安全分析报告:
安全分数
安全分数 42/100
风险评级
等级
- A
- B
- C
- F
严重性分布 (%)
隐私风险
8
用户/设备跟踪器
调研结果
高危
11
中危
40
信息
2
安全
2
关注
47
高危 基本配置不安全地配置为允许到所有域的明文流量。
Scope: *
高危 基本配置配置为信任用户安装的证书。
Scope: *
高危 该文件是World Writable。任何应用程序都可以写入文件
该文件是World Writable。任何应用程序都可以写入文件 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-local-storage-for-sensitive-data-mstg-storage-1-and-mstg-storage-2 Files: com/cosw/util/MySharedPreferences.java, line(s) 62 com/nanningYKT/bluetoothlesdk/MySharedPreferences.java, line(s) 62 com/octopus/ad/internal/utilities/SPUtils.java, line(s) 140,144 hc/mhis/paic/com/essclibrary/utils/SpUtil.java, line(s) 53
高危 使用弱加密算法
使用弱加密算法 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/cosw/util/DesTools.java, line(s) 53,71,91,111,129,147,166,185 com/insigmacc/nannsmk/utils/Desutils.java, line(s) 23 com/unionpay/utils/d.java, line(s) 15
高危 不安全的Web视图实现。Web视图忽略SSL证书错误并接受任何SSL证书。此应用程序易受MITM攻击
不安全的Web视图实现。Web视图忽略SSL证书错误并接受任何SSL证书。此应用程序易受MITM攻击 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#webview-server-certificate-verification Files: com/insigmacc/nannsmk/activity/CountryWebActivity.java, line(s) 843,842 com/insigmacc/nannsmk/activity/NomalWebActivity.java, line(s) 90,89 com/insigmacc/nannsmk/activity/WebActivity.java, line(s) 869,868 com/ytong/media/interaction/YtAdWebviewActivity.java, line(s) 124,123 hc/mhis/paic/com/essclibrary/configuration/EsscWebViewClient.java, line(s) 34,33
高危 SSL的不安全实现。信任所有证书或接受自签名证书是一个关键的安全漏洞。此应用程序易受MITM攻击
SSL的不安全实现。信任所有证书或接受自签名证书是一个关键的安全漏洞。此应用程序易受MITM攻击 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#android-network-apis Files: com/insigmacc/nannsmk/blacknum/AdServerUtil.java, line(s) 63,12,13,14,15,16,17 com/ytong/media/utils/PandaServerUtil.java, line(s) 50,87,183,223,252,25,26,27,28,29,30 org/xutils/x.java, line(s) 72,4,5,6
高危 已启用远程WebView调试
已启用远程WebView调试 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04c-Tampering-and-Reverse-Engineering.md#debugging-and-tracing Files: com/yd/saas/common/widget/h5/YdH5Activity.java, line(s) 167,12
高危 如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击
如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-7 Files: com/octopus/ad/internal/view/AdWebView.java, line(s) 399,27,28 com/yd/saas/common/widget/h5/YdH5Activity.java, line(s) 195,12
高危 应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。
应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: cn/haorui/sdk/core/loader/c.java, line(s) 35
高危 该文件是World Readable。任何应用程序都可以读取文件
该文件是World Readable。任何应用程序都可以读取文件 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-local-storage-for-sensitive-data-mstg-storage-1-and-mstg-storage-2 Files: com/octopus/ad/internal/utilities/SPUtils.java, line(s) 149
高危 应用程序包含隐私跟踪程序
此应用程序有多个8隐私跟踪程序。跟踪器可以跟踪设备或用户,是终端用户的隐私问题。
中危 基本配置配置为信任系统证书。
Scope: *
中危 应用程序已启用明文网络流量
[android:usesCleartextTraffic=true] 应用程序打算使用明文网络流量,例如明文HTTP,FTP协议,DownloadManager和MediaPlayer。针对API级别27或更低的应用程序,默认值为“true”。针对API级别28或更高的应用程序,默认值为“false”。避免使用明文流量的主要原因是缺乏机密性,真实性和防篡改保护;网络攻击者可以窃听传输的数据,并且可以在不被检测到的情况下修改它。
中危 应用程序数据可以被备份
[android:allowBackup=true] 这个标志允许任何人通过adb备份你的应用程序数据。它允许已经启用了USB调试的用户从设备上复制应用程序数据。
中危 Activity (com.insigmacc.nannsmk.activity.MainActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.insigmacc.nannsmk.wxapi.WXPayEntryActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.insigmacc.nannsmk.nfc.NFCActivity) 未被保护。
存在一个intent-filter。 发现 Activity与设备上的其他应用程序共享,因此让它可以被设备上的任何其他应用程序访问。intent-filter的存在表明这个Activity是显式导出的。
中危 Activity (com.insigmacc.nannsmk.buscode.activity.BusCodeActivity) 未被保护。
存在一个intent-filter。 发现 Activity与设备上的其他应用程序共享,因此让它可以被设备上的任何其他应用程序访问。intent-filter的存在表明这个Activity是显式导出的。
中危 Activity (com.insigmacc.nannsmk.function.auth.ui.AuthWebviewActivity) 未被保护。
存在一个intent-filter。 发现 Activity与设备上的其他应用程序共享,因此让它可以被设备上的任何其他应用程序访问。intent-filter的存在表明这个Activity是显式导出的。
中危 Activity (com.insigmacc.nannsmk.function.home.MainActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.insigmacc.nannsmk.function.home.activity.FunctionMenuActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.insigmacc.nannsmk.function.home.activity.FunctionMenuEditActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.insigmacc.nannsmk.function.home.activity.MenuQueryActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity设置了TaskAffinity属性
(com.insigmacc.nannsmk.wxapi.WXEntryActivity) 如果设置了 taskAffinity,其他应用程序可能会读取发送到属于另一个任务的 Activity 的 Intent。为了防止其他应用程序读取发送或接收的 Intent 中的敏感信息,请始终使用默认设置,将 affinity 保持为包名
中危 Activity (com.insigmacc.nannsmk.wxapi.WXEntryActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.tencent.tauth.AuthActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.tencent.connect.common.AssistActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Service (com.taobao.accs.data.MsgDistributeService) 未被保护。
[android:exported=true] 发现 Service与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Service (com.umeng.message.UmengIntentService) 未被保护。
[android:exported=true] 发现 Service与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Broadcast Receiver (com.taobao.agoo.AgooCommondReceiver) 未被保护。
[android:exported=true] 发现 Broadcast Receiver与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.bytedance.android.openliveplugin.stub.activity.DouyinAuthorizeActivityProxy) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.bytedance.android.openliveplugin.stub.activity.DouyinAuthorizeActivityLiveProcessProxy) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.alipay.sdk.app.PayResultActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.alipay.sdk.app.AlipayResultActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (cn.jpush.android.service.JNotifyActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (cn.android.service.JTransitActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity设置了TaskAffinity属性
(com.umeng.message.notify.UPushMessageNotifyActivity) 如果设置了 taskAffinity,其他应用程序可能会读取发送到属于另一个任务的 Activity 的 Intent。为了防止其他应用程序读取发送或接收的 Intent 中的敏感信息,请始终使用默认设置,将 affinity 保持为包名
中危 Activity-Alias (com.umeng.message.UMessageNotifyActivity) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.sina.weibo.sdk.share.ShareTransActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 高优先级的Intent (1000)
[android:priority] 通过设置一个比另一个Intent更高的优先级,应用程序有效地覆盖了其他请求。
中危 IP地址泄露
IP地址泄露 Files: cn/haorui/sdk/core/AdSdk.java, line(s) 77 cn/haorui/sdk/core/utils/PackConfigUtil.java, line(s) 137,138,216,217 cn/haorui/sdk/core/utils/RequestUtil.java, line(s) 726,727,832,935,1036 cn/haorui/sdk/platform/gromore/HyInitConfig.java, line(s) 12 com/intcreator/commmon/android/util/NetworkUtils.java, line(s) 59 com/octopus/ad/Octopus.java, line(s) 15 com/octopus/ad/internal/b/f.java, line(s) 45,53,88 com/octopus/ad/internal/m.java, line(s) 134 com/octopus/ad/internal/network/a.java, line(s) 156 com/octopus/ad/internal/utilities/StringUtil.java, line(s) 103,104 com/octopus/ad/internal/utilities/UserEnvInfoUtil.java, line(s) 38 com/octopus/ad/utils/b/d.java, line(s) 74 com/ss/android/download/api/constant/BaseConstants.java, line(s) 33 com/ss/android/downloadlib/t/nl.java, line(s) 133 com/union/security/base/Cipher.java, line(s) 196 com/yd/saas/config/utils/DeviceUtil.java, line(s) 523,540,543 essclib/esscpermission/checker/SipTest.java, line(s) 20 essclib/pingan/ai/request/biap/common/ApiConstants.java, line(s) 48 org/android/spdy/SpdyAgent.java, line(s) 333 org/android/spdy/SpdyRequest.java, line(s) 27,53,72,95,120,140,166,185,208,233
中危 应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据
应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#external-storage Files: cn/addapp/pickers/util/ConvertUtils.java, line(s) 331 cn/addapp/pickers/util/LogUtils.java, line(s) 124 cn/haorui/sdk/core/download/a.java, line(s) 16 cn/haorui/sdk/core/utils/DownloadWorker.java, line(s) 258 cn/haorui/sdk/core/utils/RequestUtil.java, line(s) 254,1283 com/SuperKotlin/pictureviewer/ImageUtil.java, line(s) 34 com/baidu/vi/VDeviceAPI.java, line(s) 193,198,206 com/ccit/base/se/LogHelper.java, line(s) 131,132 com/ccit/www/mobileshieldsdk/activity/HandwriteSignActivity.java, line(s) 29 com/ccit/www/mobileshieldsdk/util/LogHelper.java, line(s) 130,131 com/ccit/www/mobileshieldsdk/util/ResManager.java, line(s) 49 com/hisign/CTID/facelivedetection/CTIDLiveDetectActivity.java, line(s) 434,1359 com/hisign/CTID/facelivedetection/applicaiton/CTIDCrashHandler.java, line(s) 118,119 com/hisign/CTID/facelivedetection/utils/FileUtils.java, line(s) 87 com/hisign/CTID/facelivedetection/utils/SdUtils.java, line(s) 13,17 com/hisign/CTID/utilty/ToolsUtilty.java, line(s) 79,636,653,839,975,983,991 com/insigmacc/nannsmk/CrashHandler.java, line(s) 30,34,35 com/insigmacc/nannsmk/activity/CountryWebActivity.java, line(s) 1526,1556 com/insigmacc/nannsmk/activity/InvoiceWebActivity.java, line(s) 528,558 com/insigmacc/nannsmk/activity/MainActivity.java, line(s) 1200 com/insigmacc/nannsmk/activity/SettingActivity.java, line(s) 353,400 com/insigmacc/nannsmk/activity/StudentPictureActivity.java, line(s) 187,207 com/insigmacc/nannsmk/activity/WebActivity.java, line(s) 1659,1689 com/insigmacc/nannsmk/applycard/activity/UpPictureActiity.java, line(s) 337 com/insigmacc/nannsmk/function/bcard/activity/BcardUpPictureActiity.java, line(s) 340 com/insigmacc/nannsmk/function/home/MainActivity.java, line(s) 675 com/insigmacc/nannsmk/function/home/activity/NewMessageActivity.java, line(s) 1146,1176 com/insigmacc/nannsmk/function/home/activity/PushMessageActivity.java, line(s) 367 com/insigmacc/nannsmk/limited/activity/UpLimitedPictureActivity.java, line(s) 126 com/insigmacc/nannsmk/limited/activity/UpStudentPictureActivity.java, line(s) 86 com/insigmacc/nannsmk/park/activity/ParkComplaintActivity.java, line(s) 191 com/insigmacc/nannsmk/park/activity/UpParkActivity.java, line(s) 106 com/intcreator/commmon/android/util/CleanUtils.java, line(s) 32 com/intcreator/commmon/android/util/CrashUtils.java, line(s) 158 com/intcreator/commmon/android/util/LogUtils.java, line(s) 520 com/nostra13/universalimageloader/utils/StorageUtils.java, line(s) 20,39,39,44 com/octopus/ad/utils/a/a.java, line(s) 270,271 com/octopus/ad/utils/b/d.java, line(s) 135 com/octopus/ad/utils/b/e.java, line(s) 82,31,34,82,93 com/octopus/ad/utils/b/k.java, line(s) 15,15 com/octopus/ad/utils/b/o.java, line(s) 126,129 com/ss/android/downloadlib/addownload/ao.java, line(s) 249,251 com/ss/android/downloadlib/addownload/nl.java, line(s) 387 com/ss/android/downloadlib/t/ni.java, line(s) 365,345,439 com/tencent/a/a/a/a/b.java, line(s) 22,24,36,45 com/wildma/idcardcamera/utils/FileUtils.java, line(s) 11,17,18 com/yd/saas/config/oaid/DeviceID.java, line(s) 97,98 e/b.java, line(s) 29 essclib/esscpermission/FileProvider.java, line(s) 151,218 essclib/esscpermission/checker/StorageReadTest.java, line(s) 11,14 essclib/esscpermission/checker/StorageWriteTest.java, line(s) 11,14 g/b.java, line(s) 35,110 g/e.java, line(s) 22 hc/mhis/paic/com/essclibrary/utils/DownLoadAndShareUtil.java, line(s) 174 hc/mhis/paic/com/essclibrary/utils/UploadFileUtils.java, line(s) 79 org/xutils/common/util/FileUtil.java, line(s) 19,40,45
中危 SHA-1是已知存在哈希冲突的弱哈希
SHA-1是已知存在哈希冲突的弱哈希 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: cn/haorui/sdk/core/oaid/impl/m.java, line(s) 48 cn/haorui/sdk/core/utils/RequestUtil.java, line(s) 1435 com/ccit/www/mobileshieldsdk/util/SecurePreferences.java, line(s) 75 com/czhj/devicehelper/oaId/helpers/f.java, line(s) 65 com/czhj/devicehelper/oaId/helpers/g.java, line(s) 64 com/hisign/CTID/ecrypt/pgpUtil.java, line(s) 96 com/insigmacc/nannsmk/utils/Utils.java, line(s) 146 com/intcreator/commmon/android/util/AppUtils.java, line(s) 432 com/libCom/androidsm2/util/ParameterUtil.java, line(s) 62,78 com/octopus/ad/internal/utilities/HashingFunctions.java, line(s) 21 com/octopus/ad/utils/a/b/n.java, line(s) 71 com/union/util/UnionUtils.java, line(s) 156 com/unionpay/utils/UPUtils.java, line(s) 16 com/unionpay/utils/b.java, line(s) 174 com/yd/saas/config/oaid/impl/OppoImpl.java, line(s) 40 org/repackage/a/a/a/a/c.java, line(s) 65
中危 文件可能包含硬编码的敏感信息,如用户名、密码、密钥等
文件可能包含硬编码的敏感信息,如用户名、密码、密钥等 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#checking-memory-for-sensitive-data-mstg-storage-10 Files: cn/haorui/sdk/activity/HRRewardVideoPlayerActivity.java, line(s) 72,73,57,61,62,63,64,65,66,67,68,69 cn/haorui/sdk/activity/HRWebviewActivity.java, line(s) 27,28,29 cn/haorui/sdk/core/loader/cache/a.java, line(s) 41 cn/haorui/sdk/core/utils/PackConfigUtil.java, line(s) 26 cn/haorui/sdk/core/utils/SecurityHelper.java, line(s) 12 com/ccit/SecureCredential/base/AgentSettingsUtil.java, line(s) 12 com/ccit/SecureCredential/util/EncryptionUtil.java, line(s) 10 com/ccit/www/mobileshieldsdk/common/service/impl/ExternalITFServiceTestImpl.java, line(s) 434,990 com/ccit/www/mobileshieldsdk/okutils/okhttputils/builder/PostFormBuilder.java, line(s) 48 com/ccit/www/mobileshieldsdk/util/ConstantPartOfURL.java, line(s) 26 com/ccit/www/mobileshieldsdk/util/SecurePreOperate.java, line(s) 24 com/hisign/CTID/facelivedetection/data/ConstantValues.java, line(s) 72 com/hisign/CTID/utilty/HomeWatcher.java, line(s) 57 com/insigmacc/nannsmk/activity/TureNameActivity.java, line(s) 62 com/insigmacc/nannsmk/applycard/activity/FaceVerifyActivity.java, line(s) 29 com/insigmacc/nannsmk/base/AppConsts.java, line(s) 9 com/insigmacc/nannsmk/function/auth/creamview/AbstractSilentLivenessActivity.java, line(s) 43,44 com/insigmacc/nannsmk/function/auth/ui/FaceVerifyActivity.java, line(s) 44 com/insigmacc/nannsmk/function/bcard/activity/BcardFaceVerifyActivity.java, line(s) 30 com/insigmacc/nannsmk/function/home/MainActivity.java, line(s) 402 com/insigmacc/nannsmk/limited/activity/LimitedFaceVerifyActivity.java, line(s) 24 com/insigmacc/nannsmk/utils/Desutils.java, line(s) 18 com/insigmacc/nannsmk/utils/FunctionJumpUtils.java, line(s) 209 com/intcreator/commmon/android/constant/RegexConstants.java, line(s) 24 com/libCom/androidsm2/api/Urls.java, line(s) 5,7,8 com/octopus/ad/internal/utilities/DeviceInfo.java, line(s) 16 com/pingan/ai/b/b/b/a.java, line(s) 79 com/pingan/ai/b/b/f/a.java, line(s) 7 com/plk/bluetoothlesdk/PlkBleService.java, line(s) 75 com/unionpay/tsmservice/data/Constant.java, line(s) 195,197 com/unionpay/tsmservice/data/ResultCode.java, line(s) 75,62 com/unionpay/tsmservice/mi/data/Constant.java, line(s) 142,146 com/unionpay/tsmservice/mi/data/ResultCode.java, line(s) 33,30 com/windmill/sdk/WMConstants.java, line(s) 24 com/windmill/sdk/b/a.java, line(s) 562 com/yd/saas/base/custom/MedProConst.java, line(s) 5 com/yd/saas/common/saas/bean/AdSource.java, line(s) 231 com/yd/saas/common/util/CommConstant.java, line(s) 50 com/yd/saas/config/utils/AesUtils.java, line(s) 15 essclib/pingan/ai/request/biap/common/ApiConstants.java, line(s) 31,18 hc/mhis/paic/com/essclibrary/scancode/decoding/Intents.java, line(s) 50 org/android/spdy/SpdyProtocol.java, line(s) 43 rx/internal/schedulers/NewThreadWorker.java, line(s) 26,36
中危 应用程序使用不安全的随机数生成器
应用程序使用不安全的随机数生成器 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-random-number-generators Files: com/ccit/www/mobileshieldsdk/activity/ChangePassWActivity.java, line(s) 36 com/ccit/www/mobileshieldsdk/activity/InputPinActivity.java, line(s) 34 com/ccit/www/mobileshieldsdk/activity/SetPinActivity.java, line(s) 67 com/ccit/www/mobileshieldsdk/activity/SetPinDialogActivity.java, line(s) 35 com/ccit/www/mobileshieldsdk/activity/SetPinDialogByAuthActivity.java, line(s) 31 com/ccit/www/mobileshieldsdk/service/impl/CertServiceImpl.java, line(s) 57 com/ccit/www/mobileshieldsdk/service/impl/SOFSecurityServiceImpl.java, line(s) 25 com/cosw/util/RandomUtil.java, line(s) 3 com/hisign/CTID/facelivedetection/CTIDLiveDetectActivity.java, line(s) 56 com/insigmacc/nannsmk/utils/OrderInfoUtil2_0.java, line(s) 17 com/nanningYKT/bluetoothlesdk/PlkUtilTool.java, line(s) 8 com/octopus/ad/internal/utilities/DeviceInfo.java, line(s) 13 com/scwang/smartrefresh/header/FunGameBattleCityHeader.java, line(s) 14 com/scwang/smartrefresh/header/TaurusHeader.java, line(s) 24 com/scwang/smartrefresh/header/storehouse/StoreHouseBarItem.java, line(s) 8 com/union/app/KeyboardDialog.java, line(s) 26 com/union/math/ec/ECCurve.java, line(s) 13 com/union/math/ec/ECFieldElement.java, line(s) 8 com/union/math/raw/Mod.java, line(s) 3 com/windmill/sdk/widget/SplashBaseView.java, line(s) 24 com/windmill/sdk/widget/b.java, line(s) 40 com/yd/saas/base/manager/loader/AdViewManager.java, line(s) 24 com/yd/saas/common/util/RandomUtils.java, line(s) 3 com/yd/saas/config/utils/DeviceUtil.java, line(s) 63 hc/mhis/paic/com/essclibrary/utils/CommandKeyUtil.java, line(s) 3 org/android/spdy/SpdyBytePool.java, line(s) 3
中危 应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库
应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04h-Testing-Code-Quality.md#injection-flaws-mstg-arch-2-and-mstg-platform-2 Files: com/ccit/SecureCredential/util/SpiteLogHelper.java, line(s) 6,7,40 com/liulishuo/okdownload/core/breakpoint/BreakpointSQLiteHelper.java, line(s) 6,7,76 com/octopus/ad/internal/b/b/a.java, line(s) 6,7,24 com/pingan/ai/b/b/e/d.java, line(s) 4,5,36 com/pingan/ai/b/b/e/e.java, line(s) 4,11 com/ss/android/downloadlib/w/tf.java, line(s) 4,5,19 com/windmill/sdk/b/d.java, line(s) 6,191 com/windmill/sdk/b/h.java, line(s) 4,5,25 org/xutils/db/DbManagerImpl.java, line(s) 4,5,522
中危 不安全的Web视图实现。可能存在WebView任意代码执行漏洞
不安全的Web视图实现。可能存在WebView任意代码执行漏洞 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#testing-javascript-execution-in-webviews-mstg-platform-5 Files: cn/haorui/sdk/core/webview/TaskCenterWebActivity.java, line(s) 100,89 com/ccit/www/mobileshieldsdk/activity/ShieldBaseActivity.java, line(s) 75,54 com/insigmacc/nannsmk/activity/AcWebActivity.java, line(s) 257,245,256 com/insigmacc/nannsmk/activity/CountryWebActivity.java, line(s) 828,816 com/insigmacc/nannsmk/activity/InsureWebActivity.java, line(s) 87,79 com/insigmacc/nannsmk/activity/InvoiceWebActivity.java, line(s) 186,178 com/insigmacc/nannsmk/activity/NomalWebActivity.java, line(s) 83,70 com/insigmacc/nannsmk/activity/OnlineInnerActivity.java, line(s) 76,57 com/insigmacc/nannsmk/activity/WebActivity.java, line(s) 862,849 com/insigmacc/nannsmk/function/home/activity/NewMessageActivity.java, line(s) 517,506 com/insigmacc/nannsmk/function/home/activity/PushMessageActivity.java, line(s) 130,119 com/unionpay/WebViewJavascriptBridge.java, line(s) 33,30 hc/mhis/paic/com/essclibrary/activity/ESSCMainActivity.java, line(s) 347,331 wendu/dsbridge/DWebView.java, line(s) 759,752
中危 可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息
可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-6 Files: com/insigmacc/nannsmk/activity/AcWebActivity.java, line(s) 247,245,256 com/insigmacc/nannsmk/activity/CountryWebActivity.java, line(s) 818,816 com/insigmacc/nannsmk/activity/InsureWebActivity.java, line(s) 80,79 com/insigmacc/nannsmk/activity/InvoiceWebActivity.java, line(s) 179,178 com/insigmacc/nannsmk/activity/NomalWebActivity.java, line(s) 71,70 com/insigmacc/nannsmk/activity/OnlineInnerActivity.java, line(s) 74,57 com/insigmacc/nannsmk/activity/WebActivity.java, line(s) 850,849 com/insigmacc/nannsmk/function/auth/ui/AuthWebviewActivity.java, line(s) 60,59 com/insigmacc/nannsmk/function/home/activity/NewMessageActivity.java, line(s) 508,506 com/insigmacc/nannsmk/function/home/activity/PushMessageActivity.java, line(s) 121,119 com/insigmacc/nannsmk/function/ticket/ui/QuestionActivity.java, line(s) 41,39 com/octopus/ad/internal/view/AdWebView.java, line(s) 158,157 com/ytong/media/interaction/YtAdWebviewActivity.java, line(s) 120,105 hc/mhis/paic/com/essclibrary/activity/ESSCMainActivity.java, line(s) 332,331
中危 应用程序创建临时文件。敏感信息永远不应该被写进临时文件
应用程序创建临时文件。敏感信息永远不应该被写进临时文件 Files: com/intcreator/commmon/android/photocompress/FileUtil.java, line(s) 87 com/nanchen/compresshelper/FileUtil.java, line(s) 87
中危 MD5是已知存在哈希冲突的弱哈希
MD5是已知存在哈希冲突的弱哈希 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/nostra13/universalimageloader/cache/disc/naming/Md5FileNameGenerator.java, line(s) 19
中危 此应用可能包含硬编码机密信息
从应用程序中识别出以下机密确保这些不是机密或私人信息 极光推送的=> "JPUSH_CHANNEL" : "developer-default" 极光推送的=> "JPUSH_APPKEY" : "3bf81b09dcb2dce71263781b" 凭证信息=> "HEZIKEY" : "6edaf0c42861eb5cbf273d4899292b8d" 百度地图的=> "com.baidu.lbsapi.API_KEY" : "PbtRrG1RAqGA6VfkKgxMb1ONwR34UyNh" 友盟统计的=> "UMENG_APPKEY" : "57f78729e0f55a0827001f86" 友盟统计的=> "UMENG_CHANNEL" : "Channel ID" 友盟统计的=> "UMENG_MESSAGE_SECRET" : "d7fddb7561854cdbc52707601b3868e8" "privateKeyP2" : "#e$r" 349651de66bb2dca01ae70b385cbf3c2 57f78729e0f55a0827001f86 11300f060355040813085368616e67686169311130 a1e2a6c9ae95ad1269519660516fe08a 6225f1ade9394503af8821f552e07e7f f6e5061793111300f06035504031308556e696f6e50617930819f300d060 00A404000E315041592E5359532E4444463031 6a74d3bfdc3da9cd5ed78353199cf57c18e43d2e aHR0cDovL3Nka2xvZy5hZGludGwuY24vc2RrL2NyYXNoUmVwb3J0 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 VOWtfjzGBJw2Xn2vQCGkqAbNB5g= b1ff56cef0e21c87260c63ce3ca868bf5974c14 3634385a3078310b300906035504061302383631 n1H9HVD8MeIPSqQj16YDnD+tbOBVe8KdZgluv0kSfd+IVwVMRbE2HcVtpuQIDAQAB 1663571f19ca714c05ad43c75645d9dc MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCFPAl46zbxORotc/trXhbOhBUNVVm+LnCMwRe+USN7fO4i71gjnvqTSZ2S0SOS0W5Gx4JysmtfG051wpFyNVqBmZVzQ6TEY33rx+xaeSFTLLBnu4yp 536C79B93ACFBEA950AE365D8CE1AEF91FEA9535 5317f4377245bfb8efdc42c45d71bd43 6482f6d6b0d01ee40a70a8e8 6e696f6e5061793111300f06035504031308556e696f6e5061 92a864886f70d010101050003818d0030818902818100c42e6236d5054ffccaa 915d4b4961d131ad3e589939565631f9 d9255940da7b6cd07483f4b4243fd1825b2705 USN7fO4i71gjnvqTSZ2S0SOS0W5Gx4JysmtfG051wpFyNVqBmZVzQ6TEY33rx+xaeSFTLLBnu4yp 28E9FA9E9D9F5E344D5A9E4BCF6509A7F39789F515AB8F92DDBCBD414D940E93 6482f6e2b0d01ee40a70a8e9 dfb66ed22c3fda0ea59343c8ec32d293 0f19d184dc00f49c90200be7914f2db7 3015060355040a130e4368696e6120556e696 54aa526e7a37d8ba2311a1d3d2ab79b3fbeaf3ebb9e7da9e7cdd9be1ae5a53595f47 0f060355040713085368616e676861693117 6bf01f42ed405ef21abd2238d44d7805 32C4AE2C1F1981195F9904466A39C9948FE30BBFF2660BE1715A4589334C74C7 aHR0cDovL3Nka2NmZy5hZGludGwuY24vc2RrL3BrZ0NvbmZpZz92ZXJzaW9uPQ== MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCFPAl46zbxORotc/trXhbOhBUNVVm+LnCMwRe+ 96aced04ce64b52916f9f84b7e55a126 15060355040a130e4368696e6120556e696f6e50617931173015060355040b130e4 b1fdf62b0f540fca5458b063af9354925a6c3505a18ff164b6b195f6e517eaee1fb783 1001a3e74c601e3beb1b7ae4f9ab2872a0aaf1dbc2cba89c7528cd 28d147ed3e96a3ba8ac90703e4d66de2 db2816c737514ec6bfc4c5efd87b06b8 6X8Y4XdM2Vhvn0KfzcEatGnWaNU= D00FAB1D9401A0367B46DBF557C0CB3ED414603748458CE1DFDEF4DCF3FB4A9257E65A07EC22F8971E2686021A25BBA9F96906E9C2BCA6AF231813ACDD8FB93D 0000000023456789abcdef12123456786789abcd aa9736ab5c92992876644a581c13ad4f 544a7f8c1ba20cf044e05a1cba222545 8cc1d6ed5e1b2cc00489215aec3fc2eac008e767b0215981cb5e e94ddc285669ec06b8a405dd4341eac4ea7030203010001300d06092a864886f70d010105050003818 0424ae421438a50b73945c2e47ecbdf1 d7fddb7561854cdbc52707601b3868e8 18da2bf10352443a00a5e046d9fca6bd 861693111300f060355040713085368616e67686169311730 f6e50617931173015060355040b130e4368696e6120556e696 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 aHR0cDovL2Fib3V0OmJsYW5r D75BB2802E61738A9A03BF014F927D9A E7D474D8EA6A5E32D5F0A252C79D9CB3CC5C22D9719CDF267688307A911499BF90933BF59F4CD191FA07DB47819AA6EAE8CA86DD6AF0C934AD594EB27D899BBAA7C6EE75E8CD64ADD0856481AF145023AA39A7611C603F4892F9814579D9B2A68243DF5EB19EC5BD1DA0FE0E6F5023FE810BB32FD57892725B458B52781927EC03BAA2881966F38E45D526DF22600ADAC79F879595737F82A957C85364CE078A BC3736A2F4F6779C59BDCEE36B692153D0A9877CC62A474002DF32E52139F0A0 08eb9b5c67474d027fa03ce35109b11604083ab6bb4df2c46240f879f 64c2f89fdffa16729c9779f99562bc189d2ce4722ba0faedb11aa22d0d9db228fda
信息 应用程序记录日志信息,不得记录敏感信息
应用程序记录日志信息,不得记录敏感信息 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#logs Files: cn/addapp/pickers/util/LogUtils.java, line(s) 66,118,48,92,171 cn/addapp/pickers/widget/WheelView.java, line(s) 339 cn/haorui/sdk/adsail_ad/splash/SplashSkipView.java, line(s) 113,189 cn/haorui/sdk/adsail_ad/view/DownLoadDialogActivity.java, line(s) 78,110 cn/haorui/sdk/adsail_ad/view/scaleImage/SubsamplingScaleImageView.java, line(s) 771,342,346,522,526,594,248,973,978,989,998,1955,2149 cn/haorui/sdk/adsail_ad/view/scaleImage/decoder/SkiaPooledImageRegionDecoder.java, line(s) 135 cn/haorui/sdk/core/download/InstallManager$InstallReceiver.java, line(s) 29 cn/haorui/sdk/core/download/d.java, line(s) 120,189 cn/haorui/sdk/core/utils/AppStoreUtil.java, line(s) 72,80,82 cn/haorui/sdk/core/utils/HttpUtil.java, line(s) 475 cn/haorui/sdk/core/utils/ImageUtil.java, line(s) 26 cn/haorui/sdk/core/utils/LogUtil.java, line(s) 11,16,20,32,38,43 cn/haorui/sdk/core/view/gif/GifHeaderParser.java, line(s) 75,103,74,102 cn/haorui/sdk/core/view/gif/GifImageView.java, line(s) 340 cn/haorui/sdk/core/view/gif/a.java, line(s) 113,132,494,112,131,493,245 cn/haorui/sdk/core/webview/TaskCenterWebActivity.java, line(s) 61,67,149 cn/haorui/sdk/platform/csjblend/HYCBCustomInterstitialAdapter.java, line(s) 25 cn/haorui/sdk/platform/csjblend/HYCBDrawAd.java, line(s) 36 cn/haorui/sdk/platform/gdt/HYGDTCustomSplashAdapter.java, line(s) 99 cn/haorui/sdk/platform/gromore/HYGMCustomInterstitialAdapter.java, line(s) 21 cn/haorui/sdk/platform/gromore/HYGMDrawAd.java, line(s) 23 cn/haorui/sdk/platform/gromore/HYGMNativeAd.java, line(s) 27 cn/haorui/sdk/platform/hr/interstitial/HRHRAdNativeWrapper.java, line(s) 22 cn/haorui/sdk/platform/hr/recycler/HRPreRenderAdapter.java, line(s) 1415,1451 com/SuperKotlin/pictureviewer/CupcakeGestureDetector.java, line(s) 53 com/SuperKotlin/pictureviewer/HackyViewPager.java, line(s) 25,28 com/SuperKotlin/pictureviewer/LoggerDefault.java, line(s) 18,23,48,53,28,33,8,13,38,43 com/SuperKotlin/pictureviewer/PhotoViewAttacher.java, line(s) 38,223,355 com/ccit/SecureCredential/util/GetLog.java, line(s) 17,25,21,12,23,16 com/ccit/SecureCredential/util/MD5.java, line(s) 166 com/ccit/SecureCredential/util/StringUtil.java, line(s) 32,33 com/ccit/base/se/LogHelper.java, line(s) 39,48,92,100,57,66,20,29,75,84,38 com/ccit/www/mobileshieldsdk/ShieldSDK.java, line(s) 307,337 com/ccit/www/mobileshieldsdk/ShieldSDKLocal.java, line(s) 100 com/ccit/www/mobileshieldsdk/ShieldSDKObject.java, line(s) 98,139,169,217,247,257,279,300,329,348,376,404,425,476,543,571,581,599,622,630,631,760,772,799,841 com/ccit/www/mobileshieldsdk/common/service/impl/SecuritySDKServiceeTestImpl.java, line(s) 325 com/ccit/www/mobileshieldsdk/okutils/okhttputils/cookie/store/PersistentCookieStore.java, line(s) 142,151,154 com/ccit/www/mobileshieldsdk/okutils/okhttputils/log/LoggerInterceptor.java, line(s) 42,44,45,46,48,51,54,57,59,70,71,72,74,78,80,82,85 com/ccit/www/mobileshieldsdk/okutils/okhttputils/utils/L.java, line(s) 10 com/ccit/www/mobileshieldsdk/test/MainActivity.java, line(s) 97,101,104,107,124 com/ccit/www/mobileshieldsdk/test/test2.java, line(s) 67,78,90,110,111,122,123,134,135,136,137,152,153,154,155,166,167,178,179,180,189,190,191,192,199,200,201,202,211,212,223,224,235,236,247,248,259,260,331 com/ccit/www/mobileshieldsdk/util/LogHelper.java, line(s) 38,47,91,99,56,65,20,29,74,83 com/ccit/www/mobileshieldsdk/util/ResManager.java, line(s) 37,58,33 com/cosw/nfcsdk/ScanActivity.java, line(s) 70,73 com/cosw/nfcsdk/ScanAndTransmitActivity.java, line(s) 78,75 com/cosw/nfcsdk/TransmitActivity.java, line(s) 30 com/cosw/util/FileUtils.java, line(s) 20,158 com/cosw/util/Logz.java, line(s) 13,9,17,21 com/cosw/util/RandomUtil.java, line(s) 91,92,93,94,95,96,97 com/cosw/util/StringUtil.java, line(s) 269,270 com/czhj/devicehelper/DeviceHelper.java, line(s) 48,77,127,131,173,179,190,195 com/czhj/devicehelper/cnadId/a.java, line(s) 45,54 com/czhj/devicehelper/oaId/helpers/DevicesIDsHelper.java, line(s) 122,259,325,77,108,113,184,190,220,305 com/czhj/devicehelper/oaId/helpers/a.java, line(s) 23,51 com/czhj/devicehelper/oaId/helpers/b.java, line(s) 23,50 com/czhj/devicehelper/oaId/helpers/d.java, line(s) 52 com/czhj/devicehelper/oaId/helpers/e.java, line(s) 42 com/czhj/devicehelper/oaId/helpers/f.java, line(s) 59,75,91 com/czhj/devicehelper/oaId/helpers/g.java, line(s) 58,74,90 com/czhj/devicehelper/oaId/helpers/h.java, line(s) 21,25,52 com/czhj/devicehelper/oaId/helpers/i.java, line(s) 33 com/czhj/devicehelper/oaId/helpers/j.java, line(s) 31,41 com/czhj/devicehelper/oaId/helpers/k.java, line(s) 46,64,76,26,49,57,82 com/czhj/devicehelper/oaId/interfaces/a.java, line(s) 31 com/czhj/devicehelper/oaId/interfaces/c.java, line(s) 34,56,83,105 com/czhj/devicehelper/oaId/interfaces/d.java, line(s) 35,37,38 com/czhj/devicehelper/oaId/interfaces/e.java, line(s) 35,37,38 com/czhj/volley/CacheDispatcher.java, line(s) 45,57,76,185,68,96,173 com/czhj/volley/NetworkDispatcher.java, line(s) 62 com/czhj/volley/Request.java, line(s) 150,155 com/czhj/volley/VolleyLog.java, line(s) 65,68,99,55,104,108,118,123,127 com/czhj/volley/VolleyThreadFactory.java, line(s) 8 com/czhj/volley/toolbox/BasicNetwork.java, line(s) 101,151,233,243,263,299,339,374,390,145,157,166,188 com/czhj/volley/toolbox/FileDownloadNetwork.java, line(s) 100,179,188,239,123,134,165 com/czhj/volley/toolbox/FileDownloadRequest.java, line(s) 67,146,201,225,233,244,250,257,200,320,325,330,335,342,356,366,238 com/czhj/volley/toolbox/HttpHeaderParser.java, line(s) 171 com/czhj/volley/toolbox/ImageRequest.java, line(s) 140 com/handmark/pulltorefresh/library/OverscrollHelper.java, line(s) 55 com/handmark/pulltorefresh/library/PullToRefreshAdapterViewBase.java, line(s) 73,290,297,302 com/handmark/pulltorefresh/library/PullToRefreshBase.java, line(s) 177,416,497,659,705,727 com/handmark/pulltorefresh/library/internal/Utils.java, line(s) 9 com/hisign/CTID/FaceSDK/FaceLiveDetect.java, line(s) 48 com/hisign/CTID/ecrypt/pgpUtil.java, line(s) 31,36,46,48 com/hisign/CTID/facedetectv1small/LiveDetect.java, line(s) 255,261 com/hisign/CTID/facelivedetection/CTIDLiveDetectActivity.java, line(s) 205,212,220,225,233,261,262,278,279,295,296,399,410,518,523,528,550,556,565,569,571,577,592,595,669,675,678,689,699,702,704,957,1004,1051,1435,1438,1443,1446,1825,1090,1098,1481,1484,469,585,586,589,590,596,597,645,1149,1283,1644,1703 com/hisign/CTID/facelivedetection/applicaiton/CTIDCrashHandler.java, line(s) 95,56,89,97,129 com/hisign/CTID/facelivedetection/utils/FaceLiveDetectWrapper.java, line(s) 221,227,236,248,252,264,277,286,290,316,132,254,258 com/hisign/CTID/facelivedetection/utils/FileUtils.java, line(s) 727,571,590,610 com/hisign/CTID/facelivedetection/utils/LogUtil.java, line(s) 22,16,10,28 com/hisign/CTID/facelivedetection/utils/SaveDebugInfo.java, line(s) 32,44,106,113,116 com/hisign/CTID/facelivedetection/view/BaseSurfaceView.java, line(s) 142,168,170,174,192,195,200,220,225,256,110 com/hisign/CTID/matching/UvcInputAPI.java, line(s) 39 com/hisign/CTID/utilty/LogUtil.java, line(s) 16,10,22 com/hisign/CTID/utilty/SharedPreferencesCTID.java, line(s) 12,20 com/hisign/CTID/utilty/SurfaceDraw.java, line(s) 226,230,121,149,201,254,324,351 com/hisign/CTID/utilty/ToolsUtilty.java, line(s) 307,675,695,719,729,116,271,492,496,499,679,701,175,539,540,547,552,572,579,585,1013,1014 com/insigmacc/nannsmk/GesTureSetActivity.java, line(s) 103 com/insigmacc/nannsmk/MyApplication.java, line(s) 288,292,219,281,265 com/insigmacc/nannsmk/activity/CardPassWordActivity.java, line(s) 38,61,145,119 com/insigmacc/nannsmk/activity/CitizenCardActivity.java, line(s) 298 com/insigmacc/nannsmk/activity/CountryWebActivity.java, line(s) 833,836 com/insigmacc/nannsmk/activity/DetailOrderActivity.java, line(s) 479,294 com/insigmacc/nannsmk/activity/ForgetPwdActivity.java, line(s) 170,188 com/insigmacc/nannsmk/activity/LaunchActivity.java, line(s) 72 com/insigmacc/nannsmk/activity/MainActivity.java, line(s) 463,466,886 com/insigmacc/nannsmk/activity/PassWordCtrlActivity.java, line(s) 67,98 com/insigmacc/nannsmk/activity/RegisterResultActivity.java, line(s) 39,55 com/insigmacc/nannsmk/activity/RgisterActivity.java, line(s) 101,119,131,149,157,187,259,283 com/insigmacc/nannsmk/activity/SettingActivity.java, line(s) 175 com/insigmacc/nannsmk/activity/SmbPayResultActivity.java, line(s) 204 com/insigmacc/nannsmk/activity/StudentPictureActivity.java, line(s) 200 com/insigmacc/nannsmk/activity/TureName2Activity.java, line(s) 95,103,125,136,152,232,255 com/insigmacc/nannsmk/activity/TureName3Activity.java, line(s) 75,112,154 com/insigmacc/nannsmk/activity/TureNameActivity.java, line(s) 142,183,231 com/insigmacc/nannsmk/activity/presenter/QueryCardPresenter.java, line(s) 275 com/insigmacc/nannsmk/aircard/activity/ApplyDeatilActivity.java, line(s) 74,77,86,89,94,115,122,128,131,249,250,251,253,254,256,257,259,261 com/insigmacc/nannsmk/aircard/activity/DeviceListActivity.java, line(s) 107,113,119,158,164,170 com/insigmacc/nannsmk/aircard/activity/InstallIngActivity.java, line(s) 71,87,90,99,102 com/insigmacc/nannsmk/aircard/activity/InstallResultActivity.java, line(s) 94,97,98,100,101,107,108,110,112 com/insigmacc/nannsmk/aircard/activity/InstallService.java, line(s) 68,80,108,119 com/insigmacc/nannsmk/aircard/activity/UnStallActiity.java, line(s) 63,66,67,69,70,72,73,75,77 com/insigmacc/nannsmk/aircard/model/ChargeModel.java, line(s) 53,61,98,216,227,239,241,282,399,411,418,419,462,486,496 com/insigmacc/nannsmk/aircard/model/InstallModel.java, line(s) 66,69,81,84 com/insigmacc/nannsmk/aircard/model/UnstallModel.java, line(s) 65,98 com/insigmacc/nannsmk/applycard/activity/UpPictureActiity.java, line(s) 415,330 com/insigmacc/nannsmk/blacknum/AdMD5.java, line(s) 20 com/insigmacc/nannsmk/blacknum/AdServerUtil.java, line(s) 66 com/insigmacc/nannsmk/buscode/activity/MetroPayActivity.java, line(s) 134,97,130,156 com/insigmacc/nannsmk/buscode/model/ElertMainModel.java, line(s) 121,124 com/insigmacc/nannsmk/fragment/FlushChargeFragment.java, line(s) 144,151,211,218,242,261,345,513 com/insigmacc/nannsmk/function/activities/MyReceiver.java, line(s) 46,50,54,61,110,72,74,77,100 com/insigmacc/nannsmk/function/bcard/activity/BcardUpPictureActiity.java, line(s) 333 com/insigmacc/nannsmk/function/cardmange/model/LossCardModel.java, line(s) 96,100 com/insigmacc/nannsmk/function/cardmange/ui/SubWayActivity.java, line(s) 66 com/insigmacc/nannsmk/function/home/MainActivity.java, line(s) 127,153,162,195,270,605,608 com/insigmacc/nannsmk/function/home/fragment/UserFragment.java, line(s) 424 com/insigmacc/nannsmk/function/ticket/model/ChargeModel.java, line(s) 64 com/insigmacc/nannsmk/http/XUtilsHelper.java, line(s) 128 com/insigmacc/nannsmk/limited/activity/UpLimitedPictureActivity.java, line(s) 152 com/insigmacc/nannsmk/limited/activity/UpStudentPictureActivity.java, line(s) 112 com/insigmacc/nannsmk/nfc/NFCActivity.java, line(s) 313,317 com/insigmacc/nannsmk/nfc/NFCChargeActivity.java, line(s) 132,135 com/insigmacc/nannsmk/nfc/NFCChargeMBDActivity.java, line(s) 984 com/insigmacc/nannsmk/nfc/NFCMoneyActivity.java, line(s) 577 com/insigmacc/nannsmk/park/activity/ParkComplaintActivity.java, line(s) 230 com/insigmacc/nannsmk/park/activity/UpParkActivity.java, line(s) 133 com/insigmacc/nannsmk/presenter/AllFunctionPresenter.java, line(s) 394 com/insigmacc/nannsmk/setpasswordpay/model/SafeCenterModel.java, line(s) 332,338,344,352 com/insigmacc/nannsmk/utils/CameraUtil.java, line(s) 120,231,163 com/insigmacc/nannsmk/utils/ForegroundCallbacks.java, line(s) 111,135 com/insigmacc/nannsmk/utils/FunctionJumpUtils.java, line(s) 105,107 com/insigmacc/nannsmk/utils/HookUtils.java, line(s) 43,46,60,23,63,21 com/insigmacc/nannsmk/utils/NotificationWidge.java, line(s) 78 com/insigmacc/nannsmk/utils/PayUtils.java, line(s) 553,723,729,737 com/insigmacc/nannsmk/utils/PushHelper.java, line(s) 59,54 com/insigmacc/nannsmk/utils/SharePerenceUntil.java, line(s) 77,81,70 com/insigmacc/nannsmk/utils/ShortcutsUtils.java, line(s) 70 com/insigmacc/nannsmk/utils/SmbPayUtils.java, line(s) 252,258,264,272 com/insigmacc/nannsmk/utils/StatusBarCompat.java, line(s) 20 com/insigmacc/nannsmk/utils/StringUtil.java, line(s) 77 com/insigmacc/nannsmk/utils/StringUtils.java, line(s) 18 com/insigmacc/nannsmk/wedget/GestureLockViewGroup.java, line(s) 142,193,194,195,196,214,215,216,217,221 com/insigmacc/nannsmk/wedget/SlideTable.java, line(s) 178,180,182 com/insigmacc/nannsmk/wedget/homebanner/CustomViewPagerSlide.java, line(s) 143 com/insigmacc/nannsmk/wxapi/WXPayEntryActivity.java, line(s) 107,252 com/intcreator/commmon/android/photocompress/FileUtil.java, line(s) 73,76 com/intcreator/commmon/android/util/AppUtils.java, line(s) 125 com/intcreator/commmon/android/util/FragmentUtils.java, line(s) 318 com/intcreator/commmon/android/util/KeyboardUtils.java, line(s) 135 com/intcreator/commmon/android/util/LogUtils.java, line(s) 391,387,394 com/intcreator/commmon/android/util/NetworkUtils.java, line(s) 64,67 com/intcreator/commmon/android/util/PhoneUtils.java, line(s) 135,139,143 com/intcreator/commmon/android/util/ProcessUtils.java, line(s) 46,48,60 com/intcreator/commmon/android/util/SpanUtils.java, line(s) 741,754 com/jude/easyrecyclerview/EasyRecyclerView.java, line(s) 421 com/jude/easyrecyclerview/adapter/DefaultEventDelegate.java, line(s) 365 com/jude/easyrecyclerview/adapter/RecyclerArrayAdapter.java, line(s) 581 com/jude/easyrecyclerview/swipe/SwipeRefreshLayout.java, line(s) 514,745,759,778 com/kwai/library/ipneigh/KwaiIpNeigh.java, line(s) 39,42 com/libCom/androidsm2/api/HttpLoggingInterceptor.java, line(s) 22,29 com/liulishuo/okdownload/core/Util.java, line(s) 119,101,128,110 com/nanchen/compresshelper/FileUtil.java, line(s) 73,76 com/nanningYKT/bluetoothlesdk/BleServiceProvider.java, line(s) 124,277,289,491,586 com/nanningYKT/bluetoothlesdk/FeiFanBleService.java, line(s) 248 com/nostra13/universalimageloader/cache/disc/impl/ext/DiskLruCache.java, line(s) 115 com/octopus/ad/AdActivity.java, line(s) 67 com/octopus/ad/BannerAdView.java, line(s) 95 com/octopus/ad/DownloadService.java, line(s) 151,175,188 com/octopus/ad/internal/a/a.java, line(s) 106,139,145,172,182 com/octopus/ad/internal/a/b.java, line(s) 142,120 com/octopus/ad/internal/a/c.java, line(s) 40 com/octopus/ad/internal/b/a/e.java, line(s) 39,37 com/octopus/ad/internal/b/f.java, line(s) 107,122,134,156,99,224,54,208 com/octopus/ad/internal/b/h.java, line(s) 95,108,154,112 com/octopus/ad/internal/b/j.java, line(s) 38,41,52,77,74,43 com/octopus/ad/internal/b/l.java, line(s) 59,181,183 com/octopus/ad/internal/b/n.java, line(s) 52 com/octopus/ad/internal/c.java, line(s) 48,49,61,73,158,82,87,92,103,139 com/octopus/ad/internal/d.java, line(s) 156,182 com/octopus/ad/internal/f.java, line(s) 42,88,92,170,29,44,171,84 com/octopus/ad/internal/k.java, line(s) 68 com/octopus/ad/internal/m.java, line(s) 134,153 com/octopus/ad/internal/n.java, line(s) 25,47,55,27 com/octopus/ad/internal/nativead/a.java, line(s) 55,60,69,74,152,261,274 com/octopus/ad/internal/nativead/b.java, line(s) 44,36,46,73 com/octopus/ad/internal/nativead/c.java, line(s) 102 com/octopus/ad/internal/network/ServerResponse.java, line(s) 239,346,369,486,639,238,284,335 com/octopus/ad/internal/network/a.java, line(s) 185,213,216,219,222,226,227,177,197,205,236,176,204,270,369 com/octopus/ad/internal/o.java, line(s) 26 com/octopus/ad/internal/r.java, line(s) 30 com/octopus/ad/internal/utilities/DeviceInfo.java, line(s) 93,110,77,102,60 com/octopus/ad/internal/utilities/DeviceInfoUtil.java, line(s) 52 com/octopus/ad/internal/utilities/DownloadFactory.java, line(s) 209,144 com/octopus/ad/internal/utilities/HTTPGet.java, line(s) 79,83,91,39 com/octopus/ad/internal/utilities/ImageService.java, line(s) 47,66 com/octopus/ad/internal/utilities/UserEnvInfo.java, line(s) 19,32,40 com/octopus/ad/internal/utilities/ViewUtil.java, line(s) 259,256 com/octopus/ad/internal/utilities/WebviewUtil.java, line(s) 47,62,92,106 com/octopus/ad/internal/video/AdVideoView.java, line(s) 660,665,707,936,950,586,621,709,728,732,616,616,621,728,732 com/octopus/ad/internal/view/AdViewImpl.java, line(s) 684,689,1254,1518,1523,1528,1536,1565,1578,1583,401,414,488,854,969,1198,1345,1534,1747,1777,1781,1842,1852,379 com/octopus/ad/internal/view/AdWebView.java, line(s) 193,672,708,377,704,646,304,519,525,1006,1017,601,611,633,665 com/octopus/ad/internal/view/BannerAdViewImpl.java, line(s) 154,169,615,621,636,643,646,659,663,666,669,672,674,677,680,683,687,694,699,705,710,720,727,732,741,754,198,246,631,857 com/octopus/ad/internal/view/InterstitialAdViewImpl.java, line(s) 168,171,173,176,180,198,281,304,309,316,230,294,163,298 com/octopus/ad/internal/view/a.java, line(s) 13,19 com/octopus/ad/internal/view/e.java, line(s) 357,387,418,431,447,548,566,263,294,307,320,329,338,347 com/octopus/ad/internal/view/g.java, line(s) 309,79,88,97,113,294 com/octopus/ad/internal/view/h.java, line(s) 74,106,50,60,86,97 com/octopus/ad/model/b.java, line(s) 320 com/octopus/ad/topon/OctopusATBannerAdapter.java, line(s) 28,34,76,87,92,104,112,121 com/octopus/ad/topon/OctopusATInitManager.java, line(s) 72,98,101 com/octopus/ad/topon/OctopusATInterstitialAdapter.java, line(s) 24,30,68,79,90,98,106 com/octopus/ad/topon/OctopusATNativeAdapter.java, line(s) 76,87,27,33 com/octopus/ad/topon/OctopusATNativeExpressAd.java, line(s) 42,48,54,59 com/octopus/ad/topon/OctopusATNativeUnifiedAd.java, line(s) 71,77,83,88 com/octopus/ad/topon/OctopusATRewardVideoAdapter.java, line(s) 25,31,69,77,88,99,107,115,123 com/octopus/ad/topon/OctopusATSplashAdapter.java, line(s) 26,32,74,85,93,104,113 com/octopus/ad/utils/a/f.java, line(s) 14,22 com/octopus/ad/utils/b.java, line(s) 127,131 com/octopus/ad/utils/b/d.java, line(s) 136 com/octopus/ad/utils/b/e.java, line(s) 101,101 com/pingan/ai/b/b/k/d.java, line(s) 12 com/pingan/ai/face/utils/PaFaceLogger.java, line(s) 11,17,35,41,59,65,47,53,23,29 com/plk/bluetoothlesdk/MYDES.java, line(s) 255 com/plk/bluetoothlesdk/PlkBleService.java, line(s) 177 com/plk/bluetoothlesdk/PlkBluetoothLeService.java, line(s) 117 com/scwang/smartrefresh/header/waveswipe/WaveView.java, line(s) 324 com/scwang/smartrefresh/layout/SmartRefreshLayout.java, line(s) 2320 com/scwang/smartrefresh/layout/internal/pathview/PathParser.java, line(s) 719,724 com/sigmob/windad/Splash/WindSplashAD.java, line(s) 56,170 com/sigmob/windad/WindAds.java, line(s) 398,79,140,168,220,405,409,203,209,218,311,347,374,403,331 com/sigmob/windad/natives/WindNativeUnifiedAd.java, line(s) 77,94,113 com/tencent/a/a/a/a/b.java, line(s) 21,43,49,29,55 com/tencent/a/a/a/a/c.java, line(s) 35,49 com/tencent/a/a/a/a/d.java, line(s) 16,32 com/tencent/a/a/a/a/e.java, line(s) 15,29 com/tencent/a/a/a/a/h.java, line(s) 30,20,60,24 com/unionpay/b/e.java, line(s) 25 com/unionpay/b/i.java, line(s) 25 com/unionpay/utils/j.java, line(s) 15,24,18,12,21 com/uyumao/c.java, line(s) 142,138 com/uyumao/d.java, line(s) 324,326 com/uyumao/e.java, line(s) 260,304,876 com/uyumao/h.java, line(s) 116,57,66,73,84 com/wildma/idcardcamera/camera/AutoFocusManager.java, line(s) 52,63,66,89 com/wildma/idcardcamera/camera/CameraActivity.java, line(s) 65,68 com/wildma/idcardcamera/camera/CameraPreview.java, line(s) 76,149,175 com/wildma/idcardcamera/camera/SensorControler.java, line(s) 128,134 com/wildma/idcardcamera/cropper/CropOverlayView.java, line(s) 80,90,117,118,158,376,381,416,417 com/wildma/idcardcamera/utils/ImageUtils.java, line(s) 32 com/windmill/baidu/BdAdapterProxy.java, line(s) 40 com/windmill/baidu/BdInterstitialAdapter.java, line(s) 49,60,79 com/windmill/baidu/BdNIAdapter.java, line(s) 77,82,96,101,107,124,130,135,145,159 com/windmill/baidu/BdNSAdapter.java, line(s) 82,101,115,120,126,143,149,154,164,178 com/windmill/baidu/BdNativeAdAdapter.java, line(s) 61,91,104,110 com/windmill/baidu/BdRewardAdapter.java, line(s) 60,169,196,69,73,79,85,95,104,110,116,122,132,138,155,164,176 com/windmill/baidu/BdSplashAdAdapter.java, line(s) 58,64,84,97,102,108,117,123,129,135,141 com/windmill/baidu/b.java, line(s) 91,108,122,174 com/windmill/baidu/c.java, line(s) 96,128,136,152 com/windmill/baidu/i.java, line(s) 42,47 com/windmill/baidu/j.java, line(s) 62 com/windmill/baidu/k.java, line(s) 42,47 com/windmill/gdt/GDTAdapterProxy.java, line(s) 37,75,100,136,142 com/windmill/gdt/GDTBannerAdapter.java, line(s) 52,84,92,98,104,110,115,127,160,168,174,180,186,191,203,215,222 com/windmill/gdt/GDTInterstitialAdapter.java, line(s) 63,250,260,80,84,90,96,102,108,113,122,133,143,153,220,230,307 com/windmill/gdt/GDTNIAdapter.java, line(s) 61,65,82,119,145 com/windmill/gdt/GDTNSAdapter.java, line(s) 66,84,101,138,164 com/windmill/gdt/GDTNativeAdAdapter.java, line(s) 58,80,87,114,120 com/windmill/gdt/GDTRewardVideoAdapter.java, line(s) 72,270,274,281,285,94,103,109,115,128,134,151,164,173,182,188,194,207,213,230,246,253 com/windmill/gdt/GDTSplashAdAdapter.java, line(s) 77,92,109,115,121,127,142,151,170 com/windmill/gdt/a.java, line(s) 63,230,130 com/windmill/gdt/f.java, line(s) 55,274 com/windmill/gdt/g.java, line(s) 63,67,91,125 com/windmill/gromore/GroAdapterProxy.java, line(s) 137,233,238,244,256,263,277 com/windmill/gromore/GroBannerAdapter.java, line(s) 131,136,146,180,187,192,202,218 com/windmill/gromore/GroInterstitialAdapter.java, line(s) 52,67 com/windmill/gromore/GroNIAdapter.java, line(s) 57,61,67,106 com/windmill/gromore/GroNSAdapter.java, line(s) 65,83,89,128 com/windmill/gromore/GroNativeAdAdapter.java, line(s) 52,71,84,90 com/windmill/gromore/GroRewardAdAdapter.java, line(s) 60,64,70,90,107,164,175,194 com/windmill/gromore/GroSplashAdAdapter.java, line(s) 50,107,145,173,179,189 com/windmill/gromore/i.java, line(s) 64 com/windmill/gromore/j.java, line(s) 58 com/windmill/kuaishou/KuaiShouAdapterProxy.java, line(s) 62,69,93,171,177 com/windmill/kuaishou/KuaiShouInterstitialAdapter.java, line(s) 41,68,55,75 com/windmill/kuaishou/KuaiShouNIAdapter.java, line(s) 61,72,78,100,119 com/windmill/kuaishou/KuaiShouNSAdapter.java, line(s) 65,90,96,118,137 com/windmill/kuaishou/KuaiShouNativeAdAdapter.java, line(s) 76,55,83 com/windmill/kuaishou/KuaiShouRewardVideoAdapter.java, line(s) 41,101,208,53,60,73,79,90,108,130,136,141,147,152,158,164,170,176 com/windmill/kuaishou/KuaiShouSplashAdAdapter.java, line(s) 47,60,75,81,87,93,99,104,109,114,120,125,131 com/windmill/kuaishou/c.java, line(s) 119,182,211,49,57,65,70,78,86,141,149,165 com/windmill/kuaishou/d.java, line(s) 51,59,64,72,80,85,93,101,133,194,156,164,187 com/windmill/kuaishou/i.java, line(s) 41 com/windmill/kuaishou/j.java, line(s) 47 com/windmill/kuaishou/k.java, line(s) 85,40 com/windmill/sdk/WindMillAd.java, line(s) 486,89,500 com/windmill/sdk/b/e.java, line(s) 55 com/windmill/sdk/b/h.java, line(s) 30,36 com/windmill/sdk/base/WMLogUtil.java, line(s) 24,42,36,30 com/windmill/sdk/c/a.java, line(s) 70,76,82,91,97,103,108,48,65 com/windmill/sdk/custom/WMCustomBannerAdapter.java, line(s) 30,36,50,66,81,93,101,109 com/windmill/sdk/custom/WMCustomInterstitialAdapter.java, line(s) 32,40,46,60,76,89,97,109,117,129,137,145 com/windmill/sdk/custom/WMCustomNativeAdapter.java, line(s) 43,55,83,99,112,120,128,136 com/windmill/sdk/custom/WMCustomRewardAdapter.java, line(s) 31,39,45,59,75,88,96,108,116,128,136,143,154 com/windmill/sdk/custom/WMCustomSplashAdapter.java, line(s) 31,39,45,59,73,86,94,106,114,120 com/windmill/sdk/custom/a.java, line(s) 119,176,234 com/windmill/sdk/widget/InterstitialViewManager.java, line(s) 22 com/windmill/sdk/widget/SplashView_2002001.java, line(s) 63 com/windmill/sigmob/SigAdapterProxy.java, line(s) 37,54,122 com/windmill/sigmob/SigInterstitialAdapter.java, line(s) 22,53,72,89,95,101,107,113,119,125 com/windmill/sigmob/SigNIAdapter.java, line(s) 69,81,87,128,146 com/windmill/sigmob/SigNSAdapter.java, line(s) 74,100,106,147,165 com/windmill/sigmob/SigNativeAdAdapter.java, line(s) 59,134,158,164 com/windmill/sigmob/SigRewardAdAdapter.java, line(s) 47,83,110,116,141 com/windmill/sigmob/SigSplashAdAdapter.java, line(s) 45,80,107,113 com/windmill/toutiao/TouTiaoAdapterProxy.java, line(s) 144,227,232,238,250,257,274 com/windmill/toutiao/TouTiaoBannerAdapter.java, line(s) 127,132,142,176,183,188,198,214 com/windmill/toutiao/TouTiaoInterstitialAdapter.java, line(s) 56,71 com/windmill/toutiao/TouTiaoNIAdapter.java, line(s) 69,78,85,106,113,136 com/windmill/toutiao/TouTiaoNSAdapter.java, line(s) 78,101,108,129,136,159 com/windmill/toutiao/TouTiaoNativeAdAdapter.java, line(s) 66,98,111,117 com/windmill/toutiao/TouTiaoRewardVideoAdapter.java, line(s) 55,59,66,71,77,83,89,94,104,110,116,123,128,134,140,145,155,161,167,211,222,240 com/windmill/toutiao/TouTiaoSplashAdAdapter.java, line(s) 47,103,141,169,175,186 com/windmill/toutiao/i.java, line(s) 54 com/windmill/toutiao/j.java, line(s) 56 com/windmill/toutiao/l.java, line(s) 57 com/yd/base/media/gif/FrameSequenceDrawable.java, line(s) 99,116 com/yd/saas/base/widget/RainTextureView.java, line(s) 238 com/yd/saas/config/oaid/OAIDLog.java, line(s) 21 com/yd/saas/config/utils/DeviceUtil.java, line(s) 865 com/yd/saas/config/utils/LogcatUtil.java, line(s) 11,24,27,32,38,61,67,73,79,85,91 com/yd/saas/config/utils/SPUtil.java, line(s) 31 com/yd/saas/gdt/GdtPojoTransfer.java, line(s) 108,119,127,132,141,146,151,156,161,170,179,188,197,206,211 com/yd/saas/gdt/GdtTemplateAdapter.java, line(s) 27,32,37,42,47,52,57,62,67,72 com/yd/saas/s2s/sdk/helper/download/DownloadService.java, line(s) 152,224 com/yd/saas/s2s/sdk/util/StorageUtils.java, line(s) 11 com/ytong/media/PandaMediaManager.java, line(s) 236,144,158,212,226 com/ytong/media/custom/JDTemplateConfigAdapterProxy.java, line(s) 43 com/ytong/media/custom/JDTemplateFlowAdapter.java, line(s) 54 com/ytong/media/custom/JDTemplateSplashAdapter.java, line(s) 52 com/ytong/media/custom/OctpusAdsSplashAdapter.java, line(s) 74 com/ytong/media/flow/PandaFlowManager.java, line(s) 174,252 com/ytong/media/reward/PandaRewardManager.java, line(s) 96,106,112,118,124,130,141 com/ytong/media/splash/PandaSplashManager.java, line(s) 321 com/ytong/media/utils/PandaConvertUtil.java, line(s) 223,299 com/ytong/media/utils/PandaMD5.java, line(s) 20 com/ytong/media/utils/PandaServerUtil.java, line(s) 42,70,80,107,205,212,241,270,53,90,186,226,255 com/ytong/media/view/banner/YTBanner.java, line(s) 174,208,354,378 essclib/esscpermission/runtime/LRequest.java, line(s) 38 essclib/esscpermission/runtime/MRequest.java, line(s) 51 essclib/pingan/ai/request/biap/net/LogUtils.java, line(s) 11,17,23,38,44,50,56 g/c.java, line(s) 12,19 hc/mhis/paic/com/essclibrary/scancode/camera/AutoFocusCallback.java, line(s) 17 hc/mhis/paic/com/essclibrary/scancode/camera/CameraConfigurationManager.java, line(s) 104,188,191,204,209,202,88,131,142 hc/mhis/paic/com/essclibrary/scancode/camera/FlashlightManager.java, line(s) 26,73,82,88,99,110 hc/mhis/paic/com/essclibrary/scancode/camera/PreviewCallback.java, line(s) 28 hc/mhis/paic/com/essclibrary/scancode/decoding/CaptureActivityHandler.java, line(s) 52,57,69,73 hc/mhis/paic/com/essclibrary/scancode/decoding/DecodeHandler.java, line(s) 57 hc/mhis/paic/com/essclibrary/utils/PayEnvironmentCheckUtil.java, line(s) 40 jp/wasabeef/picasso/transformations/CropTransformation.java, line(s) 101,113,122,134,154,157,162,167,102,114,123,135,155,158,163,168 org/android/spdy/NetTimeGaurd.java, line(s) 32,42 org/android/spdy/ProtectedPointerTest.java, line(s) 15,22,40 org/android/spdy/spduLog.java, line(s) 12,54,26,19,33,40,47 org/greenrobot/eventbus/BackgroundPoster.java, line(s) 40 org/greenrobot/eventbus/EventBus.java, line(s) 290,428,430,439,172 org/greenrobot/eventbus/util/AsyncExecutor.java, line(s) 98 org/greenrobot/eventbus/util/ErrorDialogConfig.java, line(s) 34 org/greenrobot/eventbus/util/ErrorDialogManager.java, line(s) 188 org/greenrobot/eventbus/util/ExceptionToResourceMapping.java, line(s) 26 org/xutils/common/util/LogUtil.java, line(s) 25,31,37,43,49,55,61,67,73,79,85,91,97,103 razerdp/basepopup/BasePopupSupporterManager.java, line(s) 56,137 razerdp/basepopup/BasePopupWindow.java, line(s) 188,310,388,424,495,516,607,909,1090 razerdp/basepopup/BasePopupWindowProxy.java, line(s) 95,148,176 razerdp/basepopup/PopupCompatManager.java, line(s) 63,78 razerdp/basepopup/PopupDecorViewProxy.java, line(s) 342,221,243,364,694,726,744,790,808,812,820,826,968 razerdp/basepopup/PopupMaskLayout.java, line(s) 40 razerdp/basepopup/PopupReflectionHelper.java, line(s) 23 razerdp/basepopup/WindowManagerProxy.java, line(s) 41,66,92,100,139,186 razerdp/blur/BlurHelper.java, line(s) 68,108,45,48,84,98,114,134 razerdp/blur/BlurImageView.java, line(s) 73,85,89,126,300,322,78,83,139,171,236,252,254,303 razerdp/util/log/PopupLog.java, line(s) 76,80,84,92,88,90 rx/internal/util/IndexedRingBuffer.java, line(s) 39 rx/internal/util/RxJavaPluginUtils.java, line(s) 15 rx/internal/util/RxRingBuffer.java, line(s) 47 uk/co/senab/photoview/PhotoViewAttacher.java, line(s) 60 uk/co/senab/photoview/log/LoggerDefault.java, line(s) 18,23,48,53,28,33,8,13,38,43 wendu/dsbridge/DWebView.java, line(s) 761,1107
信息 此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它
此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: com/octopus/ad/internal/network/ServerResponse.java, line(s) 5,162
安全 此应用程序可能具有Root检测功能
此应用程序可能具有Root检测功能 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: com/insigmacc/nannsmk/utils/RootUtils.java, line(s) 8,9 com/intcreator/commmon/android/util/AppUtils.java, line(s) 58,90,415 com/intcreator/commmon/android/util/DeviceUtils.java, line(s) 23 com/octopus/ad/utils/b/o.java, line(s) 87,87,87,87 com/unionpay/UPPayAssistEx.java, line(s) 224
安全 此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击
此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#testing-custom-certificate-stores-and-certificate-pinning-mstg-network-4 Files: com/ccit/www/mobileshieldsdk/okutils/okhttputils/https/HttpsUtils.java, line(s) 112,176,43,110,110,174,174 com/libCom/androidsm2/api/ApiFactory.java, line(s) 155,84 com/pingan/ai/b/b/g/a.java, line(s) 116,65,114,114 com/pingan/ai/b/c/x.java, line(s) 167,166,165,165 com/unionpay/a/b.java, line(s) 32,31,30,30 com/uyumao/k.java, line(s) 38,36
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (ulogs.umengcloud.com) 通信。
{'ip': '219.159.71.141', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '南京', 'latitude': '32.061668', 'longitude': '118.777992'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (p1-lm.adkwai.com) 通信。
{'ip': '219.159.71.141', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '南通', 'latitude': '32.030296', 'longitude': '120.874779'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (mobilegw.dl.alipaydev.com) 通信。
{'ip': '110.75.132.25', 'country_short': 'CN', 'country_long': '中国', 'region': '浙江', 'city': '杭州', 'latitude': '30.293650', 'longitude': '120.161583'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (opm.nn-cc.cn) 通信。
{'ip': '219.159.71.141', 'country_short': 'CN', 'country_long': '中国', 'region': '广西壮族', 'city': '南宁', 'latitude': '22.816669', 'longitude': '108.316673'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (www.nnsmk.com) 通信。
{'ip': '219.159.71.141', 'country_short': 'CN', 'country_long': '中国', 'region': '广西壮族', 'city': '南宁', 'latitude': '22.816669', 'longitude': '108.316673'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (adtracker.medproad.com) 通信。
{'ip': '219.159.71.141', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (apps.bytesfield.com) 通信。
{'ip': '221.229.209.226', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '徐州', 'latitude': '34.266666', 'longitude': '117.166664'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (apps.samsung.com) 通信。
{'ip': '117.91.193.4', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '扬州', 'latitude': '32.397221', 'longitude': '119.435600'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (c.umsns.com) 通信。
{'ip': '59.82.31.160', 'country_short': 'CN', 'country_long': '中国', 'region': '浙江', 'city': '杭州', 'latitude': '30.293650', 'longitude': '120.161583'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (adservice.sigmob.cn) 通信。
{'ip': '47.94.221.36', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (zlsdk.1rtb.net) 通信。
{'ip': '117.50.154.19', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (webcast.amemv.com) 通信。
{'ip': '222.186.18.200', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '镇江', 'latitude': '32.209366', 'longitude': '119.434372'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (qcwx.medproad.com) 通信。
{'ip': '123.57.146.67', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (static.yximgs.com) 通信。
{'ip': '222.186.18.237', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '镇江', 'latitude': '32.209366', 'longitude': '119.434372'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (sns.whalecloud.com) 通信。
{'ip': '203.119.169.41', 'country_short': 'CN', 'country_long': '中国', 'region': '浙江', 'city': '杭州', 'latitude': '30.293650', 'longitude': '120.161583'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (h5.m.taobao.com) 通信。
{'ip': '49.79.224.210', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '南通', 'latitude': '32.030296', 'longitude': '120.874779'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (nnapp.cloudbae.cn) 通信。
{'ip': '222.84.60.133', 'country_short': 'CN', 'country_long': '中国', 'region': '广西壮族', 'city': '南宁', 'latitude': '22.816669', 'longitude': '108.316673'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (apps.oceanengine.com) 通信。
{'ip': '121.228.130.193', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '苏州', 'latitude': '31.311365', 'longitude': '120.617691'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (api.weibo.com) 通信。
{'ip': '49.7.37.118', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (m.sigmob.com) 通信。
{'ip': '39.107.65.119', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (msg.umengcloud.com) 通信。
{'ip': '111.63.206.4', 'country_short': 'CN', 'country_long': '中国', 'region': '河北', 'city': '衡水', 'latitude': '37.732220', 'longitude': '115.701157'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (mobilegw.alipaydev.com) 通信。
{'ip': '110.75.132.131', 'country_short': 'CN', 'country_long': '中国', 'region': '浙江', 'city': '杭州', 'latitude': '30.293650', 'longitude': '120.161583'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (i.snssdk.com) 通信。
{'ip': '121.228.130.195', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '苏州', 'latitude': '31.311365', 'longitude': '120.617691'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (ssc.mohrss.gov.cn) 通信。
{'ip': '111.205.240.164', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (log.umsns.com) 通信。
{'ip': '59.82.31.154', 'country_short': 'CN', 'country_long': '中国', 'region': '浙江', 'city': '杭州', 'latitude': '30.293650', 'longitude': '120.161583'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (cpro.baidustatic.com) 通信。
{'ip': '180.97.198.35', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '苏州', 'latitude': '31.311365', 'longitude': '120.617691'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (ainn.ziwoyou.net) 通信。
{'ip': '14.17.112.55', 'country_short': 'CN', 'country_long': '中国', 'region': '广东', 'city': '佛山', 'latitude': '23.026770', 'longitude': '113.131477'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (yumao.puata.info) 通信。
{'ip': '223.109.148.178', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '南京', 'latitude': '32.061668', 'longitude': '118.777992'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (shuttle.pandabus.cn) 通信。
{'ip': '106.14.18.195', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (open.weibo.cn) 通信。
{'ip': '49.7.37.118', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (open.e.kuaishou.com) 通信。
{'ip': '58.215.85.78', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '无锡', 'latitude': '31.569349', 'longitude': '120.288788'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (v.adintl.cn) 通信。
{'ip': '101.200.165.248', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (www.toutiaopage.com) 通信。
{'ip': '121.228.130.191', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '苏州', 'latitude': '31.311365', 'longitude': '120.617691'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (androidquery.appspot.com) 通信。
{'ip': '172.217.161.52', 'country_short': 'HK', 'country_long': '中国', 'region': '香港', 'city': '香港', 'latitude': '22.285521', 'longitude': '114.157692'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (shop.nnsmk.com) 通信。
{'ip': '103.72.144.207', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (www.chengzijianzhan.com) 通信。
{'ip': '124.70.186.225', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '台州', 'latitude': '32.492168', 'longitude': '119.910767'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (test-ssc.mohrss.gov.cn) 通信。
{'ip': '219.142.139.100', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (sf6-ttcdn-tos.pstatp.com) 通信。
{'ip': '115.231.153.88', 'country_short': 'CN', 'country_long': '中国', 'region': '浙江', 'city': '台州', 'latitude': '28.666668', 'longitude': '121.349998'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (service.weibo.com) 通信。
{'ip': '49.7.37.75', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (adapi.pandabus.cn) 通信。
{'ip': '47.101.163.212', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (apps.bytesfield-b.com) 通信。
{'ip': '58.222.46.202', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '台州', 'latitude': '32.492168', 'longitude': '119.910767'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (sdk-demo.1rtb.net) 通信。
{'ip': '117.50.154.35', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (wx.tenpay.com) 通信。
{'ip': '101.91.0.148', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (sz-mix.sf-express.com) 通信。
{'ip': '139.9.77.233', 'country_short': 'CN', 'country_long': '中国', 'region': '广东', 'city': '广州', 'latitude': '23.127361', 'longitude': '113.264572'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (adxtool.sigmob.cn) 通信。
{'ip': '39.106.166.112', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (dc.sigmob.cn) 通信。
{'ip': '112.126.7.24', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (e-zlsdk.1rtb.net) 通信。
{'ip': '123.59.48.116', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}