Dynamic DNS Request Monitoring of Android Applications via networking

Abstract

Smart devices are very popular and are becoming ubiquitous in the modern society, with Android OS as the most widespread operating system on current smartphones/tablets. However, malicious applications is one of the major concerns and fast growing security menaces facing the use of Internet in the Android platform, today. So, we need techniques and methods to address the massive malware attacks. One of the most relevant techniques to disclose sensitive behavior of Android applications during their runtime execution is Dynamic Analysis. Here we proposed a malware detection tool, termed as Network Sentinel, that it can be used for Dynamic DNS request Monitoring of Apps via networking. The main motivation for this work, it is extensively abuse of the DNS by malevolent communities in order to provide Internet connection within malicious networks and botnets. Finally, the experimental results obtained are promising by allowing us to capture the DNS queries requested by the smartphones to remote servers from the collected network traces at very low battery usage.