Axelle Apvrille

Principal Security Researcher

Back to the list of Speakers and Sessions

Axelle Apvrille Principal Security Researcher, Fortinet

Axelle is Principal Security Researcher at Fortinet. She has been working there for over 10 years on mobile malware and IoT malware. She is also the lead organizer of Ph0wn CTF, a CTF dedicated to smart objects, which takes place on the French Riviera. In a previous life, Axelle worked on cryptography (implementation) and security protocols.

Workshop: Reversing Android malware for the Smart and Lazy

Android malware are packed and obfuscated. There are many ways to defeat this as a reverse engineer. Disassembly with Baksmali, Androguard, JADX etc is rewarding but long (and painful?). If you are just interested in the result (unpacked executable, non obfuscated), there are more efficient tools. In this workshop, hands-on lab will introduce you to Dexcalibur and House. You will unpack and de-obfuscate an Android malware in virtually no time (well, 3 hours for your first time :D).

This workshop is best suited for intermediate to advanced reverse engineers/researchers -- which should be no problem to the NorthSec audience. Basically, you need to be at ease in a Unix environment + be able to read and write small programs.

Before the workshop, it is recommended to

(1) Download and install Android Studio + setup an Android emulator x86_64 without Google Play (2) Download and install Docker + the workshop tools: docker pull cryptax/android-re:2021.01