项目需要 AppScan
经过了 IBM的AppScan 和 许多其他工具的测试
目前还没有确定用哪个
在使用 MobSF 的时候 扫描 iOS成功了、 但是扫描android apk的时候直接 error
报错:
[ERROR] 17/Mar/2020 07:42:57 - Error Performing Static Analysis
Traceback (most recent call last):
File "/Users/ondor/Desktop/Other_source/Mobile-Security-Framework-MobSF-master/MalwareAnalyzer/views/apkid.py", line 45, in apkid_analysis
findings = output._build_json_output(res)['files']
AttributeError: 'OutputFormatter' object has no attribute '_build_json_output'
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "/Users/ondor/Desktop/Other_source/Mobile-Security-Framework-MobSF-master/StaticAnalyzer/views/android/static_analyzer.py", line 188, in static_analyzer
'app_dir'], app_dic['app_path'], app_dic['app_name'])
File "/Users/ondor/Desktop/Other_source/Mobile-Security-Framework-MobSF-master/MalwareAnalyzer/views/apkid.py", line 48, in apkid_analysis
findings = output.build_json_output(res)['files']
File "/Users/ondor/Library/Python/3.7/lib/python/site-packages/apkid/output.py", line 117, in build_json_output
for filename, matches in results.items():
AttributeError: 'list' object has no attribute 'items'
[ERROR] 17/Mar/2020 07:42:57 - 'list' object has no attribute 'items'
[ERROR] 17/Mar/2020 07:42:57 - Internal Server Error: /StaticAnalyzer/
[ERROR] 17/Mar/2020 07:42:57 - "GET /StaticAnalyzer/?name=pwcpoc202003131350.apk&type=apk&checksum=7199c44fd93ae925585997775a70257e HTTP/1.1" 500 4952
关键词
…/apkid.py", line 45, in apkid_analysis
和
AttributeError: ‘OutputFormatter’ object has no attribute ‘_build_json_output’
在浏览器中搜索 发现
大致原因是因为启用了apkid
但是 我们并没有用这玩意啊 这是个什么东西啊
看到一个哥们这么说:
不使用此功能的时候,也可以禁用 apkid 是吧?
MobSF/settings.py 是吧?
在目录中找到此文件settings.py
在文件中搜索apkid
找到
APKID_ENABLED = True
改成 False
保存
重新扫描一下 扫描成功
OK 成功