安全分析报告:
安全分数
安全分数 43/100
风险评级
等级
- A
- B
- C
- F
严重性分布 (%)
隐私风险
1
用户/设备跟踪器
调研结果
高危
4
中危
14
信息
3
安全
1
关注
15
高危 WebView域控制不严格漏洞
WebView域控制不严格漏洞 Files: com/yixing/snugglelive/ui/mine/activity/CustomerServiceActivity.java, line(s) 66,63 com/yixing/snugglelive/ui/mine/activity/PaymentWebviewActivity.java, line(s) 59,57 com/yixing/snugglelive/ui/mine/activity/PrivacyPolicyActivity.java, line(s) 49,47 com/yixing/snugglelive/ui/mine/activity/ProtocolActivity.java, line(s) 40,38
高危 使用弱加密算法
使用弱加密算法 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/geetest/onelogin/g/c/c.java, line(s) 57
高危 该文件是World Writable。任何应用程序都可以写入文件
该文件是World Writable。任何应用程序都可以写入文件 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-local-storage-for-sensitive-data-mstg-storage-1-and-mstg-storage-2 Files: com/geetest/onelogin/h/b.java, line(s) 30 com/sdk/k/a.java, line(s) 14
高危 应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。
应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/geetest/onelogin/g/c/a.java, line(s) 70 com/sdk/q/a.java, line(s) 27,53 com/sdk/w/e.java, line(s) 66
中危 应用程序已启用明文网络流量
[android:usesCleartextTraffic=true] 应用程序打算使用明文网络流量,例如明文HTTP,FTP协议,DownloadManager和MediaPlayer。针对API级别27或更低的应用程序,默认值为“true”。针对API级别28或更高的应用程序,默认值为“false”。避免使用明文流量的主要原因是缺乏机密性,真实性和防篡改保护;网络攻击者可以窃听传输的数据,并且可以在不被检测到的情况下修改它。
中危 应用程序数据可以被备份
[android:allowBackup=true] 这个标志允许任何人通过adb备份你的应用程序数据。它允许已经启用了USB调试的用户从设备上复制应用程序数据。
中危 Activity设置了TaskAffinity属性
(com.yixing.snugglelive.wxapi.WXEntryActivity) 如果设置了 taskAffinity,其他应用程序可能会读取发送到属于另一个任务的 Activity 的 Intent。为了防止其他应用程序读取发送或接收的 Intent 中的敏感信息,请始终使用默认设置,将 affinity 保持为包名
中危 Activity (com.yixing.snugglelive.wxapi.WXEntryActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity设置了TaskAffinity属性
(com.yixing.snugglelive.wxapi.WXPayEntryActivity) 如果设置了 taskAffinity,其他应用程序可能会读取发送到属于另一个任务的 Activity 的 Intent。为了防止其他应用程序读取发送或接收的 Intent 中的敏感信息,请始终使用默认设置,将 affinity 保持为包名
中危 Activity (com.yixing.snugglelive.wxapi.WXPayEntryActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 文件可能包含硬编码的敏感信息,如用户名、密码、密钥等
文件可能包含硬编码的敏感信息,如用户名、密码、密钥等 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#checking-memory-for-sensitive-data-mstg-storage-10 Files: com/geetest/onelogin/c/d.java, line(s) 37 com/geetest/onepassv2/bean/a.java, line(s) 147,147 com/yixing/snugglelive/global/Const.java, line(s) 20,21,18 com/yixing/snugglelive/global/PrefConsts.java, line(s) 6,10 com/yixing/snugglelive/ui/base/AppRouter.java, line(s) 16 com/yixing/snugglelive/utils/LanguageUtil.java, line(s) 14 io/branch/referral/Branch.java, line(s) 53 io/branch/referral/BranchPreinstall.java, line(s) 18,17 io/branch/referral/PrefHelper.java, line(s) 33 io/branch/referral/ServerRequest.java, line(s) 17,18 io/branch/referral/ServerRequestQueue.java, line(s) 28 io/branch/referral/UniversalResourceAnalyser.java, line(s) 20,19,22 io/branch/referral/validators/DeepLinkRoutingValidator.java, line(s) 23,20,26,25 org/jsoup/nodes/Comment.java, line(s) 6 org/jsoup/nodes/DataNode.java, line(s) 6 org/jsoup/nodes/TextNode.java, line(s) 8 org/jsoup/nodes/XmlDeclaration.java, line(s) 6
中危 应用程序使用不安全的随机数生成器
应用程序使用不安全的随机数生成器 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-random-number-generators Files: com/geetest/onelogin/b/c.java, line(s) 11 com/geetest/onelogin/u/b0.java, line(s) 3 com/geetest/onelogin/u/s.java, line(s) 8 com/geetest/onepassv2/c/a.java, line(s) 12 com/live/sdk/stream/sender/rtmp/packets/Handshake.java, line(s) 10 com/yixing/snugglelive/global/ColorGame.java, line(s) 5 com/yixing/snugglelive/ui/main/fragment/AnchorProfileFragment.java, line(s) 23 org/greenrobot/greendao/test/DbTest.java, line(s) 7 org/java_websocket/drafts/Draft_10.java, line(s) 14 org/java_websocket/drafts/Draft_75.java, line(s) 8 org/java_websocket/drafts/Draft_76.java, line(s) 13 org/jsoup/helper/DataUtil.java, line(s) 13
中危 应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库
应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04h-Testing-Code-Quality.md#injection-flaws-mstg-arch-2-and-mstg-platform-2 Files: com/geetest/onelogin/e/a.java, line(s) 5,16 com/geetest/onepassv2/a/a.java, line(s) 5,92 com/yixing/snugglelive/PayeeBeanDao.java, line(s) 4,41 com/yixing/snugglelive/PrivateMsgBeanDao.java, line(s) 4,42 com/yixing/snugglelive/UserInfoDao.java, line(s) 4,49 org/greenrobot/greendao/AbstractDao.java, line(s) 6,7,118 org/greenrobot/greendao/DbUtils.java, line(s) 6,15 org/greenrobot/greendao/database/StandardDatabase.java, line(s) 5,15
中危 应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据
应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#external-storage Files: com/geetest/onelogin/u/u.java, line(s) 13 com/live/sdk/stream/sender/local/LocalSender.java, line(s) 17 com/yalantis/ucrop/util/FileUtils.java, line(s) 88 com/yixing/snugglelive/utils/DataCleanManager.java, line(s) 11,19 com/yixing/snugglelive/utils/FileUtil.java, line(s) 111,144
中危 MD5是已知存在哈希冲突的弱哈希
MD5是已知存在哈希冲突的弱哈希 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/geetest/onelogin/f/f.java, line(s) 34 com/geetest/onelogin/g/c/c.java, line(s) 71 com/geetest/onelogin/g/c/f.java, line(s) 14 com/geetest/onepassv2/h/b.java, line(s) 40 com/opensource/svgaplayer/SVGACache.java, line(s) 133 com/sdk/c/a.java, line(s) 78,102 org/java_websocket/drafts/Draft_76.java, line(s) 39
中危 SHA-1是已知存在哈希冲突的弱哈希
SHA-1是已知存在哈希冲突的弱哈希 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/geetest/onelogin/i/b.java, line(s) 507 org/java_websocket/drafts/Draft_10.java, line(s) 171
中危 应用程序包含隐私跟踪程序
此应用程序有多个1隐私跟踪程序。跟踪器可以跟踪设备或用户,是终端用户的隐私问题。
中危 此应用可能包含硬编码机密信息
从应用程序中识别出以下机密确保这些不是机密或私人信息 MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC3b9/PFJTmDI68cjDnGTsWFskS MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCV+w9ttzAugqJLWL3SBzVYKmKP MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC5se07mkN71qsSJHjZ2Z0+Z+4LlLvf2sz7Md38VAa3EmAOvI7vZp3hbAxicL724ylcmisTPtZQhT/9C+25AELqy9PN9JmzKpwoVTUoJvxG4BoyT49+gGVl6s6zo1byNoHUzTfkmRfmC9MC53HvG8GwKP5xtcdptFjAIcgIR7oAWQIDAQAB 15f1483824cf4085ddca5a8529d873fc59a8ced2cbce67fb2b3dd9033ea03442 8afee6c1159c9cb44e5eddf1117e05b4 258EAFA5-E914-47DA-95CA-C5AB0DC85B11 c06c8400-8e06-11e0-9cb6-0002a5d5c51b amF2YXguY3J5cHRvLnNwZWMuSXZQYXJhbWV0ZXJTcGVj bb392ec0-8d4d-11e0-a896-0002a5d5c51b amF2YXguY3J5cHRvLnNwZWMuU2VjcmV0S2V5U3BlYw== nfQBXjrQuznVmTNOCnoNMqCG174mrdqF55k+iSgDE12ljEJjHR5KF10SWVF3E/RSz 3850ec2b86519c9de2e63316f8abff55 n/UztcZS26BAzILeGOw2Fv5BeSSftX2AKlhEw7RxnZX1S7rLrIIVzLeJhEctdEvM0 dd375053938c7b0edc262196ab4b0082
信息 此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它
此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: com/yixing/snugglelive/ui/live/activity/OneOnOneVideoActivity.java, line(s) 7,891 com/yixing/snugglelive/ui/login/activity/LoginActivity.java, line(s) 7,538,562,583 com/yixing/snugglelive/ui/main/activity/ProfileHomeActivity.java, line(s) 4,371 com/yixing/snugglelive/ui/main/activity/UserProfileActivity.java, line(s) 4,169 com/yixing/snugglelive/ui/main/fragment/AnchorMineFragment.java, line(s) 4,336 com/yixing/snugglelive/ui/main/fragment/ChatMsgFragment.java, line(s) 4,216 com/yixing/snugglelive/ui/main/fragment/NormalUserMineFragment.java, line(s) 4,243 com/yixing/snugglelive/ui/mine/adapter/PaymentOrdersAdapter.java, line(s) 4,62 com/yixing/snugglelive/widget/dialog/SimpleProfilePartyDialog.java, line(s) 4,217 io/branch/referral/ShareLinkManager.java, line(s) 337,337
信息 应用程序记录日志信息,不得记录敏感信息
应用程序记录日志信息,不得记录敏感信息 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#logs Files: com/geetest/onelogin/g/b/a.java, line(s) 74 com/geetest/onelogin/u/k.java, line(s) 249,265,205,213,221,229,257,236 com/geetest/onepassv2/e/b.java, line(s) 120 com/hp/hpl/sparta/DefaultLog.java, line(s) 6,11,16 com/hp/hpl/sparta/ParseByteStream.java, line(s) 79 com/hp/hpl/sparta/ParseCharStream.java, line(s) 124,669 com/hp/hpl/sparta/ParseException.java, line(s) 35 com/jaydenxiao/guider/HighLightGuideView.java, line(s) 187,188,189,190 com/live/sdk/audio/AudioProcessor.java, line(s) 94 com/live/sdk/camera/CameraHolder.java, line(s) 75,93,197,212 com/live/sdk/camera/CameraUtils.java, line(s) 68,108 com/live/sdk/controller/audio/NormalAudioController.java, line(s) 31,48,67,83,96,106 com/live/sdk/controller/video/CameraVideoController.java, line(s) 40,50,62,71,81,83 com/live/sdk/controller/video/ScreenVideoController.java, line(s) 82,84 com/live/sdk/mediacodec/VideoMediaCodec.java, line(s) 20 com/live/sdk/screen/ScreenRecordActivity.java, line(s) 30 com/live/sdk/screen/ScreenRecordEncoder.java, line(s) 92 com/live/sdk/stream/packer/AnnexbHelper.java, line(s) 60 com/live/sdk/stream/sender/rtmp/Crypto.java, line(s) 17,19,28,38 com/live/sdk/stream/sender/rtmp/io/RtmpConnection.java, line(s) 95,105,214,222,229,248,285,307,330,340,349,354,362,370,383,397,461,244 com/live/sdk/stream/sender/rtmp/io/RtmpDecoder.java, line(s) 33,42,45,52 com/live/sdk/stream/sender/rtmp/packets/ChunkHeader.java, line(s) 122 com/live/sdk/stream/sender/rtmp/packets/Handshake.java, line(s) 22,27,38,39,43,44,55,57,59,64,66,68,73,80,92,96,106,139 com/live/sdk/stream/sender/sendqueue/NormalSendQueue.java, line(s) 175,177,182 com/live/sdk/ui/CameraLivingView.java, line(s) 200,201,235,240,244,248,253,257,263 com/live/sdk/ui/RenderSurfaceView.java, line(s) 21,27,32,43,49,54 com/live/sdk/utils/SopCastLog.java, line(s) 14,26,20 com/live/sdk/video/GlUtil.java, line(s) 59,60,74,75,85,94 com/live/sdk/video/MyRecorder.java, line(s) 131 com/live/sdk/video/MyRenderer.java, line(s) 134,208 com/live/sdk/video/effect/Effect.java, line(s) 58 com/live/sdk/video/filter/BaseFilter.java, line(s) 58 com/lljjcoder/style/citylist/CityListSelectActivity.java, line(s) 108 com/lljjcoder/style/citylist/sortlistview/CharacterParser.java, line(s) 38 com/lljjcoder/style/citypickerview/widget/wheel/adapters/AbstractWheelTextAdapter.java, line(s) 143 com/mcxiaoke/bus/Bus.java, line(s) 138,149,154,168,191,209,236,258,268,269,271,273,276,278,280,283 com/mcxiaoke/bus/EventEmitter.java, line(s) 31,26 com/mcxiaoke/bus/Helper.java, line(s) 85 com/mcxiaoke/bus/StopWatch.java, line(s) 30,28,26 com/nineoldandroids/animation/PropertyValuesHolder.java, line(s) 156,184,230,248,250,267,269,304,306,438,440,528,530 com/opensource/svgaplayer/utils/log/DefaultLogCat.java, line(s) 28,41,21,14,35 com/sdk/b/a.java, line(s) 39,70 com/sdk/b/d.java, line(s) 274,281,156,201,230,313 com/sdk/base/framework/utils/log/LogUtils.java, line(s) 18,42,52,62,80 com/sdk/base/framework/utils/log/MobileLogManager.java, line(s) 108,115 com/sdk/e/c.java, line(s) 199 com/sdk/i/a.java, line(s) 13 com/sdk/j/b.java, line(s) 24,26,40,43 com/sdk/mobile/manager/login/cucc/UiOauthManager.java, line(s) 25,29,30,36,37,38,39 com/sdk/q/f.java, line(s) 59 com/sdk/w/g.java, line(s) 11,20 com/sdk/x/a.java, line(s) 196 com/sdk/y/a.java, line(s) 28 com/sdk/y/b.java, line(s) 59,127,297 com/sdk/y/c.java, line(s) 22,58 com/wangsu/libwswebrtc/WsWebRTCSurfaceView.java, line(s) 54,67,76,109,112,117,130,140,159,165,176,188,209,228,364,300,322,381 com/wangsu/libwswebrtc/WsWebRTCWsTextureView.java, line(s) 44,139,144,166,181,208,228,247,315,364,431,338,361,418 com/wangsu/libwswebrtc/b/a.java, line(s) 36 com/wangsu/libwswebrtc/b/b.java, line(s) 70 com/wangsu/libwswebrtc/b/f.java, line(s) 321,327,333,372,398,407,412,431,507,511,519,523,767,785,786,237,270,301,305,342 com/wangsu/libwswebrtc/b/g.java, line(s) 288 com/yalantis/ucrop/UCropActivity.java, line(s) 156 com/yalantis/ucrop/task/BitmapCropTask.java, line(s) 113 com/yalantis/ucrop/task/BitmapLoadTask.java, line(s) 123,152,197,84,87,129,138,145 com/yalantis/ucrop/util/BitmapLoadUtils.java, line(s) 103,51,82 com/yalantis/ucrop/util/EglUtils.java, line(s) 27 com/yalantis/ucrop/util/FileUtils.java, line(s) 60,96 com/yalantis/ucrop/util/ImageHeaderParser.java, line(s) 55,62,73,81,113,123,135,149,163,169,173,178,184,188,291,54,61,72,80,112,122,134,148,162,168,172,177,183,187 com/yalantis/ucrop/view/TransformImageView.java, line(s) 218,235,125,79 com/yixing/snugglelive/Application.java, line(s) 475,480,484,492,500,534,923,929,934,940,945,279,289,290,434,444,457,507,766,836,977,983,1078,1086,1126,957 com/yixing/snugglelive/BaseUrlInterceptor.java, line(s) 20,24,32 com/yixing/snugglelive/DaoMaster.java, line(s) 63,79 com/yixing/snugglelive/GetMediaTokenManager.java, line(s) 50,51 com/yixing/snugglelive/core/event/AndroidEventManager.java, line(s) 351 com/yixing/snugglelive/core/fcpermission/FcPermissions.java, line(s) 27 com/yixing/snugglelive/core/fcpermission/FcPermissionsB.java, line(s) 64 com/yixing/snugglelive/core/fcpermission/ui/FcPermissionsActivity.java, line(s) 21,27,32 com/yixing/snugglelive/engine/persistentcookiejar/persistence/SerializableCookie.java, line(s) 31,36,41,53,97,106,120,140 com/yixing/snugglelive/exoplayer/listener/Listener.java, line(s) 73,83,84 com/yixing/snugglelive/exoplayer/trackselector/BolaTrackSelection.java, line(s) 247,253,356,362,368,395,491,500,526,558,563,324,332 com/yixing/snugglelive/global/BankCardUtils.java, line(s) 47 com/yixing/snugglelive/global/CardUtils.java, line(s) 66 com/yixing/snugglelive/global/ColorGame.java, line(s) 42,43,44,45,46,66,76,78,83 com/yixing/snugglelive/global/GiftAnmManager.java, line(s) 72 com/yixing/snugglelive/global/HttpUtils.java, line(s) 153,161 com/yixing/snugglelive/global/LocationUtils.java, line(s) 22 com/yixing/snugglelive/global/NetworkConnectChangedReceiver.java, line(s) 26,28,41 com/yixing/snugglelive/ui/base/AppActivity.java, line(s) 275,72 com/yixing/snugglelive/ui/live/activity/OneOnOneVideoActivity.java, line(s) 285,297,299,305,317,319,465,475,510,511,785,919,966,1038,1131,1249,786 com/yixing/snugglelive/ui/live/activity/PartyRoomRuleActivity.java, line(s) 237,239,259,353 com/yixing/snugglelive/ui/live/activity/PrivateChatReviewActivity.java, line(s) 54 com/yixing/snugglelive/ui/live/activity/UpdatePartySettingActivity.java, line(s) 160 com/yixing/snugglelive/ui/live/activity/VideoCallingActivity.java, line(s) 75 com/yixing/snugglelive/ui/live/activity/VoicePartyActivity.java, line(s) 399,409,453,511,516,523,622,724,732,798,922,932,995,1014,1188,1196,1205,1388,1411,1479,1588,1611,1729,1910,1927,1981,2015,2047,2186,803 com/yixing/snugglelive/ui/live/adpapter/PartySeatsAdapter.java, line(s) 59,63 com/yixing/snugglelive/ui/live/fragment/GameRouletteFragment.java, line(s) 853 com/yixing/snugglelive/ui/live/fragment/GiftFragmernt.java, line(s) 81,88,172,191,218,225 com/yixing/snugglelive/ui/live/fragment/GiftParentFragmernt.java, line(s) 171,276,496 com/yixing/snugglelive/ui/live/fragment/MessageListFragment.java, line(s) 141,111 com/yixing/snugglelive/ui/live/holder/InviteSeatHolder.java, line(s) 55 com/yixing/snugglelive/ui/live/holder/PartySeatHolder.java, line(s) 101,115,117,135 com/yixing/snugglelive/ui/live/rtcobserver/WebRTCController.java, line(s) 53,59,129,138,147,163,166,171,176,181,186,208,211,123,131,119,127 com/yixing/snugglelive/ui/live/runner/PrivateChatReviewRunner.java, line(s) 23 com/yixing/snugglelive/ui/live/runner/PrivateChatStreamsRunner.java, line(s) 21,24 com/yixing/snugglelive/ui/live/runner/SendGiftRunner.java, line(s) 18 com/yixing/snugglelive/ui/login/activity/LoginActivity.java, line(s) 273,282,287,292,339,350,366,371,244,303,442,548 com/yixing/snugglelive/ui/login/activity/RegisterActivity.java, line(s) 130 com/yixing/snugglelive/ui/main/activity/FullScreenVideoActivity.java, line(s) 119,126,134,148,187,204,212,223 com/yixing/snugglelive/ui/main/activity/MainActivity.java, line(s) 149,164,193,200,217,229,254,268,483,497,503,523,542,664,707 com/yixing/snugglelive/ui/main/activity/OpenVoicePartyActivity.java, line(s) 362,365,380,383,177,179,199,447,548 com/yixing/snugglelive/ui/main/activity/ProfileHomeActivity.java, line(s) 272,289,297,311,423 com/yixing/snugglelive/ui/main/activity/SearchUserActivity.java, line(s) 153 com/yixing/snugglelive/ui/main/activity/SearchVoicePartyActivity.java, line(s) 147,156,172 com/yixing/snugglelive/ui/main/activity/SelectPartyBackgroundActivity.java, line(s) 88 com/yixing/snugglelive/ui/main/activity/SelectPhotoFromAlbumActivity.java, line(s) 155,158,173,176,231 com/yixing/snugglelive/ui/main/activity/SplashActivity.java, line(s) 63 com/yixing/snugglelive/ui/main/activity/UserProfileActivity.java, line(s) 91 com/yixing/snugglelive/ui/main/activity/VideoIncomingCallActivity.java, line(s) 153,166 com/yixing/snugglelive/ui/main/adapter/AllBlogsAdapter.java, line(s) 71,99,112 com/yixing/snugglelive/ui/main/adapter/BroadcasterBlogsAdapter.java, line(s) 74,114 com/yixing/snugglelive/ui/main/adapter/NearbyUserAdapter.java, line(s) 62,69 com/yixing/snugglelive/ui/main/adapter/NewUserAdapter.java, line(s) 62 com/yixing/snugglelive/ui/main/adapter/OnLineUserAdapter.java, line(s) 65,100 com/yixing/snugglelive/ui/main/adapter/RecommendUserAdapter.java, line(s) 71 com/yixing/snugglelive/ui/main/adapter/SearchUserAdapter.java, line(s) 58 com/yixing/snugglelive/ui/main/fragment/AllBlogsFragment.java, line(s) 245 com/yixing/snugglelive/ui/main/fragment/BroadcasterBlogsFragment.java, line(s) 232 com/yixing/snugglelive/ui/main/fragment/ChatMsgFragment.java, line(s) 149 com/yixing/snugglelive/ui/main/fragment/DynamicFragment.java, line(s) 66 com/yixing/snugglelive/ui/main/fragment/HotVoicePartyFragment.java, line(s) 52,193,208 com/yixing/snugglelive/ui/main/fragment/NearbyFragment.java, line(s) 129,153 com/yixing/snugglelive/ui/main/fragment/OnLineFragment.java, line(s) 216 com/yixing/snugglelive/ui/main/fragment/PhotoAlbumFragment.java, line(s) 111 com/yixing/snugglelive/ui/main/fragment/RecommendUsersFragment.java, line(s) 75 com/yixing/snugglelive/ui/main/holder/RecycleItemBroadcasterBlogHolder.java, line(s) 131,192,200,211,231,254,297,490,511,519,528 com/yixing/snugglelive/ui/main/holder/RecyclerItemBlogHolder.java, line(s) 130,181,191,199,210,230,259,302,495,516,524,533 com/yixing/snugglelive/ui/mine/activity/AlbumVideoPreviewActivity.java, line(s) 130,169,186,194,205 com/yixing/snugglelive/ui/mine/activity/EditProfileActivity.java, line(s) 419,422,445,448,274,313,316 com/yixing/snugglelive/ui/mine/activity/LevelPrivilegesActivity.java, line(s) 81,82 com/yixing/snugglelive/ui/mine/activity/MyAlbumActivity.java, line(s) 197,200,223,226,293,319,321,325,340,342,346,357,483 com/yixing/snugglelive/ui/mine/activity/OpenVIPActivity.java, line(s) 119,156 com/yixing/snugglelive/ui/mine/activity/PayeeEditActivity.java, line(s) 145,151,182 com/yixing/snugglelive/ui/mine/activity/PaymentWebviewActivity.java, line(s) 98 com/yixing/snugglelive/ui/mine/activity/ProtocolActivity.java, line(s) 67,117 com/yixing/snugglelive/ui/mine/activity/PublishBlogActivity.java, line(s) 392,395,414,417,173,191,203,228,283,293,301,307,510,512,516,525,527 com/yixing/snugglelive/ui/mine/activity/RechargeActivity.java, line(s) 115,154 com/yixing/snugglelive/ui/mine/activity/SetPrivateChatPriceActivity.java, line(s) 118 com/yixing/snugglelive/ui/mine/adapter/MineAlbumAdapter.java, line(s) 78 com/yixing/snugglelive/ui/mine/adapter/PaymentItemAdapter.java, line(s) 57,60,67 com/yixing/snugglelive/ui/mine/adapter/PaymentMethodAdapter.java, line(s) 86 com/yixing/snugglelive/utils/ActivityManager.java, line(s) 37,151,157,258,303 com/yixing/snugglelive/utils/AnimorUtils.java, line(s) 6 com/yixing/snugglelive/utils/BlurUtils.java, line(s) 42,269 com/yixing/snugglelive/utils/DimenTool.java, line(s) 53,230,231,232,233,234,235,236,237,238,239 com/yixing/snugglelive/utils/FileSizeUtil.java, line(s) 27,44,57 com/yixing/snugglelive/utils/GiftTool.java, line(s) 6 com/yixing/snugglelive/utils/InterpolatorUtils.java, line(s) 9,11,13 com/yixing/snugglelive/utils/LanguageUtil.java, line(s) 25,32 com/yixing/snugglelive/utils/LevelUtils.java, line(s) 9,14,19,24,29,34,39,44,49,54,59,64,69,74,79,84,89,94,99,104 com/yixing/snugglelive/utils/SvgaUtils.java, line(s) 35,57 com/yixing/snugglelive/utils/activity/ActivityHolder.java, line(s) 63 com/yixing/snugglelive/utils/activity/Dimen.java, line(s) 12 com/yixing/snugglelive/utils/keywordfilter/FilterSet.java, line(s) 84 com/yixing/snugglelive/widget/AroundCircleView.java, line(s) 198 com/yixing/snugglelive/widget/CustomGiftView.java, line(s) 180 com/yixing/snugglelive/widget/CustomPopWindow.java, line(s) 175,176,182 com/yixing/snugglelive/widget/MyRadioButton.java, line(s) 32,41 com/yixing/snugglelive/widget/ZoomImageView.java, line(s) 168,185,225,238,251,256,285 com/yixing/snugglelive/widget/dialog/PartySeatMenuDialog.java, line(s) 175 com/yixing/snugglelive/widget/dialog/VideoIncomingCallDialog.java, line(s) 141,158 com/yixing/snugglelive/widget/hiframeanimationlib/FrameAnimationView.java, line(s) 204 com/yixing/snugglelive/widget/image/RoundImageView.java, line(s) 52 com/yixing/snugglelive/widget/radiogroup/MultiLineRadioGroup.java, line(s) 59,208,213,218,221,238 com/yixing/snugglelive/widget/swipe/ChildSwipeTopBottomLayout.java, line(s) 226,240,309,314,328,554 com/yixing/snugglelive/widget/swipe/SwipeTopBottomLayout.java, line(s) 231,245,314,319,333,559 io/branch/referral/BranchJsonConfig.java, line(s) 46,48,75,87,99,114,126,142,154,170 io/branch/referral/BranchLogger.java, line(s) 157,97,135,193,176,116 io/branch/referral/validators/IntegrationValidator.java, line(s) 132,133,195,199,203 io/github/inflationx/calligraphy3/ReflectionUtils.java, line(s) 30,32 io/github/inflationx/calligraphy3/TypefaceUtils.java, line(s) 30 io/github/inflationx/viewpump/internal/ReflectionUtils.java, line(s) 47,49 master/flame/danmaku/danmaku/model/objectpool/FinitePool.java, line(s) 56 org/greenrobot/greendao/AbstractDao.java, line(s) 382,282,729 org/greenrobot/greendao/DaoException.java, line(s) 28,29 org/greenrobot/greendao/DaoLog.java, line(s) 35,39,67,15,43,47,27,31,51,55,59,63 org/greenrobot/greendao/DbUtils.java, line(s) 88,30 org/greenrobot/greendao/async/AsyncOperationExecutor.java, line(s) 173,183,195,129 org/greenrobot/greendao/internal/LongHashMap.java, line(s) 132 org/greenrobot/greendao/query/QueryBuilder.java, line(s) 244,247 org/greenrobot/greendao/test/AbstractDaoTest.java, line(s) 55,57,47 org/greenrobot/greendao/test/AbstractDaoTestLongPk.java, line(s) 32,35 org/greenrobot/greendao/test/AbstractDaoTestSinglePk.java, line(s) 306 org/greenrobot/greendao/test/DbTest.java, line(s) 85 org/java_websocket/AbstractWebSocket.java, line(s) 33,41,47,61 org/java_websocket/SSLSocketChannel.java, line(s) 323 org/java_websocket/WebSocketImpl.java, line(s) 268,550,622 org/java_websocket/server/WebSocketServer.java, line(s) 686,713,540 org/jsoup/examples/HtmlToPlainText.java, line(s) 30,34 org/jsoup/examples/ListLinks.java, line(s) 47 tv/cjump/jni/DeviceUtils.java, line(s) 64 tv/cjump/jni/NativeBitmapFactory.java, line(s) 71,129
信息 此应用程序使用SQL Cipher。SQLCipher为sqlite数据库文件提供256位AES加密
此应用程序使用SQL Cipher。SQLCipher为sqlite数据库文件提供256位AES加密 Files: org/greenrobot/greendao/database/SqlCipherEncryptedHelper.java, line(s) 15,4,5
安全 此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击
此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#testing-custom-certificate-stores-and-certificate-pinning-mstg-network-4 Files: com/geetest/onelogin/u/j.java, line(s) 93,32 com/yixing/snugglelive/Application.java, line(s) 1117,1222 org/jsoup/helper/HttpConnection.java, line(s) 867,825
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (media.scbjweilai.cn) 通信。
{'ip': '61.164.116.141', 'country_short': 'CN', 'country_long': '中国', 'region': '浙江', 'city': '温州', 'latitude': '27.999420', 'longitude': '120.666817'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (api.scbjweilai.cn) 通信。
{'ip': '182.136.76.4', 'country_short': 'CN', 'country_long': '中国', 'region': '四川', 'city': '绵阳', 'latitude': '31.459375', 'longitude': '104.753128'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (id6.me) 通信。
{'ip': '112.33.111.233', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (docs.geetest.com) 通信。
{'ip': '61.162.15.240', 'country_short': 'CN', 'country_long': '中国', 'region': '山东', 'city': '济宁', 'latitude': '35.404999', 'longitude': '116.581390'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (wap.cmpassport.com) 通信。
{'ip': '112.33.111.233', 'country_short': 'CN', 'country_long': '中国', 'region': '安徽', 'city': '合肥', 'latitude': '31.863815', 'longitude': '117.280830'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (scbjweilai.cn) 通信。
{'ip': '114.80.123.49', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (beian.miit.gov.cn) 通信。
{'ip': '59.63.226.86', 'country_short': 'CN', 'country_long': '中国', 'region': '江西', 'city': '南昌', 'latitude': '28.683331', 'longitude': '115.883331'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (onepass.geetest.com) 通信。
{'ip': '103.143.17.142', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (live-rtc.scbjweilai.cn) 通信。
{'ip': '61.147.112.146', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '扬州', 'latitude': '32.397221', 'longitude': '119.435600'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (opencloud.wostore.cn) 通信。
{'ip': '116.128.209.136', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (pagead2.googlesyndication.com) 通信。
{'ip': '180.163.150.38', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (open.e.189.cn) 通信。
{'ip': '42.123.76.87', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (e.189.cn) 通信。
{'ip': '42.123.76.65', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (log.reyun.com) 通信。
{'ip': '52.81.118.135', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (api-e189.21cn.com) 通信。
{'ip': '222.93.106.185', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '苏州', 'latitude': '31.311365', 'longitude': '120.617691'}