FotaFinder is a static analysis tool to detect if an Android app contains Firmware-Over-The-Air (FOTA) or OTA capablities, i.e., the ability to install system updates (FOTA) or just regular apps (OTA). FotaFinder operates by statically identifying signals in the code that indicate installation capabilities.
This tool is part of a joint research project among UC3M COSEC Lab, the IAG group at IMDEA Networks, and NortonLifelock Research Group. You can find more information about the research in a paper presented in the 42nd IEEE Symposium on Security and Privacy: Trouble Over-The-Air: An Analysis of FOTA Apps in the Android Ecosystem
If you use FotaFinder as part of your research cite the tool using the next:
@inproceedings{blazquez2021trouble,
title={Trouble Over-The-Air: An Analysis of FOTA Apps in the Android Ecosystem},
author={Bl{\'a}zquez, Eduardo and Pastrana, Sergio and Feal, {\'A}lvaro and Gamba, Julien and Kotzias, Platon and Vallina-Rodriguez, Narseo and Tapiador, Juan},
booktitle={2021 IEEE Symposium on Security and Privacy (SP)},
pages={1606--1622},
year={2021},
organization={IEEE}
}
This project is licensed under a MIT License, please check the file LICENSE to find more information about it.
You can find more about the tool's authors and paper contributors in their webpages:
- Eduardo Blázquez (UC3M)
- Julien Gamba (IMDEA Networks)
- Álvaro Feal (IMDEA Networks)
- Sergio Pastrana (UC3M)
- Narseo Vallina-Rodriguez (IMDEA Networks)
- Juan Tapiador (UC3M)
- Platon Kotzkias (NortonLifeLock)
You can find more information about our research in our webpage AndroidObservatory