do to get a root without the troubles of wiping? This is absolutely tremendously frustrating.
Edit: I had to kill an app's process. I suspect it's Twilight that had to be killed - an app kinda like f.lux on Windows that overlays the screen with a warm tint to make nightviewing nicer. I ended up killing AdBlock, Youtube, Google Music, and a few others. I was then able to install the .apk using APK Installer from the Play store. And once I had root and superuser installed, I had to go into the superuser settings and disable the Tapjacking Protection (or alternatively kill Twilight - that's why I suspect it was a problem in the first place, as there's non-changeable tapjacking for apk installations) and I could finally grant programs superuser permissions.
Exaskryz said:
I suspect it's Twilight that had to be killed - an app kinda like f.lux on Windows that overlays the screen with a warm tint to make nightviewing nicer.
Click to expand...
Click to collapse
Yep. Any screen overlay will interfere with the install button.

App Permissions

Hello everyone
I'm a little concerned with apps sending information to themselves...
I would like to know if it is possible to remove certain permissions from apps even if purchased or free and still download and use the app?
For devices with root there exist several solutions. Via XPosed, LBE firewall - there exist many more.
Without root I only know of SRT Appguard which modifies the app, so every access of permissions is route controlled via Appguard. For me it works fine so far. But it was removed from play store, probably it is not allowed to modify the app afterwards, although no real change is being done to the app.
You need root and get xposed framework, that will give you what you want.
Without root, tough luck, the only way to do that is to manually block comms with a firewall with a router.
Get os monitor app to see what is communicating.
One addition: Android 4.2 has a hidden permission manager integrated. If I remember correctly it can do what you want.
But you may not want to be stuck on 4.2, it was removed in later versions.
Edit: Google says it existed but was hidden in 4.1. In 4.2 it was officially available. Afterwards it was removed.
tag68 said:
One addition: Android 4.2 has a hidden permission manager integrated. If I remember correctly it can do what you want.
But you may not want to be stuck on 4.2, it was removed in later versions.
Edit: Google says it existed but was hidden in 4.1. In 4.2 it was officially available. Afterwards it was removed.
Click to expand...
Click to collapse
How do I open this on 4.2? I saw it today in notifications and opened it from there so I still have it open in running apps but can't find a way to open it via settings menu or anywhere
It's called "App permissions".
Seems I mistook the versions where it was available. Seems it was only 4.3.
Google "app ops Android" or "Permission Manager Android" for more information. As I do not have a device concerned, I've only seen it myself once on the Galaxy Nexus of a collegue.

Advanced App installation/Uninstallation Blocking Methods

What I want to accomplish:
App installation/uninstallation is blocked (this includes adb install and remote installation from the Play Store when accessed from a PC).
Ideally this block can be temporarily lifted with a passcode.
Any ideas? I have tried several App Lock apps from the Play Store, but have not found one that blocks adb installation and remote installation.
P.S. This could possibly be accomplished with Tasker, Does anyone have experience with this method?

Introduce Brevent - Black Prevent without Root

I, the original author of Prevent Running, now introduce Brevent.
In short, Prevent without Root. You can get it from here: https://play.google.com/store/apps/details?id=me.piebridge.brevent or http://piebridge.me/br/, and source code: https://github.com/brevent/Brevent
There are several ways to prevent running for apps:
- Force-Stop, will set stopped state, no static broadcast, sinde Android 3.2, requires android.permission.FORCE_STOP_PACKAGES
-- can granted to privileged apps, /System/PrivApp
-- adb shell has it, Brevent can use
- App-Standby, since Android 6.0, requires android.permission.CHANGE_APP_IDLE_STATE
-- only granted to Framewok apps having the same singature with framework.apk
-- adb shell has it, Brevent can use
So as you can see, Brevent working on the adb shell, having the shell permission, and can do a lot of things.
Furthermore, Brevent use directy android hide methods, instead using dumpsys, am, cmd and so, more effective.
However, there is one restriction, as the permissions cannot be granted to apps, so Brevent requires you run the adb after every boot.
But, Brevent requires no-reboot to undate Brevent Server. And phone should be use, not for reboot.
Executing on everyreboot not good enough cos not with computer everytime. u can create something like Airfrozen. Similar function but with root
Hi, If I'm rooted, should I keep Prevent running 2.3.2 or is Brevent better?
Brevent not working
I execute the ADB command and it worked very briefly, but now it continuously says the server is not running. I try re-executing the ADB command, which says the server has started, but the app doesn't recognize it and still shows server not responding. Sometimes it will work and I'll start to mark apps to freeze, but then while doing that the "server not responding" message pops up again. Any ideas why?
Works great on Samsung Galaxy S7 Edge running Android 7.0!
*The only drawback is you have to go through ADB to enable it everytime you restart the phone.
Great app, but I have a problem. Play Store doesn't install any app, but when I restart the phone, it does. I suppose that an update of these app, it stop running a Google service.
What happened to the root version?
folusmile said:
Executing on everyreboot not good enough cos not with computer everytime. u can create something like Airfrozen. Similar function but with root
Click to expand...
Click to collapse
If you have rooted, it's possible. And Brevent now supoort root mode as experimental feature.
If you have no root, it's not possible.
And there is some way like device administrator to gain some permission.
However, there is only a device administrator. And device administrator has no the permissions to standby / force-stop other apps.
Sir_gpm said:
What happened to the root version?
Click to expand...
Click to collapse
Root version is the same with adb version, it can only avoid adb.
However, there are some issues on root version due to selinux and other issues.
For example, some rooted devices cannot dumpsys, which is required by Brevent.
If you have rooted, you can try root version.
And if it doesn't work, just create an issues on github: https://github.com/brevent/Brevent
danielcuervog said:
Great app, but I have a problem. Play Store doesn't install any app, but when I restart the phone, it does. I suppose that an update of these app, it stop running a Google service.
Click to expand...
Click to collapse
You *may* brevent some apps shouldn't be brevented, like packageinstaller or defcontainer.
I suggest you don't brevent system / framework apps if you're unsure.
For myself, I have brevented play store, and can install apps, and the play store can get update.
BartlebytheScribe said:
I execute the ADB command and it worked very briefly, but now it continuously says the server is not running. I try re-executing the ADB command, which says the server has started, but the app doesn't recognize it and still shows server not responding. Sometimes it will work and I'll start to mark apps to freeze, but then while doing that the "server not responding" message pops up again. Any ideas why?
Click to expand...
Click to collapse
please create an issue on github with logs.
petr232 said:
Hi, If I'm rooted, should I keep Prevent running 2.3.2 or is Brevent better?
Click to expand...
Click to collapse
If you can use Prevent running 2.3.2, you probaly use Android 6.0-.
If you're tired of rooted / unlock / Xposed, you can try Brevent.
If you want to standby apps, you can try Brevent.
And IMO, Brevent is more intelligent:
1. back / home / recents list, both of them works well
2. standby, Brevent works greate.
3. UI. I think Brevent is nicer.
And please note, there are more users prefer Brevent to Prevent Running.
https://play.google.com/store/apps/details?id=me.piebridge.brevent&hl=en: less than 50,000 in one year, and no support.
https://play.google.com/store/apps/details?id=me.piebridge.forcestopgb&hl=en: more than 50,000 in short months.
There is no support from me for Prevent Running.
And, I'm sorry for old Prevent Running users, I shouldn't transfer it.
liudongmiao said:
You *may* brevent some apps should be brevented, like packageinstaller or defcontainer.
I suggest you don't brevent system / framework apps if you're unsure.
For myself, I have brevented play store, and can install apps, and the play store can get update.
Click to expand...
Click to collapse
I have brevented some system useless apps, and I fixed the problem. This is a great alternative to Greenify in Non-root mode. Thanks pal!
danielcuervog said:
I have brevented some system useless apps, and I fixed the problem. This is a great alternative to Greenify in Non-root mode. Thanks pal!
Click to expand...
Click to collapse
Just find the typo.. "should be brevented", should be "shouldn't be brevented"...
Just be careful when brevent system apps.
On my pixel, it cost more battery when brevented all system apps.
// I just to check whether it will crash when brevent all system apps.
Hi @liudongmiao, wanna ask would u include "hold home key to lock screen (support fingerprint sensor)" feature or something like that in future? Thanks.
exeon said:
Hi @liudongmiao, wanna ask would u include "hold home key to lock screen (support fingerprint sensor)" feature or something like that in future? Thanks.
Click to expand...
Click to collapse
Brevent only do simple things, force-stop / app-standby apps, nor other things. So, hold home to lock screen is not the things that Brevent should do.
Hi, I have another problem. I updated the phone software and I can't re-activate Brevent. I have this message. I have a S7 edge with Nougat stock.
EDIT: I fixed the problem. I didn't read the new command.
danielcuervog said:
Hi, I have another problem. I updated the phone software and I can't re-activate Brevent. I have this message. I have a S7 edge with Nougat stock.
EDIT: I fixed the problem. I didn't read the new command.
Click to expand...
Click to collapse
Previous command use /sdcard, in aosp, apps should have write permissions.
However, in some rom, Brevent has no permissions.
So I switch to "/data/data", and it's shorter.
Another question, Is possible contribuite to translate your app? I would like translate to spanish (if available)
i was under the impression it's generally not recommended to force quit apps and let Android handle them? i understand some apps misbehave, but over time would force quitting be bad?

Categories

Resources