
If Genymotion put extra load on your system, then try installing NOX-Player which has same working functionality but in a much lighter package.
I personally use NOX-Player on daily basis, but Genymotion is the popular one because of its SAAS working model.
Lets get stated with android application reverse engineering. Application are available in ZIP file to download
Some additional files are also available from pentester lab to try your skills.
Follow Below Commands
# Create Certificate
1 - Download Burp certificate to .DER e.g cacert.der
2 - openssl x509 -inform DER -in cacert.der -out cacert.pem // Convert .DER (Distinguished Encoding Rule) encoded file into .PEM (Privacy Enhanced Mail) encoded file.
3 - openssl x509 -subject_hash_old -in cacert.pem |head -1 // Calculate MD5 hash for cacert.pem file and **head -1** will only print 1st list
4 - mv cacert.pem {hash}.0 // rename file with hash output of last command
# Setup Certificate
1 - adb root // Get Root access with ADB. Don't need to execute this command if ADB is configured to Root by-default
2 - adb remount // Remount partitions to Read-Write. if a reboot is required, -R will will automatically reboot the device.
3 - adb push {cert}.0 /system/etc/security/cacerts/ // Upload Certificate file to Android Certificate Store Directory.
4 - adb shell chmod 644 /system/etc/security/cacerts/{cert}.0 // Grant Read-Write Permission to Root Owner and Read Permission to other users and groups.
5 - adb reboot // Reboot Android Device to update Certificate Store.
Required Material
Frida Server :-: https://github.com/frida/frida/releases
Magisk :-: https://magiskmanager.com
SSL Pinning Bypass Script :-: https://codeshare.frida.re/@pcipolloni/universal-android-ssl-pinning-bypass-with-frida/
This whole course is divided into 6 Sections which covers different necessary portions for Android Application Security and they goes like this :-:
Lab Setup
Introduction to Android
Static Analysis tools for Android Applications
Getting Started with DIVA-Beta Application
Pentester Lab Applications
Dynamic and Automated Analysis
Dynamic Instrumentation with Frida and Objection
This course require few things from learner, such as :-:
Some hands on experience with any linux operating system, best for Kali Linux users.
Basic code level understanding of JAVA language.
Minimum System requirements for this course :-:
CPU -- i5 7th Gen
RAM -- 12 GB
Storage -- 250 GB SSD
Who this course is for:
All web application security analyst.
All those security enthusiast.
All those newbies into hacking.
All those API security analyst.
A total beginner, with a curious mind and wants to be an app developer
Anyone who wants to become an Android Developer
Penetration testers who want to do a Penetration Testing against Android mobile phones.
Application developers who want to write secure mobile applications.
Anyone who want to protect themselves against mobile attacks.
Programmers who are interested in building Android apps
Technical or non-technical entrepreneurs who want to start mobile app business
Anyone who wants to create Android Applications
Those who want to develop an Android Hacking
This course will give you a beginner to intermediate level knowledge in android application security. Audio and Video quality might not be the best, but these are the thing you need to know to get started in Android application security.