hacktricks/mobile-pentesting/android-app-pentesting/android-task-hijacking.md

# Kuteka Kazi kwa Programu za Android

<details>

<summary><strong>Jifunze kuhusu kuteka kazi za AWS kutoka mwanzo hadi mtaalamu na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (Mtaalamu wa Timu Nyekundu ya AWS ya HackTricks)</strong></a><strong>!</strong></summary>

Njia nyingine za kusaidia HackTricks:

* Ikiwa unataka kuona **kampuni yako ikitangazwa kwenye HackTricks** au **kupakua HackTricks kwa PDF** Angalia [**MIPANGO YA KUJIUNGA**](https://github.com/sponsors/carlospolop)!
* Pata [**bidhaa rasmi za PEASS & HackTricks**](https://peass.creator-spring.com)
* Gundua [**Familia ya PEASS**](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [**NFTs**](https://opensea.io/collection/the-peass-family) za kipekee
* **Jiunge na** 💬 [**Kikundi cha Discord**](https://discord.gg/hRep4RUj7f) au kikundi cha [**telegram**](https://t.me/peass) au **tufuate** kwenye **Twitter** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks\_live)**.**
* **Shiriki mbinu zako za kuteka kwa kuwasilisha PRs kwa** [**HackTricks**](https://github.com/carlospolop/hacktricks) na [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) repos za github.

</details>

**Kikundi cha Usalama cha Try Hard**

<figure><img src="../../.gitbook/assets/telegram-cloud-document-1-5159108904864449420.jpg" alt=""><figcaption></figcaption></figure>

{% embed url="https://discord.gg/tryhardsecurity" %}

***

## Kazi, Mtiririko wa Nyuma na Shughuli za Mbele

Kwenye Android, **kazi** ni seti ya shughuli ambazo watumiaji wanashirikiana nazo kumaliza kazi maalum, zikiwa zimepangwa ndani ya **mtiririko wa nyuma**. Mtiririko huu unapanga shughuli kulingana na wakati zilipoanzishwa, na shughuli ya hivi karibuni ikiwa juu kama **shughuli ya mbele**. Wakati wowote, shughuli hii tu ndiyo inayoonekana kwenye skrini, ikifanya sehemu ya **kazi ya mbele**.

Hapa kuna maelezo mafupi ya mabadiliko ya shughuli:

* **Shughuli 1** inaanza kama shughuli pekee kwenye mbele.
* Kuwasha **Shughuli 2** kunapeleka **Shughuli 1** kwenye mtiririko wa nyuma, ikileta **Shughuli 2** mbele.
* Kuanzisha **Shughuli 3** kunahamisha **Shughuli 1** na **Shughuli 2** nyuma zaidi kwenye mtiririko, na **Shughuli 3** sasa mbele.
* Kufunga **Shughuli 3** kunarudisha **Shughuli 2** mbele, ikionyesha mfumo wa urambazaji wa kazi wa Android.

![https://developer.android.com/images/fundamentals/diagram\_backstack.png](<../../.gitbook/assets/image (695).png>)

## Shambulio la Urafiki wa Kazi

### Maelezo ya Urafiki wa Kazi na Mbinu za Kuzindua

Katika programu za Android, **urafiki wa kazi** unabainisha kazi inayopendelewa ya shughuli, kwa kawaida ikilingana na jina la pakiti ya programu. Hii ni muhimu katika kutengeneza programu ya uthibitisho wa dhana (PoC) kwa kudhihirisha shambulio.

### Mbinu za Kuzindua

Sifa ya `launchMode` inaelekeza namna ya kushughulikia mifano ya shughuli ndani ya kazi. Modu ya **singleTask** ni muhimu kwa shambulio hili, ikiongoza mazingira matatu kulingana na mifano ya shughuli iliyopo na mechi za urafiki wa kazi. Utekelezaji unategemea uwezo wa programu ya muhusika kufanana na urafiki wa kazi wa programu ya lengo, kudanganya mfumo wa Android kuzindua programu ya muhusika badala ya lengo lililokusudiwa.

### Hatua za Shambulio kwa Undani

1. **Usakinishaji wa Programu ya Uovu**: Muhusika anasakinisha programu ya muhusika kwenye kifaa chake.
2. **Uanzishaji wa Awali**: Muhusika kwanza anafungua programu ya uovu, kuandaa kifaa kwa shambulio.
3. **Jaribio la Kuzindua Programu ya Lengo**: Muhusika anajaribu kufungua programu ya lengo.
4. **Utekelezaji wa Kuteka Kazi**: Kutokana na urafiki wa kazi unaofanana, programu ya uovu inazinduliwa badala ya programu ya lengo.
5. **Udanganyifu**: Programu ya uovu inaonyesha skrini bandia ya kuingia inayofanana na programu ya lengo, kuwadanganya watumiaji kuingiza habari nyeti.

Kwa utekelezaji wa vitendo wa shambulio hili, tazama hazina ya GitHub ya Task Hijacking Strandhogg: [Task Hijacking Strandhogg](https://github.com/az0mb13/Task\_Hijacking\_Strandhogg).

### Hatua za Kuzuia

Ili kuzuia mashambulio kama haya, waendelezaji wanaweza kuweka `taskAffinity` kuwa herufi tupu na kuchagua modu ya kuzindua ya `singleInstance`, kuhakikisha kufungwa kwa programu yao kutoka kwa nyingine. Kubadilisha `onBackPressed()` kunaleta ulinzi zaidi dhidi ya kuteka kazi.

## **Vyanzo**

* [**https://blog.dixitaditya.com/android-task-hijacking/**](https://blog.dixitaditya.com/android-task-hijacking/)
* [**https://blog.takemyhand.xyz/2021/02/android-task-hijacking-with.html**](https://blog.takemyhand.xyz/2021/02/android-task-hijacking-with.html)

**Kikundi cha Usalama cha Try Hard**

<figure><img src="../../.gitbook/assets/telegram-cloud-document-1-5159108904864449420.jpg" alt=""><figcaption></figcaption></figure>

{% embed url="https://discord.gg/tryhardsecurity" %}

<details>

<summary><strong>Jifunze kuhusu kuteka kazi za AWS kutoka mwanzo hadi mtaalamu na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (Mtaalamu wa Timu Nyekundu ya AWS ya HackTricks)</strong></a><strong>!</strong></summary>

Njia nyingine za kusaidia HackTricks:

* Ikiwa unataka kuona **kampuni yako ikitangazwa kwenye HackTricks** au **kupakua HackTricks kwa PDF** Angalia [**MIPANGO YA KUJIUNGA**](https://github.com/sponsors/carlospolop)!
* Pata [**bidhaa rasmi za PEASS & HackTricks**](https://peass.creator-spring.com)
* Gundua [**Familia ya PEASS**](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [**NFTs**](https://opensea.io/collection/the-peass-family) za kipekee
* **Jiunge na** 💬 [**Kikundi cha Discord**](https://discord.gg/hRep4RUj7f) au kikundi cha [**telegram**](https://t.me/peass) au **tufuate** kwenye **Twitter** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks\_live)**.**
* **Shiriki mbinu zako za kuteka kwa kuwasilisha PRs kwa** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.

</details>
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`# Kuteka Kazi kwa Programu za Android`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`<details>`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`<summary><strong>Jifunze kuhusu kuteka kazi za AWS kutoka mwanzo hadi mtaalamu na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (Mtaalamu wa Timu Nyekundu ya AWS ya HackTricks)</strong></a><strong>!</strong></summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Njia nyingine za kusaidia HackTricks:`
arte 2024-01-03 10:43:38 +00:00
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 13:37:52 +00:00			`* Ikiwa unataka kuona kampuni yako ikitangazwa kwenye HackTricks au kupakua HackTricks kwa PDF Angalia [MIPANGO YA KUJIUNGA](https://github.com/sponsors/carlospolop)!`
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:19:32 +00:00			`* Pata [bidhaa rasmi za PEASS & HackTricks](https://peass.creator-spring.com)`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-26 15:53:40 +00:00			`* Gundua [Familia ya PEASS](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [NFTs](https://opensea.io/collection/the-peass-family) za kipekee`
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:19:32 +00:00			`* Jiunge na 💬 [Kikundi cha Discord](https://discord.gg/hRep4RUj7f) au kikundi cha [telegram](https://t.me/peass) au tufuate kwenye Twitter 🐦 [@carlospolopm](https://twitter.com/hacktricks\_live).`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 13:37:52 +00:00			`* Shiriki mbinu zako za kuteka kwa kuwasilisha PRs kwa [HackTricks](https://github.com/carlospolop/hacktricks) na [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) repos za github.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`Kikundi cha Usalama cha Try Hard`
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-14 23:40:07 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`<figure><img src="../../.gitbook/assets/telegram-cloud-document-1-5159108904864449420.jpg" alt=""><figcaption></figcaption></figure>`
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-14 23:40:07 +00:00
			`{% embed url="https://discord.gg/tryhardsecurity" %}`

			`***`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`## Kazi, Mtiririko wa Nyuma na Shughuli za Mbele`
intruder 2023-09-02 23:48:41 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`Kwenye Android, kazi ni seti ya shughuli ambazo watumiaji wanashirikiana nazo kumaliza kazi maalum, zikiwa zimepangwa ndani ya mtiririko wa nyuma. Mtiririko huu unapanga shughuli kulingana na wakati zilipoanzishwa, na shughuli ya hivi karibuni ikiwa juu kama shughuli ya mbele. Wakati wowote, shughuli hii tu ndiyo inayoonekana kwenye skrini, ikifanya sehemu ya kazi ya mbele.`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Hapa kuna maelezo mafupi ya mabadiliko ya shughuli:`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-26 15:53:40 +00:00			`* Shughuli 1 inaanza kama shughuli pekee kwenye mbele.`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`* Kuwasha Shughuli 2 kunapeleka Shughuli 1 kwenye mtiririko wa nyuma, ikileta Shughuli 2 mbele.`
			`* Kuanzisha Shughuli 3 kunahamisha Shughuli 1 na Shughuli 2 nyuma zaidi kwenye mtiririko, na Shughuli 3 sasa mbele.`
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:19:32 +00:00			`* Kufunga Shughuli 3 kunarudisha Shughuli 2 mbele, ikionyesha mfumo wa urambazaji wa kazi wa Android.`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`![https://developer.android.com/images/fundamentals/diagram\_backstack.png](<../../.gitbook/assets/image (695).png>)`
GitBook: [master] one page and 4 assets modified 2021-06-17 13:51:08 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`## Shambulio la Urafiki wa Kazi`
GitBook: [master] one page and 2 assets modified 2021-06-17 13:29:24 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`### Maelezo ya Urafiki wa Kazi na Mbinu za Kuzindua`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`Katika programu za Android, urafiki wa kazi unabainisha kazi inayopendelewa ya shughuli, kwa kawaida ikilingana na jina la pakiti ya programu. Hii ni muhimu katika kutengeneza programu ya uthibitisho wa dhana (PoC) kwa kudhihirisha shambulio.`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`### Mbinu za Kuzindua`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			Sifa ya `launchMode` inaelekeza namna ya kushughulikia mifano ya shughuli ndani ya kazi. Modu ya singleTask ni muhimu kwa shambulio hili, ikiongoza mazingira matatu kulingana na mifano ya shughuli iliyopo na mechi za urafiki wa kazi. Utekelezaji unategemea uwezo wa programu ya muhusika kufanana na urafiki wa kazi wa programu ya lengo, kudanganya mfumo wa Android kuzindua programu ya muhusika badala ya lengo lililokusudiwa.
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`### Hatua za Shambulio kwa Undani`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`1. Usakinishaji wa Programu ya Uovu: Muhusika anasakinisha programu ya muhusika kwenye kifaa chake.`
			`2. Uanzishaji wa Awali: Muhusika kwanza anafungua programu ya uovu, kuandaa kifaa kwa shambulio.`
			`3. Jaribio la Kuzindua Programu ya Lengo: Muhusika anajaribu kufungua programu ya lengo.`
			`4. Utekelezaji wa Kuteka Kazi: Kutokana na urafiki wa kazi unaofanana, programu ya uovu inazinduliwa badala ya programu ya lengo.`
			`5. Udanganyifu: Programu ya uovu inaonyesha skrini bandia ya kuingia inayofanana na programu ya lengo, kuwadanganya watumiaji kuingiza habari nyeti.`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`Kwa utekelezaji wa vitendo wa shambulio hili, tazama hazina ya GitHub ya Task Hijacking Strandhogg: [Task Hijacking Strandhogg](https://github.com/az0mb13/Task\_Hijacking\_Strandhogg).`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`### Hatua za Kuzuia`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			Ili kuzuia mashambulio kama haya, waendelezaji wanaweza kuweka `taskAffinity` kuwa herufi tupu na kuchagua modu ya kuzindua ya `singleInstance`, kuhakikisha kufungwa kwa programu yao kutoka kwa nyingine. Kubadilisha `onBackPressed()` kunaleta ulinzi zaidi dhidi ya kuteka kazi.
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:19:32 +00:00			`## Vyanzo`
GitBook: [master] 3 pages and one asset modified 2021-06-17 13:18:27 +00:00
fix bad chars 2022-04-05 22:24:52 +00:00			`* [https://blog.dixitaditya.com/android-task-hijacking/](https://blog.dixitaditya.com/android-task-hijacking/)`
			`* [https://blog.takemyhand.xyz/2021/02/android-task-hijacking-with.html](https://blog.takemyhand.xyz/2021/02/android-task-hijacking-with.html)`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`Kikundi cha Usalama cha Try Hard`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`<figure><img src="../../.gitbook/assets/telegram-cloud-document-1-5159108904864449420.jpg" alt=""><figcaption></figcaption></figure>`
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-09 13:19:32 +00:00
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-14 23:40:07 +00:00			`{% embed url="https://discord.gg/tryhardsecurity" %}`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 12:32:36 +00:00
			`<details>`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`<summary><strong>Jifunze kuhusu kuteka kazi za AWS kutoka mwanzo hadi mtaalamu na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (Mtaalamu wa Timu Nyekundu ya AWS ya HackTricks)</strong></a><strong>!</strong></summary>`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 12:32:36 +00:00
			`Njia nyingine za kusaidia HackTricks:`

Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 13:37:52 +00:00			`* Ikiwa unataka kuona kampuni yako ikitangazwa kwenye HackTricks au kupakua HackTricks kwa PDF Angalia [MIPANGO YA KUJIUNGA](https://github.com/sponsors/carlospolop)!`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 12:32:36 +00:00			`* Pata [bidhaa rasmi za PEASS & HackTricks](https://peass.creator-spring.com)`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-26 15:53:40 +00:00			`* Gundua [Familia ya PEASS](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [NFTs](https://opensea.io/collection/the-peass-family) za kipekee`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 12:32:36 +00:00			`* Jiunge na 💬 [Kikundi cha Discord](https://discord.gg/hRep4RUj7f) au kikundi cha [telegram](https://t.me/peass) au tufuate kwenye Twitter 🐦 [@carlospolopm](https://twitter.com/hacktricks\_live).`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`* Shiriki mbinu zako za kuteka kwa kuwasilisha PRs kwa [HackTricks](https://github.com/carlospolop/hacktricks) and [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) github repos.`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 12:32:36 +00:00
			`</details>`